$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326230303a3a2f34322d313238203d3e20323134323035.roa File: 326131343a373538333a326230303a3a2f34322d313238203d3e20323134323035.roa (raw, json) Hash identifier: VYyQ9HRup4ddqrcoUKfcEWZA3flgJAKyvMn8Qb2hQCc= Subject key identifier: 80:AA:1F:E4:31:24:89:37:96:E2:C5:2A:51:9F:F6:61:B4:A9:37:91 Certificate issuer: /CN=21291D2963EE74682B10BECBA6060EF246C76881 Certificate serial: 62A37643708FA58A0B40DCDDCB4A9D4011200029 Authority key identifier: 21:29:1D:29:63:EE:74:68:2B:10:BE:CB:A6:06:0E:F2:46:C7:68:81 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326230303a3a2f34322d313238203d3e20323134323035.roa Signing time: Fri 03 Oct 2025 04:16:25 +0000 ROA not before: Fri 03 Oct 2025 04:11:25 +0000 ROA not after: Fri 02 Oct 2026 04:16:25 +0000 asID: 214205 IP address blocks: 2a14:7583:2b00::/42 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a3:76:43:70:8f:a5:8a:0b:40:dc:dd:cb:4a:9d:40:11:20:00:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21291D2963EE74682B10BECBA6060EF246C76881 Validity Not Before: Oct 3 04:11:25 2025 GMT Not After : Oct 2 04:16:25 2026 GMT Subject: CN=80AA1FE43124893796E2C52A519FF661B4A93791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7a:7a:02:d4:88:65:0c:55:a8:ed:e4:1e:6b: fd:17:59:7e:90:b4:e5:8a:da:37:ef:55:99:66:5d: 2a:e4:18:fb:c8:9b:89:07:0f:a1:fb:5c:4a:d2:fd: ab:7a:6d:9b:9a:2d:67:5e:69:75:33:20:4d:b8:96: 53:5a:47:6a:88:18:4d:04:da:fe:38:9d:3f:9d:be: ea:b8:55:ba:bb:6c:73:76:35:97:cb:cf:76:0a:12: 9a:84:92:c1:9b:67:2f:19:70:0b:0f:58:23:3d:3a: 0a:28:6f:cf:19:e9:bb:9c:bb:48:78:b5:6a:bc:91: fb:e5:04:0f:57:08:81:73:41:03:e7:69:ac:4b:cf: 6a:02:e2:5d:f8:26:fd:4d:9f:da:4c:d4:a9:0d:42: 61:e2:c2:5e:c6:8b:24:60:f3:0a:52:de:a4:39:35: fb:15:32:29:98:cb:1e:e4:5a:5e:c7:d3:c1:58:b1: 37:c3:a1:65:31:d3:01:b2:98:b1:4a:7a:e5:a9:bd: d2:1e:0b:a8:42:f9:4e:f3:d0:2c:a1:99:7a:45:33: e3:70:8d:84:fe:ea:6c:9c:97:b0:f7:09:a2:df:09: 61:0b:c9:bc:2d:04:20:ea:8c:9e:2d:f2:4d:bc:46: da:93:ec:9d:dd:c7:06:ac:39:af:d9:dd:bd:42:bb: 72:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AA:1F:E4:31:24:89:37:96:E2:C5:2A:51:9F:F6:61:B4:A9:37:91 X509v3 Authority Key Identifier: keyid:21:29:1D:29:63:EE:74:68:2B:10:BE:CB:A6:06:0E:F2:46:C7:68:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/21291D2963EE74682B10BECBA6060EF246C76881.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21291D2963EE74682B10BECBA6060EF246C76881.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/8/326131343a373538333a326230303a3a2f34322d313238203d3e20323134323035.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:2b00::/42 Signature Algorithm: sha256WithRSAEncryption 91:16:f6:b0:4e:41:d6:d3:ae:3c:ca:49:fd:75:99:0c:11:d1: f7:aa:4d:9c:86:08:de:0e:84:4d:47:a7:6d:b5:e1:85:6d:2b: ed:0b:4b:d0:46:9c:a7:8a:6a:b5:5b:1b:d5:16:83:10:c4:b9: 5a:7e:fb:60:21:37:d4:5a:15:51:29:fe:3a:b7:d3:d2:eb:25: 28:2b:64:a1:15:69:a4:1f:70:6b:9f:e7:da:2d:40:55:3e:75: 49:cb:ac:94:d5:c3:d7:3a:dc:83:40:cd:0a:c9:34:c5:cb:21: f4:5d:d6:46:7e:72:97:13:b4:2e:f1:75:0a:6d:0a:bc:a5:90: 7b:87:58:1a:38:c8:1b:15:a9:d5:7e:20:5f:7b:4d:ff:57:46: 45:2a:d0:2c:15:fa:bf:e8:60:c5:18:16:08:92:ed:e1:8d:cc: 15:92:e3:bd:3d:6f:75:a5:24:01:42:28:a4:bc:e6:23:ad:7e: 84:e6:69:6a:01:48:55:93:a5:e3:f6:f4:ec:e2:93:db:ff:f7: 6f:61:64:67:c7:6a:74:77:17:a1:41:bd:41:69:54:02:62:db: 83:58:3b:f0:6d:07:29:9f:26:e4:27:4c:93:8b:e1:64:4d:4b: fe:51:b6:73:af:47:20:23:10:e6:7c:18:0d:4b:5f:28:62:d4: 85:99:89:3c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgIUYqN2Q3CPpYoLQNzdy0qdQBEgACkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEyOTFEMjk2M0VFNzQ2ODJCMTBCRUNCQTYwNjBFRjI0 NkM3Njg4MTAeFw0yNTEwMDMwNDExMjVaFw0yNjEwMDIwNDE2MjVaMDMxMTAvBgNV BAMTKDgwQUExRkU0MzEyNDg5Mzc5NkUyQzUyQTUxOUZGNjYxQjRBOTM3OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxenoC1IhlDFWo7eQea/0XWX6Q tOWK2jfvVZlmXSrkGPvIm4kHD6H7XErS/at6bZuaLWdeaXUzIE24llNaR2qIGE0E 2v44nT+dvuq4Vbq7bHN2NZfLz3YKEpqEksGbZy8ZcAsPWCM9Ogoob88Z6bucu0h4 tWq8kfvlBA9XCIFzQQPnaaxLz2oC4l34Jv1Nn9pM1KkNQmHiwl7GiyRg8wpS3qQ5 NfsVMimYyx7kWl7H08FYsTfDoWUx0wGymLFKeuWpvdIeC6hC+U7z0CyhmXpFM+Nw jYT+6mycl7D3CaLfCWELybwtBCDqjJ4t8k28RtqT7J3dxwasOa/Z3b1Cu3KjAgMB AAGjggKHMIICgzAdBgNVHQ4EFgQUgKof5DEkiTeW4sUqUZ/2YbSpN5EwHwYDVR0j BBgwFoAUISkdKWPudGgrEL7LpgYO8kbHaIEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzgvMjEyOTFEMjk2M0VFNzQ2ODJCMTBCRUNCQTYwNjBFRjI0NkM3Njg4MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMTI5MUQyOTYzRUU3NDY4MkIxMEJFQ0JB NjA2MEVGMjQ2Qzc2ODgxLmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvOC8zMjYxMzEz NDNhMzczNTM4MzMzYTMyNjIzMDMwM2EzYTJmMzQzMjJkMzEzMjM4MjAzZDNlMjAz MjMxMzQzMjMwMzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYB BQUHAQcBAf8EEzARMA8EAgACMAkDBwYqFHWDKwAwDQYJKoZIhvcNAQELBQADggEB AJEW9rBOQdbTrjzKSf11mQwR0feqTZyGCN4OhE1Hp2214YVtK+0LS9BGnKeKarVb G9UWgxDEuVp++2AhN9RaFVEp/jq309LrJSgrZKEVaaQfcGuf59otQFU+dUnLrJTV w9c63INAzQrJNMXLIfRd1kZ+cpcTtC7xdQptCrylkHuHWBo4yBsVqdV+IF97Tf9X RkUq0CwV+r/oYMUYFgiS7eGNzBWS4709b3WlJAFCKKS85iOtfoTmaWoBSFWTpeP2 9Ozik9v/929hZGfHanR3F6FBvUFpVAJi24NYO/BtBymfJuQnTJOL4WRNS/5RtnOv RyAjEOZ8GA1LXyhi1IWZiTw= -----END CERTIFICATE-----Generated at Mon Oct 20 02:47:51 2025 by rpki-client