$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393966323a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393966323a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: GgRgpO0cir6J2JIvLpFaBWDg0/fcSkJg//f6BlSBDCY= Subject key identifier: 09:60:A2:32:14:89:A3:B2:73:AB:F1:C4:65:F5:C9:70:80:A1:43:2E Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 1324ACB76F7814F791CCCC84E8191C2A38374A29 Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393966323a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 23 Aug 2025 13:12:48 +0000 ROA not before: Sat 23 Aug 2025 13:07:48 +0000 ROA not after: Sat 22 Aug 2026 13:12:48 +0000 asID: 214344 IP address blocks: 2a14:7581:99f2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 12:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:24:ac:b7:6f:78:14:f7:91:cc:cc:84:e8:19:1c:2a:38:37:4a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: Aug 23 13:07:48 2025 GMT Not After : Aug 22 13:12:48 2026 GMT Subject: CN=0960A2321489A3B273ABF1C465F5C97080A1432E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:95:48:e7:c9:86:95:03:b9:9c:81:79:73: 03:2c:3f:f7:86:de:e4:cf:63:b7:38:b5:a8:36:16: ac:67:f5:f2:36:58:cb:1a:30:de:1b:bf:df:58:5b: 56:72:4a:1f:c2:f4:41:6b:79:98:24:98:f2:c0:4a: 94:bf:17:37:f8:65:fd:48:c0:e7:12:ba:52:87:45: 25:39:4b:8e:cb:c0:30:55:d6:cd:18:c5:fc:f9:b3: 69:48:43:a6:fc:f3:14:e9:3b:43:81:7a:a3:e8:32: c8:78:b5:85:84:f4:7b:41:c9:13:9c:d8:4d:4c:9a: bb:ca:5c:b4:dd:97:81:e3:f9:94:44:4d:0a:09:26: 1a:76:23:44:88:4c:28:ce:bb:d3:96:98:d5:0b:71: cd:f0:07:c3:bb:f9:c4:56:f8:22:3a:cc:59:33:5e: f0:cd:0a:6e:18:3f:eb:ad:d0:ac:13:f7:5e:97:a4: 3b:86:76:83:0d:9f:6e:0f:8c:15:d7:b4:13:90:f4: d4:80:cf:fd:61:ae:30:58:5e:60:8b:22:cd:af:28: cb:b3:6d:5f:37:c5:99:00:ce:5a:23:da:d6:81:3c: b3:2f:6d:c0:b1:1b:23:17:9a:8b:37:22:f7:3e:df: 05:b5:48:b2:1e:8c:e3:46:d5:0a:d9:1c:5b:d1:a7: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:60:A2:32:14:89:A3:B2:73:AB:F1:C4:65:F5:C9:70:80:A1:43:2E X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393966323a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:99f2::/48 Signature Algorithm: sha256WithRSAEncryption 5d:aa:bc:02:55:22:85:70:31:ae:bc:55:7c:e4:78:58:b4:0c: ec:bf:a9:f2:56:a5:ba:42:a5:35:c1:8d:88:11:00:41:84:e4: 52:98:ed:a4:21:ed:dc:4b:b8:d1:da:ce:ee:c5:d7:da:3e:f9: 11:81:5d:2f:61:08:b0:f9:af:e9:4d:0b:cf:56:f6:ee:0f:3c: c5:a7:ec:25:e4:c8:39:0b:c1:df:30:a9:ca:05:df:6b:dc:bf: 59:4e:e5:cc:66:9b:09:3c:1a:01:93:23:87:8e:af:c6:44:a1: 34:98:73:83:0a:df:c4:8a:e3:e4:a8:a7:a2:ac:05:c0:e6:fd: 01:26:1b:8d:8d:9a:d1:05:00:54:fd:f0:40:9b:b0:f5:5d:4c: 7f:8f:8b:9f:37:50:79:48:db:66:60:af:a8:8a:26:43:7a:7b: a1:02:c0:65:44:7e:1f:49:7f:14:65:a2:e6:8e:68:65:e6:d7: e5:1a:35:7e:66:a7:cf:a6:7e:40:6f:b6:e1:ab:c1:b8:82:c6: 83:c6:98:03:15:fd:68:a5:88:a2:73:90:dc:03:95:44:8e:bc: a3:9d:0c:29:76:10:62:09:ba:0f:02:1f:1a:c1:b1:66:c8:75: 57:13:02:4e:bc:0f:62:ee:96:40:d5:c0:d9:ac:14:cb:52:ce: ad:9a:52:7b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEySst294FPeRzMyE6BkcKjg3SikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA4MjMxMzA3NDhaFw0yNjA4MjIxMzEyNDhaMDMxMTAvBgNV BAMTKDA5NjBBMjMyMTQ4OUEzQjI3M0FCRjFDNDY1RjVDOTcwODBBMTQzMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDElJVI58mGlQO5nIF5cwMsP/eG 3uTPY7c4tag2Fqxn9fI2WMsaMN4bv99YW1ZySh/C9EFreZgkmPLASpS/Fzf4Zf1I wOcSulKHRSU5S47LwDBV1s0Yxfz5s2lIQ6b88xTpO0OBeqPoMsh4tYWE9HtByROc 2E1MmrvKXLTdl4Hj+ZRETQoJJhp2I0SITCjOu9OWmNULcc3wB8O7+cRW+CI6zFkz XvDNCm4YP+ut0KwT916XpDuGdoMNn24PjBXXtBOQ9NSAz/1hrjBYXmCLIs2vKMuz bV83xZkAzloj2taBPLMvbcCxGyMXmos3Ivc+3wW1SLIejONG1QrZHFvRpwcLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUCWCiMhSJo7Jzq/HEZfXJcIChQy4wHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5Mzk2NjMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZnyMA0GCSqGSIb3DQEBCwUAA4IBAQBd qrwCVSKFcDGuvFV85HhYtAzsv6nyVqW6QqU1wY2IEQBBhORSmO2kIe3cS7jR2s7u xdfaPvkRgV0vYQiw+a/pTQvPVvbuDzzFp+wl5Mg5C8HfMKnKBd9r3L9ZTuXMZpsJ PBoBkyOHjq/GRKE0mHODCt/EiuPkqKeirAXA5v0BJhuNjZrRBQBU/fBAm7D1XUx/ j4ufN1B5SNtmYK+oiiZDenuhAsBlRH4fSX8UZaLmjmhl5tflGjV+ZqfPpn5Ab7bh q8G4gsaDxpgDFf1opYiic5DcA5VEjryjnQwpdhBiCboPAh8awbFmyHVXEwJOvA9i 7pZA1cDZrBTLUs6tmlJ7 -----END CERTIFICATE-----Generated at Sat Aug 23 23:45:39 2025 by rpki-client