$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231343a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231343a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: A9W63v6WN86jfgygNdFOAiE12IpEur51DdqaXSBqHwQ= Subject key identifier: 22:74:84:04:7F:DE:77:35:7E:78:FF:1F:B9:34:D8:A3:D3:C7:F0:4B Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 06055CC32E53E9D365B829B8CC12EFF4F1EE0402 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231343a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:10 +0000 ROA not before: Fri 15 Aug 2025 05:58:10 +0000 ROA not after: Fri 14 Aug 2026 06:03:10 +0000 asID: 216324 IP address blocks: 2a14:7581:214::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Aug 2025 02:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:05:5c:c3:2e:53:e9:d3:65:b8:29:b8:cc:12:ef:f4:f1:ee:04:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:10 2025 GMT Not After : Aug 14 06:03:10 2026 GMT Subject: CN=227484047FDE77357E78FF1FB934D8A3D3C7F04B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:01:8f:8d:b6:51:ea:5d:1c:23:ff:e7:e4:03: c6:59:a9:9c:6f:d1:b4:02:a6:64:60:ad:92:2f:d3: 2e:e6:f6:04:e2:91:b7:8d:a4:dc:7d:78:20:6f:84: ee:f6:32:33:83:52:12:65:94:9e:0b:dc:1b:c8:96: 7d:f7:c7:56:cb:a6:c4:94:da:df:80:63:4a:1a:3a: 49:fb:32:fd:b5:3c:fb:52:51:d9:ff:7e:d4:a6:44: fb:39:fc:8c:c7:71:a0:fc:ce:c3:0b:2e:ec:65:10: b1:a4:55:7f:c5:3c:f3:70:de:22:3f:a0:2f:cd:5e: 92:d8:fd:34:7b:d5:5f:cf:81:39:0a:da:f5:33:c0: 86:bd:5b:25:7f:66:01:44:00:37:70:fc:17:44:02: 50:fb:0b:4c:03:4b:12:9a:fb:72:04:20:55:5a:0a: 37:44:78:bd:f7:36:a4:15:f6:8f:97:2c:68:5e:60: 26:16:c7:95:4d:af:84:63:b6:de:7c:92:3f:b9:7c: 35:b2:6d:c4:e9:5d:df:3e:18:95:6b:45:86:0e:4c: e5:0e:50:21:3a:08:88:52:43:97:f1:98:29:21:fc: 8e:2b:ee:ae:8e:86:d0:c6:ff:7a:d3:f8:1c:b6:e3: 0b:de:83:e1:08:59:47:2b:79:10:e4:6a:59:32:0e: 3b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:74:84:04:7F:DE:77:35:7E:78:FF:1F:B9:34:D8:A3:D3:C7:F0:4B X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231343a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:214::/48 Signature Algorithm: sha256WithRSAEncryption 8a:85:8d:7c:2d:89:b1:fd:d3:fb:f6:66:3c:31:6f:ff:22:c6: 2d:f4:45:72:3e:02:24:67:24:4c:44:23:20:af:09:3d:d1:ad: 93:e9:c1:89:a9:62:aa:a7:65:9b:17:1d:8d:6c:a0:93:f1:3a: 5e:3e:b3:fd:63:f7:47:1c:bb:66:74:65:8b:59:ba:cb:b1:84: 13:85:90:95:d8:54:9d:e7:80:39:7e:0c:09:e2:32:b4:73:a9: 2d:17:40:f6:80:5a:dc:df:d9:7a:46:73:d5:46:d4:c4:7e:68: 87:5a:a2:2c:94:61:e9:f1:70:52:c8:6e:3b:da:2e:af:11:39: ad:c4:a1:7b:fa:cf:57:0d:0f:f7:86:59:a6:9a:94:e4:37:34: be:b3:ac:9f:cd:59:5d:89:0e:c8:a2:35:39:0c:89:fb:c4:4d: f8:27:35:3b:87:fb:03:c8:78:76:dd:3d:df:41:4e:61:4d:d9: 79:0d:d0:6e:81:7b:7a:5b:43:71:80:6a:70:c9:81:e9:1a:70: 87:0e:36:32:d1:1f:61:9d:6c:cf:9e:02:e5:6f:5e:74:09:2a: 89:0d:ca:d4:d4:c3:4f:ee:ce:06:35:99:f0:33:fd:7e:ca:b5: 6c:d9:1b:4b:73:96:e8:f0:16:18:77:4c:e5:a5:c9:bf:b1:5d: df:33:37:01 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUBgVcwy5T6dNluCm4zBLv9PHuBAIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MTBaFw0yNjA4MTQwNjAzMTBaMDMxMTAvBgNV BAMTKDIyNzQ4NDA0N0ZERTc3MzU3RTc4RkYxRkI5MzREOEEzRDNDN0YwNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQAY+NtlHqXRwj/+fkA8ZZqZxv 0bQCpmRgrZIv0y7m9gTikbeNpNx9eCBvhO72MjODUhJllJ4L3BvIln33x1bLpsSU 2t+AY0oaOkn7Mv21PPtSUdn/ftSmRPs5/IzHcaD8zsMLLuxlELGkVX/FPPNw3iI/ oC/NXpLY/TR71V/PgTkK2vUzwIa9WyV/ZgFEADdw/BdEAlD7C0wDSxKa+3IEIFVa CjdEeL33NqQV9o+XLGheYCYWx5VNr4Rjtt58kj+5fDWybcTpXd8+GJVrRYYOTOUO UCE6CIhSQ5fxmCkh/I4r7q6OhtDG/3rT+By24wveg+EIWUcreRDkalkyDjs1AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUInSEBH/edzV+eP8fuTTYo9PH8EswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFDANBgkqhkiG9w0BAQsFAAOCAQEAioWN fC2Jsf3T+/ZmPDFv/yLGLfRFcj4CJGckTEQjIK8JPdGtk+nBialiqqdlmxcdjWyg k/E6Xj6z/WP3Rxy7ZnRli1m6y7GEE4WQldhUneeAOX4MCeIytHOpLRdA9oBa3N/Z ekZz1UbUxH5oh1qiLJRh6fFwUshuO9ourxE5rcShe/rPVw0P94ZZppqU5Dc0vrOs n81ZXYkOyKI1OQyJ+8RN+Cc1O4f7A8h4dt0930FOYU3ZeQ3QboF7eltDcYBqcMmB 6Rpwhw42MtEfYZ1sz54C5W9edAkqiQ3K1NTDT+7OBjWZ8DP9fsq1bNkbS3OW6PAW GHdM5aXJv7Fd3zM3AQ== -----END CERTIFICATE-----Generated at Sun Aug 24 10:47:12 2025 by rpki-client