$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: bMKkgAzUCNxjLRjWoQ/h/hN0BWIz21lcfP6mV7tAUik= Subject key identifier: AE:6B:54:EC:74:1C:41:E8:1B:F1:32:92:F3:DE:33:F2:EC:7B:9B:EE Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 7906DE5CDD7A996F27EF44E699B1A2F5745FE378 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:09 +0000 ROA not before: Fri 15 Aug 2025 05:58:09 +0000 ROA not after: Fri 14 Aug 2026 06:03:09 +0000 asID: 216324 IP address blocks: 2a14:7581:213::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:06:de:5c:dd:7a:99:6f:27:ef:44:e6:99:b1:a2:f5:74:5f:e3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:09 2025 GMT Not After : Aug 14 06:03:09 2026 GMT Subject: CN=AE6B54EC741C41E81BF13292F3DE33F2EC7B9BEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:79:7a:c5:8c:bf:a2:d4:97:c0:fb:bb:d4:dd: bc:e1:eb:d3:2b:a5:10:fa:20:0b:80:8c:9c:d8:27: 7f:b5:63:ec:91:8b:4a:71:6a:36:ac:4e:d1:49:68: 23:f6:06:29:bd:a2:dd:2d:77:fd:cd:19:d3:60:6f: 00:99:90:cc:c7:da:3c:6a:6f:76:e8:30:23:a8:f4: 9d:aa:80:02:ef:60:86:5d:6a:9e:e8:4d:eb:09:c8: 5b:90:2e:24:1c:af:e4:5b:c9:3e:98:97:21:50:87: 1a:3c:f9:8f:ee:2a:e4:a0:10:9e:01:bb:4d:ba:8b: da:64:a0:af:58:83:6c:6c:12:77:30:71:cc:c4:7a: c1:89:46:b0:61:cd:70:e0:81:f6:c6:48:f5:f6:95: b3:c8:11:7f:99:84:82:dd:ea:7a:7e:0d:b7:87:fe: f9:ef:ee:89:e8:94:5e:08:ad:32:42:db:f8:9c:ee: 7c:ae:f4:4b:e4:f7:78:55:7a:35:7f:83:70:d4:75: 7b:de:e0:e5:ab:84:8a:27:e8:8f:87:f4:6a:8e:12: 87:ff:df:2a:20:90:33:c6:bd:85:20:80:60:8c:7c: af:53:27:21:07:e2:76:0b:08:e7:26:7d:83:6c:eb: 0a:84:53:92:7c:1a:30:e8:12:89:54:0c:5b:b6:64: e4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6B:54:EC:74:1C:41:E8:1B:F1:32:92:F3:DE:33:F2:EC:7B:9B:EE X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:213::/48 Signature Algorithm: sha256WithRSAEncryption a4:42:b2:13:de:95:cb:05:c4:36:58:c8:1a:1b:fb:d1:77:7d: 34:95:ee:75:e0:04:64:5a:29:7e:d0:44:fc:bf:e5:74:1d:7a: d4:12:71:e0:fe:8e:dc:f6:40:33:54:00:22:a5:1c:b3:4f:48: c3:70:65:53:90:a5:a0:3f:98:35:c4:3e:01:16:e6:72:f9:9e: 30:62:3b:10:68:eb:c5:22:a8:1e:45:74:b7:02:c9:60:6c:01: 0e:a2:8d:a2:f0:5f:e5:40:5f:28:79:c7:d1:79:d2:ab:b8:8c: 27:d2:b2:85:30:90:e7:39:35:d2:9f:84:e5:cd:3b:9c:dc:ee: 3c:27:00:74:64:60:d2:da:32:8e:fc:57:23:49:85:b9:c9:96: 1e:34:4b:a0:2a:ff:d4:bc:b8:bf:8e:76:2b:42:6a:cb:6a:e2: 30:03:22:1d:91:e7:3d:ce:d9:84:74:d2:37:99:a1:81:b7:ab: 2c:b9:be:cd:3d:2f:42:29:07:ed:33:d3:ad:3c:6d:b3:41:e8: ad:5d:33:43:3d:c9:84:1d:9e:1e:8d:65:1a:88:99:ff:2d:98: 75:59:40:02:23:0f:0f:d1:70:87:73:63:9f:67:b0:01:b1:00: 03:fb:43:e4:7a:ac:0f:78:83:12:44:fe:b9:63:d8:0d:1f:24: de:cf:ef:fe -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUeQbeXN16mW8n70TmmbGi9XRf43gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDlaFw0yNjA4MTQwNjAzMDlaMDMxMTAvBgNV BAMTKEFFNkI1NEVDNzQxQzQxRTgxQkYxMzI5MkYzREUzM0YyRUM3QjlCRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCueXrFjL+i1JfA+7vU3bzh69Mr pRD6IAuAjJzYJ3+1Y+yRi0pxajasTtFJaCP2Bim9ot0td/3NGdNgbwCZkMzH2jxq b3boMCOo9J2qgALvYIZdap7oTesJyFuQLiQcr+RbyT6YlyFQhxo8+Y/uKuSgEJ4B u026i9pkoK9Yg2xsEncwcczEesGJRrBhzXDggfbGSPX2lbPIEX+ZhILd6np+DbeH /vnv7onolF4IrTJC2/ic7nyu9Evk93hVejV/g3DUdXve4OWrhIon6I+H9GqOEof/ 3yogkDPGvYUggGCMfK9TJyEH4nYLCOcmfYNs6wqEU5J8GjDoEolUDFu2ZOQHAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUrmtU7HQcQegb8TKS894z8ux7m+4wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECEzANBgkqhkiG9w0BAQsFAAOCAQEApEKy E96VywXENljIGhv70Xd9NJXudeAEZFopftBE/L/ldB161BJx4P6O3PZAM1QAIqUc s09Iw3BlU5CloD+YNcQ+ARbmcvmeMGI7EGjrxSKoHkV0twLJYGwBDqKNovBf5UBf KHnH0XnSq7iMJ9KyhTCQ5zk10p+E5c07nNzuPCcAdGRg0toyjvxXI0mFucmWHjRL oCr/1Ly4v452K0Jqy2riMAMiHZHnPc7ZhHTSN5mhgberLLm+zT0vQikH7TPTrTxt s0HorV0zQz3JhB2eHo1lGoiZ/y2YdVlAAiMPD9Fwh3Njn2ewAbEAA/tD5HqsD3iD EkT+uWPYDR8k3s/v/g== -----END CERTIFICATE-----Generated at Sun Aug 24 07:10:40 2025 by rpki-client