$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323930303a3a2f34302d3438203d3e20323039313039.roa File: 326131343a373538313a323930303a3a2f34302d3438203d3e20323039313039.roa (raw, json) Hash identifier: ENamU9VlpUh2S5yKvYrAp12SwLl/9Jv38ffU+yHH5Iw= Subject key identifier: D8:91:9E:25:B3:64:1F:3D:FE:4C:9E:23:3C:A5:9E:FF:AC:5F:7E:E2 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 038E94FE10EF770CFCBA371560616CA0F9FC7DAF Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323930303a3a2f34302d3438203d3e20323039313039.roa Signing time: Sat 16 Aug 2025 17:29:26 +0000 ROA not before: Sat 16 Aug 2025 17:24:26 +0000 ROA not after: Sat 15 Aug 2026 17:29:26 +0000 asID: 209109 IP address blocks: 2a14:7581:2900::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Aug 2025 16:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:8e:94:fe:10:ef:77:0c:fc:ba:37:15:60:61:6c:a0:f9:fc:7d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Aug 16 17:24:26 2025 GMT Not After : Aug 15 17:29:26 2026 GMT Subject: CN=D8919E25B3641F3DFE4C9E233CA59EFFAC5F7EE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:66:96:5b:0a:3b:4e:68:2b:02:b8:df:0a:a5: a0:5b:05:0c:d5:0d:81:99:39:e3:5d:fb:59:59:66: dc:0e:da:a5:f5:4f:2f:b3:26:13:5a:10:ec:fe:e7: 72:bd:44:27:c8:a0:95:7a:2a:bb:bd:9b:a5:8c:2c: 22:3c:f9:ff:8b:73:76:27:c4:c8:05:b1:4c:70:a1: 4a:c1:b7:23:38:85:9f:ff:b3:9a:cf:bb:ca:d3:0d: e4:cf:8a:d5:54:76:a0:b4:08:d5:09:44:5a:e6:83: 6e:c6:45:d4:5e:1f:0f:64:d1:16:23:7c:c3:8e:46: ec:e4:51:73:d4:a7:7b:cc:b8:b2:27:6a:fe:ff:df: 0b:af:22:9f:30:4c:ec:83:ec:87:26:36:ef:c7:3e: 08:ab:4b:49:eb:7d:b8:b8:f8:fb:1f:57:dd:79:0a: 82:79:a1:35:dc:62:0d:68:ad:28:d1:50:29:60:9e: cc:b8:54:6c:ae:cc:67:14:3e:cb:27:07:19:04:c6: 0d:d9:f5:1d:68:f0:9b:fd:ea:9b:12:82:02:78:11: df:b7:b0:ec:89:a5:84:35:68:58:db:b5:8a:71:a7: f1:40:7a:34:93:76:fa:59:d6:36:d2:33:ce:7f:57: e7:aa:fa:d0:86:25:9e:50:22:64:f2:d9:08:28:a7: 08:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:91:9E:25:B3:64:1F:3D:FE:4C:9E:23:3C:A5:9E:FF:AC:5F:7E:E2 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323930303a3a2f34302d3438203d3e20323039313039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2900::/40 Signature Algorithm: sha256WithRSAEncryption 47:fd:8c:a2:a5:88:40:c8:4b:ee:7f:78:01:c4:d7:be:0b:34: be:fb:f8:43:94:19:8c:d8:f8:7b:ec:06:5e:6b:21:ff:64:f6: 2b:e1:71:f2:53:76:29:5f:05:df:5e:cb:63:57:12:d0:7e:20: c2:55:b4:46:15:4f:60:3c:09:02:e6:59:1e:3f:a4:ea:7b:61: f7:5f:d1:93:50:d1:e0:80:e5:9e:f9:6b:98:ad:c7:03:44:8f: 77:7c:2c:28:59:c8:53:d9:1f:aa:2e:c4:7c:c4:48:8d:ec:bf: 84:f2:0b:d6:d9:42:37:9a:6a:19:41:9b:c7:63:72:bb:3b:20: 52:7c:56:2b:78:dd:b7:e3:59:08:c9:76:78:5e:5a:96:a7:ad: 60:dd:5e:3e:01:93:22:63:33:77:49:17:bd:2a:85:fe:12:11: 18:da:1a:9f:fa:5c:e2:db:cc:f7:61:0d:65:6d:fc:81:81:71: e6:41:ea:0f:10:64:9c:32:aa:5b:1c:42:05:22:b7:cd:e8:51: 02:5a:79:c0:d9:6a:35:77:7a:0e:b1:1d:d7:d8:16:8c:77:45: aa:54:24:20:04:5a:99:f4:45:15:ca:dd:0e:60:10:0d:ce:13: 1d:ac:50:9b:e0:c9:a4:12:18:c2:7d:52:ad:50:50:fa:06:c0: a5:e4:31:89 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUA46U/hDvdwz8ujcVYGFsoPn8fa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA4MTYxNzI0MjZaFw0yNjA4MTUxNzI5MjZaMDMxMTAvBgNV BAMTKEQ4OTE5RTI1QjM2NDFGM0RGRTRDOUUyMzNDQTU5RUZGQUM1RjdFRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgZpZbCjtOaCsCuN8KpaBbBQzV DYGZOeNd+1lZZtwO2qX1Ty+zJhNaEOz+53K9RCfIoJV6Kru9m6WMLCI8+f+Lc3Yn xMgFsUxwoUrBtyM4hZ//s5rPu8rTDeTPitVUdqC0CNUJRFrmg27GRdReHw9k0RYj fMOORuzkUXPUp3vMuLInav7/3wuvIp8wTOyD7IcmNu/HPgirS0nrfbi4+PsfV915 CoJ5oTXcYg1orSjRUClgnsy4VGyuzGcUPssnBxkExg3Z9R1o8Jv96psSggJ4Ed+3 sOyJpYQ1aFjbtYpxp/FAejSTdvpZ1jbSM85/V+eq+tCGJZ5QImTy2QgopwgjAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU2JGeJbNkHz3+TJ4jPKWe/6xffuIwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzkzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM5MzEzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSkwDQYJKoZIhvcNAQELBQADggEBAEf9 jKKliEDIS+5/eAHE174LNL77+EOUGYzY+HvsBl5rIf9k9ivhcfJTdilfBd9ey2NX EtB+IMJVtEYVT2A8CQLmWR4/pOp7Yfdf0ZNQ0eCA5Z75a5itxwNEj3d8LChZyFPZ H6ouxHzESI3sv4TyC9bZQjeaahlBm8djcrs7IFJ8Vit43bfjWQjJdnheWpanrWDd Xj4BkyJjM3dJF70qhf4SERjaGp/6XOLbzPdhDWVt/IGBceZB6g8QZJwyqlscQgUi t83oUQJaecDZajV3eg6xHdfYFox3RapUJCAEWpn0RRXK3Q5gEA3OEx2sUJvgyaQS GMJ9Uq1QUPoGwKXkMYk= -----END CERTIFICATE-----Generated at Sun Aug 24 02:54:53 2025 by rpki-client