$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436303a3a2f34342d3438203d3e20323131353735.roa File: 326131343a373538333a663436303a3a2f34342d3438203d3e20323131353735.roa (raw, json) Hash identifier: LMFmuLJ4IgxIQCv2slhgNeKFDMCx6rSWhmkOn3RblbI= Subject key identifier: 87:71:7B:25:4C:97:93:C1:A1:05:A7:21:66:C6:70:5A:F7:A1:86:28 Certificate issuer: /CN=B149F23A3E99C4760297DD7104B400C835D86D19 Certificate serial: 2280D642407C98A91543C3770D38BB9634BE5F47 Authority key identifier: B1:49:F2:3A:3E:99:C4:76:02:97:DD:71:04:B4:00:C8:35:D8:6D:19 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436303a3a2f34342d3438203d3e20323131353735.roa Signing time: Wed 24 Sep 2025 03:25:15 +0000 ROA not before: Wed 24 Sep 2025 03:20:15 +0000 ROA not after: Wed 23 Sep 2026 03:25:15 +0000 asID: 211575 IP address blocks: 2a14:7583:f460::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.crl rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:80:d6:42:40:7c:98:a9:15:43:c3:77:0d:38:bb:96:34:be:5f:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B149F23A3E99C4760297DD7104B400C835D86D19 Validity Not Before: Sep 24 03:20:15 2025 GMT Not After : Sep 23 03:25:15 2026 GMT Subject: CN=87717B254C9793C1A105A72166C6705AF7A18628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:64:d7:ae:ff:dd:b6:4f:79:90:f9:fc:ac:fb: 8f:91:f2:a4:fe:bd:73:05:cd:fc:b4:51:b5:9e:30: 08:48:00:e1:11:61:7e:b5:99:2a:84:2e:f2:51:71: b8:0f:b7:13:f9:53:cc:9f:9c:b0:bf:2a:27:d7:44: 30:2c:df:1a:66:a0:ac:47:49:57:39:90:ff:26:04: 79:8d:0a:b1:08:fd:60:78:59:56:16:27:b2:4d:cb: a8:33:ba:d7:4e:0d:d9:ef:cd:52:02:4e:2c:79:68: 88:b9:ef:6e:6e:3d:d8:70:f5:8f:97:93:f1:28:84: 0f:5d:20:bf:eb:d2:d8:10:1a:b3:88:2c:89:8b:a5: 1c:dd:4d:da:ef:60:63:e7:ca:2f:55:68:50:8a:10: 41:1f:81:ae:18:94:43:bd:ba:41:f1:a4:44:f3:d9: 0f:8a:35:4f:f4:b4:49:95:0e:c7:48:49:a3:51:6c: 03:50:3b:24:01:61:47:2a:6f:af:b8:f5:ad:c9:fa: cd:9c:78:66:28:c9:9a:31:13:b4:1f:cc:04:30:5f: f9:1d:ba:85:4b:e2:b8:ff:2d:90:c5:3f:1e:fb:7a: 3e:af:22:99:21:69:fe:aa:01:aa:20:bc:16:8c:ef: 8b:a1:d6:47:4a:fd:fc:d2:41:09:9f:84:4f:ee:b7: e7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:71:7B:25:4C:97:93:C1:A1:05:A7:21:66:C6:70:5A:F7:A1:86:28 X509v3 Authority Key Identifier: keyid:B1:49:F2:3A:3E:99:C4:76:02:97:DD:71:04:B4:00:C8:35:D8:6D:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436303a3a2f34342d3438203d3e20323131353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f460::/44 Signature Algorithm: sha256WithRSAEncryption 53:40:e5:8e:ad:0c:42:6f:c0:ad:cf:3c:96:1d:1a:5c:4b:57: 77:1b:63:6a:15:bb:39:bb:d6:44:9c:e1:bd:e9:fb:99:db:e8: ea:10:ec:e0:b8:33:83:87:63:98:e6:91:74:9a:cb:92:a2:dc: 2e:a3:77:3f:bf:3c:fc:40:31:0e:1e:f4:a0:9f:6c:01:7b:74: 60:f1:c5:75:b2:04:c3:52:93:6e:f5:05:92:2b:1f:ac:bb:d7: 89:0a:5e:f9:b6:c5:34:d8:ba:10:37:6c:8a:a6:9a:c2:1c:e2: f4:47:a1:d4:e4:70:9b:e0:66:e8:c2:57:9d:11:25:f1:3e:26: a4:f6:a1:4c:9e:2e:c8:14:e2:9a:db:59:c3:5c:6b:fe:93:28: 97:1e:6b:4b:fa:ef:19:5d:a5:f9:56:17:a2:3e:e2:12:05:2d: 72:a9:75:62:6a:f5:ed:70:f0:3c:fb:af:93:01:90:ab:0a:11: 93:15:4c:64:9e:5d:cc:3c:91:52:3f:c7:7b:48:57:e0:42:2b: fb:69:ac:ed:fd:cc:a7:b8:88:56:56:39:f1:f0:e2:d1:cd:95: a6:d9:9b:00:36:87:3f:8b:4e:67:f9:74:73:e7:fb:23:81:1d: ce:77:2e:71:38:ab:f7:f4:4a:c7:e6:58:a7:1c:d9:21:27:a5: a3:68:02:35 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIoDWQkB8mKkVQ8N3DTi7ljS+X0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0OUYyM0EzRTk5QzQ3NjAyOTdERDcxMDRCNDAwQzgz NUQ4NkQxOTAeFw0yNTA5MjQwMzIwMTVaFw0yNjA5MjMwMzI1MTVaMDMxMTAvBgNV BAMTKDg3NzE3QjI1NEM5NzkzQzFBMTA1QTcyMTY2QzY3MDVBRjdBMTg2MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfZNeu/922T3mQ+fys+4+R8qT+ vXMFzfy0UbWeMAhIAOERYX61mSqELvJRcbgPtxP5U8yfnLC/KifXRDAs3xpmoKxH SVc5kP8mBHmNCrEI/WB4WVYWJ7JNy6gzutdODdnvzVICTix5aIi5725uPdhw9Y+X k/EohA9dIL/r0tgQGrOILImLpRzdTdrvYGPnyi9VaFCKEEEfga4YlEO9ukHxpETz 2Q+KNU/0tEmVDsdISaNRbANQOyQBYUcqb6+49a3J+s2ceGYoyZoxE7QfzAQwX/kd uoVL4rj/LZDFPx77ej6vIpkhaf6qAaogvBaM74uh1kdK/fzSQQmfhE/ut+f9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUh3F7JUyXk8GhBachZsZwWvehhigwHwYDVR0j BBgwFoAUsUnyOj6ZxHYCl91xBLQAyDXYbRkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTgxZjk3ODItODk4ZS00YjgzLTk1ZTYtNGZmNGFiNzVj OWRjLzIvQjE0OUYyM0EzRTk5QzQ3NjAyOTdERDcxMDRCNDAwQzgzNUQ4NkQxOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9CMTQ5RjIzQTNFOTlDNDc2MDI5N0RENzEw NEI0MDBDODM1RDg2RDE5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ODFmOTc4Mi04OThlLTRiODMtOTVlNi00ZmY0YWI3NWM5ZGMvMi8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzQzNjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1g/RgMA0GCSqGSIb3DQEBCwUAA4IBAQBT QOWOrQxCb8CtzzyWHRpcS1d3G2NqFbs5u9ZEnOG96fuZ2+jqEOzguDODh2OY5pF0 msuSotwuo3c/vzz8QDEOHvSgn2wBe3Rg8cV1sgTDUpNu9QWSKx+su9eJCl75tsU0 2LoQN2yKpprCHOL0R6HU5HCb4GbowledESXxPiak9qFMni7IFOKa21nDXGv+kyiX HmtL+u8ZXaX5VheiPuISBS1yqXViavXtcPA8+6+TAZCrChGTFUxknl3MPJFSP8d7 SFfgQiv7aazt/cynuIhWVjnx8OLRzZWm2ZsANoc/i05n+XRz5/sjgR3Ody5xOKv3 9ErH5linHNkhJ6WjaAI1 -----END CERTIFICATE-----Generated at Mon Oct 20 00:49:28 2025 by rpki-client