$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: yMhFT2myJieyG6VW/MJtfFtaA5FHlDTUwwXwa02pme0= Subject key identifier: 0D:00:A6:C9:56:DC:1D:1F:98:C9:21:DF:BF:C4:FD:BA:E4:1B:CE:2B Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 212DD0CFE91F38B805BB17DCC5D91DC4B0DC5A1E Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:08 +0000 ROA not before: Fri 15 Aug 2025 05:58:08 +0000 ROA not after: Fri 14 Aug 2026 06:03:08 +0000 asID: 216324 IP address blocks: 2a14:7581:218::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 14:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2d:d0:cf:e9:1f:38:b8:05:bb:17:dc:c5:d9:1d:c4:b0:dc:5a:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:08 2025 GMT Not After : Aug 14 06:03:08 2026 GMT Subject: CN=0D00A6C956DC1D1F98C921DFBFC4FDBAE41BCE2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:24:8b:3e:9b:6b:aa:b6:43:06:4a:0a:72:dd: 3d:d5:cd:3f:89:a8:e3:47:55:22:68:64:bf:a8:c8: 54:74:75:1f:97:78:52:78:ff:27:6b:74:96:7e:77: 27:74:f8:11:da:ea:60:a4:1c:34:12:b2:4d:d8:70: d3:a1:01:2b:38:54:6c:31:96:98:3d:b4:02:e1:a0: 67:09:cb:8f:7e:d5:61:b1:60:00:d9:41:5d:db:bf: 5e:75:cc:f5:eb:44:8d:14:93:6e:9a:fc:d4:73:a4: 6b:62:2f:2e:0d:a1:25:25:d7:4b:6d:67:bf:ff:5b: d1:a6:44:25:16:6b:a9:28:23:50:4c:a2:9e:66:b4: b5:67:a0:d1:67:8c:e4:2b:7d:58:66:6b:06:79:46: 12:e7:ee:40:b5:fb:a7:ec:b8:4c:70:e5:a6:90:21: ba:74:a7:fa:ec:d1:68:c7:43:e9:94:01:63:77:1b: 4b:e7:a3:77:36:70:b7:04:83:06:60:c5:4e:4f:9d: 72:1f:49:ed:4e:d8:ea:a5:45:59:64:a5:5f:5a:64: 0c:09:99:d8:1d:f7:bf:2a:97:8f:e6:92:9e:1d:f7: 66:c1:11:01:11:9f:1a:72:3a:3d:e1:c8:6d:bf:43: d7:24:5d:a9:3b:d9:ef:4c:30:62:2b:b3:cf:ba:1d: de:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:00:A6:C9:56:DC:1D:1F:98:C9:21:DF:BF:C4:FD:BA:E4:1B:CE:2B X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231383a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:218::/48 Signature Algorithm: sha256WithRSAEncryption 6a:f4:09:fb:5b:40:c1:44:f2:f1:36:d4:2e:30:1c:3e:4b:0c: e2:16:ff:9c:4a:99:f9:c7:31:67:60:6b:e9:0e:47:4c:01:7d: 22:35:75:c8:ea:1b:3b:92:01:ac:85:47:22:a1:26:66:66:5b: d2:a7:1d:2e:08:d7:0f:45:c1:85:c1:77:97:45:a0:a4:89:d3: be:fc:bc:10:09:b8:92:62:db:a5:23:43:52:8e:ae:71:e3:11: c3:7c:b2:53:18:95:dd:3d:93:fd:27:55:3a:46:0a:50:e3:57: 02:9d:a1:1e:bc:46:9c:1d:49:cd:56:e9:21:7e:91:d3:44:db: 02:6a:5f:09:94:c7:a5:b5:87:1f:9f:09:a0:25:22:24:43:96: dd:48:3b:23:4d:09:9a:d1:93:37:0c:e3:b1:fd:24:16:6c:21: 69:9b:43:c6:9c:fb:cc:74:64:01:13:98:59:44:ef:f0:ab:15: a1:ba:b8:ce:21:6a:5e:7f:eb:b1:12:84:a5:03:7b:02:98:fa: d4:c9:54:b0:57:05:3d:ea:16:d1:f2:87:64:8d:84:8e:c3:d9: e1:5e:14:4c:23:c4:bb:4a:43:99:ee:f0:db:b7:c4:0a:15:6f: 1f:ce:a6:ed:26:bb:23:83:d6:49:a7:a7:ad:29:44:22:7a:cd: 39:2c:e9:3e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUIS3Qz+kfOLgFuxfcxdkdxLDcWh4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDhaFw0yNjA4MTQwNjAzMDhaMDMxMTAvBgNV BAMTKDBEMDBBNkM5NTZEQzFEMUY5OEM5MjFERkJGQzRGREJBRTQxQkNFMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdJIs+m2uqtkMGSgpy3T3VzT+J qONHVSJoZL+oyFR0dR+XeFJ4/ydrdJZ+dyd0+BHa6mCkHDQSsk3YcNOhASs4VGwx lpg9tALhoGcJy49+1WGxYADZQV3bv151zPXrRI0Uk26a/NRzpGtiLy4NoSUl10tt Z7//W9GmRCUWa6koI1BMop5mtLVnoNFnjOQrfVhmawZ5RhLn7kC1+6fsuExw5aaQ Ibp0p/rs0WjHQ+mUAWN3G0vno3c2cLcEgwZgxU5PnXIfSe1O2OqlRVlkpV9aZAwJ mdgd978ql4/mkp4d92bBEQERnxpyOj3hyG2/Q9ckXak72e9MMGIrs8+6Hd55AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUDQCmyVbcHR+YySHfv8T9uuQbziswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzODNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECGDANBgkqhkiG9w0BAQsFAAOCAQEAavQJ +1tAwUTy8TbULjAcPksM4hb/nEqZ+ccxZ2Br6Q5HTAF9IjV1yOobO5IBrIVHIqEm ZmZb0qcdLgjXD0XBhcF3l0WgpInTvvy8EAm4kmLbpSNDUo6uceMRw3yyUxiV3T2T /SdVOkYKUONXAp2hHrxGnB1JzVbpIX6R00TbAmpfCZTHpbWHH58JoCUiJEOW3Ug7 I00JmtGTNwzjsf0kFmwhaZtDxpz7zHRkAROYWUTv8KsVobq4ziFqXn/rsRKEpQN7 Apj61MlUsFcFPeoW0fKHZI2EjsPZ4V4UTCPEu0pDme7w27fEChVvH86m7Sa7I4PW SaenrSlEInrNOSzpPg== -----END CERTIFICATE-----Generated at Sun Aug 24 05:29:04 2025 by rpki-client