$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323730303a3a2f34302d3438203d3e20323039313039.roa File: 326131343a373538313a323730303a3a2f34302d3438203d3e20323039313039.roa (raw, json) Hash identifier: MFKFuWCDL66Zxs5f3hEeRn+2JW7mEBoWjT7f6AJBOhM= Subject key identifier: EA:66:A3:61:FB:5E:04:22:04:54:85:A4:73:3D:4C:90:E0:A6:23:69 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 43F5280C79A6C137CED5D3B9B130F5C14BCA9A52 Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323730303a3a2f34302d3438203d3e20323039313039.roa Signing time: Sat 16 Aug 2025 17:28:12 +0000 ROA not before: Sat 16 Aug 2025 17:23:12 +0000 ROA not after: Sat 15 Aug 2026 17:28:12 +0000 asID: 209109 IP address blocks: 2a14:7581:2700::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 16:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f5:28:0c:79:a6:c1:37:ce:d5:d3:b9:b1:30:f5:c1:4b:ca:9a:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Aug 16 17:23:12 2025 GMT Not After : Aug 15 17:28:12 2026 GMT Subject: CN=EA66A361FB5E0422045485A4733D4C90E0A62369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f2:68:12:c2:03:4f:5c:d3:0f:47:db:a7:f1: 90:4d:cf:ad:df:1c:49:1b:54:ea:33:ae:71:e8:c4: 21:53:38:f9:0c:f9:34:62:e7:41:b7:f2:38:e7:b6: 17:b5:60:3e:30:63:26:41:e7:57:cb:6c:8b:16:2b: 14:66:7d:b0:67:44:66:2b:32:f4:db:de:b5:51:1a: ba:9b:67:62:d5:99:4c:9c:c7:98:ee:81:73:f2:38: 76:44:cb:ca:d2:f7:a8:24:48:94:1d:14:ee:9b:63: 9a:20:51:c9:f6:e1:d6:cf:f3:ca:68:b6:d5:01:b5: 46:3c:75:50:d5:23:d1:18:91:9e:f0:2f:80:0f:03: 18:87:0d:22:28:71:84:0a:d2:fd:82:d0:cd:13:0f: b3:f8:71:99:51:79:7c:77:aa:88:df:c1:fa:eb:5b: ed:35:eb:c6:91:07:d1:37:97:b4:67:17:b2:9d:d9: 76:f1:a8:e6:af:f3:4b:fe:5a:d1:0a:36:e8:f7:39: 5a:20:e6:8c:95:0c:2e:d7:29:a5:0e:b0:e7:eb:76: 94:1a:e6:46:08:69:39:56:26:5e:dc:bf:98:e1:d8: b8:13:16:47:98:97:d2:7c:f4:c4:31:ec:82:d8:a6: db:e8:9c:2e:c7:94:ca:b7:40:57:7e:d9:ea:e8:0a: 08:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:66:A3:61:FB:5E:04:22:04:54:85:A4:73:3D:4C:90:E0:A6:23:69 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323730303a3a2f34302d3438203d3e20323039313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2700::/40 Signature Algorithm: sha256WithRSAEncryption 01:78:ff:2d:c9:2a:f7:b1:01:67:a3:ab:ea:d2:7c:d6:59:4f: 97:c8:0c:74:9d:51:31:47:e8:e8:5b:76:91:00:0c:04:95:d3: ab:42:d6:31:f8:05:d8:44:d1:ca:ce:33:3c:2e:cb:d8:6e:47: ed:28:38:99:61:01:ec:ee:33:8e:0b:b2:bb:ec:ad:3d:61:97: 99:e3:07:f3:ec:d2:ad:1f:55:03:b8:e9:7a:e1:3e:e6:4e:12: 14:a8:39:19:eb:53:79:d1:03:d9:72:04:29:45:b5:ba:d6:bf: bd:7b:5e:b2:bf:93:db:79:48:cd:57:90:29:0d:0a:70:d7:c3: 7e:ac:9b:f8:ae:23:f3:17:4b:96:c3:0a:e2:45:1f:fd:93:b1: 1b:b3:0e:9f:fa:29:c4:e0:57:89:f0:10:05:5d:40:fd:58:7d: 90:d7:d5:28:85:79:bc:9f:83:78:2d:3f:b5:0a:7d:0c:e8:13: c9:82:19:25:5f:89:0d:fd:15:d3:b5:a2:f5:a4:ec:54:c0:ed: e8:ea:99:da:16:4d:b2:b2:2d:f3:96:95:14:1c:e8:7b:13:f0: ba:c1:a5:25:d8:be:d2:02:1e:d8:8a:bb:da:8d:14:80:f1:00: b2:fb:b7:19:88:4a:51:a6:73:c6:fc:44:86:28:90:c0:71:54: 2d:bd:a1:60 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUQ/UoDHmmwTfO1dO5sTD1wUvKmlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA4MTYxNzIzMTJaFw0yNjA4MTUxNzI4MTJaMDMxMTAvBgNV BAMTKEVBNjZBMzYxRkI1RTA0MjIwNDU0ODVBNDczM0Q0QzkwRTBBNjIzNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr8mgSwgNPXNMPR9un8ZBNz63f HEkbVOozrnHoxCFTOPkM+TRi50G38jjnthe1YD4wYyZB51fLbIsWKxRmfbBnRGYr MvTb3rVRGrqbZ2LVmUycx5jugXPyOHZEy8rS96gkSJQdFO6bY5ogUcn24dbP88po ttUBtUY8dVDVI9EYkZ7wL4APAxiHDSIocYQK0v2C0M0TD7P4cZlReXx3qojfwfrr W+0168aRB9E3l7RnF7Kd2XbxqOav80v+WtEKNuj3OVog5oyVDC7XKaUOsOfrdpQa 5kYIaTlWJl7cv5jh2LgTFkeYl9J89MQx7ILYptvonC7HlMq3QFd+2eroCgjvAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU6majYfteBCIEVIWkcz1MkOCmI2kwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzczMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM5MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gScwDQYJKoZIhvcNAQELBQADggEBAAF4 /y3JKvexAWejq+rSfNZZT5fIDHSdUTFH6OhbdpEADASV06tC1jH4BdhE0crOMzwu y9huR+0oOJlhAezuM44LsrvsrT1hl5njB/Ps0q0fVQO46XrhPuZOEhSoORnrU3nR A9lyBClFtbrWv717XrK/k9t5SM1XkCkNCnDXw36sm/iuI/MXS5bDCuJFH/2TsRuz Dp/6KcTgV4nwEAVdQP1YfZDX1SiFebyfg3gtP7UKfQzoE8mCGSVfiQ39FdO1ovWk 7FTA7ejqmdoWTbKyLfOWlRQc6HsT8LrBpSXYvtICHtiKu9qNFIDxALL7txmISlGm c8b8RIYokMBxVC29oWA= -----END CERTIFICATE-----Generated at Sun Aug 24 02:54:16 2025 by rpki-client