$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa File: 326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa (raw, json) Hash identifier: UAf2blctTo7ZlN86/McI15QZsGre1E35LEt/FhIBXBM= Subject key identifier: A7:4A:10:11:A5:57:A8:55:A8:06:DB:79:2A:E7:06:F1:23:9F:A4:12 Certificate issuer: /CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Certificate serial: 5EF2C2275CA5B335C86F081031DA202692DFCF08 Authority key identifier: 02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa Signing time: Fri 26 Sep 2025 03:15:04 +0000 ROA not before: Fri 26 Sep 2025 03:10:04 +0000 ROA not after: Fri 25 Sep 2026 03:15:04 +0000 asID: 205329 IP address blocks: 2a14:7581:6d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 11:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:f2:c2:27:5c:a5:b3:35:c8:6f:08:10:31:da:20:26:92:df:cf:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Validity Not Before: Sep 26 03:10:04 2025 GMT Not After : Sep 25 03:15:04 2026 GMT Subject: CN=A74A1011A557A855A806DB792AE706F1239FA412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:88:87:a7:7e:0b:73:aa:8e:bc:8f:86:cd:93: c1:fb:4a:82:ab:ee:f4:9f:25:22:3d:ba:85:a6:a3: 63:ef:1e:05:e2:64:52:6f:4c:af:61:e8:47:c5:6d: 00:7a:2c:fd:a5:40:76:ce:a8:0b:b2:24:da:9c:b3: cf:f1:95:b9:63:9c:3c:f0:48:43:d6:93:e1:30:f5: cc:2d:45:f9:95:c3:53:5d:94:da:a2:3b:d3:5e:d0: 48:d5:ee:5e:47:ee:d9:e0:c4:95:c5:17:9a:81:d1: fa:d7:13:f0:ff:e3:07:e8:b9:7a:94:22:ba:16:3f: 8f:f0:2f:fb:50:eb:22:b0:ce:50:d0:9d:36:56:f4: d4:c9:3b:d6:06:49:d4:a8:ca:44:e9:1a:9e:d4:05: 20:23:fc:5e:49:e1:46:b2:e4:3a:51:5c:90:b9:55: 6b:7a:79:60:28:2f:76:3a:78:5c:77:8a:92:5d:b6: 7c:9f:a2:ad:9c:18:6e:db:76:bb:08:1c:98:4c:87: cc:9e:96:77:5a:ac:5b:99:a6:cd:bd:4e:96:18:80: d8:62:08:17:6b:c7:c1:b4:8d:86:e6:dc:97:63:8a: a1:7f:33:cd:e0:bb:18:2c:c6:d5:0a:ce:72:5e:7f: 9d:26:68:07:9a:62:ca:11:ce:3f:c4:f3:35:9b:27: a6:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:4A:10:11:A5:57:A8:55:A8:06:DB:79:2A:E7:06:F1:23:9F:A4:12 X509v3 Authority Key Identifier: keyid:02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6d00::/40 Signature Algorithm: sha256WithRSAEncryption 70:2a:69:0e:ac:63:0e:99:81:e7:c9:e2:33:f7:d6:f8:9a:5e: 1e:80:b5:4d:53:aa:05:89:3e:30:aa:cd:67:cc:e8:f2:a2:c1: a2:19:87:ad:5e:d8:65:1e:94:f3:dd:6d:46:dc:65:16:b2:3e: e6:18:26:59:33:f5:7f:b5:34:a2:83:c4:0f:c5:f4:d0:0a:9e: 17:d1:0f:b1:f3:39:97:1f:4f:df:08:06:0d:0f:93:4d:65:3a: 8d:ff:65:e3:20:17:2e:8a:fa:8a:f9:8a:c0:79:27:d6:1a:40: dd:6a:8f:86:94:d2:2c:83:f1:23:58:89:97:c0:81:0d:4e:46: f5:f1:54:16:1c:42:30:d3:06:27:49:fc:03:2a:7a:25:3b:6c: 4a:a4:9b:22:0c:4b:df:3b:46:e7:59:70:77:3d:1c:dc:cd:6e: a2:db:1f:6c:16:f6:19:6f:b5:13:7f:4a:04:6d:95:2b:bd:e7: ff:fe:26:27:77:c0:73:32:75:30:50:87:41:a6:d0:8c:72:8f: 3d:b0:15:bf:73:54:05:f6:cc:55:8b:fb:c6:83:7c:eb:ec:a5: 70:dc:60:04:29:7a:11:68:27:f5:73:5c:ac:4f:c9:4b:2a:27: 33:13:50:70:06:06:50:cd:dc:b1:63:14:d0:ac:47:0a:4e:a0: 4e:92:a1:58 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUXvLCJ1ylszXIbwgQMdogJpLfzwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhB NjYwNDYyMDAeFw0yNTA5MjYwMzEwMDRaFw0yNjA5MjUwMzE1MDRaMDMxMTAvBgNV BAMTKEE3NEExMDExQTU1N0E4NTVBODA2REI3OTJBRTcwNkYxMjM5RkE0MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2iIenfgtzqo68j4bNk8H7SoKr 7vSfJSI9uoWmo2PvHgXiZFJvTK9h6EfFbQB6LP2lQHbOqAuyJNqcs8/xlbljnDzw SEPWk+Ew9cwtRfmVw1NdlNqiO9Ne0EjV7l5H7tngxJXFF5qB0frXE/D/4wfouXqU IroWP4/wL/tQ6yKwzlDQnTZW9NTJO9YGSdSoykTpGp7UBSAj/F5J4Uay5DpRXJC5 VWt6eWAoL3Y6eFx3ipJdtnyfoq2cGG7bdrsIHJhMh8yelndarFuZps29TpYYgNhi CBdrx8G0jYbm3JdjiqF/M83guxgsxtUKznJef50maAeaYsoRzj/E8zWbJ6aBAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUp0oQEaVXqFWoBtt5KucG8SOfpBIwHwYDVR0j BBgwFoAUAg9+0hf8NlMuawRc+8zaaKZgRiAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNWE3Yzk1NmMtMjJlYi00YmI4LWEzMjctYWQ5NzE2MTI5 NWJjLzAvMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhBNjYwNDYyMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wMjBGN0VEMjE3RkMzNjUzMkU2QjA0NUNG QkNDREE2OEE2NjA0NjIwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81YTdjOTU2Yy0yMmViLTRiYjgtYTMyNy1hZDk3MTYxMjk1YmMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjQzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM1MzMzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gW0wDQYJKoZIhvcNAQELBQADggEBAHAq aQ6sYw6ZgefJ4jP31viaXh6AtU1TqgWJPjCqzWfM6PKiwaIZh61e2GUelPPdbUbc ZRayPuYYJlkz9X+1NKKDxA/F9NAKnhfRD7HzOZcfT98IBg0Pk01lOo3/ZeMgFy6K +or5isB5J9YaQN1qj4aU0iyD8SNYiZfAgQ1ORvXxVBYcQjDTBidJ/AMqeiU7bEqk myIMS987RudZcHc9HNzNbqLbH2wW9hlvtRN/SgRtlSu95//+Jid3wHMydTBQh0Gm 0Ixyjz2wFb9zVAX2zFWL+8aDfOvspXDcYAQpehFoJ/VzXKxPyUsqJzMTUHAGBlDN 3LFjFNCsRwpOoE6SoVg= -----END CERTIFICATE-----Generated at Sun Oct 19 21:09:52 2025 by rpki-client