$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376231303a3a2f34342d3438203d3e20323135363636.roa File: 326131343a316563313a376231303a3a2f34342d3438203d3e20323135363636.roa (raw, json) Hash identifier: pZyYX9vqAixKUDIqsxujnSVA6UfFKeJc5iZ4yNtLX48= Subject key identifier: 90:73:A8:30:25:8C:1A:3A:46:CD:3F:CD:86:A6:CE:5F:A6:40:80:8A Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 56DA7457B307B8A158F84A653F2B5394FD638EEA Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376231303a3a2f34342d3438203d3e20323135363636.roa Signing time: Wed 06 Aug 2025 12:41:54 +0000 ROA not before: Wed 06 Aug 2025 12:36:54 +0000 ROA not after: Wed 05 Aug 2026 12:41:54 +0000 asID: 215666 IP address blocks: 2a14:1ec1:7b10::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 02:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:da:74:57:b3:07:b8:a1:58:f8:4a:65:3f:2b:53:94:fd:63:8e:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Aug 6 12:36:54 2025 GMT Not After : Aug 5 12:41:54 2026 GMT Subject: CN=9073A830258C1A3A46CD3FCD86A6CE5FA640808A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:e9:cf:fd:70:bc:f4:70:21:34:ba:05:86: 1b:d7:b9:9d:fd:d8:f5:d9:75:e8:e0:36:06:94:c7: ec:15:84:4d:94:ea:d2:95:8d:0d:85:ed:3d:0d:1e: 3e:49:09:8f:b9:c9:9f:08:8d:32:00:36:53:1b:e4: 2c:31:38:82:2d:5e:b7:7f:5f:eb:e0:5a:f1:ee:f3: e7:3c:04:b4:f6:74:1c:2a:19:dd:14:92:a9:a6:c0: 80:ff:53:67:70:58:1a:30:3f:4c:17:9f:ad:5f:57: 0c:e2:b6:3b:38:20:84:d9:93:aa:10:97:e1:92:92: e5:d5:b5:c1:64:8c:07:a4:00:97:eb:3d:e6:4d:d7: c2:28:7e:6e:ae:94:2a:84:d8:0b:b5:8f:45:6b:81: cb:ba:20:1c:13:c3:e8:ab:4c:5d:48:5d:4b:7e:9e: 66:2f:5c:86:26:75:22:ec:d1:df:99:7d:ea:04:a6: b0:2e:56:22:e8:13:9e:69:8d:2f:57:63:f6:ba:f0: 56:59:e9:3d:52:bd:44:9a:4d:72:0d:64:ff:9d:fd: 84:e1:a1:ad:b7:cf:d6:7e:36:6b:21:20:4c:4f:a1: 86:ea:55:4c:4b:f6:8c:12:f9:a3:49:46:23:0d:ea: bb:a0:83:02:04:a2:78:25:8e:16:06:a7:5c:fd:4f: e7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:73:A8:30:25:8C:1A:3A:46:CD:3F:CD:86:A6:CE:5F:A6:40:80:8A X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376231303a3a2f34342d3438203d3e20323135363636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1:7b10::/44 Signature Algorithm: sha256WithRSAEncryption 54:19:da:68:9e:32:66:78:95:da:28:ec:16:f8:13:d0:1a:87: 07:bf:7c:f4:51:fd:34:ed:ae:29:86:47:32:42:c8:ae:78:95: a6:45:47:0e:47:99:08:bd:4c:1a:0d:14:19:13:0a:e3:61:c8: 3f:33:9c:47:c7:e7:93:51:83:22:e6:47:e7:b0:08:f8:39:60: 3d:1d:d1:d1:00:b9:c0:e9:00:e9:7e:95:43:01:43:4f:b4:03: b2:56:ab:4c:17:bf:0c:ab:75:80:44:73:f4:ac:ef:bf:d6:ba: af:5a:3c:fb:a7:43:eb:7d:24:9b:22:44:5a:fd:1b:73:c9:88: e1:32:83:79:1a:c1:98:2a:e9:d2:6d:d9:18:ab:79:be:08:01: 30:86:c7:80:0f:e1:70:61:fd:31:95:24:0c:58:49:ac:ba:26: 74:20:4f:69:5c:fe:6a:b0:38:ba:df:02:7c:10:25:d7:48:5e: b2:af:a4:bc:07:ca:ef:30:ba:31:80:04:ac:e6:63:62:b3:05: b1:70:02:a3:1a:32:92:06:3f:5e:13:01:e9:a8:37:9d:80:b4: 12:5e:08:e0:61:6f:86:84:bd:61:6c:a2:96:72:f7:b0:6e:aa: a6:36:9a:77:49:8f:d9:ae:73:9e:8b:c3:00:2a:26:ef:b8:20: 7a:cb:88:b9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVtp0V7MHuKFY+EplPytTlP1jjuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNTA4MDYxMjM2NTRaFw0yNjA4MDUxMjQxNTRaMDMxMTAvBgNV BAMTKDkwNzNBODMwMjU4QzFBM0E0NkNEM0ZDRDg2QTZDRTVGQTY0MDgwOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR+OnP/XC89HAhNLoFhhvXuZ39 2PXZdejgNgaUx+wVhE2U6tKVjQ2F7T0NHj5JCY+5yZ8IjTIANlMb5CwxOIItXrd/ X+vgWvHu8+c8BLT2dBwqGd0UkqmmwID/U2dwWBowP0wXn61fVwzitjs4IITZk6oQ l+GSkuXVtcFkjAekAJfrPeZN18Iofm6ulCqE2Au1j0Vrgcu6IBwTw+irTF1IXUt+ nmYvXIYmdSLs0d+ZfeoEprAuViLoE55pjS9XY/a68FZZ6T1SvUSaTXINZP+d/YTh oa23z9Z+NmshIExPoYbqVUxL9owS+aNJRiMN6ruggwIEongljhYGp1z9T+ehAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUkHOoMCWMGjpGzT/NhqbOX6ZAgIowHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTM3NjIzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzYzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhQewXsQMA0GCSqGSIb3DQEBCwUAA4IBAQBU GdponjJmeJXaKOwW+BPQGocHv3z0Uf007a4phkcyQsiueJWmRUcOR5kIvUwaDRQZ EwrjYcg/M5xHx+eTUYMi5kfnsAj4OWA9HdHRALnA6QDpfpVDAUNPtAOyVqtMF78M q3WARHP0rO+/1rqvWjz7p0PrfSSbIkRa/RtzyYjhMoN5GsGYKunSbdkYq3m+CAEw hseAD+FwYf0xlSQMWEmsuiZ0IE9pXP5qsDi63wJ8ECXXSF6yr6S8B8rvMLoxgASs 5mNiswWxcAKjGjKSBj9eEwHpqDedgLQSXgjgYW+GhL1hbKKWcvewbqqmNpp3SY/Z rnOei8MAKibvuCB6y4i5 -----END CERTIFICATE-----Generated at Sat Aug 23 16:09:53 2025 by rpki-client