$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333937373a3a2f34382d3634203d3e20313939373633.roa File: 326131343a373538313a333937373a3a2f34382d3634203d3e20313939373633.roa (raw, json) Hash identifier: 6W8xvuJxWbwP3DdLZ6e8Sa+pGsBO2lzU710UJC28MHg= Subject key identifier: E6:0C:E6:10:3C:F1:B0:6A:7B:13:A1:BB:B5:59:FE:6A:B3:91:2F:FE Certificate issuer: /CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Certificate serial: 4E5A8482A285CEFB5BF2D614A191FE80CA07BB09 Authority key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333937373a3a2f34382d3634203d3e20313939373633.roa Signing time: Sun 14 Sep 2025 03:34:14 +0000 ROA not before: Sun 14 Sep 2025 03:29:14 +0000 ROA not after: Sun 13 Sep 2026 03:34:14 +0000 asID: 199763 IP address blocks: 2a14:7581:3977::/48 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 17:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5a:84:82:a2:85:ce:fb:5b:f2:d6:14:a1:91:fe:80:ca:07:bb:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Validity Not Before: Sep 14 03:29:14 2025 GMT Not After : Sep 13 03:34:14 2026 GMT Subject: CN=E60CE6103CF1B06A7B13A1BBB559FE6AB3912FFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:aa:87:99:56:f9:26:c5:6b:53:ca:cc:eb:4f: 56:22:36:dc:b2:b4:57:f3:9e:10:9d:8b:6e:5f:ea: fd:b2:95:a3:68:9e:ae:02:d8:18:51:e8:88:d0:23: 71:70:80:4d:32:05:f0:51:75:8b:13:a3:9e:d6:9a: fc:d0:01:db:64:9b:8a:ae:05:75:1b:a7:cc:49:99: c3:d7:f6:99:3d:8c:e1:e2:95:f4:42:ef:4f:d8:5e: 93:21:5e:1f:74:27:1a:53:df:cb:fc:d0:a1:ca:3e: 65:81:44:09:0b:00:d2:18:57:cc:76:e6:47:b9:71: 5f:9b:e4:b7:36:b7:b7:79:3f:69:86:31:95:42:e3: 1f:69:18:db:b5:59:6f:5d:e6:bb:67:c7:82:36:d9: 3a:bd:50:8c:b8:ec:a8:2f:a7:29:d5:c5:8c:76:74: a6:b4:be:5a:94:e9:6f:da:34:f9:fe:7f:4a:5a:31: 3a:87:da:44:fc:cd:1d:82:b0:34:be:fd:3b:db:db: d1:af:2e:75:d9:af:23:73:f9:96:3a:ed:cf:8f:b3: dc:5f:a2:70:c4:59:c1:1e:34:dc:b9:b7:3d:ae:85: e7:4a:ee:00:12:ef:6f:f6:26:0d:e8:bd:39:e6:14: 94:dc:95:7c:3f:70:78:30:a5:a8:bd:cf:a0:c8:7c: 16:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0C:E6:10:3C:F1:B0:6A:7B:13:A1:BB:B5:59:FE:6A:B3:91:2F:FE X509v3 Authority Key Identifier: keyid:E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333937373a3a2f34382d3634203d3e20313939373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:3977::/48 Signature Algorithm: sha256WithRSAEncryption 2f:f4:18:d8:07:b9:9b:17:2d:6a:97:22:d3:e3:03:22:d1:83: b3:c3:68:3a:f8:e4:23:b3:67:3e:73:b0:31:8f:f8:23:b8:b5: 41:43:18:c1:41:85:fa:70:ab:25:4b:2d:12:62:58:ad:78:95: 15:8e:54:56:44:be:7f:41:2d:5c:85:09:aa:1b:9f:82:22:80: 95:9d:6d:3c:51:0d:d5:08:7c:30:11:6d:ba:53:a1:95:85:c0: 02:83:53:bb:50:85:0d:38:ce:9d:65:b8:b6:70:7b:44:18:cc: a9:ba:3f:d9:46:f4:00:46:7b:7a:33:39:53:a8:28:32:48:7f: 89:ea:6e:61:e0:2e:75:7a:40:8f:af:71:a7:72:4d:8b:48:24: a8:b7:5c:dd:74:bd:c6:28:70:45:e0:1f:5e:92:41:84:d1:29: 76:89:f3:78:69:6a:96:e8:0c:6b:68:bb:d1:16:bf:ee:7e:cc: 5b:6a:7c:39:ea:77:b4:a9:b5:b0:d8:51:8a:e3:cd:e9:95:cc: 29:97:96:d2:4e:eb:bc:4d:66:81:3f:0e:e8:98:34:22:2d:d8: 79:e3:50:9b:47:16:fb:a7:f3:16:10:cf:a4:68:e4:a4:15:7b: 61:22:ae:bd:1c:c7:48:d5:8c:43:43:98:74:31:2d:fd:ba:ce: 93:16:7f:65 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTlqEgqKFzvtb8tYUoZH+gMoHuwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYz RUFCQ0Y3QzAeFw0yNTA5MTQwMzI5MTRaFw0yNjA5MTMwMzM0MTRaMDMxMTAvBgNV BAMTKEU2MENFNjEwM0NGMUIwNkE3QjEzQTFCQkI1NTlGRTZBQjM5MTJGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrqoeZVvkmxWtTyszrT1YiNtyy tFfznhCdi25f6v2ylaNonq4C2BhR6IjQI3FwgE0yBfBRdYsTo57WmvzQAdtkm4qu BXUbp8xJmcPX9pk9jOHilfRC70/YXpMhXh90JxpT38v80KHKPmWBRAkLANIYV8x2 5ke5cV+b5Lc2t7d5P2mGMZVC4x9pGNu1WW9d5rtnx4I22Tq9UIy47KgvpynVxYx2 dKa0vlqU6W/aNPn+f0paMTqH2kT8zR2CsDS+/Tvb29GvLnXZryNz+ZY67c+Ps9xf onDEWcEeNNy5tz2uhedK7gAS72/2Jg3ovTnmFJTclXw/cHgwpai9z6DIfBbbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU5gzmEDzxsGp7E6G7tVn+arORL/4wHwYDVR0j BBgwFoAU6J+RXYa7nxPQ8inKeM1tnz6rz3wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzU4MzZlNjAtNmE5Mi00N2VmLTliOWItOTJhODRkNmQz NWJhLzEvRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYzRUFCQ0Y3Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9FODlGOTE1RDg2QkI5RjEzRDBGMjI5Q0E3 OENENkQ5RjNFQUJDRjdDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNTgzNmU2MC02YTkyLTQ3ZWYtOWI5Yi05MmE4NGQ2ZDM1YmEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzkzNzM3M2EzYTJmMzQzODJkMzYzNDIwM2QzZTIwMzEz OTM5MzczNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTl3MA0GCSqGSIb3DQEBCwUAA4IBAQAv 9BjYB7mbFy1qlyLT4wMi0YOzw2g6+OQjs2c+c7Axj/gjuLVBQxjBQYX6cKslSy0S YliteJUVjlRWRL5/QS1chQmqG5+CIoCVnW08UQ3VCHwwEW26U6GVhcACg1O7UIUN OM6dZbi2cHtEGMypuj/ZRvQARnt6MzlTqCgySH+J6m5h4C51ekCPr3Gnck2LSCSo t1zddL3GKHBF4B9ekkGE0Sl2ifN4aWqW6AxraLvRFr/ufsxbanw56ne0qbWw2FGK 483plcwpl5bSTuu8TWaBPw7omDQiLdh541CbRxb7p/MWEM+kaOSkFXthIq69HMdI 1YxDQ5h0MS39us6TFn9l -----END CERTIFICATE-----Generated at Mon Oct 20 10:22:20 2025 by rpki-client