$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634353a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666634353a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: 5PYc1rYfh5soL/5eOkdLi7LFwnLpj6iEncugTNMnU6k= Subject key identifier: 4A:6D:84:71:50:D3:76:33:D3:DB:5A:71:90:D0:6F:3B:4B:EB:05:88 Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 48732E0A12AA76D42AEAEB52E0EBD2FDC08C1AA8 Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634353a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 23 Aug 2025 13:11:42 +0000 ROA not before: Sat 23 Aug 2025 13:06:42 +0000 ROA not after: Sat 22 Aug 2026 13:11:42 +0000 asID: 214344 IP address blocks: 2a14:7580:ff45::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Aug 2025 20:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:73:2e:0a:12:aa:76:d4:2a:ea:eb:52:e0:eb:d2:fd:c0:8c:1a:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: Aug 23 13:06:42 2025 GMT Not After : Aug 22 13:11:42 2026 GMT Subject: CN=4A6D847150D37633D3DB5A7190D06F3B4BEB0588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:64:71:07:32:2e:56:54:2f:0d:43:cc:d3:12: 69:45:04:6c:7b:d2:e1:f6:31:5c:b6:6a:33:1d:b5: 51:c9:93:87:05:a0:7f:44:30:2e:49:cb:b5:9e:32: 9e:ab:a2:3d:6a:ca:ae:f3:6f:65:21:f5:07:63:ff: 06:b5:5b:0f:60:ec:99:44:a3:ae:1a:e7:71:0e:7f: 76:34:96:c9:3d:64:2e:20:b6:b5:33:65:b1:18:d4: 9d:5d:cc:2e:42:78:63:ae:42:21:74:7b:43:ea:e4: 45:14:4b:0d:72:34:91:54:ad:b7:cc:f4:7a:93:38: 84:a9:14:c5:82:9e:3f:a4:29:53:89:03:ba:6f:59: 55:1c:2f:d8:fe:55:dc:55:10:2d:8d:25:ac:de:1c: 41:1c:63:81:8c:ca:b5:61:ef:65:96:7b:21:50:48: 2f:2b:7c:8d:e4:a5:3e:01:a4:00:d1:77:68:40:00: 68:c2:5d:e6:3b:b7:3f:be:3c:97:ba:ee:46:a9:22: d8:98:17:16:72:e3:4f:00:96:c3:11:a3:2d:88:12: 5d:57:ce:35:e6:79:73:05:4b:72:f9:a4:d0:da:24: f0:c2:71:47:f7:71:9d:83:6d:dd:79:1c:8f:bc:72: 2d:c4:4c:50:f0:d2:e6:4f:be:a1:5a:f7:24:b2:32: 18:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6D:84:71:50:D3:76:33:D3:DB:5A:71:90:D0:6F:3B:4B:EB:05:88 X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634353a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff45::/48 Signature Algorithm: sha256WithRSAEncryption 2c:8b:1c:71:ee:4a:d5:fb:46:d0:25:46:0e:e7:01:d5:6f:1b: 69:d5:1b:5f:53:c0:05:d1:c6:f7:d5:a8:e3:bd:30:af:4d:44: 36:f0:e6:73:13:f7:49:86:a2:e9:00:8a:e6:cb:eb:70:19:4c: d2:e6:07:45:c5:20:68:00:a3:fe:dc:09:63:1e:81:c5:cf:62: 67:b0:52:d5:f9:ab:a8:bb:70:88:3d:2f:d7:2d:03:5e:84:72: a6:30:c6:10:2f:3c:b2:7a:21:be:d1:78:6b:55:2e:ac:6f:68: 15:b0:42:5f:ad:87:4c:84:cf:72:46:11:41:88:7e:db:13:80: e0:95:d4:c2:55:e2:f4:7b:18:de:c8:2e:4f:90:9b:d5:12:21: 71:a7:2e:79:11:6b:f2:33:0e:b4:76:6d:df:50:bc:b8:72:9b: 06:0b:72:ba:69:af:72:b3:8a:e6:1f:39:be:30:6d:51:4f:27: aa:7a:99:99:b9:b1:91:72:2f:3a:ed:4a:19:22:3d:db:32:05: c8:2f:e3:dc:f5:72:e4:37:24:e4:7d:ff:24:61:eb:3e:a0:78: 87:c5:3b:22:75:61:4e:11:a4:28:4e:3c:d4:68:92:7b:f0:d1: e9:cc:12:ad:46:a1:b4:45:b8:d2:c8:9b:a9:73:da:5f:a2:fe: 37:2b:2d:e6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSHMuChKqdtQq6utS4OvS/cCMGqgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA4MjMxMzA2NDJaFw0yNjA4MjIxMzExNDJaMDMxMTAvBgNV BAMTKDRBNkQ4NDcxNTBEMzc2MzNEM0RCNUE3MTkwRDA2RjNCNEJFQjA1ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqZHEHMi5WVC8NQ8zTEmlFBGx7 0uH2MVy2ajMdtVHJk4cFoH9EMC5Jy7WeMp6roj1qyq7zb2Uh9Qdj/wa1Ww9g7JlE o64a53EOf3Y0lsk9ZC4gtrUzZbEY1J1dzC5CeGOuQiF0e0Pq5EUUSw1yNJFUrbfM 9HqTOISpFMWCnj+kKVOJA7pvWVUcL9j+VdxVEC2NJazeHEEcY4GMyrVh72WWeyFQ SC8rfI3kpT4BpADRd2hAAGjCXeY7tz++PJe67kapItiYFxZy408AlsMRoy2IEl1X zjXmeXMFS3L5pNDaJPDCcUf3cZ2Dbd15HI+8ci3ETFDw0uZPvqFa9ySyMhi5AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUSm2EcVDTdjPT21pxkNBvO0vrBYgwHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNDM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9FMA0GCSqGSIb3DQEBCwUAA4IBAQAs ixxx7krV+0bQJUYO5wHVbxtp1RtfU8AF0cb31ajjvTCvTUQ28OZzE/dJhqLpAIrm y+twGUzS5gdFxSBoAKP+3AljHoHFz2JnsFLV+auou3CIPS/XLQNehHKmMMYQLzyy eiG+0XhrVS6sb2gVsEJfrYdMhM9yRhFBiH7bE4DgldTCVeL0exjeyC5PkJvVEiFx py55EWvyMw60dm3fULy4cpsGC3K6aa9ys4rmHzm+MG1RTyeqepmZubGRci867UoZ Ij3bMgXIL+Pc9XLkNyTkff8kYes+oHiHxTsidWFOEaQoTjzUaJJ78NHpzBKtRqG0 RbjSyJupc9pfov43Ky3m -----END CERTIFICATE-----Generated at Mon Aug 25 06:12:00 2025 by rpki-client