$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326130303a3a2f34302d313238203d3e20323131323831.roa File: 326131343a373538333a326130303a3a2f34302d313238203d3e20323131323831.roa (raw, json) Hash identifier: 7kcvc7XAv56qFVmafM/D1iw7yZ48tgW4TPaORt+OViQ= Subject key identifier: C6:B1:02:F6:FC:3E:B6:8C:71:9E:3C:0F:19:1D:02:FD:66:CF:24:78 Certificate issuer: /CN=21291D2963EE74682B10BECBA6060EF246C76881 Certificate serial: 0F9017BC9B292AC360BC49A30713DA52E25E08E4 Authority key identifier: 21:29:1D:29:63:EE:74:68:2B:10:BE:CB:A6:06:0E:F2:46:C7:68:81 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326130303a3a2f34302d313238203d3e20323131323831.roa Signing time: Sat 13 Sep 2025 12:12:03 +0000 ROA not before: Sat 13 Sep 2025 12:07:03 +0000 ROA not after: Sat 12 Sep 2026 12:12:03 +0000 asID: 211281 IP address blocks: 2a14:7583:2a00::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 09:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:90:17:bc:9b:29:2a:c3:60:bc:49:a3:07:13:da:52:e2:5e:08:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21291D2963EE74682B10BECBA6060EF246C76881 Validity Not Before: Sep 13 12:07:03 2025 GMT Not After : Sep 12 12:12:03 2026 GMT Subject: CN=C6B102F6FC3EB68C719E3C0F191D02FD66CF2478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e6:59:51:d7:43:3a:63:c3:b9:4d:cb:cd:b8: 8a:20:5f:f2:9f:ca:dc:4a:5e:fd:2f:8b:a3:8f:3e: 1e:2e:74:35:a0:15:a4:0e:a4:a3:a7:02:8a:0e:5e: a8:99:bd:49:21:10:89:05:1b:31:73:e7:88:f0:24: 2b:17:3f:b0:69:53:29:49:16:c8:e3:d9:57:6b:8a: 2a:20:f1:4d:8d:9e:97:c9:2c:c1:76:9d:09:ad:d4: a3:32:68:6b:d4:28:d6:bc:8b:2f:e8:49:94:3c:e2: c7:39:0d:46:05:98:9f:8e:72:cc:e2:fe:f0:ea:88: d3:33:69:62:ed:87:9c:be:91:04:c1:bd:63:c8:49: 2e:46:fa:a9:08:dd:76:2c:c4:16:55:ac:87:ce:10: d3:f3:d1:08:36:af:4a:59:b3:65:72:b7:f7:46:a6: 1e:da:ad:1e:88:f9:c7:49:85:03:e9:cb:cf:36:15: 09:b6:c1:3a:9e:03:84:cc:6d:df:84:32:2f:e9:85: 19:43:45:e7:1f:d7:2c:71:e3:96:ca:8b:aa:4a:f7: d3:5d:f0:56:8c:2c:a9:51:5a:ce:72:a8:dd:ce:1b: 17:c6:87:49:a4:c5:03:74:b2:ec:38:40:03:33:f9: 76:f1:02:3f:72:71:65:f8:f5:17:d8:e1:5b:94:3c: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B1:02:F6:FC:3E:B6:8C:71:9E:3C:0F:19:1D:02:FD:66:CF:24:78 X509v3 Authority Key Identifier: keyid:21:29:1D:29:63:EE:74:68:2B:10:BE:CB:A6:06:0E:F2:46:C7:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326130303a3a2f34302d313238203d3e20323131323831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2a00::/40 Signature Algorithm: sha256WithRSAEncryption 34:41:97:da:6a:53:35:76:4d:16:e1:6e:45:cf:a0:aa:bf:04: 78:91:0b:38:5d:0e:e2:0b:41:35:0d:4b:26:c6:09:e5:5b:8f: db:38:c6:47:61:fd:b8:76:da:9f:26:08:a0:28:a8:bf:2c:be: d7:fc:a8:3d:d0:51:a8:ac:ad:7c:b9:43:d8:50:11:9e:27:4b: 1c:d5:51:a7:1c:49:87:61:6f:8d:f9:10:a3:de:32:b2:3c:de: 40:ff:be:fe:06:f0:1e:93:80:fb:a7:89:e5:e1:54:c1:b5:9e: a6:7f:c5:81:26:03:b3:dc:92:07:fb:1f:15:13:0d:36:ac:10: 4d:07:88:20:6e:13:fd:09:41:db:21:85:6d:b1:44:e1:af:69: c9:ef:b0:f0:75:93:d4:b3:bb:39:49:ae:97:11:1f:48:b1:d1: 92:d4:18:62:dc:76:17:08:77:bf:9b:57:ef:c1:38:c5:b8:f6: 64:cf:ef:5a:ef:fa:d1:7b:1b:ad:54:3b:57:9d:df:05:31:15: 4a:66:29:ed:21:b7:f4:d1:8d:08:24:0d:72:e7:3a:72:54:95: 9b:04:1c:4e:83:a8:33:51:62:f3:12:54:b7:bf:5e:a8:2d:7b: 79:12:4e:86:c2:e2:f6:8a:a6:b1:b3:2c:66:0f:45:70:46:4f: 21:ec:df:da -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUD5AXvJspKsNgvEmjBxPaUuJeCOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEyOTFEMjk2M0VFNzQ2ODJCMTBCRUNCQTYwNjBFRjI0 NkM3Njg4MTAeFw0yNTA5MTMxMjA3MDNaFw0yNjA5MTIxMjEyMDNaMDMxMTAvBgNV BAMTKEM2QjEwMkY2RkMzRUI2OEM3MTlFM0MwRjE5MUQwMkZENjZDRjI0NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu5llR10M6Y8O5TcvNuIogX/Kf ytxKXv0vi6OPPh4udDWgFaQOpKOnAooOXqiZvUkhEIkFGzFz54jwJCsXP7BpUylJ Fsjj2Vdriiog8U2NnpfJLMF2nQmt1KMyaGvUKNa8iy/oSZQ84sc5DUYFmJ+Ocszi /vDqiNMzaWLth5y+kQTBvWPISS5G+qkI3XYsxBZVrIfOENPz0Qg2r0pZs2Vyt/dG ph7arR6I+cdJhQPpy882FQm2wTqeA4TMbd+EMi/phRlDRecf1yxx45bKi6pK99Nd 8FaMLKlRWs5yqN3OGxfGh0mkxQN0suw4QAMz+XbxAj9ycWX49RfY4VuUPH/TAgMB AAGjggKGMIICgjAdBgNVHQ4EFgQUxrEC9vw+toxxnjwPGR0C/WbPJHgwHwYDVR0j BBgwFoAUISkdKWPudGgrEL7LpgYO8kbHaIEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzgvMjEyOTFEMjk2M0VFNzQ2ODJCMTBCRUNCQTYwNjBFRjI0NkM3Njg4MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMTI5MUQyOTYzRUU3NDY4MkIxMEJFQ0JB NjA2MEVGMjQ2Qzc2ODgxLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvOC8zMjYxMzEz NDNhMzczNTM4MzMzYTMyNjEzMDMwM2EzYTJmMzQzMDJkMzEzMjM4MjAzZDNlMjAz MjMxMzEzMjM4MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYB BQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqFHWDKjANBgkqhkiG9w0BAQsFAAOCAQEA NEGX2mpTNXZNFuFuRc+gqr8EeJELOF0O4gtBNQ1LJsYJ5VuP2zjGR2H9uHbanyYI oCiovyy+1/yoPdBRqKytfLlD2FARnidLHNVRpxxJh2FvjfkQo94ysjzeQP++/gbw HpOA+6eJ5eFUwbWepn/FgSYDs9ySB/sfFRMNNqwQTQeIIG4T/QlB2yGFbbFE4a9p ye+w8HWT1LO7OUmulxEfSLHRktQYYtx2Fwh3v5tX78E4xbj2ZM/vWu/60XsbrVQ7 V53fBTEVSmYp7SG39NGNCCQNcuc6clSVmwQcToOoM1Fi8xJUt79eqC17eRJOhsLi 9oqmsbMsZg9FcEZPIezf2g== -----END CERTIFICATE-----Generated at Tue Oct 21 03:31:31 2025 by rpki-client