$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: ln7f/nTPVw64Axiaf8MeJbFl6tF7vdv+bUCGg0VKncs= Subject key identifier: 7B:A8:93:90:E2:0E:8F:78:EC:A6:6D:A7:4B:98:EB:E3:AB:68:36:C5 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 66A11DB05E9A9FA63AB076AF0624958B96462E08 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:11 +0000 ROA not before: Fri 15 Aug 2025 05:58:11 +0000 ROA not after: Fri 14 Aug 2026 06:03:11 +0000 asID: 216324 IP address blocks: 2a14:7581:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:a1:1d:b0:5e:9a:9f:a6:3a:b0:76:af:06:24:95:8b:96:46:2e:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:11 2025 GMT Not After : Aug 14 06:03:11 2026 GMT Subject: CN=7BA89390E20E8F78ECA66DA74B98EBE3AB6836C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:d0:e5:da:78:0a:1b:ab:86:92:c8:f8:dd: 3a:88:4f:6c:17:85:f2:a1:b2:26:4a:01:1a:f9:dd: fd:9e:0f:7b:c9:a7:42:c2:5f:68:14:f7:34:0c:79: 8e:5d:90:62:ac:76:dc:ca:02:4c:85:3a:2b:23:51: 97:59:b5:1b:c0:a9:27:f4:61:83:34:37:ea:e2:c6: fb:a4:37:fd:47:f9:de:09:0e:1d:92:cf:44:78:5e: 6c:7a:4d:d1:bc:03:2e:ea:30:94:e1:97:b2:0d:9f: 68:fa:d4:3f:07:5c:94:3c:eb:11:99:c8:56:10:e0: ba:e9:b7:8b:36:dd:e5:43:d7:97:c6:bd:a8:cc:0e: ee:15:53:48:01:fd:e5:ad:65:dd:04:7f:09:b4:8b: 96:a7:3a:91:ee:04:9e:07:bc:b2:5b:10:2f:75:bc: bf:9f:a8:3d:3a:9a:30:59:3b:9a:1f:55:0c:72:5f: 84:42:4d:c2:62:e8:69:45:21:5a:08:7e:aa:20:5b: 0b:53:a6:dc:d2:16:39:5d:5d:36:74:c5:bd:11:55: af:2f:38:34:54:4a:92:c6:64:b6:51:9a:29:ea:0e: 26:24:35:90:47:73:eb:af:e3:e7:0d:3a:56:8e:4c: 33:3c:1d:1f:9e:70:ae:6e:c7:e4:d4:3f:5e:f7:75: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A8:93:90:E2:0E:8F:78:EC:A6:6D:A7:4B:98:EB:E3:AB:68:36:C5 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231313a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:211::/48 Signature Algorithm: sha256WithRSAEncryption 39:3f:cd:09:4c:34:64:04:9f:1b:4e:29:68:bd:05:e3:ba:5c: e6:a8:58:6f:17:74:0b:07:d0:13:6e:c8:56:f6:7b:47:89:58: ba:d9:2d:92:a1:4a:8b:ed:db:84:1d:d8:94:80:df:09:f2:8b: f8:b2:7d:d4:df:ed:dd:88:dd:f8:2b:c4:6f:9d:c8:1d:ab:92: 82:80:58:89:f1:85:14:cd:9b:c1:f7:79:ad:94:f0:a7:bb:d3: b4:18:31:a5:42:3a:92:e5:df:05:fc:d5:a1:1d:cb:be:a0:ec: ea:0e:f5:95:23:eb:1b:c8:9a:d9:ed:60:db:7d:f8:86:a6:0f: 73:41:d7:64:f2:68:58:20:b3:7c:f3:a2:ba:a0:a5:17:8f:4b: dd:a4:cb:11:46:4d:52:1e:83:9c:d5:94:e1:99:f4:fd:4e:50: 2c:55:c9:35:f7:1f:78:78:a8:63:e8:3d:3d:f3:c0:4b:de:d4: 10:94:71:34:5c:e0:08:60:46:fd:cc:4a:99:e9:cc:7d:39:05: c8:40:ac:20:16:cd:5b:40:83:0a:19:f0:61:6d:ef:03:f0:c6: 3c:3e:45:58:1e:0d:b2:7f:a4:53:e6:61:c9:8b:e5:65:19:47: 84:18:9b:77:f4:2c:59:e3:ea:80:c3:e3:e9:49:49:2a:e2:36: 6e:7f:16:7c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUZqEdsF6an6Y6sHavBiSVi5ZGLggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MTFaFw0yNjA4MTQwNjAzMTFaMDMxMTAvBgNV BAMTKDdCQTg5MzkwRTIwRThGNzhFQ0E2NkRBNzRCOThFQkUzQUI2ODM2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAINDl2ngKG6uGksj43TqIT2wX hfKhsiZKARr53f2eD3vJp0LCX2gU9zQMeY5dkGKsdtzKAkyFOisjUZdZtRvAqSf0 YYM0N+rixvukN/1H+d4JDh2Sz0R4Xmx6TdG8Ay7qMJThl7INn2j61D8HXJQ86xGZ yFYQ4Lrpt4s23eVD15fGvajMDu4VU0gB/eWtZd0Efwm0i5anOpHuBJ4HvLJbEC91 vL+fqD06mjBZO5ofVQxyX4RCTcJi6GlFIVoIfqogWwtTptzSFjldXTZ0xb0RVa8v ODRUSpLGZLZRminqDiYkNZBHc+uv4+cNOlaOTDM8HR+ecK5ux+TUP173dQg5AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUe6iTkOIOj3jspm2nS5jr46toNsUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECETANBgkqhkiG9w0BAQsFAAOCAQEAOT/N CUw0ZASfG04paL0F47pc5qhYbxd0CwfQE27IVvZ7R4lYutktkqFKi+3bhB3YlIDf CfKL+LJ91N/t3Yjd+CvEb53IHauSgoBYifGFFM2bwfd5rZTwp7vTtBgxpUI6kuXf BfzVoR3LvqDs6g71lSPrG8ia2e1g2334hqYPc0HXZPJoWCCzfPOiuqClF49L3aTL EUZNUh6DnNWU4Zn0/U5QLFXJNfcfeHioY+g9PfPAS97UEJRxNFzgCGBG/cxKmenM fTkFyECsIBbNW0CDChnwYW3vA/DGPD5FWB4Nsn+kU+ZhyYvlZRlHhBibd/QsWePq gMPj6UlJKuI2bn8WfA== -----END CERTIFICATE-----Generated at Sun Aug 24 03:49:14 2025 by rpki-client