$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038343a3a2f34362d3438203d3e20323035393431.roa File: 326131343a373538333a323038343a3a2f34362d3438203d3e20323035393431.roa (raw, json) Hash identifier: iQgvpacSF0u5Ue3HHO+ub83c/DXDcDP57KjwynyaU6k= Subject key identifier: F8:C0:E4:D2:BD:74:0D:F8:82:08:D0:4D:61:D4:5D:40:71:28:18:1A Certificate issuer: /CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Certificate serial: 6DC63BC97131B0DAFCAA3F4A830578C59196DF6B Authority key identifier: 33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038343a3a2f34362d3438203d3e20323035393431.roa Signing time: Fri 22 Aug 2025 23:02:08 +0000 ROA not before: Fri 22 Aug 2025 22:57:08 +0000 ROA not after: Fri 21 Aug 2026 23:02:08 +0000 asID: 205941 IP address blocks: 2a14:7583:2084::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 16:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c6:3b:c9:71:31:b0:da:fc:aa:3f:4a:83:05:78:c5:91:96:df:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33EDE0B0EE6D8AE9053E11C830DF759F85FB8157 Validity Not Before: Aug 22 22:57:08 2025 GMT Not After : Aug 21 23:02:08 2026 GMT Subject: CN=F8C0E4D2BD740DF88208D04D61D45D407128181A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5d:64:51:84:9a:d1:75:65:0d:59:eb:6b:0c: a5:87:11:59:6e:71:0f:64:09:c9:ce:82:15:ab:6b: 9e:56:02:e2:ee:73:5d:34:d5:52:84:21:1d:48:15: 65:fd:a8:17:ff:52:6b:5c:3c:9f:9c:b3:2c:39:5a: 01:ee:4d:56:6d:f6:61:c1:37:9b:28:32:eb:9b:2a: f0:de:34:78:4e:4c:9a:37:49:e1:58:0c:0a:36:1f: 1d:1b:d5:e4:84:20:6f:55:39:b3:c8:2f:a8:5b:69: c7:88:8d:0b:c5:b9:4f:89:d6:64:18:55:2e:24:fd: 0d:fd:c8:bd:c4:ea:78:e4:85:36:b5:67:11:fe:36: e0:cb:81:e5:e3:1d:35:6c:e9:bd:28:53:f0:76:19: 70:c1:28:6e:8b:26:17:8b:8a:60:eb:36:05:5c:88: e5:bc:d9:c9:98:9c:b7:9d:23:a2:fa:3c:bc:e5:a2: 3f:26:f5:5a:0e:3e:08:23:9b:f1:c2:f1:ad:0b:a0: 08:50:5a:54:49:0f:6b:78:f7:1f:69:46:17:f7:af: 1e:d0:39:cf:fe:28:e4:c7:8e:8c:78:59:3d:a5:97: 34:49:a1:94:ab:f1:f0:66:66:db:6f:db:37:f8:7d: 61:5b:60:af:ef:90:78:91:94:69:8a:91:3a:eb:31: 1c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C0:E4:D2:BD:74:0D:F8:82:08:D0:4D:61:D4:5D:40:71:28:18:1A X509v3 Authority Key Identifier: keyid:33:ED:E0:B0:EE:6D:8A:E9:05:3E:11:C8:30:DF:75:9F:85:FB:81:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/33EDE0B0EE6D8AE9053E11C830DF759F85FB8157.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/27ebde03-34df-4f2c-92fa-8fe1d083d15d/3/326131343a373538333a323038343a3a2f34362d3438203d3e20323035393431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2084::/46 Signature Algorithm: sha256WithRSAEncryption 40:09:d1:fe:3c:e9:8e:c2:03:a5:f8:c9:41:ed:2c:24:13:28: af:47:a9:a7:01:0c:d6:09:0b:f9:58:96:a7:3f:c3:b2:3c:98: 0a:77:31:f3:47:a9:6d:e9:56:dc:17:6e:5a:e9:a9:fd:79:bb: 86:ff:f1:65:32:d1:46:a1:8c:6a:8d:69:65:d0:e8:43:17:e5: 17:98:2f:78:67:6c:f6:2c:68:fc:c6:39:23:cb:29:02:e2:e9: ff:3a:b0:85:e1:29:da:3d:be:83:55:45:e3:c7:99:cd:f2:05: 0d:41:af:50:33:bb:9f:17:28:62:8a:d5:94:0d:9f:b9:b8:eb: 2e:16:f3:54:5a:6b:4a:b3:b1:18:76:57:8a:bd:c9:be:52:72: a4:1a:6d:51:2a:b6:69:b3:97:48:63:fe:3b:21:54:ef:a0:15: 56:7e:77:11:25:62:0f:d6:b1:56:82:1b:a9:91:a3:a6:1e:af: c2:c8:f8:89:67:4d:76:11:a2:88:b3:32:58:a1:2b:65:61:82: 4c:d2:f2:05:85:c4:36:cd:44:cc:ff:1f:1d:04:89:0f:d7:85: 69:bf:e3:a7:c8:df:b2:7b:58:a6:a2:b0:cc:05:e0:22:23:7b: 6b:29:54:d2:3b:17:37:ca:1f:a7:47:99:c2:ea:ee:6e:70:3c: 85:be:87:9e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUbcY7yXExsNr8qj9KgwV4xZGW32swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4 NUZCODE1NzAeFw0yNTA4MjIyMjU3MDhaFw0yNjA4MjEyMzAyMDhaMDMxMTAvBgNV BAMTKEY4QzBFNEQyQkQ3NDBERjg4MjA4RDA0RDYxRDQ1RDQwNzEyODE4MUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnXWRRhJrRdWUNWetrDKWHEVlu cQ9kCcnOghWra55WAuLuc1001VKEIR1IFWX9qBf/UmtcPJ+csyw5WgHuTVZt9mHB N5soMuubKvDeNHhOTJo3SeFYDAo2Hx0b1eSEIG9VObPIL6hbaceIjQvFuU+J1mQY VS4k/Q39yL3E6njkhTa1ZxH+NuDLgeXjHTVs6b0oU/B2GXDBKG6LJheLimDrNgVc iOW82cmYnLedI6L6PLzloj8m9VoOPggjm/HC8a0LoAhQWlRJD2t49x9pRhf3rx7Q Oc/+KOTHjox4WT2llzRJoZSr8fBmZttv2zf4fWFbYK/vkHiRlGmKkTrrMRx/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU+MDk0r10DfiCCNBNYdRdQHEoGBowHwYDVR0j BBgwFoAUM+3gsO5tiukFPhHIMN91n4X7gVcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjdlYmRlMDMtMzRkZi00ZjJjLTkyZmEtOGZlMWQwODNk MTVkLzMvMzNFREUwQjBFRTZEOEFFOTA1M0UxMUM4MzBERjc1OUY4NUZCODE1Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zM0VERTBCMEVFNkQ4QUU5MDUzRTExQzgz MERGNzU5Rjg1RkI4MTU3LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yN2ViZGUwMy0zNGRmLTRmMmMtOTJmYS04ZmUxZDA4M2QxNWQvMy8zMjYxMzEz NDNhMzczNTM4MzMzYTMyMzAzODM0M2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MDM1MzkzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gyCEMA0GCSqGSIb3DQEBCwUAA4IBAQBA CdH+POmOwgOl+MlB7SwkEyivR6mnAQzWCQv5WJanP8OyPJgKdzHzR6lt6VbcF25a 6an9ebuG//FlMtFGoYxqjWll0OhDF+UXmC94Z2z2LGj8xjkjyykC4un/OrCF4Sna Pb6DVUXjx5nN8gUNQa9QM7ufFyhiitWUDZ+5uOsuFvNUWmtKs7EYdleKvcm+UnKk Gm1RKrZps5dIY/47IVTvoBVWfncRJWIP1rFWghupkaOmHq/CyPiJZ012EaKIszJY oStlYYJM0vIFhcQ2zUTM/x8dBIkP14Vpv+OnyN+ye1imorDMBeAiI3trKVTSOxc3 yh+nR5nC6u5ucDyFvoee -----END CERTIFICATE-----Generated at Sun Aug 24 04:17:17 2025 by rpki-client