$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f33362d3438203d3e20323035393431.roa File: 326131343a373538333a323030303a3a2f33362d3438203d3e20323035393431.roa (raw, json) Hash identifier: O5nrRcAXJsFIbgmQjy7gFEjWPRzzjc6duZ3LHw3P3O8= Subject key identifier: 9F:F0:06:FB:C0:1A:E0:25:B1:9E:68:0C:24:39:4E:58:A2:2E:B5:21 Certificate issuer: /CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Certificate serial: 3487FD6A5C1280FF0C7C0620B363B47F90BE2481 Authority key identifier: 33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f33362d3438203d3e20323035393431.roa Signing time: Fri 22 Aug 2025 20:05:32 +0000 ROA not before: Fri 22 Aug 2025 20:00:32 +0000 ROA not after: Fri 21 Aug 2026 20:05:32 +0000 asID: 205941 IP address blocks: 2a14:7583:2000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:87:fd:6a:5c:12:80:ff:0c:7c:06:20:b3:63:b4:7f:90:be:24:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Validity Not Before: Aug 22 20:00:32 2025 GMT Not After : Aug 21 20:05:32 2026 GMT Subject: CN=9FF006FBC01AE025B19E680C24394E58A22EB521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:29:f3:d9:5c:2e:75:4a:b4:14:9c:93:87: aa:75:34:67:0a:eb:4b:07:95:be:01:37:ce:25:ea: b4:9d:c3:e8:69:97:23:af:7d:a5:ab:1f:dc:a9:40: d9:32:64:4f:7f:ce:d0:50:2e:d0:c8:0a:25:fa:f0: 76:d1:96:86:be:b3:d1:73:f9:01:01:a2:27:af:f2: fc:be:5f:9d:ee:d6:89:3c:42:68:3c:26:fb:b6:7c: 05:12:04:66:29:55:aa:9d:f2:40:d6:e4:5d:72:35: 4f:28:bf:00:72:57:40:b5:ed:6b:41:c4:26:47:bf: f1:7a:1b:8c:ef:c4:97:29:ff:89:1c:f5:a5:ed:a9: 50:0b:6c:7f:ac:07:01:a9:05:43:e5:95:c8:d5:03: 04:80:2b:99:16:17:40:c6:05:1d:4d:16:e0:29:92: 5c:94:30:a5:4b:41:c4:2b:f4:8c:93:53:90:16:e8: f5:a1:05:dc:ca:08:23:08:09:7a:a6:2e:93:10:ce: 3c:41:70:fa:92:c6:bd:3b:4a:89:b3:64:64:ba:92: 9d:29:5b:61:00:c8:67:af:60:ee:5d:5e:21:a2:bf: 24:7d:ce:e6:f4:5b:da:5f:be:52:42:57:b3:f9:a1: cc:be:9b:ea:1b:a6:28:6b:00:db:3a:b1:2a:74:15: 10:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F0:06:FB:C0:1A:E0:25:B1:9E:68:0C:24:39:4E:58:A2:2E:B5:21 X509v3 Authority Key Identifier: keyid:33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f33362d3438203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2000::/36 Signature Algorithm: sha256WithRSAEncryption ae:a8:0d:8d:e0:59:03:fa:ab:60:d3:a1:3f:5d:c7:4f:64:f1: 31:ec:ac:4f:a7:7f:be:d6:16:e9:f3:17:a1:ae:61:3a:8a:9f: 38:c9:9f:67:1c:31:70:18:63:68:a9:05:e2:d3:19:75:34:b3: ef:8d:90:6d:dc:01:14:8e:8c:77:f2:98:94:c4:ab:ca:cc:de: 93:6a:15:6e:26:55:5f:2d:60:a2:ca:45:e3:8a:77:c2:52:82: 57:fb:1f:bd:2c:53:80:02:48:58:12:26:d2:b6:1b:90:e7:14: 3c:90:50:15:96:4c:b5:3c:34:f6:70:0d:c7:68:23:28:54:a8: c9:2a:df:da:5c:5f:6c:24:20:2f:5e:bf:0c:85:63:d4:0a:bf: d3:4d:02:a2:2f:63:6e:e9:22:bd:28:67:4b:ec:ca:de:af:49: 43:51:b9:91:b9:ac:e3:53:c0:ce:03:46:5b:19:ff:f3:18:88: 92:da:87:1b:ed:84:53:78:c8:d5:0c:74:6d:7d:52:b9:11:c6: c8:5d:12:1e:a6:95:0d:0b:5b:83:2b:77:bd:ac:75:85:ff:d1: c1:2d:c7:8e:2f:98:33:a2:48:fb:64:d7:40:bc:9f:89:de:dd: 2f:11:b8:de:c4:7e:20:21:39:67:98:57:d3:49:67:92:39:2f: bb:9d:16:dd -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUNIf9alwSgP8MfAYgs2O0f5C+JIEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4 NUZCODE1NzAeFw0yNTA4MjIyMDAwMzJaFw0yNjA4MjEyMDA1MzJaMDMxMTAvBgNV BAMTKDlGRjAwNkZCQzAxQUUwMjVCMTlFNjgwQzI0Mzk0RTU4QTIyRUI1MjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrBynz2VwudUq0FJyTh6p1NGcK 60sHlb4BN84l6rSdw+hplyOvfaWrH9ypQNkyZE9/ztBQLtDICiX68HbRloa+s9Fz +QEBoiev8vy+X53u1ok8Qmg8Jvu2fAUSBGYpVaqd8kDW5F1yNU8ovwByV0C17WtB xCZHv/F6G4zvxJcp/4kc9aXtqVALbH+sBwGpBUPllcjVAwSAK5kWF0DGBR1NFuAp klyUMKVLQcQr9IyTU5AW6PWhBdzKCCMICXqmLpMQzjxBcPqSxr07SomzZGS6kp0p W2EAyGevYO5dXiGivyR9zub0W9pfvlJCV7P5ocy+m+obpihrANs6sSp0FRBJAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUn/AG+8Aa4CWxnmgMJDlOWKIutSEwHwYDVR0j BBgwFoAUM+3gsO5tiukFPhHIMN91n4X7gVcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzMvMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4NUZCODE1Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zM0VERTBCMEVFNkQ4QUU5MDUzRTExQzgz MERGNzU5Rjg1RkI4MTU3LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yN2ViZGUwMy0zNGRmLTRmMmMtOTJmYS04ZmUxZDA4M2QxNWQvMy8zMjYxMzEz NDNhMzczNTM4MzMzYTMyMzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MDM1MzkzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gyAwDQYJKoZIhvcNAQELBQADggEBAK6o DY3gWQP6q2DToT9dx09k8THsrE+nf77WFunzF6GuYTqKnzjJn2ccMXAYY2ipBeLT GXU0s++NkG3cARSOjHfymJTEq8rM3pNqFW4mVV8tYKLKReOKd8JSglf7H70sU4AC SFgSJtK2G5DnFDyQUBWWTLU8NPZwDcdoIyhUqMkq39pcX2wkIC9evwyFY9QKv9NN AqIvY27pIr0oZ0vsyt6vSUNRuZG5rONTwM4DRlsZ//MYiJLahxvthFN4yNUMdG19 UrkRxshdEh6mlQ0LW4Mrd72sdYX/0cEtx44vmDOiSPtk10C8n4ne3S8RuN7EfiAh OWeYV9NJZ5I5L7udFt0= -----END CERTIFICATE-----Generated at Sat Aug 23 19:44:01 2025 by rpki-client