$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f34312d3438203d3e20323133343133.roa File: 326131343a373538333a323030303a3a2f34312d3438203d3e20323133343133.roa (raw, json) Hash identifier: T/KqHRNKCdrm3sTtcnZr9v9xTfR2Zz70OzlZEinvL+o= Subject key identifier: 82:6B:A4:EF:A3:E2:AC:40:BA:9A:9B:5E:EB:96:58:E2:5E:20:0F:3B Certificate issuer: /CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Certificate serial: 5C3445438DABEDB5CA2B9822235227E867D7CB04 Authority key identifier: 33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f34312d3438203d3e20323133343133.roa Signing time: Fri 22 Aug 2025 19:57:58 +0000 ROA not before: Fri 22 Aug 2025 19:52:58 +0000 ROA not after: Fri 21 Aug 2026 19:57:58 +0000 asID: 213413 IP address blocks: 2a14:7583:2000::/41 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:34:45:43:8d:ab:ed:b5:ca:2b:98:22:23:52:27:e8:67:d7:cb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Validity Not Before: Aug 22 19:52:58 2025 GMT Not After : Aug 21 19:57:58 2026 GMT Subject: CN=826BA4EFA3E2AC40BA9A9B5EEB9658E25E200F3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:29:0a:ab:89:89:60:98:17:a6:b5:29:ce: 94:dd:3e:7c:8d:6a:2b:69:e4:85:59:92:22:18:80: 44:b8:fb:49:c0:47:94:f7:b0:bd:7d:e5:d6:c4:1c: 0a:f9:7a:3e:ee:4e:f1:4a:57:a3:38:a2:e5:d6:51: 78:7e:40:e1:5d:ad:51:54:5e:18:33:1c:98:8b:e3: 04:86:1c:07:74:65:5d:b9:65:32:e0:af:9f:2d:dd: 6c:70:64:33:3f:74:65:2c:da:5d:ae:11:97:97:52: 66:e4:9b:26:30:b6:42:d5:48:7d:6a:f1:97:a5:27: cd:c2:48:db:de:a2:fe:ad:f6:f7:cf:a1:a9:ae:05: fd:20:1b:28:9d:e9:f6:65:9d:a5:de:20:90:05:7f: 3c:7c:a3:06:7d:85:a1:5f:23:45:b6:b7:c6:a0:a6: 0a:f3:fd:06:9e:97:37:35:15:3a:9c:28:a5:f7:b6: 45:1d:43:62:6e:eb:b3:02:7c:ac:27:55:dc:b2:10: bd:cf:63:1b:b2:a8:e1:ce:53:fe:b3:f4:76:75:9f: 96:bb:85:4d:e2:c8:f0:85:58:eb:d7:ec:f9:a1:45: e0:5a:f8:f7:a4:94:fb:ca:4b:89:67:51:33:e7:79: 36:a2:6d:1c:cf:f2:7e:9f:8b:9e:f5:45:30:28:7b: bb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6B:A4:EF:A3:E2:AC:40:BA:9A:9B:5E:EB:96:58:E2:5E:20:0F:3B X509v3 Authority Key Identifier: keyid:33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323030303a3a2f34312d3438203d3e20323133343133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2000::/41 Signature Algorithm: sha256WithRSAEncryption 8c:cb:9b:02:a4:e1:5b:1e:16:25:2a:9d:37:75:96:b6:fc:1d: e9:b2:aa:43:ef:ba:0b:19:11:e4:27:f2:b5:fb:de:24:7b:5a: 73:25:e0:f1:0f:93:f5:a2:28:ca:b7:a0:f6:70:8d:12:0b:0a: f6:dc:42:ea:77:b2:5b:48:8c:e0:df:35:4e:9b:0a:b7:fa:62: 85:53:ac:b5:db:25:66:f7:51:25:a4:0f:0a:5e:6f:3c:c8:a7: b7:c0:1a:28:66:c0:9e:10:28:a7:76:8e:3f:e4:28:93:69:e1: 74:c9:43:b3:3b:83:40:d7:91:80:76:fe:34:6f:51:a3:34:e2: 13:35:d3:a8:57:93:a0:cf:bf:e2:6a:09:72:c0:3c:d9:06:c1: 09:7c:96:1a:b5:cd:c3:24:e9:07:98:5f:a6:2a:e7:4b:ce:27: c9:f8:92:af:b4:69:35:cf:1e:7c:31:cd:eb:1a:2c:58:ec:ec: f1:4a:10:71:25:a4:c0:67:b6:dc:ed:65:75:fa:1d:0c:25:9c: 9f:92:2a:e9:16:f5:5e:31:9a:7d:a7:2f:91:5e:d0:c3:2b:63: a4:a8:cc:82:8a:eb:ad:12:8a:9b:22:ac:47:3e:4c:a1:ae:75: 18:2b:cb:33:39:f7:b8:f4:2c:d1:d6:d1:96:ca:42:49:b5:db: c3:d3:a2:02 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXDRFQ42r7bXKK5giI1In6GfXywQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4 NUZCODE1NzAeFw0yNTA4MjIxOTUyNThaFw0yNjA4MjExOTU3NThaMDMxMTAvBgNV BAMTKDgyNkJBNEVGQTNFMkFDNDBCQTlBOUI1RUVCOTY1OEUyNUUyMDBGM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/oCkKq4mJYJgXprUpzpTdPnyN aitp5IVZkiIYgES4+0nAR5T3sL195dbEHAr5ej7uTvFKV6M4ouXWUXh+QOFdrVFU XhgzHJiL4wSGHAd0ZV25ZTLgr58t3WxwZDM/dGUs2l2uEZeXUmbkmyYwtkLVSH1q 8ZelJ83CSNveov6t9vfPoamuBf0gGyid6fZlnaXeIJAFfzx8owZ9haFfI0W2t8ag pgrz/Qaelzc1FTqcKKX3tkUdQ2Ju67MCfKwnVdyyEL3PYxuyqOHOU/6z9HZ1n5a7 hU3iyPCFWOvX7PmhReBa+PeklPvKS4lnUTPneTaibRzP8n6fi571RTAoe7t1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUgmuk76PirEC6mpte65ZY4l4gDzswHwYDVR0j BBgwFoAUM+3gsO5tiukFPhHIMN91n4X7gVcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzMvMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4NUZCODE1Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zM0VERTBCMEVFNkQ4QUU5MDUzRTExQzgz MERGNzU5Rjg1RkI4MTU3LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yN2ViZGUwMy0zNGRmLTRmMmMtOTJmYS04ZmUxZDA4M2QxNWQvMy8zMjYxMzEz NDNhMzczNTM4MzMzYTMyMzAzMDMwM2EzYTJmMzQzMTJkMzQzODIwM2QzZTIwMzIz MTMzMzQzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcHKhR1gyAAMA0GCSqGSIb3DQEBCwUAA4IBAQCM y5sCpOFbHhYlKp03dZa2/B3psqpD77oLGRHkJ/K1+94ke1pzJeDxD5P1oijKt6D2 cI0SCwr23ELqd7JbSIzg3zVOmwq3+mKFU6y12yVm91ElpA8KXm88yKe3wBooZsCe ECindo4/5CiTaeF0yUOzO4NA15GAdv40b1GjNOITNdOoV5Ogz7/iaglywDzZBsEJ fJYatc3DJOkHmF+mKudLzifJ+JKvtGk1zx58Mc3rGixY7OzxShBxJaTAZ7bc7WV1 +h0MJZyfkirpFvVeMZp9py+RXtDDK2OkqMyCiuutEoqbIqxHPkyhrnUYK8szOfe4 9CzR1tGWykJJtdvD06IC -----END CERTIFICATE-----Generated at Sat Aug 23 21:48:07 2025 by rpki-client