$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa File: 326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa (raw, json) Hash identifier: JVdP0q01IdpmOHNHM/8N7QIeZGO9fY1B0zhs290wioo= Subject key identifier: 6C:2C:FA:D9:29:E7:F7:8B:F4:5D:EA:E5:E3:C1:C2:8F:22:C3:17:E3 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 6C3398E48FA752DE167D7FEA09FBD5F7AEA3847F Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa Signing time: Tue 01 Jul 2025 17:13:53 +0000 ROA not before: Tue 01 Jul 2025 17:08:53 +0000 ROA not after: Tue 30 Jun 2026 17:13:53 +0000 asID: 216375 IP address blocks: 2a14:7581:4555::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:33:98:e4:8f:a7:52:de:16:7d:7f:ea:09:fb:d5:f7:ae:a3:84:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jul 1 17:08:53 2025 GMT Not After : Jun 30 17:13:53 2026 GMT Subject: CN=6C2CFAD929E7F78BF45DEAE5E3C1C28F22C317E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:b0:c5:f6:6a:68:3b:50:6e:92:ca:4c:fd: 61:5c:a1:f3:e8:15:1b:07:41:82:81:2c:ec:b2:7d: 7e:ad:0b:cf:d6:66:e7:81:45:ef:65:ea:fd:22:d9: 35:6f:5c:a4:c2:f6:61:0d:91:c3:c8:c5:67:fb:60: b5:6f:2c:59:c6:54:16:c9:61:df:ed:79:8d:a7:ac: 31:47:b9:41:bd:60:ac:94:52:8b:01:91:35:8a:bd: 70:b0:d8:38:38:71:b0:96:33:ff:55:3e:80:6f:41: ea:df:60:70:da:a5:fa:27:79:4b:7e:36:81:93:8c: 79:e4:a5:c5:d7:99:9a:cc:1d:47:49:40:5e:b6:1d: 1a:b0:a9:2b:89:5a:59:fc:ce:7a:bb:65:35:11:09: 69:92:11:d4:dd:4f:18:e3:97:b8:d0:25:0b:50:c1: 95:04:32:3b:9c:07:dc:c0:4f:a2:8c:3f:37:0a:ac: 1c:e5:4b:6a:d1:d9:71:f1:85:ee:bc:7c:95:60:38: f4:32:8a:c1:cd:7e:41:fd:d5:1b:83:48:e3:55:48: cf:59:0e:27:ab:81:c3:9f:5a:aa:0b:00:e1:8b:44: db:5b:7c:d7:f7:e5:82:b0:74:9d:ea:be:8f:38:d5: 1e:c7:01:9e:43:bf:b4:ea:18:e5:da:3d:d2:33:a2: d7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2C:FA:D9:29:E7:F7:8B:F4:5D:EA:E5:E3:C1:C2:8F:22:C3:17:E3 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4555::/48 Signature Algorithm: sha256WithRSAEncryption 53:72:e7:16:e5:60:66:39:70:34:26:7c:ab:94:dc:b1:81:97: 3e:2a:39:d6:e9:ae:b2:e9:46:91:d2:7e:de:bd:b3:82:c7:d9: e9:06:0c:c4:98:33:cb:47:5c:34:79:be:12:91:b6:8b:01:f4: 59:9b:03:87:53:02:62:bb:5e:8f:52:e4:68:9d:a6:4b:19:d2: ce:21:38:a3:23:f9:97:73:b8:6d:29:6b:b3:50:d0:82:32:aa: e2:95:4d:02:84:a8:b4:d5:7e:2e:bb:53:91:17:b6:be:94:cc: ee:85:9b:ec:87:e9:d2:b9:4f:69:59:ed:cb:eb:76:9d:1c:b3: 58:5f:60:49:97:18:51:65:3f:f6:e8:6a:19:21:5b:12:87:d4: 9c:7e:aa:d5:e0:23:72:82:26:f3:8d:1e:85:31:32:40:76:31: 1f:35:2d:c2:dc:ff:5e:e8:66:e0:8b:d4:d2:ce:62:6e:db:59: 5e:75:0d:5f:ab:7a:6a:3c:a8:7e:4d:35:78:b0:8f:b7:fe:b7: 03:86:69:0a:ff:69:42:64:f0:ce:88:ce:0d:bf:6e:96:af:5e: fb:51:5f:52:f7:bf:05:44:98:c2:a7:59:34:f1:a0:51:6c:a9: 1f:48:e3:39:e9:f7:fe:be:5a:f9:49:b6:f9:6f:95:d6:d0:41: ae:5a:ed:20 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUbDOY5I+nUt4WfX/qCfvV966jhH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNTA3MDExNzA4NTNaFw0yNjA2MzAxNzEzNTNaMDMxMTAvBgNV BAMTKDZDMkNGQUQ5MjlFN0Y3OEJGNDVERUFFNUUzQzFDMjhGMjJDMzE3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPobDF9mpoO1BukspM/WFcofPo FRsHQYKBLOyyfX6tC8/WZueBRe9l6v0i2TVvXKTC9mENkcPIxWf7YLVvLFnGVBbJ Yd/teY2nrDFHuUG9YKyUUosBkTWKvXCw2Dg4cbCWM/9VPoBvQerfYHDapfoneUt+ NoGTjHnkpcXXmZrMHUdJQF62HRqwqSuJWln8znq7ZTURCWmSEdTdTxjjl7jQJQtQ wZUEMjucB9zAT6KMPzcKrBzlS2rR2XHxhe68fJVgOPQyisHNfkH91RuDSONVSM9Z DiergcOfWqoLAOGLRNtbfNf35YKwdJ3qvo841R7HAZ5Dv7TqGOXaPdIzotcHAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUbCz62Snn94v0Xerl48HCjyLDF+MwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzUzNTM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gUVVMA0GCSqGSIb3DQEBCwUAA4IBAQBT cucW5WBmOXA0JnyrlNyxgZc+KjnW6a6y6UaR0n7evbOCx9npBgzEmDPLR1w0eb4S kbaLAfRZmwOHUwJiu16PUuRonaZLGdLOITijI/mXc7htKWuzUNCCMqrilU0ChKi0 1X4uu1ORF7a+lMzuhZvsh+nSuU9pWe3L63adHLNYX2BJlxhRZT/26GoZIVsSh9Sc fqrV4CNygibzjR6FMTJAdjEfNS3C3P9e6Gbgi9TSzmJu21ledQ1fq3pqPKh+TTV4 sI+3/rcDhmkK/2lCZPDOiM4Nv26Wr177UV9S978FRJjCp1k08aBRbKkfSOM56ff+ vlr5Sbb5b5XW0EGuWu0g -----END CERTIFICATE-----Generated at Sat Jul 5 04:57:58 2025 by rpki-client