$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936313a3a2f34382d3634203d3e20313939373633.roa File: 326131343a373538313a333936313a3a2f34382d3634203d3e20313939373633.roa (raw, json) Hash identifier: V25LiWzxXAuXeQVJTbroIsiNYHCj/akr9IIXebvCE7Q= Subject key identifier: B5:F8:D1:A4:9F:66:E1:7E:CB:34:5F:DC:4C:2B:61:26:3E:74:3B:A5 Certificate issuer: /CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Certificate serial: 15151E3905F1494C011B3E2FED90A444EBDEA097 Authority key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936313a3a2f34382d3634203d3e20313939373633.roa Signing time: Sat 04 Oct 2025 01:46:02 +0000 ROA not before: Sat 04 Oct 2025 01:41:02 +0000 ROA not after: Sat 03 Oct 2026 01:46:02 +0000 asID: 199763 IP address blocks: 2a14:7581:3961::/48 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 17:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:15:1e:39:05:f1:49:4c:01:1b:3e:2f:ed:90:a4:44:eb:de:a0:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Validity Not Before: Oct 4 01:41:02 2025 GMT Not After : Oct 3 01:46:02 2026 GMT Subject: CN=B5F8D1A49F66E17ECB345FDC4C2B61263E743BA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:88:b4:05:c8:b5:e4:e2:e3:99:2b:c9:e9:9b: 08:8d:f2:23:ec:1a:ba:a7:59:3a:e2:7f:4d:4c:95: 2f:73:7c:98:f1:fc:68:a0:73:7e:5c:a2:52:c2:5e: 44:55:7b:49:15:02:65:c3:47:7c:e8:95:35:26:64: ef:2a:c1:76:95:26:f2:de:5e:80:44:4e:0f:d4:76: b1:6d:53:75:b8:82:55:9a:33:e2:41:72:ca:ff:6d: bd:ae:55:32:19:cb:7f:fd:6a:0e:83:81:ad:75:c7: 09:7d:76:80:04:ee:c6:d1:d9:29:ea:9c:c8:6a:d8: 5c:00:d5:e5:3e:17:0f:46:df:1c:db:91:cd:f1:49: 9d:a5:a7:49:a0:4e:02:e9:04:6c:19:51:f3:b8:01: d2:9a:3e:e7:48:9a:29:4f:2c:ed:29:ad:5e:e5:86: 06:74:31:7f:cc:fb:e6:1f:11:a8:35:1d:2e:b9:5e: 34:02:9b:e1:73:eb:f1:d6:04:48:f7:93:a8:0b:a5: 79:fe:cb:92:bb:4b:dd:b1:4b:c8:43:d1:47:df:09: 02:c7:fe:52:97:bb:8a:06:e5:d0:cb:92:20:02:32: 73:b6:84:bf:04:86:af:ee:ca:29:14:c8:85:53:d3: 54:52:95:82:57:cb:44:15:a6:9f:d5:ea:28:ae:0f: c8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F8:D1:A4:9F:66:E1:7E:CB:34:5F:DC:4C:2B:61:26:3E:74:3B:A5 X509v3 Authority Key Identifier: keyid:E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936313a3a2f34382d3634203d3e20313939373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:3961::/48 Signature Algorithm: sha256WithRSAEncryption 34:51:86:69:f0:e8:8c:ff:bb:82:31:a0:d1:12:4f:79:b6:6f: 10:f7:50:05:09:b1:70:9d:df:32:0e:a0:9d:ca:b9:0b:8b:31: a3:6c:54:ff:64:56:08:60:2d:a0:dd:36:95:af:b3:2b:b5:77: be:ce:f5:17:da:b1:e5:36:88:55:47:80:90:5b:69:1d:0f:e9: e2:2a:46:75:fb:8a:e4:82:a7:ec:69:37:03:52:ee:aa:e2:96: f0:f6:30:c1:1b:f3:1f:47:47:cd:95:65:54:78:8c:3a:d6:75: 4b:ff:cb:69:73:bd:89:70:2f:56:cb:71:c8:c5:b9:e4:e2:3f: 48:bd:9b:a8:dc:6f:56:63:cb:20:95:75:84:bd:46:da:7d:71: 20:11:a7:ab:bc:90:71:e2:b6:63:03:40:cb:9b:84:f3:a9:8d: 94:d9:9a:92:8e:ab:2d:db:23:84:9f:8d:d5:05:67:9e:d6:4a: 4c:ff:51:08:c8:72:b7:55:57:bc:f2:d6:17:68:d5:79:53:05: 64:bc:21:e8:fb:27:a2:e7:95:9f:af:6d:01:fb:9e:25:bb:81: 41:ce:bb:98:5d:76:e2:1c:71:18:96:7f:c5:97:54:72:c8:27: 24:d9:21:be:c9:cc:fa:26:c1:e0:96:e3:67:f1:3b:68:64:01: 2e:5f:84:0d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFRUeOQXxSUwBGz4v7ZCkROveoJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYz RUFCQ0Y3QzAeFw0yNTEwMDQwMTQxMDJaFw0yNjEwMDMwMTQ2MDJaMDMxMTAvBgNV BAMTKEI1RjhEMUE0OUY2NkUxN0VDQjM0NUZEQzRDMkI2MTI2M0U3NDNCQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBiLQFyLXk4uOZK8npmwiN8iPs GrqnWTrif01MlS9zfJjx/Gigc35colLCXkRVe0kVAmXDR3zolTUmZO8qwXaVJvLe XoBETg/UdrFtU3W4glWaM+JBcsr/bb2uVTIZy3/9ag6Dga11xwl9doAE7sbR2Snq nMhq2FwA1eU+Fw9G3xzbkc3xSZ2lp0mgTgLpBGwZUfO4AdKaPudImilPLO0prV7l hgZ0MX/M++YfEag1HS65XjQCm+Fz6/HWBEj3k6gLpXn+y5K7S92xS8hD0UffCQLH /lKXu4oG5dDLkiACMnO2hL8Ehq/uyikUyIVT01RSlYJXy0QVpp/V6iiuD8jhAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUtfjRpJ9m4X7LNF/cTCthJj50O6UwHwYDVR0j BBgwFoAU6J+RXYa7nxPQ8inKeM1tnz6rz3wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzU4MzZlNjAtNmE5Mi00N2VmLTliOWItOTJhODRkNmQz NWJhLzEvRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYzRUFCQ0Y3Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9FODlGOTE1RDg2QkI5RjEzRDBGMjI5Q0E3 OENENkQ5RjNFQUJDRjdDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNTgzNmU2MC02YTkyLTQ3ZWYtOWI5Yi05MmE4NGQ2ZDM1YmEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzkzNjMxM2EzYTJmMzQzODJkMzYzNDIwM2QzZTIwMzEz OTM5MzczNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTlhMA0GCSqGSIb3DQEBCwUAA4IBAQA0 UYZp8OiM/7uCMaDREk95tm8Q91AFCbFwnd8yDqCdyrkLizGjbFT/ZFYIYC2g3TaV r7MrtXe+zvUX2rHlNohVR4CQW2kdD+niKkZ1+4rkgqfsaTcDUu6q4pbw9jDBG/Mf R0fNlWVUeIw61nVL/8tpc72JcC9Wy3HIxbnk4j9IvZuo3G9WY8sglXWEvUbafXEg EaervJBx4rZjA0DLm4TzqY2U2ZqSjqst2yOEn43VBWee1kpM/1EIyHK3VVe88tYX aNV5UwVkvCHo+yei55Wfr20B+54lu4FBzruYXXbiHHEYln/Fl1RyyCck2SG+ycz6 JsHgluNn8TtoZAEuX4QN -----END CERTIFICATE-----Generated at Mon Oct 20 10:22:27 2025 by rpki-client