$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038303a3a2f34362d3438203d3e20323035393431.roa File: 326131343a373538333a323038303a3a2f34362d3438203d3e20323035393431.roa (raw, json) Hash identifier: 185WmB7/O691pioTQ1jhFvytbPcY5erP49yoKFH8w5c= Subject key identifier: E2:DB:93:AC:21:28:14:9A:36:38:6B:38:C7:70:10:27:4A:62:83:6F Certificate issuer: /CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Certificate serial: 5B5363083D95CE05F57D70ADD55C66F3B6714AE9 Authority key identifier: 33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038303a3a2f34362d3438203d3e20323035393431.roa Signing time: Fri 22 Aug 2025 23:01:23 +0000 ROA not before: Fri 22 Aug 2025 22:56:23 +0000 ROA not after: Fri 21 Aug 2026 23:01:23 +0000 asID: 205941 IP address blocks: 2a14:7583:2080::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:53:63:08:3d:95:ce:05:f5:7d:70:ad:d5:5c:66:f3:b6:71:4a:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Validity Not Before: Aug 22 22:56:23 2025 GMT Not After : Aug 21 23:01:23 2026 GMT Subject: CN=E2DB93AC2128149A36386B38C77010274A62836F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:bd:6d:cc:13:5f:21:7e:5f:73:f2:b7:04: 58:6e:ab:df:b0:36:b2:25:9b:23:cf:8d:b1:0b:34: 07:e4:8b:a9:81:ac:d7:e6:ff:bb:94:ad:6e:1d:15: b1:ee:90:47:1b:2b:dd:aa:14:17:e8:0e:4e:09:9f: 86:a8:e0:94:a9:49:86:c3:7f:a5:4f:ad:ec:03:c1: ab:88:69:b0:77:a0:f7:48:31:2c:a7:1b:c2:c0:bb: 9e:97:84:85:dc:a2:46:70:bf:dd:b8:2a:79:93:ff: 32:03:a4:d8:ec:8e:d6:73:97:75:d2:69:03:18:a4: 5a:93:5e:d2:30:35:44:82:13:19:a1:07:81:4b:06: 75:e1:81:e6:a9:1e:cd:36:fd:84:9a:9b:d6:41:fd: 6a:52:b4:2e:a2:f2:61:1a:b8:12:d8:a8:84:3b:38: ff:c7:5f:0b:d2:63:fa:f5:df:55:74:7e:c5:93:a6: 6c:ae:06:e3:eb:0f:47:c8:78:5a:fb:db:25:71:87: 3d:d0:3f:1f:00:ba:45:32:ba:b3:f1:35:c7:23:f1: 81:c9:60:10:fe:9e:7c:cc:10:26:ad:2e:16:28:5c: 34:15:1c:1d:e8:84:1f:ae:a3:af:88:74:79:e2:55: fd:0e:77:64:e6:2a:ac:3d:15:a8:c5:16:bb:f0:ab: f2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:DB:93:AC:21:28:14:9A:36:38:6B:38:C7:70:10:27:4A:62:83:6F X509v3 Authority Key Identifier: keyid:33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038303a3a2f34362d3438203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2080::/46 Signature Algorithm: sha256WithRSAEncryption 95:88:cc:50:b3:9b:90:a8:db:f7:6f:73:b9:5a:18:02:e4:5c: 12:78:00:44:2e:f0:61:6c:b9:ec:d6:2f:f2:43:3a:f0:e5:5a: 2a:46:61:0d:da:25:cd:b8:6f:2c:ef:e1:11:e0:53:0d:c9:74: 65:1c:a7:f4:fc:82:25:40:ba:89:22:14:00:35:f0:a4:de:6b: 4f:77:44:72:16:41:56:1d:bb:39:fa:fb:f2:21:2e:8a:d8:7c: 2a:5d:2d:ae:22:07:5a:53:32:0b:25:43:5a:8d:df:8f:f7:3d: 80:6d:d8:b3:7f:6c:43:72:17:b1:d7:e4:b3:2b:81:c5:29:d0: 5b:74:d8:1f:02:b1:bb:1d:32:f2:0c:ac:ee:35:67:11:e5:33: bd:d8:5b:de:c0:d8:79:38:57:17:55:79:9a:60:01:57:84:d7: 28:6f:d0:9e:11:f4:8a:4d:f0:37:a7:69:8f:48:76:54:cb:77: 72:77:a0:a2:9f:a1:4d:d8:8c:1e:03:eb:c2:a2:ec:1b:8d:3f: 19:4d:21:45:fe:f1:16:ba:4a:ff:98:4a:2c:4d:0f:43:1c:7e: b5:71:67:93:b5:03:51:00:5e:a2:2b:b2:7b:79:e1:c6:c3:3f: 60:77:a6:3e:46:08:cb:f9:4a:d2:79:b7:18:5b:06:82:77:5c: 34:de:02:22 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUW1NjCD2VzgX1fXCt1Vxm87ZxSukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4 NUZCODE1NzAeFw0yNTA4MjIyMjU2MjNaFw0yNjA4MjEyMzAxMjNaMDMxMTAvBgNV BAMTKEUyREI5M0FDMjEyODE0OUEzNjM4NkIzOEM3NzAxMDI3NEE2MjgzNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBL1tzBNfIX5fc/K3BFhuq9+w NrIlmyPPjbELNAfki6mBrNfm/7uUrW4dFbHukEcbK92qFBfoDk4Jn4ao4JSpSYbD f6VPrewDwauIabB3oPdIMSynG8LAu56XhIXcokZwv924KnmT/zIDpNjsjtZzl3XS aQMYpFqTXtIwNUSCExmhB4FLBnXhgeapHs02/YSam9ZB/WpStC6i8mEauBLYqIQ7 OP/HXwvSY/r131V0fsWTpmyuBuPrD0fIeFr72yVxhz3QPx8AukUyurPxNccj8YHJ YBD+nnzMECatLhYoXDQVHB3ohB+uo6+IdHniVf0Od2TmKqw9FajFFrvwq/LNAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU4tuTrCEoFJo2OGs4x3AQJ0pig28wHwYDVR0j BBgwFoAUM+3gsO5tiukFPhHIMN91n4X7gVcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzMvMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4NUZCODE1Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zM0VERTBCMEVFNkQ4QUU5MDUzRTExQzgz MERGNzU5Rjg1RkI4MTU3LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yN2ViZGUwMy0zNGRmLTRmMmMtOTJmYS04ZmUxZDA4M2QxNWQvMy8zMjYxMzEz NDNhMzczNTM4MzMzYTMyMzAzODMwM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MDM1MzkzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gyCAMA0GCSqGSIb3DQEBCwUAA4IBAQCV iMxQs5uQqNv3b3O5WhgC5FwSeABELvBhbLns1i/yQzrw5VoqRmEN2iXNuG8s7+ER 4FMNyXRlHKf0/IIlQLqJIhQANfCk3mtPd0RyFkFWHbs5+vvyIS6K2HwqXS2uIgda UzILJUNajd+P9z2Abdizf2xDchex1+SzK4HFKdBbdNgfArG7HTLyDKzuNWcR5TO9 2FvewNh5OFcXVXmaYAFXhNcob9CeEfSKTfA3p2mPSHZUy3dyd6Cin6FN2IweA+vC ouwbjT8ZTSFF/vEWukr/mEosTQ9DHH61cWeTtQNRAF6iK7J7eeHGwz9gd6Y+RgjL +UrSebcYWwaCd1w03gIi -----END CERTIFICATE-----Generated at Sat Aug 23 21:49:27 2025 by rpki-client