$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: VPlwsBUm6J3GP5UbdGI89bEROzYaMwHfg/cRPr7L6Fk= Subject key identifier: 98:9F:DD:5E:4E:49:DD:D0:8A:76:F1:6C:82:53:6F:92:7A:54:9D:C7 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3B9BC3B74FB5106D8FDD26320A6BD3DD67217B41 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:09 +0000 ROA not before: Fri 15 Aug 2025 05:58:09 +0000 ROA not after: Fri 14 Aug 2026 06:03:09 +0000 asID: 216324 IP address blocks: 2a14:7581:217::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:9b:c3:b7:4f:b5:10:6d:8f:dd:26:32:0a:6b:d3:dd:67:21:7b:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:09 2025 GMT Not After : Aug 14 06:03:09 2026 GMT Subject: CN=989FDD5E4E49DDD08A76F16C82536F927A549DC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:c2:c2:e7:26:31:0f:b2:0d:82:4a:d7:ac: d0:e1:bb:ab:cc:99:97:f7:1c:10:06:6c:e8:60:fd: fc:d7:65:89:94:38:ff:58:8e:44:96:e9:a5:1b:e9: 57:7a:c2:f8:0c:97:39:71:68:11:cd:00:66:4d:15: 6d:b8:79:1c:90:16:74:dc:3a:76:f9:d7:1b:1f:35: 87:68:03:90:82:d0:ee:97:e5:88:d5:c4:6c:76:b1: 1d:b9:a0:45:22:6e:65:fe:55:59:20:fa:5d:c5:65: 8a:b6:28:f4:57:e5:d8:3f:ed:f6:d1:d3:83:7d:1a: a5:52:37:8c:be:9a:7e:47:1c:1a:91:de:38:0b:2d: 4f:c7:3e:be:c4:b8:e1:20:14:73:a8:d3:fc:63:48: 34:8a:84:1d:d7:2d:0a:af:9c:68:1d:7e:ac:9b:ce: 67:b0:84:aa:5c:6f:73:c1:cb:35:29:df:72:2b:14: 79:35:78:47:f1:7d:db:19:06:30:8f:b7:6d:88:d8: 94:c1:ff:a1:7d:6b:9f:38:d6:50:a4:04:f3:e3:d1: a3:68:13:c6:f4:8b:bc:a3:22:d2:93:6f:a1:b0:24: 40:df:25:0b:23:bd:da:50:a1:ef:fb:6b:78:79:50: a4:0a:8a:fe:6b:cc:74:e6:55:7a:aa:cb:38:a5:59: 30:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9F:DD:5E:4E:49:DD:D0:8A:76:F1:6C:82:53:6F:92:7A:54:9D:C7 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231373a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:217::/48 Signature Algorithm: sha256WithRSAEncryption 6a:1b:f8:4f:2a:cc:6b:3b:e2:58:49:20:24:1a:ae:1b:0d:94: 07:67:43:e4:4e:7d:59:f2:de:b6:b2:dc:d7:ff:85:26:e9:ab: 3d:d0:32:be:50:30:f4:40:4f:89:e0:45:99:6e:4c:ff:d2:3e: 6f:7a:bc:31:35:ca:d0:d3:23:bf:03:72:36:44:aa:6c:43:2c: d3:bc:b7:4a:df:0a:51:bd:6e:0f:68:ba:c1:70:61:70:df:ed: 36:c1:70:03:18:a1:80:47:15:3a:09:d5:3e:22:6d:9c:b4:29: e8:f7:76:73:03:56:25:6f:fb:c9:61:36:01:a0:57:70:12:86: b1:a5:6a:03:5f:00:51:86:58:77:74:51:98:bc:55:4f:ed:27: e7:3b:55:77:f7:c9:ed:92:5b:19:65:90:b2:63:6c:8e:c0:81: 92:1e:c5:1d:9e:e0:aa:ff:cb:51:e6:54:82:42:00:84:f4:e5: 83:ca:84:7b:a9:87:9b:22:46:27:09:ee:f4:4c:a9:d3:99:5e: 36:ab:76:ed:64:b6:49:20:a3:50:c1:28:c9:39:7e:54:df:d9: 58:49:a9:a4:27:d0:05:df:60:ec:4d:9c:7e:a8:eb:d6:2a:5c: d5:19:96:c8:a3:dc:95:ac:1f:19:8c:ce:36:92:c2:36:9d:03: e9:a9:b2:e5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUO5vDt0+1EG2P3SYyCmvT3Wche0EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDlaFw0yNjA4MTQwNjAzMDlaMDMxMTAvBgNV BAMTKDk4OUZERDVFNEU0OURERDA4QTc2RjE2QzgyNTM2RjkyN0E1NDlEQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR7MLC5yYxD7INgkrXrNDhu6vM mZf3HBAGbOhg/fzXZYmUOP9YjkSW6aUb6Vd6wvgMlzlxaBHNAGZNFW24eRyQFnTc Onb51xsfNYdoA5CC0O6X5YjVxGx2sR25oEUibmX+VVkg+l3FZYq2KPRX5dg/7fbR 04N9GqVSN4y+mn5HHBqR3jgLLU/HPr7EuOEgFHOo0/xjSDSKhB3XLQqvnGgdfqyb zmewhKpcb3PByzUp33IrFHk1eEfxfdsZBjCPt22I2JTB/6F9a5841lCkBPPj0aNo E8b0i7yjItKTb6GwJEDfJQsjvdpQoe/7a3h5UKQKiv5rzHTmVXqqyzilWTCFAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUmJ/dXk5J3dCKdvFsglNvknpUnccwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECFzANBgkqhkiG9w0BAQsFAAOCAQEAahv4 TyrMazviWEkgJBquGw2UB2dD5E59WfLetrLc1/+FJumrPdAyvlAw9EBPieBFmW5M /9I+b3q8MTXK0NMjvwNyNkSqbEMs07y3St8KUb1uD2i6wXBhcN/tNsFwAxihgEcV OgnVPiJtnLQp6Pd2cwNWJW/7yWE2AaBXcBKGsaVqA18AUYZYd3RRmLxVT+0n5ztV d/fJ7ZJbGWWQsmNsjsCBkh7FHZ7gqv/LUeZUgkIAhPTlg8qEe6mHmyJGJwnu9Eyp 05leNqt27WS2SSCjUMEoyTl+VN/ZWEmppCfQBd9g7E2cfqjr1ipc1RmWyKPclawf GYzONpLCNp0D6amy5Q== -----END CERTIFICATE-----Generated at Sun Aug 24 01:06:27 2025 by rpki-client