$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343030303a3a2f33362d3438203d3e2036353137.roa File: 326131343a373538343a343030303a3a2f33362d3438203d3e2036353137.roa (raw, json) Hash identifier: 9qxxzty+nI98+cY44+m4DwmBg2WIZrsDW0snWoFPb+U= Subject key identifier: 3D:7B:8C:5D:94:81:62:AD:BA:99:00:C1:3E:48:29:32:A2:AD:ED:60 Certificate issuer: /CN=FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8 Certificate serial: 0BF9F9C89C3B0BE13FC694AF422012FB9900E9AB Authority key identifier: FA:71:0E:21:BC:41:E9:82:7D:52:D6:6D:E9:8E:F8:E9:AC:E9:B1:E8 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343030303a3a2f33362d3438203d3e2036353137.roa Signing time: Fri 18 Jul 2025 23:35:09 +0000 ROA not before: Fri 18 Jul 2025 23:30:09 +0000 ROA not after: Fri 17 Jul 2026 23:35:09 +0000 asID: 6517 IP address blocks: 2a14:7584:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.crl rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 09:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f9:f9:c8:9c:3b:0b:e1:3f:c6:94:af:42:20:12:fb:99:00:e9:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8 Validity Not Before: Jul 18 23:30:09 2025 GMT Not After : Jul 17 23:35:09 2026 GMT Subject: CN=3D7B8C5D948162ADBA9900C13E482932A2ADED60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5c:02:30:c8:c5:45:87:ec:3e:c8:d0:ef:66: 19:d9:f5:60:9c:53:15:7b:fc:86:7d:cd:b0:16:78: 99:6f:f8:29:29:c1:a8:36:9a:9e:f4:69:26:6e:38: 22:f9:cb:5d:ec:26:75:81:41:5d:b8:eb:30:60:2f: 23:85:6d:63:99:b6:c7:b6:10:49:af:43:6d:a1:07: 94:cf:d2:d7:23:c6:8e:64:01:e2:1d:5a:66:50:95: 84:00:5b:b9:68:b7:d2:fb:89:b1:f5:e6:0f:2d:cf: 89:a4:3b:52:18:74:a9:c3:2f:4a:b9:b0:68:b4:34: 72:a4:84:a9:bd:d5:46:71:36:a7:f0:a8:64:71:3a: 65:4d:99:1a:7b:82:cf:31:12:d4:4e:22:38:b0:e3: fb:c9:cf:cb:b9:05:c3:ff:d4:e1:97:41:d6:f3:c1: c5:a6:44:dd:a5:2e:3b:d2:73:dd:92:b5:9b:ff:f2: bb:06:35:5c:72:1d:95:cc:5a:34:56:3a:41:e4:0e: 0f:db:ef:27:5a:fc:71:9e:a9:f6:54:84:13:9e:2b: b0:05:2d:f7:8f:b8:f1:b3:08:7a:0f:03:ac:00:13: 10:59:a6:a0:af:93:e1:f4:3e:28:20:46:9a:06:5e: ec:41:8d:f1:1a:89:53:4d:20:65:7d:d8:f1:93:81: fb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7B:8C:5D:94:81:62:AD:BA:99:00:C1:3E:48:29:32:A2:AD:ED:60 X509v3 Authority Key Identifier: keyid:FA:71:0E:21:BC:41:E9:82:7D:52:D6:6D:E9:8E:F8:E9:AC:E9:B1:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343030303a3a2f33362d3438203d3e2036353137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:4000::/36 Signature Algorithm: sha256WithRSAEncryption 5d:de:43:28:a3:70:31:6d:8a:fc:f8:94:ae:4c:e7:84:63:20: 5a:d9:8d:03:59:f7:34:b4:72:aa:b1:29:79:86:84:e3:6f:ab: 54:f7:33:39:ab:7e:4f:0e:8e:43:7a:16:62:75:a6:7f:90:30: c2:d7:50:39:8a:59:3d:e9:26:dc:31:14:8d:46:67:21:c7:5c: 71:5c:f3:31:65:53:20:6e:55:79:4b:39:d7:0e:70:e9:0d:bf: 60:7f:0e:8d:62:af:ea:96:99:36:db:b2:0a:e3:d7:57:61:b1: cf:84:11:69:78:b4:36:3c:a7:b4:cb:44:17:e2:c8:f3:d2:43: 64:2b:93:fe:a8:15:49:e5:9b:1d:2c:0c:08:71:b2:86:dc:7c: 4d:f8:7e:bf:6d:20:45:a0:58:76:2d:9b:73:c0:cf:e0:5e:0d: 8f:7e:c5:d7:eb:16:cb:97:e5:d9:1d:d8:fe:20:72:97:b5:85: ed:f2:81:c3:c0:89:c1:52:00:4a:04:cb:47:bc:3b:d2:a1:27: af:12:6b:78:05:d3:19:60:e8:07:51:28:05:33:41:83:0a:ba: e8:90:79:06:c3:6c:2c:1a:e7:41:ce:eb:33:cf:1c:e1:40:0b: d3:e5:8a:de:b1:6a:38:a7:c2:1e:57:9b:c3:2b:f1:24:a6:cb: 4f:7b:fa:ea -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIUC/n5yJw7C+E/xpSvQiAS+5kA6aswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE3MTBFMjFCQzQxRTk4MjdENTJENjZERTk4RUY4RTlB Q0U5QjFFODAeFw0yNTA3MTgyMzMwMDlaFw0yNjA3MTcyMzM1MDlaMDMxMTAvBgNV BAMTKDNEN0I4QzVEOTQ4MTYyQURCQTk5MDBDMTNFNDgyOTMyQTJBREVENjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZXAIwyMVFh+w+yNDvZhnZ9WCc UxV7/IZ9zbAWeJlv+Ckpwag2mp70aSZuOCL5y13sJnWBQV246zBgLyOFbWOZtse2 EEmvQ22hB5TP0tcjxo5kAeIdWmZQlYQAW7lot9L7ibH15g8tz4mkO1IYdKnDL0q5 sGi0NHKkhKm91UZxNqfwqGRxOmVNmRp7gs8xEtROIjiw4/vJz8u5BcP/1OGXQdbz wcWmRN2lLjvSc92StZv/8rsGNVxyHZXMWjRWOkHkDg/b7yda/HGeqfZUhBOeK7AF LfePuPGzCHoPA6wAExBZpqCvk+H0PiggRpoGXuxBjfEaiVNNIGV92PGTgfv9AgMB AAGjggKAMIICfDAdBgNVHQ4EFgQUPXuMXZSBYq26mQDBPkgpMqKt7WAwHwYDVR0j BBgwFoAU+nEOIbxB6YJ9UtZt6Y746azpsegwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTljODNlNWMtNGI1NS00YTFhLTgwMDMtMWI3ZWNjNTFk NDdhLzMvRkE3MTBFMjFCQzQxRTk4MjdENTJENjZERTk4RUY4RTlBQ0U5QjFFOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GQTcxMEUyMUJDNDFFOTgyN0Q1MkQ2NkRF OThFRjhFOUFDRTlCMUU4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81OWM4M2U1Yy00YjU1LTRhMWEtODAwMy0xYjdlY2M1MWQ0N2EvMy8zMjYxMzEz NDNhMzczNTM4MzQzYTM0MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzYz NTMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgQqFHWEQDANBgkqhkiG9w0BAQsFAAOCAQEAXd5DKKNw MW2K/PiUrkznhGMgWtmNA1n3NLRyqrEpeYaE42+rVPczOat+Tw6OQ3oWYnWmf5Aw wtdQOYpZPekm3DEUjUZnIcdccVzzMWVTIG5VeUs51w5w6Q2/YH8OjWKv6paZNtuy CuPXV2Gxz4QRaXi0NjyntMtEF+LI89JDZCuT/qgVSeWbHSwMCHGyhtx8Tfh+v20g RaBYdi2bc8DP4F4Nj37F1+sWy5fl2R3Y/iByl7WF7fKBw8CJwVIASgTLR7w70qEn rxJreAXTGWDoB1EoBTNBgwq66JB5BsNsLBrnQc7rM88c4UAL0+WK3rFqOKfCHleb wyvxJKbLT3v66g== -----END CERTIFICATE-----Generated at Mon Jul 21 19:16:32 2025 by rpki-client