$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366330303a3a2f34302d3438203d3e20313938393534.roa File: 326131343a373538313a366330303a3a2f34302d3438203d3e20313938393534.roa (raw, json) Hash identifier: CPLOajH+w286G+wKIl8yAgvbHEMrq4vLK7hbXUBSbrM= Subject key identifier: 92:D4:96:8B:85:F5:AB:62:BE:15:E7:CB:CC:82:D1:09:6B:5D:AE:9B Certificate issuer: /CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Certificate serial: 4A21B98BB1453EE5680908DA20331902E6DAF2EB Authority key identifier: 89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366330303a3a2f34302d3438203d3e20313938393534.roa Signing time: Sun 17 Aug 2025 12:23:59 +0000 ROA not before: Sun 17 Aug 2025 12:18:59 +0000 ROA not after: Sun 16 Aug 2026 12:23:59 +0000 asID: 198954 IP address blocks: 2a14:7581:6c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Aug 2025 12:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:21:b9:8b:b1:45:3e:e5:68:09:08:da:20:33:19:02:e6:da:f2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Validity Not Before: Aug 17 12:18:59 2025 GMT Not After : Aug 16 12:23:59 2026 GMT Subject: CN=92D4968B85F5AB62BE15E7CBCC82D1096B5DAE9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:0f:69:08:8a:c8:0f:41:5c:aa:37:5b:84: 9e:44:81:64:c8:33:5b:c2:5f:98:d4:31:c6:0f:7b: e5:7f:6b:c1:ce:7b:1e:4c:07:3d:b1:1d:ff:ec:22: d1:51:31:aa:bd:9c:ff:dd:5f:73:ff:4b:b8:2a:99: ab:fa:6b:97:13:bf:50:6b:bf:aa:75:cc:71:0e:3e: 25:27:90:b1:92:6f:e6:62:5d:35:01:e2:ea:f6:f3: 65:96:a0:0f:06:d9:fc:a8:ff:75:94:cb:92:2b:fe: f9:f7:44:d1:2b:4c:41:d5:71:12:c0:d8:b9:09:e6: 53:33:ad:06:c7:27:97:01:e9:45:18:53:33:55:8e: b1:7e:4e:0f:ce:b9:d8:c0:42:c2:81:f7:00:fd:9e: d3:62:de:dd:0a:97:18:52:a2:ef:d7:08:9b:44:a0: 38:c4:0f:38:95:41:99:df:8a:c3:59:83:7e:2f:5f: 33:cf:40:26:be:0f:25:45:83:77:d0:b2:b5:59:72: 14:1f:cc:79:dc:a0:07:2b:2c:71:16:bc:9c:aa:55: 30:ca:62:4a:c2:54:2d:03:cf:93:78:0d:a4:36:fe: a0:cb:f8:d5:51:ec:19:c8:ad:3b:12:e3:4f:49:52: 88:79:7d:05:cc:a7:2d:13:4f:bf:a3:18:63:d9:3e: fc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D4:96:8B:85:F5:AB:62:BE:15:E7:CB:CC:82:D1:09:6B:5D:AE:9B X509v3 Authority Key Identifier: keyid:89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366330303a3a2f34302d3438203d3e20313938393534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6c00::/40 Signature Algorithm: sha256WithRSAEncryption 11:d5:88:a6:f6:46:52:c8:c2:99:7e:8c:e9:46:dc:c3:93:d2: 06:81:68:99:1f:dd:1d:6c:0c:2a:16:85:18:9d:74:f7:fc:e4: dd:9f:77:86:aa:e6:b7:3b:0d:49:7c:f4:3f:a7:b9:11:f4:ad: c7:7b:e2:42:e6:2c:91:a2:93:78:12:2a:07:ba:6e:dc:f7:63: af:ee:c7:98:b1:6e:46:69:f2:c0:8f:70:60:2f:6e:e6:0e:57: ea:5c:68:f3:9c:db:04:41:90:44:81:95:2f:76:81:d0:97:cc: 5d:e0:9e:24:4c:98:c4:80:cd:30:50:86:3e:32:21:6b:9b:d0: 92:ef:7e:e7:46:0b:99:17:c1:29:c3:f9:61:ff:9c:bc:92:48: 9d:48:06:f9:05:e1:ec:c0:4c:73:33:b7:da:97:a5:23:eb:e7: 06:92:5b:d1:71:e2:6b:a9:0e:b3:3b:3f:bc:37:6a:fa:34:d1: 2b:3e:e0:36:80:5e:d2:8d:cc:a3:6b:55:d1:de:5a:64:21:67: 74:5c:f4:f4:b5:9d:ae:80:06:f8:3d:68:31:5e:27:c5:21:a9: 15:6a:59:1a:d3:41:7c:f9:a7:ec:c1:29:11:e9:41:13:ac:da: 9f:76:aa:53:c6:a7:bf:21:81:c2:c4:61:ca:39:d7:fd:48:15: 1c:42:dd:18 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUSiG5i7FFPuVoCQjaIDMZAuba8uswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBC OEYxMjA2QjAeFw0yNTA4MTcxMjE4NTlaFw0yNjA4MTYxMjIzNTlaMDMxMTAvBgNV BAMTKDkyRDQ5NjhCODVGNUFCNjJCRTE1RTdDQkNDODJEMTA5NkI1REFFOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC94A9pCIrID0FcqjdbhJ5EgWTI M1vCX5jUMcYPe+V/a8HOex5MBz2xHf/sItFRMaq9nP/dX3P/S7gqmav6a5cTv1Br v6p1zHEOPiUnkLGSb+ZiXTUB4ur282WWoA8G2fyo/3WUy5Ir/vn3RNErTEHVcRLA 2LkJ5lMzrQbHJ5cB6UUYUzNVjrF+Tg/OudjAQsKB9wD9ntNi3t0KlxhSou/XCJtE oDjEDziVQZnfisNZg34vXzPPQCa+DyVFg3fQsrVZchQfzHncoAcrLHEWvJyqVTDK YkrCVC0Dz5N4DaQ2/qDL+NVR7BnIrTsS409JUoh5fQXMpy0TT7+jGGPZPvy7AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUktSWi4X1q2K+FefLzILRCWtdrpswHwYDVR0j BBgwFoAUiT/UG94ibFTyrSs92hnBoLjxIGswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFjZmEzMTgtMmE1Yy00MjQxLWFmYmItMzg3ZDcxZThj NTk2LzEvODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBCOEYxMjA2Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84OTNGRDQxQkRFMjI2QzU0RjJBRDJCM0RE QTE5QzFBMEI4RjEyMDZCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84YWNmYTMxOC0yYTVjLTQyNDEtYWZiYi0zODdkNzFlOGM1OTYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzEz OTM4MzkzNTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gWwwDQYJKoZIhvcNAQELBQADggEBABHV iKb2RlLIwpl+jOlG3MOT0gaBaJkf3R1sDCoWhRiddPf85N2fd4aq5rc7DUl89D+n uRH0rcd74kLmLJGik3gSKge6btz3Y6/ux5ixbkZp8sCPcGAvbuYOV+pcaPOc2wRB kESBlS92gdCXzF3gniRMmMSAzTBQhj4yIWub0JLvfudGC5kXwSnD+WH/nLySSJ1I BvkF4ezATHMzt9qXpSPr5waSW9Fx4mupDrM7P7w3avo00Ss+4DaAXtKNzKNrVdHe WmQhZ3Rc9PS1na6ABvg9aDFeJ8UhqRVqWRrTQXz5p+zBKRHpQROs2p92qlPGp78h gcLEYco51/1IFRxC3Rg= -----END CERTIFICATE-----Generated at Mon Aug 25 06:21:12 2025 by rpki-client