$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323039313039.roa File: 326131343a373538313a393330303a3a2f34302d3438203d3e20323039313039.roa (raw, json) Hash identifier: TWxboGw6/lxhoMiWiDnyOg4O9SxsEOXusyizWuah2wo= Subject key identifier: FA:5B:E5:DA:0B:EA:0E:30:92:45:65:49:CE:9B:B3:2E:9F:7F:1C:2C Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 522C4733E65B69B758E58E2533CF9DF724036CF4 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323039313039.roa Signing time: Sat 16 Aug 2025 18:07:54 +0000 ROA not before: Sat 16 Aug 2025 18:02:54 +0000 ROA not after: Sat 15 Aug 2026 18:07:54 +0000 asID: 209109 IP address blocks: 2a14:7581:9300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 16:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2c:47:33:e6:5b:69:b7:58:e5:8e:25:33:cf:9d:f7:24:03:6c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Aug 16 18:02:54 2025 GMT Not After : Aug 15 18:07:54 2026 GMT Subject: CN=FA5BE5DA0BEA0E3092456549CE9BB32E9F7F1C2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5c:0c:e1:ed:fe:d1:51:5a:1e:5e:5d:3e:c8: d1:12:43:5f:2b:3b:0e:a9:5a:83:11:71:bb:10:bb: 7f:60:81:81:61:70:81:14:82:8c:b3:fc:d3:5f:99: 59:32:f1:d9:41:b5:3d:8a:dc:65:7c:6b:de:e1:cc: 42:15:4e:b0:c9:06:e1:74:01:d0:3e:86:36:f6:ae: bd:c2:9e:f1:6a:40:de:1c:b3:c6:9e:7a:25:63:97: 89:4c:65:35:6c:34:c9:6c:83:79:78:86:b5:bc:00: 94:05:b1:8c:59:05:57:ee:d1:27:f4:4f:8c:90:c2: cb:01:b6:eb:5b:3f:25:0b:2a:fc:48:d8:86:f9:8b: 8f:69:fb:08:0c:48:75:b6:c5:d0:90:4f:46:bb:3f: 54:c8:8f:27:99:d9:b5:a6:59:94:d6:d4:18:8f:9d: 8c:f3:78:38:7b:72:7c:bc:66:c1:23:26:51:dd:5c: a2:78:80:dc:23:66:fc:80:fd:a2:85:f2:fd:2f:00: 4e:ef:cb:ca:71:47:6d:df:6c:a9:52:83:b7:ad:74: 0f:6f:d0:ee:44:da:56:a6:ce:8e:6c:24:cc:16:9d: ce:53:72:4d:94:33:0f:36:59:68:70:10:69:6a:97: 32:fe:56:a4:ab:af:95:42:b4:4a:88:12:5e:fd:4f: 12:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5B:E5:DA:0B:EA:0E:30:92:45:65:49:CE:9B:B3:2E:9F:7F:1C:2C X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393330303a3a2f34302d3438203d3e20323039313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9300::/40 Signature Algorithm: sha256WithRSAEncryption 1e:24:6a:80:0b:4f:e4:b2:0d:27:55:77:6a:32:4e:6d:bc:30: da:99:8b:2f:ce:cf:3b:a5:93:86:08:70:76:a8:d8:f9:13:b8: 4c:37:ce:5b:d3:ba:6e:bf:e8:e0:8d:fe:be:57:2d:54:41:dc: 82:ef:10:8d:8b:95:cf:f9:03:a8:16:67:1c:db:8e:43:00:44: d8:4f:28:f8:6d:fa:d7:16:bb:8f:a6:36:fe:33:18:e1:9e:d8: f6:58:a9:c3:7b:23:76:c5:34:9a:de:9e:4b:79:da:fd:f6:62: 2b:89:ce:9c:fa:96:58:3e:48:b5:58:73:65:1f:b1:b8:4a:58: 8e:71:82:7d:70:79:63:ee:c1:f6:31:1a:71:22:f4:fc:1b:f5: 5c:55:61:c7:d1:00:99:0d:b2:62:b3:34:ee:02:f4:a5:64:45: 4a:18:c0:94:fb:82:22:96:c2:19:cb:49:f1:a5:1f:c2:f9:82: 1b:d6:3e:c5:09:e1:46:d1:8b:9c:04:45:33:b5:82:ca:e3:19: cf:63:77:9b:31:7b:bf:af:82:a0:e5:50:9d:0c:f8:a8:5c:af: 55:96:e7:d8:15:e1:fb:ce:66:7c:10:d1:d6:cf:2d:57:1a:4c: 71:d1:47:d2:02:2c:af:4f:8e:a7:88:f6:34:81:ab:bf:fc:03: e7:95:b7:7b -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUUixHM+ZbabdY5Y4lM8+d9yQDbPQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA4MTYxODAyNTRaFw0yNjA4MTUxODA3NTRaMDMxMTAvBgNV BAMTKEZBNUJFNURBMEJFQTBFMzA5MjQ1NjU0OUNFOUJCMzJFOUY3RjFDMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPXAzh7f7RUVoeXl0+yNESQ18r Ow6pWoMRcbsQu39ggYFhcIEUgoyz/NNfmVky8dlBtT2K3GV8a97hzEIVTrDJBuF0 AdA+hjb2rr3CnvFqQN4cs8aeeiVjl4lMZTVsNMlsg3l4hrW8AJQFsYxZBVfu0Sf0 T4yQwssBtutbPyULKvxI2Ib5i49p+wgMSHW2xdCQT0a7P1TIjyeZ2bWmWZTW1BiP nYzzeDh7cny8ZsEjJlHdXKJ4gNwjZvyA/aKF8v0vAE7vy8pxR23fbKlSg7etdA9v 0O5E2lamzo5sJMwWnc5Tck2UMw82WWhwEGlqlzL+VqSrr5VCtEqIEl79TxIXAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU+lvl2gvqDjCSRWVJzpuzLp9/HCwwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM5MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gZMwDQYJKoZIhvcNAQELBQADggEBAB4k aoALT+SyDSdVd2oyTm28MNqZiy/Ozzulk4YIcHao2PkTuEw3zlvTum6/6OCN/r5X LVRB3ILvEI2Llc/5A6gWZxzbjkMARNhPKPht+tcWu4+mNv4zGOGe2PZYqcN7I3bF NJrenkt52v32YiuJzpz6llg+SLVYc2UfsbhKWI5xgn1weWPuwfYxGnEi9Pwb9VxV YcfRAJkNsmKzNO4C9KVkRUoYwJT7giKWwhnLSfGlH8L5ghvWPsUJ4UbRi5wERTO1 gsrjGc9jd5sxe7+vgqDlUJ0M+Khcr1WW59gV4fvOZnwQ0dbPLVcaTHHRR9ICLK9P jqeI9jSBq7/8A+eVt3s= -----END CERTIFICATE-----Generated at Sun Aug 24 09:12:03 2025 by rpki-client