$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa File: 326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa (raw, json) Hash identifier: 6SMGzy0qxU/C5+Cz9d8WI56z67FiL2uOHLuZUmmEFig= Subject key identifier: CE:BC:7C:45:D4:0D:25:2E:61:76:A5:CD:68:E5:4F:B5:D7:7E:B1:4E Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 5DAC87B170D50357BF64359809146B87E1822554 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa Signing time: Sat 07 Jun 2025 21:44:15 +0000 ROA not before: Sat 07 Jun 2025 21:39:15 +0000 ROA not after: Sat 06 Jun 2026 21:44:15 +0000 asID: 215084 IP address blocks: 2a14:7581:a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ac:87:b1:70:d5:03:57:bf:64:35:98:09:14:6b:87:e1:82:25:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 7 21:39:15 2025 GMT Not After : Jun 6 21:44:15 2026 GMT Subject: CN=CEBC7C45D40D252E6176A5CD68E54FB5D77EB14E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:b6:49:a9:1f:09:60:80:18:0e:7b:34:63: 58:fb:d6:ab:4c:a6:9a:8e:00:e0:36:0c:49:39:72: 03:cd:38:f1:41:b2:a1:b1:1a:2a:ce:39:9f:e5:e7: fb:bc:20:5c:ce:3f:67:ed:be:6f:ce:04:6e:d3:0b: 56:9d:4d:9b:85:19:ae:59:19:52:78:2d:90:e4:76: 16:a8:b3:5d:ae:fa:55:9f:0e:8d:4c:ad:81:e5:e8: 42:5d:a0:24:93:58:4e:a0:c4:27:1c:92:e7:ce:47: ba:08:bd:3e:a7:a3:98:2a:06:49:3b:9a:e4:28:7a: e5:a3:a6:44:ab:63:02:89:fc:f5:d2:b3:4a:f7:0c: 28:2b:78:9f:73:c6:41:5b:e9:89:48:c7:ba:5a:bf: f7:3b:a5:83:21:57:2b:b7:83:36:fa:54:20:16:9c: f9:0f:d7:c7:00:af:f9:f6:07:77:8a:d5:bb:27:a8: 18:7e:a1:13:16:3b:c4:a8:89:94:d7:38:f0:67:1e: 02:3e:f9:88:76:f7:5c:39:44:9e:76:2e:86:6f:c6: 10:87:61:fb:51:dd:b9:e8:32:43:e8:ab:67:0c:a5: 8f:b7:af:17:27:3d:83:2e:61:2a:dc:57:b9:fa:9c: af:3e:e8:7a:3e:9a:cc:74:68:64:55:83:07:a5:2c: 34:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BC:7C:45:D4:0D:25:2E:61:76:A5:CD:68:E5:4F:B5:D7:7E:B1:4E X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:a00::/40 Signature Algorithm: sha256WithRSAEncryption 4c:2c:98:84:a3:f0:54:da:46:0a:16:7c:03:20:8c:be:cb:b5: 9f:fb:c9:4c:e9:b1:41:4c:fe:a2:68:78:94:a7:20:d1:90:69: 70:f6:3f:95:fb:8a:06:6f:b7:b6:2a:f9:fb:71:27:36:88:21: 75:7a:85:e5:2e:db:ca:3b:f3:95:34:55:cb:55:78:b9:cc:be: 11:2f:29:18:74:66:dc:13:12:27:ee:d4:b6:ef:c7:af:2e:e0: fa:47:e1:42:fb:bd:a8:37:ec:b6:f1:32:c4:51:60:8d:79:45: 18:a4:50:c1:c1:85:74:22:96:5c:f1:98:71:b4:c2:6c:e8:60: a0:69:7e:1d:16:43:c4:08:98:86:7e:f1:61:3f:04:37:c8:89: b0:63:cb:f0:a6:25:10:d8:48:1d:7e:f5:ad:1d:55:4b:df:c2: 0c:c2:cf:ba:b0:9c:39:fb:4d:2c:2b:9b:f3:47:13:b8:cf:c9: 74:c7:55:b5:97:66:c2:54:2a:ce:3e:be:8d:05:53:63:00:45: 53:4d:18:fa:c9:c3:d7:a6:a2:1f:80:d8:55:90:0f:60:49:a6: 5a:38:8e:d1:af:ee:c5:61:22:36:aa:9e:10:de:2c:13:de:b9: fc:5f:e6:f8:70:db:20:8b:f7:c8:42:05:77:ae:9d:a0:53:d2: f4:ff:f8:d1 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUXayHsXDVA1e/ZDWYCRRrh+GCJVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNTA2MDcyMTM5MTVaFw0yNjA2MDYyMTQ0MTVaMDMxMTAvBgNV BAMTKENFQkM3QzQ1RDQwRDI1MkU2MTc2QTVDRDY4RTU0RkI1RDc3RUIxNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL6rZJqR8JYIAYDns0Y1j71qtM ppqOAOA2DEk5cgPNOPFBsqGxGirOOZ/l5/u8IFzOP2ftvm/OBG7TC1adTZuFGa5Z GVJ4LZDkdhaos12u+lWfDo1MrYHl6EJdoCSTWE6gxCcckufOR7oIvT6no5gqBkk7 muQoeuWjpkSrYwKJ/PXSs0r3DCgreJ9zxkFb6YlIx7pav/c7pYMhVyu3gzb6VCAW nPkP18cAr/n2B3eK1bsnqBh+oRMWO8SoiZTXOPBnHgI++Yh291w5RJ52LoZvxhCH YftR3bnoMkPoq2cMpY+3rxcnPYMuYSrcV7n6nK8+6Ho+msx0aGRVgwelLDSXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUzrx8RdQNJS5hdqXNaOVPtdd+sU4wHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTYxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NTMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYEKMA0GCSqGSIb3DQEBCwUAA4IBAQBMLJiE o/BU2kYKFnwDIIy+y7Wf+8lM6bFBTP6iaHiUpyDRkGlw9j+V+4oGb7e2Kvn7cSc2 iCF1eoXlLtvKO/OVNFXLVXi5zL4RLykYdGbcExIn7tS278evLuD6R+FC+72oN+y2 8TLEUWCNeUUYpFDBwYV0IpZc8ZhxtMJs6GCgaX4dFkPECJiGfvFhPwQ3yImwY8vw piUQ2EgdfvWtHVVL38IMws+6sJw5+00sK5vzRxO4z8l0x1W1l2bCVCrOPr6NBVNj AEVTTRj6ycPXpqIfgNhVkA9gSaZaOI7Rr+7FYSI2qp4Q3iwT3rn8X+b4cNsgi/fI QgV3rp2gU9L0//jR -----END CERTIFICATE-----Generated at Sun Jun 29 23:38:31 2025 by rpki-client