$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230393a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230393a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: msOOvmclEgpZ7xyy1O418S+yjyZxlJmnhgedrgB4ACw= Subject key identifier: 2A:67:77:C4:4B:EE:9A:E2:D5:6E:71:D7:A7:04:A7:76:C0:75:91:A5 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 257D17BEF73B20AD82926BEDD897A9CCD7013439 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230393a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:10 +0000 ROA not before: Fri 15 Aug 2025 05:58:10 +0000 ROA not after: Fri 14 Aug 2026 06:03:10 +0000 asID: 216324 IP address blocks: 2a14:7581:209::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:7d:17:be:f7:3b:20:ad:82:92:6b:ed:d8:97:a9:cc:d7:01:34:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:10 2025 GMT Not After : Aug 14 06:03:10 2026 GMT Subject: CN=2A6777C44BEE9AE2D56E71D7A704A776C07591A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:8b:7d:e7:ad:18:75:1f:ad:d9:42:10:bb:ea: 4c:c7:ce:b7:2d:41:5e:c8:e7:04:20:17:55:a5:99: 20:57:79:65:a4:57:57:ef:27:6d:b6:6b:21:9f:23: b3:59:c1:b9:2b:18:0b:ec:7f:39:5e:d8:2d:f2:b8: 74:45:bc:0d:c3:95:92:0a:66:47:54:cc:dd:8d:4e: 18:37:e7:2f:13:b0:99:a3:30:5e:cb:30:72:97:69: ab:3e:82:d2:c8:8f:21:65:f5:bb:3f:bc:f9:ee:ed: db:41:2f:33:cc:f6:68:f9:c8:df:5e:66:da:e2:dd: 94:ed:76:b3:5a:36:83:df:94:04:c4:de:75:eb:6d: d1:99:6d:b9:9e:32:3b:ba:b7:6c:19:27:95:93:92: da:a8:45:80:ba:5e:20:17:5a:4e:2d:6f:0c:c1:9f: d7:8c:3f:fe:e8:fe:75:1f:cb:38:b3:64:fc:d0:ff: d8:8f:86:18:c4:ca:a6:be:4b:70:7e:72:f4:2a:b7: 12:1e:74:e7:5a:eb:80:ea:0c:4b:71:8f:0d:a6:03: ef:dd:92:6d:f0:33:70:a1:50:4b:5a:0c:52:b0:7f: e7:d3:05:37:a0:1e:bd:dd:7c:5f:98:0d:76:13:f4: 28:d4:60:46:db:53:0e:de:c2:be:53:3a:5e:4e:e9: b7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:67:77:C4:4B:EE:9A:E2:D5:6E:71:D7:A7:04:A7:76:C0:75:91:A5 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230393a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:209::/48 Signature Algorithm: sha256WithRSAEncryption a3:32:a7:a1:db:58:fb:3c:36:66:cb:98:22:7f:e3:16:a1:27: 48:5c:42:d3:0c:80:ba:d1:8a:33:8c:3e:e9:98:9d:8e:79:f7: 55:a5:f6:ef:3f:b0:4a:bf:82:bc:dc:8f:c6:fe:73:52:7c:84: 5c:1f:97:e6:16:41:3e:0a:15:59:e9:c1:27:d8:41:79:91:69: 4e:a5:ae:d6:f0:8b:37:c2:38:42:a1:8b:56:e5:62:2f:00:c2: ab:fa:64:1b:d7:e9:06:e4:24:b4:8c:33:a5:38:89:26:51:2f: 0a:e8:17:59:2e:a2:c6:52:9a:11:7a:ef:7b:df:9b:9f:66:88: 0b:60:20:27:cf:c6:26:dd:a6:91:e3:50:09:06:3c:59:aa:78: 14:81:7d:55:42:c5:1d:05:8b:35:99:a4:9d:4e:da:a0:75:a7: 11:7c:47:2a:64:90:fa:6b:f9:c6:fe:64:23:28:51:ed:fb:f7: ad:49:53:23:2a:5a:72:8b:87:50:1d:09:b4:c7:41:17:e3:ab: 94:5d:0c:ff:33:6f:7a:08:60:d2:19:74:f8:dd:14:11:e9:89: eb:46:4b:95:f5:b6:32:08:09:7f:35:73:f9:0c:7c:5f:66:a4: 14:c0:2b:e8:24:d7:1c:1a:fc:cb:20:0b:b6:b6:6c:e1:7e:51: e0:4e:33:3f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUJX0Xvvc7IK2Ckmvt2JepzNcBNDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MTBaFw0yNjA4MTQwNjAzMTBaMDMxMTAvBgNV BAMTKDJBNjc3N0M0NEJFRTlBRTJENTZFNzFEN0E3MDRBNzc2QzA3NTkxQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvi33nrRh1H63ZQhC76kzHzrct QV7I5wQgF1WlmSBXeWWkV1fvJ222ayGfI7NZwbkrGAvsfzle2C3yuHRFvA3DlZIK ZkdUzN2NThg35y8TsJmjMF7LMHKXaas+gtLIjyFl9bs/vPnu7dtBLzPM9mj5yN9e Ztri3ZTtdrNaNoPflATE3nXrbdGZbbmeMju6t2wZJ5WTktqoRYC6XiAXWk4tbwzB n9eMP/7o/nUfyzizZPzQ/9iPhhjEyqa+S3B+cvQqtxIedOda64DqDEtxjw2mA+/d km3wM3ChUEtaDFKwf+fTBTegHr3dfF+YDXYT9CjUYEbbUw7ewr5TOl5O6bdvAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUKmd3xEvumuLVbnHXpwSndsB1kaUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzOTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECCTANBgkqhkiG9w0BAQsFAAOCAQEAozKn odtY+zw2ZsuYIn/jFqEnSFxC0wyAutGKM4w+6Zidjnn3VaX27z+wSr+CvNyPxv5z UnyEXB+X5hZBPgoVWenBJ9hBeZFpTqWu1vCLN8I4QqGLVuViLwDCq/pkG9fpBuQk tIwzpTiJJlEvCugXWS6ixlKaEXrve9+bn2aIC2AgJ8/GJt2mkeNQCQY8Wap4FIF9 VULFHQWLNZmknU7aoHWnEXxHKmSQ+mv5xv5kIyhR7fv3rUlTIypacouHUB0JtMdB F+OrlF0M/zNveghg0hl0+N0UEemJ60ZLlfW2MggJfzVz+Qx8X2akFMAr6CTXHBr8 yyALtrZs4X5R4E4zPw== -----END CERTIFICATE-----Generated at Sun Aug 24 03:50:47 2025 by rpki-client