$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366662303a3a2f34342d3438203d3e20323136343332.roa File: 326131343a373538313a366662303a3a2f34342d3438203d3e20323136343332.roa (raw, json) Hash identifier: cip9cJqKeyNrJhvNYpxl3IQ3uuVk6x6ccrH22pN5xrA= Subject key identifier: 24:A4:A7:FB:1D:A7:C0:C9:C7:C3:AF:61:27:85:3C:D1:7D:14:E4:ED Certificate issuer: /CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Certificate serial: 7976B02003AC39BB01275895BA269853D6CFB7D7 Authority key identifier: 02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366662303a3a2f34342d3438203d3e20323136343332.roa Signing time: Mon 15 Sep 2025 19:09:40 +0000 ROA not before: Mon 15 Sep 2025 19:04:40 +0000 ROA not after: Mon 14 Sep 2026 19:09:40 +0000 asID: 216432 IP address blocks: 2a14:7581:6fb0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 07:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:76:b0:20:03:ac:39:bb:01:27:58:95:ba:26:98:53:d6:cf:b7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Validity Not Before: Sep 15 19:04:40 2025 GMT Not After : Sep 14 19:09:40 2026 GMT Subject: CN=24A4A7FB1DA7C0C9C7C3AF6127853CD17D14E4ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:dd:61:f9:56:11:22:eb:2e:1b:5d:a9:a4:9b: df:f6:10:45:f3:51:9e:68:0f:9f:41:54:36:17:d1: c6:2e:5d:35:f9:df:65:3e:3c:79:7a:41:cb:b8:00: 17:8f:8e:d8:ed:79:f3:aa:1a:9c:c5:6e:2d:c3:14: cb:d9:6b:a4:55:70:12:9d:ce:2c:88:04:c5:8a:7c: e5:86:3c:22:d6:5e:dc:aa:c4:75:79:96:80:60:01: da:de:0d:dd:b2:f0:a9:e9:6e:92:93:6e:10:45:f4: 32:c9:47:02:87:ec:c7:5d:16:59:53:e9:93:c5:25: 6a:e5:e2:74:0b:29:0f:a4:ed:0a:47:90:ec:88:1b: 07:fe:e7:9a:32:a0:4b:6a:6e:02:67:76:de:12:5c: 97:70:98:56:cf:f2:04:b3:37:90:54:19:93:6e:48: 4f:8e:1e:56:32:b1:44:ae:82:56:ba:7f:3a:98:10: 49:06:b6:9b:b0:60:0b:86:1f:24:a2:f7:64:fb:21: 7b:15:d2:c6:d6:c8:28:ae:b2:e4:07:76:d9:0a:4a: e1:aa:d3:86:4f:99:4d:95:a7:a8:c9:9b:4f:ae:54: 19:7b:4a:26:63:03:57:60:5a:fd:13:c9:91:7f:14: 19:32:ef:aa:7f:1b:e8:59:f2:37:19:fb:5b:58:1a: 37:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A4:A7:FB:1D:A7:C0:C9:C7:C3:AF:61:27:85:3C:D1:7D:14:E4:ED X509v3 Authority Key Identifier: keyid:02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366662303a3a2f34342d3438203d3e20323136343332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6fb0::/44 Signature Algorithm: sha256WithRSAEncryption 7e:81:2f:c5:33:ab:0d:a0:2d:d6:be:a4:65:ed:f7:74:a5:41: d8:72:d1:d8:32:6e:d9:dc:cf:b5:86:83:50:ab:44:0c:7f:00: 42:ad:84:32:03:43:3b:c0:8f:29:43:95:35:82:f3:95:5b:42: b2:b0:3d:39:70:a3:76:47:aa:01:53:82:9c:3a:84:42:53:d4: 66:bc:2c:34:5c:c0:2f:05:85:d3:23:09:33:ab:6b:79:61:33: 4d:5c:cc:fa:fe:46:89:d5:41:75:c6:de:18:d5:f6:7f:c7:37: fc:22:99:78:c8:cf:a5:7c:1f:b1:9e:69:2d:08:81:50:e0:5b: 7b:17:64:ec:47:73:f6:c0:cb:a8:83:06:b7:26:1f:de:e4:1f: db:5d:a1:49:d6:ba:0b:10:c3:d9:a1:67:b7:aa:18:d7:0d:13: 15:d5:e6:5f:00:27:09:2e:76:7f:7c:ed:f6:8f:c9:34:83:fe: 2e:5f:00:1e:92:bc:de:a1:d5:69:92:2f:fb:6a:70:5f:2c:f7: 9c:64:bc:3e:f6:c8:a2:4a:cd:00:e6:d0:85:3d:5d:11:b2:f9: d7:96:97:71:fb:93:e4:35:da:25:c8:72:c0:25:29:61:bb:02: 1b:04:c4:c8:11:04:0c:d4:a1:da:e2:7e:eb:ca:7f:7d:db:ac: 1b:08:46:9a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUeXawIAOsObsBJ1iVuiaYU9bPt9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhB NjYwNDYyMDAeFw0yNTA5MTUxOTA0NDBaFw0yNjA5MTQxOTA5NDBaMDMxMTAvBgNV BAMTKDI0QTRBN0ZCMURBN0MwQzlDN0MzQUY2MTI3ODUzQ0QxN0QxNEU0RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI3WH5VhEi6y4bXamkm9/2EEXz UZ5oD59BVDYX0cYuXTX532U+PHl6Qcu4ABePjtjtefOqGpzFbi3DFMvZa6RVcBKd ziyIBMWKfOWGPCLWXtyqxHV5loBgAdreDd2y8KnpbpKTbhBF9DLJRwKH7MddFllT 6ZPFJWrl4nQLKQ+k7QpHkOyIGwf+55oyoEtqbgJndt4SXJdwmFbP8gSzN5BUGZNu SE+OHlYysUSugla6fzqYEEkGtpuwYAuGHySi92T7IXsV0sbWyCiusuQHdtkKSuGq 04ZPmU2Vp6jJm0+uVBl7SiZjA1dgWv0TyZF/FBky76p/G+hZ8jcZ+1tYGje/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUJKSn+x2nwMnHw69hJ4U80X0U5O0wHwYDVR0j BBgwFoAUAg9+0hf8NlMuawRc+8zaaKZgRiAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNWE3Yzk1NmMtMjJlYi00YmI4LWEzMjctYWQ5NzE2MTI5 NWJjLzAvMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhBNjYwNDYyMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wMjBGN0VEMjE3RkMzNjUzMkU2QjA0NUNG QkNDREE2OEE2NjA0NjIwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81YTdjOTU2Yy0yMmViLTRiYjgtYTMyNy1hZDk3MTYxMjk1YmMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjY2MjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM2MzQzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gW+wMA0GCSqGSIb3DQEBCwUAA4IBAQB+ gS/FM6sNoC3WvqRl7fd0pUHYctHYMm7Z3M+1hoNQq0QMfwBCrYQyA0M7wI8pQ5U1 gvOVW0KysD05cKN2R6oBU4KcOoRCU9RmvCw0XMAvBYXTIwkzq2t5YTNNXMz6/kaJ 1UF1xt4Y1fZ/xzf8Ipl4yM+lfB+xnmktCIFQ4Ft7F2TsR3P2wMuogwa3Jh/e5B/b XaFJ1roLEMPZoWe3qhjXDRMV1eZfACcJLnZ/fO32j8k0g/4uXwAekrzeodVpki/7 anBfLPecZLw+9siiSs0A5tCFPV0RsvnXlpdx+5PkNdolyHLAJSlhuwIbBMTIEQQM 1KHa4n7ryn9926wbCEaa -----END CERTIFICATE-----Generated at Mon Oct 20 21:28:39 2025 by rpki-client