$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: NoWxEbVLZEw/NeLSDjZg9pC7TZtHNHXyDhBD3i2sTjY= Subject key identifier: 52:FA:3F:68:F0:08:1C:36:46:00:91:BF:6A:76:9B:48:1F:EA:A6:1A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 28CEAE35268CF9C3F6FE1E990D8A85E1BFF31531 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:10 +0000 ROA not before: Fri 15 Aug 2025 05:58:10 +0000 ROA not after: Fri 14 Aug 2026 06:03:10 +0000 asID: 216324 IP address blocks: 2a14:7581:204::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ce:ae:35:26:8c:f9:c3:f6:fe:1e:99:0d:8a:85:e1:bf:f3:15:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:10 2025 GMT Not After : Aug 14 06:03:10 2026 GMT Subject: CN=52FA3F68F0081C36460091BF6A769B481FEAA61A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2f:5f:ed:0b:48:f2:76:f0:72:82:7c:45:42: 52:5d:90:a6:4b:41:6b:9d:b1:de:21:a8:59:8a:9d: 61:8d:a0:bf:44:54:e9:bf:aa:68:2f:f8:24:b0:66: 97:68:2f:ca:1e:8a:71:ca:97:97:1c:0a:cd:f9:44: 74:ed:d3:60:4e:4f:3f:8b:89:d0:63:87:b0:9d:e2: 06:97:33:ca:e9:47:d2:ce:15:22:9e:02:39:f8:33: 32:ce:3d:f9:27:a3:55:fa:1f:61:b8:45:60:d2:0e: a4:cd:44:80:33:6b:3f:cf:14:a6:b7:50:c1:25:d6: f5:44:59:92:d1:21:ca:3e:a3:cd:e9:d4:4a:01:36: 68:19:54:8a:e0:2b:64:ef:2d:9d:ac:85:87:36:1f: 7f:53:1d:04:0b:2f:89:61:2a:02:b3:73:af:7d:f6: 2b:4a:02:e6:e0:0a:15:88:b4:59:53:1b:f2:16:ca: 41:b3:f0:94:ab:a7:3c:48:db:5b:b4:c5:5c:fa:1e: dd:01:4b:b5:93:22:1c:41:b3:21:fd:df:41:c9:b3: 3d:3a:96:a7:3e:bd:65:2f:53:aa:f9:3b:15:cf:43: a0:ed:47:4d:a6:a7:0a:78:27:5c:04:ac:3d:e4:a8: 9b:b8:79:ab:34:cf:4d:59:ec:83:47:1c:d5:99:4a: ec:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FA:3F:68:F0:08:1C:36:46:00:91:BF:6A:76:9B:48:1F:EA:A6:1A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230343a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:204::/48 Signature Algorithm: sha256WithRSAEncryption 58:cb:2d:c0:92:0a:e1:2a:62:72:10:d2:36:db:fb:ce:bb:be: 61:8b:d4:87:eb:27:26:fa:e3:72:b2:db:db:e0:f3:98:cf:e6: a6:d7:54:90:1d:2d:cd:ea:7e:2d:05:5e:da:c2:2c:da:21:01: 70:ad:0e:3c:26:1b:1a:5c:21:ca:45:7a:50:90:17:45:c6:74: 48:59:2e:02:47:5c:bc:5f:90:ae:2c:e3:e5:af:f8:93:61:fb: 7c:78:18:df:2d:95:75:f2:d7:3c:36:03:cb:f2:28:98:c0:c6: d3:3e:dc:73:9d:16:b6:ce:7e:ba:e6:b6:69:a0:09:78:c4:61: 3a:01:d4:95:a9:e6:65:c8:17:49:5f:e1:0e:43:49:f0:a7:53: 54:d6:ff:f7:06:27:98:7e:d3:0f:cd:e8:dd:0e:c4:54:65:a4: a2:92:93:8b:2b:0a:1b:80:14:3d:8d:f0:7a:77:ab:26:54:2a: 51:50:c9:dd:00:64:33:8e:1e:cc:5b:01:5e:71:89:d3:57:3d: df:af:47:13:19:e7:4c:e8:05:df:99:f9:f5:9e:30:c4:6f:d4: 60:9c:df:5c:92:7f:a3:01:2e:9c:3f:ae:ad:7a:18:49:8f:f6: 2a:4c:73:08:76:ee:88:96:f3:f1:9d:34:85:d9:8e:69:3a:30: 2c:61:38:f9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUKM6uNSaM+cP2/h6ZDYqF4b/zFTEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MTBaFw0yNjA4MTQwNjAzMTBaMDMxMTAvBgNV BAMTKDUyRkEzRjY4RjAwODFDMzY0NjAwOTFCRjZBNzY5QjQ4MUZFQUE2MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIL1/tC0jydvBygnxFQlJdkKZL QWudsd4hqFmKnWGNoL9EVOm/qmgv+CSwZpdoL8oeinHKl5ccCs35RHTt02BOTz+L idBjh7Cd4gaXM8rpR9LOFSKeAjn4MzLOPfkno1X6H2G4RWDSDqTNRIAzaz/PFKa3 UMEl1vVEWZLRIco+o83p1EoBNmgZVIrgK2TvLZ2shYc2H39THQQLL4lhKgKzc699 9itKAubgChWItFlTG/IWykGz8JSrpzxI21u0xVz6Ht0BS7WTIhxBsyH930HJsz06 lqc+vWUvU6r5OxXPQ6DtR02mpwp4J1wErD3kqJu4eas0z01Z7INHHNWZSuzrAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUUvo/aPAIHDZGAJG/anabSB/qphowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECBDANBgkqhkiG9w0BAQsFAAOCAQEAWMst wJIK4SpichDSNtv7zru+YYvUh+snJvrjcrLb2+DzmM/mptdUkB0tzep+LQVe2sIs 2iEBcK0OPCYbGlwhykV6UJAXRcZ0SFkuAkdcvF+Qrizj5a/4k2H7fHgY3y2VdfLX PDYDy/IomMDG0z7cc50Wts5+uua2aaAJeMRhOgHUlanmZcgXSV/hDkNJ8KdTVNb/ 9wYnmH7TD83o3Q7EVGWkopKTiysKG4AUPY3wenerJlQqUVDJ3QBkM44ezFsBXnGJ 01c9369HExnnTOgF35n59Z4wxG/UYJzfXJJ/owEunD+urXoYSY/2KkxzCHbuiJbz 8Z00hdmOaTowLGE4+Q== -----END CERTIFICATE-----Generated at Sun Aug 24 03:51:23 2025 by rpki-client