$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635303a3a2f34382d3438203d3e20323039373130.roa File: 326131343a373538303a666635303a3a2f34382d3438203d3e20323039373130.roa (raw, json) Hash identifier: RhrZumuCHn+6y3yZr34sdgh4sb8kS47/Ka9E3B3UluQ= Subject key identifier: 0C:5D:31:90:E0:95:D8:66:E4:63:46:79:8F:0E:05:5F:32:44:9C:56 Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 54AF652B80801D91C93ADDD3214F8FCCAC9E1ED2 Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635303a3a2f34382d3438203d3e20323039373130.roa Signing time: Mon 15 Sep 2025 06:47:00 +0000 ROA not before: Mon 15 Sep 2025 06:42:00 +0000 ROA not after: Mon 14 Sep 2026 06:47:00 +0000 asID: 209710 IP address blocks: 2a14:7580:ff50::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 21:16:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:af:65:2b:80:80:1d:91:c9:3a:dd:d3:21:4f:8f:cc:ac:9e:1e:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: Sep 15 06:42:00 2025 GMT Not After : Sep 14 06:47:00 2026 GMT Subject: CN=0C5D3190E095D866E46346798F0E055F32449C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:23:c1:b3:67:4e:c9:45:82:cd:bc:4b:a9: 38:c7:6f:b0:23:29:22:80:32:1b:7a:b9:0e:7c:9c: dd:d4:c1:8a:88:de:94:20:ce:83:3b:1a:54:ae:b3: 8f:88:5f:95:7d:e8:b3:a4:5d:a7:b8:b2:1f:ea:f7: bb:89:96:7e:84:fe:83:d8:37:a7:78:8f:92:93:73: 38:cb:69:06:3b:53:e2:71:86:09:f7:1d:2b:3a:ae: 05:d5:5e:61:59:05:4f:3b:bc:1d:f2:54:f6:ee:f6: 96:ac:5f:fb:40:11:c4:d2:27:c3:6f:7f:24:fd:70: 13:ed:fc:ce:4e:71:29:5b:b8:81:4c:a3:3b:56:f7: be:5a:44:85:4a:98:48:d7:11:ec:18:4e:60:f6:4b: db:df:7e:7a:d6:cf:01:86:5c:c1:74:38:58:b9:9c: db:34:a3:4c:ef:53:74:78:7a:02:87:d7:91:6c:25: b0:48:25:62:22:17:97:34:87:5b:1e:f4:80:48:0b: 30:31:49:23:80:54:8b:00:a0:83:7a:6b:2a:e2:d1: 9d:42:8a:e3:80:d5:f6:00:08:03:1d:71:d8:4a:04: 17:c2:56:90:2f:c1:78:6c:00:34:d2:f0:05:b6:0d: 4d:99:e7:5c:4e:2b:cc:e8:07:3c:09:79:4f:c7:37: c7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5D:31:90:E0:95:D8:66:E4:63:46:79:8F:0E:05:5F:32:44:9C:56 X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635303a3a2f34382d3438203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff50::/48 Signature Algorithm: sha256WithRSAEncryption d1:3a:21:a5:3b:1e:20:ec:b4:e9:50:b0:a7:0b:37:1a:37:05: 46:70:6b:0e:e9:08:a6:59:49:69:55:c1:dc:3c:2c:28:18:c4: 04:5a:1f:bc:99:ce:a7:af:56:1d:b7:c1:cd:d2:32:fc:df:09: fb:10:65:33:6a:46:5f:d7:a6:68:63:c9:45:39:bd:4e:4d:0c: 13:3a:4a:ab:67:d1:f6:63:28:62:59:95:49:cd:33:d6:04:f2: c7:94:b5:68:18:7e:f1:e5:95:2b:6e:9a:64:3d:62:94:f0:d4: b2:bc:65:e3:8f:12:92:dc:d3:0f:04:da:31:9f:05:c7:c0:0c: db:38:ef:ad:ea:fb:4b:71:0e:bb:00:cf:d5:ee:cc:a0:19:8d: 26:af:eb:df:56:69:c5:5c:f6:3f:37:74:70:00:08:3e:2e:4f: 2c:b8:3a:80:dc:87:1a:49:1e:f8:86:bc:22:d0:14:4d:36:91: ba:5b:04:d4:dd:5a:77:97:a9:b0:86:65:b0:3d:b7:ce:1b:c5: ca:31:ce:e0:cf:c0:bf:f3:0f:82:31:86:18:9b:23:e3:70:9e: 96:8e:9c:3d:b4:74:e1:22:24:5b:7f:ca:9b:e7:af:36:cb:a0: 99:f7:f3:7e:25:fc:71:f2:e2:d2:55:36:4a:c3:65:53:c4:ef: d0:56:7d:68 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVK9lK4CAHZHJOt3TIU+PzKyeHtIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNTA5MTUwNjQyMDBaFw0yNjA5MTQwNjQ3MDBaMDMxMTAvBgNV BAMTKDBDNUQzMTkwRTA5NUQ4NjZFNDYzNDY3OThGMEUwNTVGMzI0NDlDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4DiPBs2dOyUWCzbxLqTjHb7Aj KSKAMht6uQ58nN3UwYqI3pQgzoM7GlSus4+IX5V96LOkXae4sh/q97uJln6E/oPY N6d4j5KTczjLaQY7U+Jxhgn3HSs6rgXVXmFZBU87vB3yVPbu9pasX/tAEcTSJ8Nv fyT9cBPt/M5OcSlbuIFMoztW975aRIVKmEjXEewYTmD2S9vffnrWzwGGXMF0OFi5 nNs0o0zvU3R4egKH15FsJbBIJWIiF5c0h1se9IBICzAxSSOAVIsAoIN6ayri0Z1C iuOA1fYACAMdcdhKBBfCVpAvwXhsADTS8AW2DU2Z51xOK8zoBzwJeU/HN8c1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUDF0xkOCV2GbkY0Z5jw4FXzJEnFYwHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzczMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9QMA0GCSqGSIb3DQEBCwUAA4IBAQDR OiGlOx4g7LTpULCnCzcaNwVGcGsO6QimWUlpVcHcPCwoGMQEWh+8mc6nr1Ydt8HN 0jL83wn7EGUzakZf16ZoY8lFOb1OTQwTOkqrZ9H2YyhiWZVJzTPWBPLHlLVoGH7x 5ZUrbppkPWKU8NSyvGXjjxKS3NMPBNoxnwXHwAzbOO+t6vtLcQ67AM/V7sygGY0m r+vfVmnFXPY/N3RwAAg+Lk8suDqA3IcaSR74hrwi0BRNNpG6WwTU3Vp3l6mwhmWw PbfOG8XKMc7gz8C/8w+CMYYYmyPjcJ6Wjpw9tHThIiRbf8qb5682y6CZ9/N+Jfxx 8uLSVTZKw2VTxO/QVn1o -----END CERTIFICATE-----Generated at Mon Oct 20 09:59:27 2025 by rpki-client