$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393965653a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393965653a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: 3oBSnEnPYocyloNNfV7eH1ZnHXiKOV8dASwMij3b8+0= Subject key identifier: 57:49:DD:84:C6:F0:09:4D:95:9C:26:49:8E:BC:FC:FD:C5:81:FA:6B Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 2E2951A754EF2AA37ED2A3FF8A562C5BE7754537 Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393965653a3a2f34382d3438203d3e20323134333434.roa Signing time: Sun 28 Sep 2025 07:49:34 +0000 ROA not before: Sun 28 Sep 2025 07:44:34 +0000 ROA not after: Sun 27 Sep 2026 07:49:34 +0000 asID: 214344 IP address blocks: 2a14:7581:99ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:29:51:a7:54:ef:2a:a3:7e:d2:a3:ff:8a:56:2c:5b:e7:75:45:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: Sep 28 07:44:34 2025 GMT Not After : Sep 27 07:49:34 2026 GMT Subject: CN=5749DD84C6F0094D959C26498EBCFCFDC581FA6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a1:ea:1c:ce:e4:10:44:e7:4a:c5:e0:d2:68: 0b:cd:b7:82:ce:85:47:10:ca:d2:ee:ec:7a:85:6e: c4:13:88:56:03:e0:31:3a:58:b2:01:aa:ba:24:23: c0:8e:cc:bd:de:a8:ba:b0:ee:7d:be:dc:86:cd:a9: a2:bd:55:39:0e:a8:3f:bf:a8:65:13:2d:83:0f:9d: 12:82:b1:4c:37:a0:03:29:00:f0:52:64:bb:a5:c3: c8:57:e4:2b:42:ee:b0:a3:84:8a:ce:15:39:98:7b: 5b:59:2c:85:70:96:72:2b:fb:70:de:2d:19:17:a8: 36:35:44:7b:e9:42:25:4a:5a:91:79:1e:79:bd:f6: 40:a1:0d:84:46:4c:23:1c:cb:3a:2a:f3:32:60:d5: 00:03:f2:e1:c6:d6:0e:c6:01:c4:5c:39:cc:3e:37: fd:6e:55:c8:21:e2:c9:3a:de:2a:71:55:dc:39:a5: 07:0c:54:f4:8d:5e:c7:4d:b2:7c:38:d2:a2:5b:81: e2:21:21:f6:22:ed:49:1a:3b:b9:8a:be:09:b3:c3: 80:bc:77:49:04:c8:47:21:3e:35:9d:1d:d0:a8:e6: 68:6e:60:c0:5e:83:b6:78:8a:e7:2d:8f:70:a4:d8: a0:13:ba:80:65:49:37:43:1a:9b:47:23:35:10:ed: 2d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:49:DD:84:C6:F0:09:4D:95:9C:26:49:8E:BC:FC:FD:C5:81:FA:6B X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393965653a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:99ee::/48 Signature Algorithm: sha256WithRSAEncryption 96:7a:08:b0:b0:c5:20:85:e7:03:32:7b:78:38:13:c7:94:68: 14:22:de:35:fd:df:76:d2:e5:2d:19:76:9a:9a:ec:dc:b8:6a: eb:a4:db:32:d3:9d:9c:3a:70:e5:e4:12:bc:1b:5e:db:4c:f7: 21:da:3e:83:1f:09:13:17:c0:6e:63:cc:2e:4c:07:48:1e:61: f7:4c:48:83:38:4a:de:48:ec:fb:58:33:8c:85:cf:70:f9:07: 28:f2:7d:53:67:d1:67:75:3c:53:59:86:7f:60:ea:53:b7:af: bb:e5:79:df:e9:28:ef:02:ba:f1:54:32:80:7e:8d:23:de:52: 6c:4e:0b:b0:1f:85:40:52:56:a7:2e:cf:6d:19:74:5c:da:4b: 7f:99:72:fc:bb:45:10:e5:5a:c1:22:4b:eb:db:49:90:ff:ac: 79:4e:d7:5f:19:96:22:37:15:09:80:e5:5b:19:bf:c6:b5:eb: d8:bc:ce:91:5d:75:10:59:bc:71:7f:23:14:ad:80:d9:6e:64: 49:8e:7a:fc:70:93:54:4f:5f:a6:70:f8:35:dc:f1:d6:ff:2d: 13:b1:c7:07:9b:d4:3e:79:d8:8d:91:75:14:60:c2:25:13:5a: 56:be:cd:e9:16:66:31:78:99:d5:d6:ba:dd:d6:fe:22:74:4c: 2b:33:fc:9c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULilRp1TvKqN+0qP/ilYsW+d1RTcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA5MjgwNzQ0MzRaFw0yNjA5MjcwNzQ5MzRaMDMxMTAvBgNV BAMTKDU3NDlERDg0QzZGMDA5NEQ5NTlDMjY0OThFQkNGQ0ZEQzU4MUZBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmoeoczuQQROdKxeDSaAvNt4LO hUcQytLu7HqFbsQTiFYD4DE6WLIBqrokI8COzL3eqLqw7n2+3IbNqaK9VTkOqD+/ qGUTLYMPnRKCsUw3oAMpAPBSZLulw8hX5CtC7rCjhIrOFTmYe1tZLIVwlnIr+3De LRkXqDY1RHvpQiVKWpF5Hnm99kChDYRGTCMcyzoq8zJg1QAD8uHG1g7GAcRcOcw+ N/1uVcgh4sk63ipxVdw5pQcMVPSNXsdNsnw40qJbgeIhIfYi7UkaO7mKvgmzw4C8 d0kEyEchPjWdHdCo5mhuYMBeg7Z4iuctj3Ck2KATuoBlSTdDGptHIzUQ7S1dAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUV0ndhMbwCU2VnCZJjrz8/cWB+mswHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5Mzk2NTY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZnuMA0GCSqGSIb3DQEBCwUAA4IBAQCW egiwsMUghecDMnt4OBPHlGgUIt41/d920uUtGXaamuzcuGrrpNsy052cOnDl5BK8 G17bTPch2j6DHwkTF8BuY8wuTAdIHmH3TEiDOEreSOz7WDOMhc9w+Qco8n1TZ9Fn dTxTWYZ/YOpTt6+75Xnf6SjvArrxVDKAfo0j3lJsTguwH4VAUlanLs9tGXRc2kt/ mXL8u0UQ5VrBIkvr20mQ/6x5TtdfGZYiNxUJgOVbGb/GtevYvM6RXXUQWbxxfyMU rYDZbmRJjnr8cJNUT1+mcPg13PHW/y0TsccHm9Q+ediNkXUUYMIlE1pWvs3pFmYx eJnV1rrd1v4idEwrM/yc -----END CERTIFICATE-----Generated at Mon Oct 20 02:50:12 2025 by rpki-client