$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062353a3a2f34382d3438203d3e20323131373239.roa File: 326131343a373538313a333062353a3a2f34382d3438203d3e20323131373239.roa (raw, json) Hash identifier: tFUXq6i30FxB1SNNhCRKk78oQl/FXFjJBGghOw722to= Subject key identifier: A8:08:EA:D7:4F:91:30:2F:09:8F:A2:1F:88:66:62:39:45:88:5F:50 Certificate issuer: /CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Certificate serial: F976750128F27675DB62F06D060277F3E26437 Authority key identifier: 20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062353a3a2f34382d3438203d3e20323131373239.roa Signing time: Tue 16 Sep 2025 12:13:03 +0000 ROA not before: Tue 16 Sep 2025 12:08:03 +0000 ROA not after: Tue 15 Sep 2026 12:13:03 +0000 asID: 211729 IP address blocks: 2a14:7581:30b5::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Oct 2025 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f9:76:75:01:28:f2:76:75:db:62:f0:6d:06:02:77:f3:e2:64:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Validity Not Before: Sep 16 12:08:03 2025 GMT Not After : Sep 15 12:13:03 2026 GMT Subject: CN=A808EAD74F91302F098FA21F8866623945885F50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:08:3b:c8:b4:bd:6b:74:3c:04:bc:6b:1d: e5:19:00:c1:85:dc:18:71:4d:12:c9:7e:c0:9d:8b: 35:ca:8d:4b:45:03:ad:8f:76:5b:c4:cc:a4:8e:70: 4f:3d:ac:2c:97:ed:7f:18:c8:8b:78:4a:a7:55:63: ec:d3:71:d0:39:43:31:9f:ae:1e:ea:c7:33:83:a3: 2d:fc:d7:03:f2:3a:97:27:3d:1c:89:5a:f1:7b:aa: 62:05:c7:4f:1c:f7:95:f0:17:09:c1:bc:72:c7:d0: 97:4f:1a:6f:ac:a3:f3:6b:4e:81:71:e9:a6:da:47: fe:ab:05:0e:d8:5d:1f:c5:1d:ea:25:5d:26:84:fd: f1:33:e6:a3:44:40:15:c0:42:fe:d9:5f:6c:ff:70: 9e:66:46:60:ce:7c:bb:0a:6d:e0:00:ae:64:10:86: 49:1f:1d:df:91:a2:4f:6e:1b:2b:fa:ba:07:02:17: 22:5a:2b:57:92:a9:d0:22:f7:e0:4c:5a:e5:65:b4: e3:f6:72:1f:0b:df:2e:9a:08:78:2e:9f:45:66:c9: d8:fe:fa:ed:d5:d1:6e:83:4f:18:32:2d:4d:e9:a4: 1e:07:ff:ae:e6:3c:23:13:f6:4e:e8:74:97:7e:ec: d1:5d:4d:65:91:d5:3b:ab:b0:71:ad:c6:6c:49:09: d6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:08:EA:D7:4F:91:30:2F:09:8F:A2:1F:88:66:62:39:45:88:5F:50 X509v3 Authority Key Identifier: keyid:20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333062353a3a2f34382d3438203d3e20323131373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:30b5::/48 Signature Algorithm: sha256WithRSAEncryption 89:b9:40:4c:41:32:94:54:0a:9d:6e:61:a5:62:e3:c4:79:22: 81:d6:f2:9f:b3:cd:48:b1:e9:cf:55:4b:f0:8f:55:e2:db:a7: ae:65:85:5f:e3:cd:b4:e6:86:3e:2e:f8:c4:5a:b5:d1:2a:47: 2b:a9:85:80:4f:69:a5:e0:f2:46:77:bf:8e:e8:ca:0f:7e:d9: c1:8e:c7:37:8b:f1:b6:3d:b5:13:38:07:74:6c:4c:c8:43:e6: 6e:53:51:11:ad:e3:82:8b:97:c6:a0:1d:cc:0d:2e:04:3c:7c: 33:77:4a:72:2c:2b:28:92:a9:2e:55:df:e8:5a:01:14:83:70: ad:c2:79:4b:f7:16:84:36:a6:09:7e:f9:e3:64:dc:2c:f8:45: 7e:97:1f:9e:70:8d:c1:5e:0f:c1:63:77:90:ce:32:84:77:53: 4d:e2:07:1b:10:91:6b:94:19:aa:65:80:3e:4f:2e:39:46:28: 9d:02:d5:c6:67:0e:35:f8:89:cd:41:e3:ca:61:21:df:29:d2: a8:4f:6c:11:8f:6e:c4:ee:96:b2:b2:2c:09:64:be:b2:fc:95: e4:b9:f4:9b:b4:3b:a3:8a:0c:e5:ef:d2:d7:e6:d6:30:6f:f4: 1a:22:f9:b5:ee:f1:17:23:e6:a3:2d:2b:f2:14:7a:50:af:1a: 32:b0:25:8b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUAPl2dQEo8nZ122LwbQYCd/PiZDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZD ODg5MjNGMDAeFw0yNTA5MTYxMjA4MDNaFw0yNjA5MTUxMjEzMDNaMDMxMTAvBgNV BAMTKEE4MDhFQUQ3NEY5MTMwMkYwOThGQTIxRjg4NjY2MjM5NDU4ODVGNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuwg7yLS9a3Q8BLxrHeUZAMGF 3BhxTRLJfsCdizXKjUtFA62PdlvEzKSOcE89rCyX7X8YyIt4SqdVY+zTcdA5QzGf rh7qxzODoy381wPyOpcnPRyJWvF7qmIFx08c95XwFwnBvHLH0JdPGm+so/NrToFx 6abaR/6rBQ7YXR/FHeolXSaE/fEz5qNEQBXAQv7ZX2z/cJ5mRmDOfLsKbeAArmQQ hkkfHd+Rok9uGyv6ugcCFyJaK1eSqdAi9+BMWuVltOP2ch8L3y6aCHgun0Vmydj+ +u3V0W6DTxgyLU3ppB4H/67mPCMT9k7odJd+7NFdTWWR1TursHGtxmxJCdabAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUqAjq10+RMC8Jj6IfiGZiOUWIX1AwHwYDVR0j BBgwFoAUICqC2m5zzkJi4Yuu1go/psiJI/AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDliZDM4ODgtOTMwMi00YjZmLWEwMTctMmI0YmJhNWU1 N2JiLzEvMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZDODg5MjNGMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMDJBODJEQTZFNzNDRTQyNjJFMThCQUVE NjBBM0ZBNkM4ODkyM0YwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kOWJkMzg4OC05MzAyLTRiNmYtYTAxNy0yYjRiYmE1ZTU3YmIvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzA2MjM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTMxMzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTC1MA0GCSqGSIb3DQEBCwUAA4IBAQCJ uUBMQTKUVAqdbmGlYuPEeSKB1vKfs81IsenPVUvwj1Xi26euZYVf48205oY+LvjE WrXRKkcrqYWAT2ml4PJGd7+O6MoPftnBjsc3i/G2PbUTOAd0bEzIQ+ZuU1ERreOC i5fGoB3MDS4EPHwzd0pyLCsokqkuVd/oWgEUg3CtwnlL9xaENqYJfvnjZNws+EV+ lx+ecI3BXg/BY3eQzjKEd1NN4gcbEJFrlBmqZYA+Ty45RiidAtXGZw41+InNQePK YSHfKdKoT2wRj27E7paysiwJZL6y/JXkufSbtDujigzl79LX5tYwb/QaIvm17vEX I+ajLSvyFHpQrxoysCWL -----END CERTIFICATE-----Generated at Mon Oct 20 00:49:28 2025 by rpki-client