$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: Zgu8b5H8OF2/vtfqtq6PcCEMnG4rdz8BYiX/0mAooHE= Subject key identifier: 70:49:0A:EB:C1:36:62:A6:46:A5:62:6E:6D:CE:94:2B:1F:FF:A2:29 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 5723701C02DB601A1A2629C71AF082DD767A6167 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:10 +0000 ROA not before: Fri 15 Aug 2025 05:58:10 +0000 ROA not after: Fri 14 Aug 2026 06:03:10 +0000 asID: 216324 IP address blocks: 2a14:7581:205::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:23:70:1c:02:db:60:1a:1a:26:29:c7:1a:f0:82:dd:76:7a:61:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:10 2025 GMT Not After : Aug 14 06:03:10 2026 GMT Subject: CN=70490AEBC13662A646A5626E6DCE942B1FFFA229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5d:32:fd:0b:d2:16:72:83:0f:1b:21:53:23: c0:ef:70:6c:3e:28:fb:e6:6d:0f:9e:da:41:96:4d: f5:75:2c:1c:c9:c8:75:d3:30:2d:b0:81:27:f5:54: 26:6b:2c:dd:06:0d:2e:2e:89:ce:87:72:99:94:96: 17:30:e5:b0:cb:77:e9:06:38:14:52:3f:64:72:6c: d2:5e:5d:b3:45:01:c0:82:ca:d6:58:c5:cc:ba:ea: 3a:3f:5a:3e:bb:05:f6:da:fa:b4:05:d5:b9:39:17: 6c:87:35:57:70:66:c7:7c:25:17:11:75:36:fd:81: 43:89:e5:67:50:ab:f6:3e:c1:1b:e0:bb:37:4d:bb: 74:50:60:6b:ce:ef:83:f3:6f:e5:ca:2b:2d:1b:92: 66:3f:06:2a:74:5f:11:76:b0:79:00:b7:64:cf:7b: 14:a7:21:d0:8b:36:96:47:ba:95:cc:88:52:35:d4: c5:dc:49:38:26:7a:26:bd:56:ad:57:ad:1f:f2:21: d6:63:fb:2c:d8:71:ca:a3:85:81:5e:8f:4f:1d:f4: a4:c1:2b:5f:3a:6c:3b:46:ca:cd:18:9a:9f:c4:3f: da:4f:27:38:2e:b6:53:ae:c6:0f:26:53:5c:3f:ed: 1d:b3:c0:39:58:37:e3:f3:4b:5b:49:1e:29:5d:c5: 12:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:49:0A:EB:C1:36:62:A6:46:A5:62:6E:6D:CE:94:2B:1F:FF:A2:29 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230353a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:205::/48 Signature Algorithm: sha256WithRSAEncryption 11:b5:15:46:f3:d9:e9:0a:73:91:92:ee:d7:45:1e:9b:11:0a: 76:6e:2e:13:b1:66:f4:bb:f5:e5:bc:3a:bd:7c:02:fc:74:b2: 57:b7:a1:93:db:45:c0:60:28:ea:75:bb:65:98:df:26:86:fb: b4:40:ff:06:41:84:e1:97:e4:69:3a:a8:3f:5f:18:a5:dd:8b: e1:86:13:39:e2:b9:64:7d:62:ea:b0:6e:5f:2b:92:9c:14:e5: 14:6e:00:cd:d8:f2:89:ec:84:9b:f6:6c:74:57:ad:3a:11:e9: 40:db:bf:19:3a:cf:82:5d:01:a3:99:50:38:7a:45:82:a8:eb: 10:ba:4d:6c:dc:24:ad:95:5a:e9:86:2d:a8:89:9e:68:8e:07: b4:11:25:b1:98:c9:1e:d0:ff:ea:44:40:5a:24:73:ed:1d:c9: 72:89:84:76:59:30:8d:94:04:cd:5d:6b:19:60:2a:88:fe:09: 9a:41:44:57:78:7a:03:9d:7d:c1:47:79:93:f3:0c:71:49:04: 07:3a:fe:69:d2:c3:be:86:32:67:86:41:a2:55:f7:10:52:81: 42:7a:c8:5f:ed:d9:30:64:ce:02:22:ce:7d:84:54:a4:a2:de: ff:d0:0b:0e:db:ca:e0:21:37:7c:5c:ad:5c:60:67:8e:33:6a: 9c:19:4a:9d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUVyNwHALbYBoaJinHGvCC3XZ6YWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MTBaFw0yNjA4MTQwNjAzMTBaMDMxMTAvBgNV BAMTKDcwNDkwQUVCQzEzNjYyQTY0NkE1NjI2RTZEQ0U5NDJCMUZGRkEyMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1XTL9C9IWcoMPGyFTI8DvcGw+ KPvmbQ+e2kGWTfV1LBzJyHXTMC2wgSf1VCZrLN0GDS4uic6HcpmUlhcw5bDLd+kG OBRSP2RybNJeXbNFAcCCytZYxcy66jo/Wj67Bfba+rQF1bk5F2yHNVdwZsd8JRcR dTb9gUOJ5WdQq/Y+wRvguzdNu3RQYGvO74Pzb+XKKy0bkmY/Bip0XxF2sHkAt2TP exSnIdCLNpZHupXMiFI11MXcSTgmeia9Vq1XrR/yIdZj+yzYccqjhYFej08d9KTB K186bDtGys0Ymp/EP9pPJzgutlOuxg8mU1w/7R2zwDlYN+PzS1tJHildxRI/AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUcEkK68E2YqZGpWJubc6UKx//oikwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECBTANBgkqhkiG9w0BAQsFAAOCAQEAEbUV RvPZ6QpzkZLu10UemxEKdm4uE7Fm9Lv15bw6vXwC/HSyV7ehk9tFwGAo6nW7ZZjf Job7tED/BkGE4ZfkaTqoP18Ypd2L4YYTOeK5ZH1i6rBuXyuSnBTlFG4AzdjyieyE m/ZsdFetOhHpQNu/GTrPgl0Bo5lQOHpFgqjrELpNbNwkrZVa6YYtqImeaI4HtBEl sZjJHtD/6kRAWiRz7R3JcomEdlkwjZQEzV1rGWAqiP4JmkFEV3h6A519wUd5k/MM cUkEBzr+adLDvoYyZ4ZBolX3EFKBQnrIX+3ZMGTOAiLOfYRUpKLe/9ALDtvK4CE3 fFytXGBnjjNqnBlKnQ== -----END CERTIFICATE-----Generated at Sun Aug 24 07:11:31 2025 by rpki-client