$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: Vb+sMvwMAgadBznl/ltLWjxRFyoNjCA0y0dZEt/pB78= Subject key identifier: 2A:D9:8A:11:35:78:36:53:17:BE:DE:21:B0:0E:0E:ED:55:DA:AC:A5 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 1F8357DF26A31925A8A16EF6BE2C588C4CA8E503 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:08 +0000 ROA not before: Fri 15 Aug 2025 05:58:08 +0000 ROA not after: Fri 14 Aug 2026 06:03:08 +0000 asID: 216324 IP address blocks: 2a14:7581:215::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:83:57:df:26:a3:19:25:a8:a1:6e:f6:be:2c:58:8c:4c:a8:e5:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:08 2025 GMT Not After : Aug 14 06:03:08 2026 GMT Subject: CN=2AD98A113578365317BEDE21B00E0EED55DAACA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:6e:8c:62:ee:17:12:34:64:3f:a3:f1:d5: fd:68:18:cb:df:10:f8:b9:44:d6:46:e6:05:f1:e9: 32:7a:7c:27:7c:19:3a:3b:e0:cb:44:00:85:97:24: 33:73:2e:1a:11:ec:23:a1:52:76:34:ec:c2:6a:84: 57:71:df:1b:51:81:d5:a4:b0:7c:04:4e:b1:cc:f4: 62:16:68:f3:d3:64:87:d0:80:0d:34:b2:8b:2f:bf: 7a:6e:b3:ac:d0:48:21:f5:78:de:a0:31:91:8f:51: 44:b6:d5:91:1b:7d:e4:7a:fd:11:64:bd:95:1f:f7: 75:9f:a0:47:92:01:40:3a:45:09:b4:fa:10:2b:61: 15:a6:e2:a5:79:a3:b9:f5:54:2d:5b:e1:f5:e5:12: 17:79:f4:aa:8a:e2:70:1d:9f:1a:0c:c9:15:51:c5: 37:65:e9:f2:f5:64:7e:d5:5c:37:63:21:dc:ef:8f: f7:ef:eb:f2:f5:b1:ef:51:c2:40:2c:e5:37:6e:ec: 15:a5:14:b1:55:ee:52:be:68:b8:b3:c4:e0:65:18: a1:9b:f0:8a:cc:4b:38:46:0e:e8:2b:f3:12:d9:db: 14:58:03:02:aa:98:c9:65:b9:68:9c:8f:e1:d4:2e: 3d:2e:21:ba:ba:23:82:2a:9d:21:88:45:22:3c:2a: 70:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D9:8A:11:35:78:36:53:17:BE:DE:21:B0:0E:0E:ED:55:DA:AC:A5 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231353a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:215::/48 Signature Algorithm: sha256WithRSAEncryption 89:65:36:0f:9f:4a:12:9a:27:fb:a4:83:bc:d2:6f:2b:0a:4f: a4:6b:8b:76:9d:c6:4d:5b:c1:f4:cb:73:b7:ce:1f:1a:60:1d: 83:c2:df:ee:a3:9f:04:a2:54:62:2e:9e:39:cd:ed:aa:ad:18: 63:f3:74:d6:f3:8d:30:49:64:e1:dd:df:a2:86:99:66:35:36: 4f:39:68:13:d0:b1:f1:58:3f:f6:0f:e2:73:ac:84:98:78:ec: 57:cb:a5:6c:21:d1:0d:4e:1c:12:c7:37:74:51:b5:9c:d7:4d: fc:9e:1b:64:54:9b:8c:29:ca:28:59:a4:b0:59:d2:1f:25:27: bf:40:cd:e1:4f:3d:7c:ec:63:4d:a9:48:cd:53:77:c1:ae:db: f3:c8:07:0b:8f:1a:a4:c0:fe:f2:f7:a4:29:a1:f6:81:fa:1b: e6:83:b3:08:fa:e7:cd:e1:09:d4:04:3f:c0:ad:27:bf:c3:d6: fd:08:e5:0c:0d:24:7a:cd:0b:39:2c:cb:fc:96:f6:e6:44:5c: 5a:4e:87:ff:74:b7:fe:d2:92:d1:15:98:d4:2a:4c:86:80:36: 29:ab:3d:c4:13:38:b6:19:3f:d3:d7:01:e1:94:84:a6:d6:12: 63:a7:d6:c4:34:a3:11:0e:98:e8:0a:0a:f1:e2:ad:3e:fc:d3: 16:a2:c1:b7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUH4NX3yajGSWooW72vixYjEyo5QMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDhaFw0yNjA4MTQwNjAzMDhaMDMxMTAvBgNV BAMTKDJBRDk4QTExMzU3ODM2NTMxN0JFREUyMUIwMEUwRUVENTVEQUFDQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5vG6MYu4XEjRkP6Px1f1oGMvf EPi5RNZG5gXx6TJ6fCd8GTo74MtEAIWXJDNzLhoR7COhUnY07MJqhFdx3xtRgdWk sHwETrHM9GIWaPPTZIfQgA00sosvv3pus6zQSCH1eN6gMZGPUUS21ZEbfeR6/RFk vZUf93WfoEeSAUA6RQm0+hArYRWm4qV5o7n1VC1b4fXlEhd59KqK4nAdnxoMyRVR xTdl6fL1ZH7VXDdjIdzvj/fv6/L1se9RwkAs5Tdu7BWlFLFV7lK+aLizxOBlGKGb 8IrMSzhGDugr8xLZ2xRYAwKqmMlluWicj+HULj0uIbq6I4IqnSGIRSI8KnCHAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUKtmKETV4NlMXvt4hsA4O7VXarKUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFTANBgkqhkiG9w0BAQsFAAOCAQEAiWU2 D59KEpon+6SDvNJvKwpPpGuLdp3GTVvB9Mtzt84fGmAdg8Lf7qOfBKJUYi6eOc3t qq0YY/N01vONMElk4d3fooaZZjU2TzloE9Cx8Vg/9g/ic6yEmHjsV8ulbCHRDU4c Esc3dFG1nNdN/J4bZFSbjCnKKFmksFnSHyUnv0DN4U89fOxjTalIzVN3wa7b88gH C48apMD+8vekKaH2gfob5oOzCPrnzeEJ1AQ/wK0nv8PW/QjlDA0kes0LOSzL/Jb2 5kRcWk6H/3S3/tKS0RWY1CpMhoA2Kas9xBM4thk/09cB4ZSEptYSY6fWxDSjEQ6Y 6AoK8eKtPvzTFqLBtw== -----END CERTIFICATE-----Generated at Sun Aug 24 03:48:24 2025 by rpki-client