$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323630303a3a2f34302d3438203d3e20323039313039.roa File: 326131343a373538313a323630303a3a2f34302d3438203d3e20323039313039.roa (raw, json) Hash identifier: Ah/styCnPIoGFWiO0PQ2rB66bvMdDv2NyL9mrkcrCj4= Subject key identifier: F5:EB:3B:15:85:BE:97:80:A6:DC:C8:C5:98:6F:18:CD:AC:E6:40:73 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 47717412E70E82CA29A57B1CDCDF285AEB7ED82E Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323630303a3a2f34302d3438203d3e20323039313039.roa Signing time: Thu 14 Aug 2025 15:39:21 +0000 ROA not before: Thu 14 Aug 2025 15:34:21 +0000 ROA not after: Thu 13 Aug 2026 15:39:21 +0000 asID: 209109 IP address blocks: 2a14:7581:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 16:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:71:74:12:e7:0e:82:ca:29:a5:7b:1c:dc:df:28:5a:eb:7e:d8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Aug 14 15:34:21 2025 GMT Not After : Aug 13 15:39:21 2026 GMT Subject: CN=F5EB3B1585BE9780A6DCC8C5986F18CDACE64073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:5e:66:36:f7:e7:ed:1b:41:d4:04:42:c9: 15:9c:ac:31:8f:b9:90:67:d9:64:53:26:11:1c:9a: 3c:7b:31:38:5b:ba:5e:50:87:4b:36:27:af:1a:da: 88:6a:b7:8f:6e:81:e1:af:bb:13:2b:27:0f:5c:37: 6b:b2:45:d0:46:93:e1:ee:57:f4:81:35:bc:f8:7b: d6:5c:f7:f9:24:e1:12:ac:27:c9:b7:18:21:1f:83: 01:6c:b5:6a:da:5c:6e:79:6d:83:9d:c8:83:18:cb: c3:7f:06:bd:53:7e:fd:cd:95:86:a2:af:6e:93:c8: 4c:93:c6:d4:b7:16:e5:5d:b7:e1:4f:f5:73:6c:a1: 62:70:ad:21:15:db:ee:e5:d4:4a:ce:63:ff:8e:b6: 72:57:5d:26:00:44:52:87:d0:bc:67:21:49:ce:00: 3b:6e:99:85:94:9d:71:8d:16:55:4d:7f:54:22:01: 66:2a:5a:82:bc:04:26:bf:9b:f2:82:a5:fa:28:25: 42:ec:f8:c3:ed:7f:89:f6:47:e2:67:b5:f9:16:00: c3:f7:7e:9b:23:2c:71:cb:e4:86:4b:09:bf:ce:3e: 48:6f:d9:2f:d1:08:af:4c:aa:84:56:62:0f:50:36: 3e:39:72:1f:1c:a0:ea:27:67:9e:4a:9e:33:f2:ab: 58:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EB:3B:15:85:BE:97:80:A6:DC:C8:C5:98:6F:18:CD:AC:E6:40:73 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323630303a3a2f34302d3438203d3e20323039313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2600::/40 Signature Algorithm: sha256WithRSAEncryption 78:15:43:79:6f:16:b7:24:c4:3c:0e:ae:04:af:ff:8b:e7:61: 8f:73:18:32:2c:5c:e1:13:46:45:88:d8:5e:3c:11:fe:17:1d: 3b:0c:d7:9d:85:20:78:45:fd:e9:c7:8e:bc:5b:6b:11:cf:ee: de:81:bf:6c:96:64:bd:ea:25:02:15:c0:ac:94:d0:8c:a3:ec: 0b:7e:f2:6b:56:6a:cb:ee:34:e8:c0:a3:38:03:28:4a:73:0a: 67:bf:3a:1d:d9:a6:2b:eb:d7:8c:17:eb:a0:a8:77:d2:c6:54: 60:4c:8f:9b:1d:96:eb:ad:36:87:1d:94:81:c3:ab:e7:42:28: 35:2f:fb:d5:4f:d7:93:77:6b:c6:14:b9:05:8e:6f:31:50:5e: 34:c2:27:24:e0:16:73:02:7a:61:31:49:e2:e0:9f:5e:8d:d8: 2c:81:26:84:2d:c8:ff:35:1a:5d:40:54:4f:ea:06:76:59:07: fa:63:45:15:b6:89:a6:a4:91:f7:7e:69:d9:98:ac:36:62:5d: a0:5f:59:a7:19:c6:62:db:08:22:bf:e7:6f:12:f3:84:bc:85: 66:95:65:a8:1c:5f:a6:bc:06:38:82:ac:cf:2f:1a:85:c9:f5: 0e:05:dd:5e:02:ea:17:e6:6f:10:a2:5a:85:f8:00:6b:bf:38: 17:ba:c8:08 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUR3F0EucOgsoppXsc3N8oWut+2C4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA4MTQxNTM0MjFaFw0yNjA4MTMxNTM5MjFaMDMxMTAvBgNV BAMTKEY1RUIzQjE1ODVCRTk3ODBBNkRDQzhDNTk4NkYxOENEQUNFNjQwNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQl15mNvfn7RtB1ARCyRWcrDGP uZBn2WRTJhEcmjx7MThbul5Qh0s2J68a2ohqt49ugeGvuxMrJw9cN2uyRdBGk+Hu V/SBNbz4e9Zc9/kk4RKsJ8m3GCEfgwFstWraXG55bYOdyIMYy8N/Br1Tfv3NlYai r26TyEyTxtS3FuVdt+FP9XNsoWJwrSEV2+7l1ErOY/+OtnJXXSYARFKH0LxnIUnO ADtumYWUnXGNFlVNf1QiAWYqWoK8BCa/m/KCpfooJULs+MPtf4n2R+JntfkWAMP3 fpsjLHHL5IZLCb/OPkhv2S/RCK9MqoRWYg9QNj45ch8coOonZ55KnjPyq1j3AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU9es7FYW+l4Cm3MjFmG8YzazmQHMwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzYzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM5MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSYwDQYJKoZIhvcNAQELBQADggEBAHgV Q3lvFrckxDwOrgSv/4vnYY9zGDIsXOETRkWI2F48Ef4XHTsM152FIHhF/enHjrxb axHP7t6Bv2yWZL3qJQIVwKyU0Iyj7At+8mtWasvuNOjAozgDKEpzCme/Oh3Zpivr 14wX66Cod9LGVGBMj5sdluutNocdlIHDq+dCKDUv+9VP15N3a8YUuQWObzFQXjTC JyTgFnMCemExSeLgn16N2CyBJoQtyP81Gl1AVE/qBnZZB/pjRRW2iaakkfd+admY rDZiXaBfWacZxmLbCCK/528S84S8hWaVZagcX6a8BjiCrM8vGoXJ9Q4F3V4C6hfm bxCiWoX4AGu/OBe6yAg= -----END CERTIFICATE-----Generated at Sun Aug 24 02:53:50 2025 by rpki-client