$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/326131343a373538333a663532613a3a2f34382d3438203d3e20323130343430.roa File: 326131343a373538333a663532613a3a2f34382d3438203d3e20323130343430.roa (raw, json) Hash identifier: ZdNC5XbbwwexZ9fJQgyFujAFE+pNtA0LnoesNkwLRvA= Subject key identifier: 2B:F1:4D:70:82:F2:AB:7E:72:0F:51:92:47:CC:98:03:B8:84:F2:E4 Certificate issuer: /CN=8BD4F7EBFF9763C061D537B8A1D0872D70697632 Certificate serial: 69E0E63507A7E637D6042E18D07D34A5C6CB6F25 Authority key identifier: 8B:D4:F7:EB:FF:97:63:C0:61:D5:37:B8:A1:D0:87:2D:70:69:76:32 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8BD4F7EBFF9763C061D537B8A1D0872D70697632.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/326131343a373538333a663532613a3a2f34382d3438203d3e20323130343430.roa Signing time: Fri 26 Sep 2025 12:36:05 +0000 ROA not before: Fri 26 Sep 2025 12:31:05 +0000 ROA not after: Fri 25 Sep 2026 12:36:05 +0000 asID: 210440 IP address blocks: 2a14:7583:f52a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/8BD4F7EBFF9763C061D537B8A1D0872D70697632.crl rsync://rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/8BD4F7EBFF9763C061D537B8A1D0872D70697632.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8BD4F7EBFF9763C061D537B8A1D0872D70697632.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 18:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:e0:e6:35:07:a7:e6:37:d6:04:2e:18:d0:7d:34:a5:c6:cb:6f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD4F7EBFF9763C061D537B8A1D0872D70697632 Validity Not Before: Sep 26 12:31:05 2025 GMT Not After : Sep 25 12:36:05 2026 GMT Subject: CN=2BF14D7082F2AB7E720F519247CC9803B884F2E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e6:5d:3a:c2:51:ea:3a:58:a8:94:05:bc:61: 0d:1d:a1:8c:39:74:21:7a:ac:1a:56:f9:d1:31:e9: 8d:19:dc:7c:46:65:d9:1b:fb:f5:64:59:93:a7:c2: a4:4b:f0:f5:f4:68:f1:cb:b0:a4:c6:1c:80:ba:d8: 97:16:be:e5:30:b6:ec:95:df:c6:99:3c:dd:e6:4b: 28:00:9b:f8:a3:a4:aa:d0:fd:3e:7e:49:ec:c8:a5: 2e:b2:0f:88:9a:7b:df:43:89:25:f6:e6:f5:01:8f: 27:36:67:4f:43:6e:07:30:39:ea:ef:2a:13:ab:af: 5c:09:b5:68:12:1c:79:c6:68:5e:81:74:a1:e5:f7: 69:7c:bd:70:cc:2f:3f:9b:5d:5f:4e:76:6a:d2:8f: bc:f6:50:aa:7d:c2:e4:d9:69:60:89:52:8e:4e:e8: 0f:92:f4:5b:a9:77:4d:ee:93:df:60:f5:3c:6d:68: 2c:10:65:a6:fc:10:b6:fc:49:17:c8:65:8d:66:b1: 40:12:74:23:a2:3c:c2:10:59:70:c2:97:51:9f:0f: 13:9e:62:c5:1d:aa:20:19:07:96:7b:af:d6:05:05: 83:bc:e0:df:44:00:04:f7:0f:b7:a5:36:08:3c:01: 9f:d2:3e:d4:ed:22:c2:c0:54:42:29:22:55:49:88: a5:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F1:4D:70:82:F2:AB:7E:72:0F:51:92:47:CC:98:03:B8:84:F2:E4 X509v3 Authority Key Identifier: keyid:8B:D4:F7:EB:FF:97:63:C0:61:D5:37:B8:A1:D0:87:2D:70:69:76:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/8BD4F7EBFF9763C061D537B8A1D0872D70697632.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8BD4F7EBFF9763C061D537B8A1D0872D70697632.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/87d8db71-a5be-464c-a8b9-8b7b374ae3fa/1/326131343a373538333a663532613a3a2f34382d3438203d3e20323130343430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f52a::/48 Signature Algorithm: sha256WithRSAEncryption 70:a3:5f:55:a8:da:15:09:7d:36:4c:e3:92:9c:e8:0d:7e:29: 96:60:76:44:19:67:a4:99:60:34:fd:de:8c:52:a6:f0:cb:66: f0:ef:89:31:02:65:1c:6e:1c:4a:ce:d7:95:a6:f2:d6:27:52: f7:00:67:2f:d2:d3:d4:d5:3f:7f:19:de:6d:22:20:cf:be:ff: f5:b6:87:59:46:fb:ea:ef:e7:a2:74:35:2d:a4:de:65:16:01: 55:a9:72:ee:14:6b:b6:ff:dc:78:93:13:51:67:8d:21:d5:d5: 25:37:05:6b:34:d3:c5:31:21:87:49:ef:56:71:a5:71:22:b5: 8a:aa:fe:1b:f4:a6:7f:df:81:23:6d:11:bc:4d:e9:4c:75:57: a3:96:06:59:5c:08:e1:47:a0:73:70:b3:f2:58:d4:86:7d:81: 09:13:b0:90:ab:5a:6b:62:1b:85:73:99:37:f0:5b:3b:b8:a3: 6a:da:fa:a0:fa:24:0d:72:81:e8:64:1d:92:0f:cc:f7:40:d9: 27:51:cb:2a:a2:37:ea:09:49:55:b6:98:98:2c:58:c3:95:7a: e8:49:0b:21:56:20:e3:3b:08:3a:be:6e:25:3d:60:ce:8b:8c: b7:53:40:59:3b:15:9e:91:af:e8:ab:ac:91:65:a3:34:26:c5: 20:8b:52:25 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUaeDmNQen5jfWBC4Y0H00pcbLbyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJENEY3RUJGRjk3NjNDMDYxRDUzN0I4QTFEMDg3MkQ3 MDY5NzYzMjAeFw0yNTA5MjYxMjMxMDVaFw0yNjA5MjUxMjM2MDVaMDMxMTAvBgNV BAMTKDJCRjE0RDcwODJGMkFCN0U3MjBGNTE5MjQ3Q0M5ODAzQjg4NEYyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ5l06wlHqOliolAW8YQ0doYw5 dCF6rBpW+dEx6Y0Z3HxGZdkb+/VkWZOnwqRL8PX0aPHLsKTGHIC62JcWvuUwtuyV 38aZPN3mSygAm/ijpKrQ/T5+SezIpS6yD4iae99DiSX25vUBjyc2Z09DbgcwOerv KhOrr1wJtWgSHHnGaF6BdKHl92l8vXDMLz+bXV9OdmrSj7z2UKp9wuTZaWCJUo5O 6A+S9Fupd03uk99g9TxtaCwQZab8ELb8SRfIZY1msUASdCOiPMIQWXDCl1GfDxOe YsUdqiAZB5Z7r9YFBYO84N9EAAT3D7elNgg8AZ/SPtTtIsLAVEIpIlVJiKVVAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUK/FNcILyq35yD1GSR8yYA7iE8uQwHwYDVR0j BBgwFoAUi9T36/+XY8Bh1Te4odCHLXBpdjIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODdkOGRiNzEtYTViZS00NjRjLWE4YjktOGI3YjM3NGFl M2ZhLzEvOEJENEY3RUJGRjk3NjNDMDYxRDUzN0I4QTFEMDg3MkQ3MDY5NzYzMi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84QkQ0RjdFQkZGOTc2M0MwNjFENTM3QjhB MUQwODcyRDcwNjk3NjMyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84N2Q4ZGI3MS1hNWJlLTQ2NGMtYThiOS04YjdiMzc0YWUzZmEvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzUzMjYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTMwMzQzNDMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/UqMA0GCSqGSIb3DQEBCwUAA4IBAQBw o19VqNoVCX02TOOSnOgNfimWYHZEGWekmWA0/d6MUqbwy2bw74kxAmUcbhxKzteV pvLWJ1L3AGcv0tPU1T9/Gd5tIiDPvv/1todZRvvq7+eidDUtpN5lFgFVqXLuFGu2 /9x4kxNRZ40h1dUlNwVrNNPFMSGHSe9WcaVxIrWKqv4b9KZ/34EjbRG8TelMdVej lgZZXAjhR6BzcLPyWNSGfYEJE7CQq1prYhuFc5k38Fs7uKNq2vqg+iQNcoHoZB2S D8z3QNknUcsqojfqCUlVtpiYLFjDlXroSQshViDjOwg6vm4lPWDOi4y3U0BZOxWe ka/oq6yRZaM0JsUgi1Il -----END CERTIFICATE-----Generated at Mon Oct 20 02:49:56 2025 by rpki-client