$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa File: 326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa (raw, json) Hash identifier: hrByc0YcQ234/x8UEtDNAf8Sm6LTul06kkE34/Fodlo= Subject key identifier: A2:F1:C2:8A:61:98:6B:D6:5C:1B:B1:60:75:2C:D8:42:42:40:65:90 Certificate issuer: /CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Certificate serial: 424EF877B057520C39C56729E62D1B56C02DFF96 Authority key identifier: 89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa Signing time: Fri 08 Aug 2025 06:55:13 +0000 ROA not before: Fri 08 Aug 2025 06:50:13 +0000 ROA not after: Fri 07 Aug 2026 06:55:13 +0000 asID: 205329 IP address blocks: 2a14:7581:6d00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:4e:f8:77:b0:57:52:0c:39:c5:67:29:e6:2d:1b:56:c0:2d:ff:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B Validity Not Before: Aug 8 06:50:13 2025 GMT Not After : Aug 7 06:55:13 2026 GMT Subject: CN=A2F1C28A61986BD65C1BB160752CD84242406590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:c0:69:16:df:86:0d:6f:ae:4b:e2:d6:33:d7: ee:50:65:e5:11:e0:64:be:53:30:de:7b:e1:d3:bb: a5:e9:c9:6a:57:2c:f5:5c:2e:59:2f:c7:86:f5:01: 86:8c:79:6d:75:1c:53:f8:1f:06:07:ed:b1:18:79: 87:13:f8:93:ea:35:18:b0:b0:c9:20:72:d0:b1:87: 4a:44:f0:1a:03:9a:6a:d3:35:cc:ef:f3:75:30:32: 73:e8:53:89:16:6f:5d:b1:06:08:23:cc:fa:a2:b3: 60:23:56:87:20:68:60:65:79:ca:41:d8:52:d6:61: 22:a0:65:d1:fb:dd:88:47:1d:29:6f:f4:70:24:2c: 52:3e:26:1f:0e:ef:cd:72:67:21:56:93:aa:6d:26: bd:d9:4e:1c:68:da:4f:e9:45:09:39:78:3d:12:c7: 8f:97:ad:71:70:d8:2d:44:7d:4d:01:63:32:d5:52: 26:9a:ca:a3:72:12:2a:7c:ed:91:2c:32:f7:6e:94: c4:2d:98:1d:68:fd:8b:57:a4:d8:77:6e:14:1e:3c: 30:56:90:97:f0:2f:c7:6a:20:c3:a0:55:c4:ef:0b: 7d:04:02:fe:26:15:e3:7a:e6:44:ba:a7:fe:49:f8: 74:92:6f:6e:dc:e4:e7:ad:da:ce:c2:fa:b9:70:ce: 18:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F1:C2:8A:61:98:6B:D6:5C:1B:B1:60:75:2C:D8:42:42:40:65:90 X509v3 Authority Key Identifier: keyid:89:3F:D4:1B:DE:22:6C:54:F2:AD:2B:3D:DA:19:C1:A0:B8:F1:20:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/893FD41BDE226C54F2AD2B3DDA19C1A0B8F1206B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8acfa318-2a5c-4241-afbb-387d71e8c596/1/326131343a373538313a366430303a3a2f34302d3438203d3e20323035333239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6d00::/40 Signature Algorithm: sha256WithRSAEncryption 14:a0:6a:ac:38:35:ab:e0:96:75:a1:af:d1:91:38:15:cd:83: 87:72:79:04:69:a6:20:cf:2e:0f:38:23:d5:2f:b5:92:53:b3: f1:16:aa:d7:bd:cf:f9:99:db:9f:d6:0d:4e:0b:23:4d:de:c3: e7:0d:53:b1:71:40:61:d7:d7:5c:1f:18:c6:62:6e:28:31:b0: 45:b4:01:a0:b9:1d:a2:6d:5f:b6:00:25:42:c3:98:b8:9d:12: 05:d6:15:00:08:a8:09:fc:7b:fd:fb:43:3d:81:95:81:87:43: 7c:fb:34:b7:40:6f:59:03:35:96:c6:a1:26:ab:57:ef:55:75: 8e:63:f8:40:dd:4e:73:e3:41:7a:b8:c2:8e:11:3e:1f:a3:a3: b5:84:e9:4e:9e:16:74:48:04:1d:32:53:05:35:7b:86:77:f6: b3:49:17:44:b2:8f:c6:df:05:20:08:51:f9:44:c3:12:fa:3a: 5b:1d:f6:33:03:b1:3b:2b:d4:1f:5c:34:db:86:23:39:f6:e6: ef:67:4d:8d:53:17:5d:ee:fb:c0:6b:d7:a4:c1:ce:1c:46:31: 52:c0:a6:ba:64:8e:61:54:e9:3e:7d:79:7f:3b:b2:a8:67:4d: a2:bb:72:5b:26:2e:65:25:1b:b8:32:60:66:66:9c:2d:b2:77: 8c:83:80:f0 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUQk74d7BXUgw5xWcp5i0bVsAt/5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBC OEYxMjA2QjAeFw0yNTA4MDgwNjUwMTNaFw0yNjA4MDcwNjU1MTNaMDMxMTAvBgNV BAMTKEEyRjFDMjhBNjE5ODZCRDY1QzFCQjE2MDc1MkNEODQyNDI0MDY1OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfwGkW34YNb65L4tYz1+5QZeUR 4GS+UzDee+HTu6XpyWpXLPVcLlkvx4b1AYaMeW11HFP4HwYH7bEYeYcT+JPqNRiw sMkgctCxh0pE8BoDmmrTNczv83UwMnPoU4kWb12xBggjzPqis2AjVocgaGBlecpB 2FLWYSKgZdH73YhHHSlv9HAkLFI+Jh8O781yZyFWk6ptJr3ZThxo2k/pRQk5eD0S x4+XrXFw2C1EfU0BYzLVUiaayqNyEip87ZEsMvdulMQtmB1o/YtXpNh3bhQePDBW kJfwL8dqIMOgVcTvC30EAv4mFeN65kS6p/5J+HSSb27c5Oet2s7C+rlwzhj3AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUovHCimGYa9ZcG7FgdSzYQkJAZZAwHwYDVR0j BBgwFoAUiT/UG94ibFTyrSs92hnBoLjxIGswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGFjZmEzMTgtMmE1Yy00MjQxLWFmYmItMzg3ZDcxZThj NTk2LzEvODkzRkQ0MUJERTIyNkM1NEYyQUQyQjNEREExOUMxQTBCOEYxMjA2Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84OTNGRDQxQkRFMjI2QzU0RjJBRDJCM0RE QTE5QzFBMEI4RjEyMDZCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84YWNmYTMxOC0yYTVjLTQyNDEtYWZiYi0zODdkNzFlOGM1OTYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjQzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM1MzMzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gW0wDQYJKoZIhvcNAQELBQADggEBABSg aqw4NavglnWhr9GROBXNg4dyeQRppiDPLg84I9UvtZJTs/EWqte9z/mZ25/WDU4L I03ew+cNU7FxQGHX11wfGMZibigxsEW0AaC5HaJtX7YAJULDmLidEgXWFQAIqAn8 e/37Qz2BlYGHQ3z7NLdAb1kDNZbGoSarV+9VdY5j+EDdTnPjQXq4wo4RPh+jo7WE 6U6eFnRIBB0yUwU1e4Z39rNJF0Syj8bfBSAIUflEwxL6Olsd9jMDsTsr1B9cNNuG Izn25u9nTY1TF13u+8Br16TBzhxGMVLAprpkjmFU6T59eX87sqhnTaK7clsmLmUl G7gyYGZmnC2yd4yDgPA= -----END CERTIFICATE-----Generated at Sat Aug 23 21:15:41 2025 by rpki-client