$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa File: 326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: SsdW0YpcJfef7CtWvRhhfCUEgjAhSHqFG1h0ACBR214= Subject key identifier: 54:B7:CC:15:6B:94:7C:C2:28:6A:58:BA:51:35:1B:0D:B1:AF:5E:B1 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 61AFC452A1E521DAFA0806BDA295F4D1455B2669 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa Signing time: Sat 05 Jul 2025 11:46:21 +0000 ROA not before: Sat 05 Jul 2025 11:41:21 +0000 ROA not after: Sat 04 Jul 2026 11:46:21 +0000 asID: 0 IP address blocks: 2a14:1ec7:c010::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 23 Jul 2025 22:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:af:c4:52:a1:e5:21:da:fa:08:06:bd:a2:95:f4:d1:45:5b:26:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Jul 5 11:41:21 2025 GMT Not After : Jul 4 11:46:21 2026 GMT Subject: CN=54B7CC156B947CC2286A58BA51351B0DB1AF5EB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5b:6b:7d:07:04:a0:37:3d:fc:21:a4:14:2b: cc:4d:9d:10:7a:ac:47:53:a6:99:cc:1d:0b:04:32: 30:f5:60:a5:49:56:7b:3e:87:50:fb:fb:39:cc:bb: 7a:68:8d:db:02:77:1e:9e:67:74:f0:cc:19:c2:1f: 39:34:39:37:e7:41:17:c4:3d:83:3f:ca:77:42:8b: c0:4d:17:f1:9e:dd:3f:d2:a8:ab:3c:d3:51:c1:88: b3:c9:62:c0:b2:e0:ce:e2:3c:a1:17:eb:03:11:3d: 44:84:9d:23:0b:54:8f:82:78:1a:d6:03:f9:ec:08: 7a:7b:63:2c:6d:45:ca:75:0b:a8:cf:8e:b7:5c:42: 7f:3c:90:d0:fa:c8:78:47:f4:4d:f4:d6:e9:9d:58: e7:ce:44:6b:a6:e8:da:ef:ae:c2:e7:de:14:d5:93: 9a:a6:7b:1f:ed:02:23:eb:e3:97:e1:a3:44:6b:44: 98:19:51:78:2a:4a:1d:93:e2:7d:8f:c2:13:eb:9e: fb:81:14:5a:57:16:fc:40:0b:07:cb:e1:f7:97:0c: bb:61:eb:92:3d:14:e0:0e:24:96:62:eb:09:59:53: 74:f1:95:86:ee:76:a3:12:22:dd:6d:ca:8f:e8:78: 72:95:0f:39:fb:28:f8:58:3f:36:db:77:50:46:53: 33:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B7:CC:15:6B:94:7C:C2:28:6A:58:BA:51:35:1B:0D:B1:AF:5E:B1 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:c010::/44 Signature Algorithm: sha256WithRSAEncryption 29:19:ed:71:19:70:a2:06:94:83:0b:e4:05:82:38:9f:39:30: 12:6b:5a:94:96:4a:73:fe:5c:9f:b2:f4:f7:61:6a:b8:ac:da: d2:04:b3:5a:0f:3a:da:ed:f6:4f:25:e6:8c:81:ca:dc:0d:70: 36:3c:7d:c9:02:14:ec:ac:f2:af:4c:e6:75:83:48:18:cf:c2: b4:ab:31:0b:9e:02:4d:30:da:55:41:d3:27:92:b6:1f:69:4e: 8f:f8:a2:31:69:31:d5:85:f1:c1:6d:4c:c3:14:01:62:76:41: e5:86:3e:df:24:fe:8e:ad:ff:60:47:65:d8:24:e4:38:b6:9d: 71:86:20:ce:e3:dc:ad:46:ec:d4:2a:89:0c:53:fc:9e:17:e1: f6:21:ea:00:60:40:9a:b8:94:90:5b:f9:af:37:17:81:58:36: 7e:04:f4:71:04:dd:c0:67:8d:fe:91:74:85:c1:24:6f:37:a7: f7:14:6c:12:64:08:39:9f:20:6a:de:aa:12:dd:8c:89:15:b8: ce:48:e9:37:6d:35:96:98:58:4e:e4:82:82:22:77:97:a8:f5: e8:dc:09:b5:41:6b:0a:53:11:36:95:f2:d7:f5:a0:ae:48:68: 5b:9e:fe:c3:fb:8b:e9:62:7f:8d:72:65:9b:6b:6a:40:35:36: aa:c6:34:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUYa/EUqHlIdr6CAa9opX00UVbJmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNTA3MDUxMTQxMjFaFw0yNjA3MDQxMTQ2MjFaMDMxMTAvBgNV BAMTKDU0QjdDQzE1NkI5NDdDQzIyODZBNThCQTUxMzUxQjBEQjFBRjVFQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWW2t9BwSgNz38IaQUK8xNnRB6 rEdTppnMHQsEMjD1YKVJVns+h1D7+znMu3pojdsCdx6eZ3TwzBnCHzk0OTfnQRfE PYM/yndCi8BNF/Ge3T/SqKs801HBiLPJYsCy4M7iPKEX6wMRPUSEnSMLVI+CeBrW A/nsCHp7YyxtRcp1C6jPjrdcQn88kND6yHhH9E301umdWOfORGum6NrvrsLn3hTV k5qmex/tAiPr45fho0RrRJgZUXgqSh2T4n2PwhPrnvuBFFpXFvxACwfL4feXDLth 65I9FOAOJJZi6wlZU3TxlYbudqMSIt1tyo/oeHKVDzn7KPhYPzbbd1BGUzPVAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUVLfMFWuUfMIoali6UTUbDbGvXrEwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzczYTYzMzAzMTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqFB7HwBAwDQYJKoZIhvcNAQELBQADggEBACkZ7XEZcKIGlIML 5AWCOJ85MBJrWpSWSnP+XJ+y9Pdharis2tIEs1oPOtrt9k8l5oyBytwNcDY8fckC FOys8q9M5nWDSBjPwrSrMQueAk0w2lVB0yeSth9pTo/4ojFpMdWF8cFtTMMUAWJ2 QeWGPt8k/o6t/2BHZdgk5Di2nXGGIM7j3K1G7NQqiQxT/J4X4fYh6gBgQJq4lJBb +a83F4FYNn4E9HEE3cBnjf6RdIXBJG83p/cUbBJkCDmfIGreqhLdjIkVuM5I6Tdt NZaYWE7kgoIid5eo9ejcCbVBawpTETaV8tf1oK5IaFue/sP7i+lif41yZZtrakA1 NqrGNIU= -----END CERTIFICATE-----Generated at Wed Jul 23 01:25:23 2025 by rpki-client