$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343830303a3a2f34382d3438203d3e20323131333538.roa File: 326131343a373538343a343830303a3a2f34382d3438203d3e20323131333538.roa (raw, json) Hash identifier: dxI70qoTw8AqT4GSbNKeSr6HFS9kuFZrrwUT/py32Kc= Subject key identifier: A6:A1:4C:94:89:4B:CF:41:02:48:C7:59:4D:06:D5:94:61:A1:5B:36 Certificate issuer: /CN=FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8 Certificate serial: 6A80904289C9DF6D36AFDBD5BE7ABCA23BA3CDDB Authority key identifier: FA:71:0E:21:BC:41:E9:82:7D:52:D6:6D:E9:8E:F8:E9:AC:E9:B1:E8 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343830303a3a2f34382d3438203d3e20323131333538.roa Signing time: Fri 18 Jul 2025 23:35:08 +0000 ROA not before: Fri 18 Jul 2025 23:30:08 +0000 ROA not after: Fri 17 Jul 2026 23:35:08 +0000 asID: 211358 IP address blocks: 2a14:7584:4800::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.crl rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 09:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:80:90:42:89:c9:df:6d:36:af:db:d5:be:7a:bc:a2:3b:a3:cd:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8 Validity Not Before: Jul 18 23:30:08 2025 GMT Not After : Jul 17 23:35:08 2026 GMT Subject: CN=A6A14C94894BCF410248C7594D06D59461A15B36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:43:21:05:e9:ca:61:9a:ea:e2:6b:77:c8:7e: ff:c2:73:bc:27:b5:7a:f2:84:c2:c9:55:fc:35:ec: 41:0c:25:14:89:7f:92:64:b9:24:5d:60:fe:79:3b: 6f:c4:1c:c8:97:df:5d:81:96:09:3c:bb:ff:fd:07: ad:a4:9e:4d:dc:cc:10:ed:03:f3:26:17:0d:a3:70: 75:e8:4c:22:a3:2d:3f:47:0e:46:06:69:47:2c:b3: 46:0f:c7:6b:28:dc:a7:ee:d1:a3:b8:62:87:9f:28: 0b:2c:b3:88:7a:fe:b4:63:02:7f:3b:98:1a:07:37: de:63:b3:7b:30:cb:ba:60:93:4c:48:33:a4:63:52: f4:59:28:df:94:45:ff:c6:e4:8b:63:ce:99:90:2e: ed:ec:39:02:a4:ce:d0:73:56:17:23:a1:f1:79:56: 93:55:8e:80:ff:d4:5b:0b:1c:d2:d8:8e:c2:fd:2d: 29:bb:8a:bc:e4:5b:9c:51:0b:c4:48:9f:09:3d:89: 68:96:39:68:2d:00:6c:ec:16:2d:d5:2e:83:06:fd: 60:5f:34:30:64:0b:c5:8c:70:80:e8:a9:12:6f:52: 56:85:73:d9:cd:73:a7:6a:1d:64:5e:3e:c2:89:d1: 4b:01:7c:17:7e:e2:3b:79:71:a6:6c:0e:7d:6b:e3: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:A1:4C:94:89:4B:CF:41:02:48:C7:59:4D:06:D5:94:61:A1:5B:36 X509v3 Authority Key Identifier: keyid:FA:71:0E:21:BC:41:E9:82:7D:52:D6:6D:E9:8E:F8:E9:AC:E9:B1:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FA710E21BC41E9827D52D66DE98EF8E9ACE9B1E8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/59c83e5c-4b55-4a1a-8003-1b7ecc51d47a/3/326131343a373538343a343830303a3a2f34382d3438203d3e20323131333538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:4800::/48 Signature Algorithm: sha256WithRSAEncryption 6a:bd:b9:bd:19:0f:ef:38:d7:43:37:f4:56:da:13:b9:cd:f6: 13:f6:ae:bb:06:16:d5:7f:00:23:9d:23:5e:c4:05:b5:ac:63: 7e:f0:e5:4b:19:df:30:81:31:d3:f3:f4:98:8e:eb:fc:80:bf: 02:3a:1a:80:65:01:f3:e6:5c:97:c5:de:77:83:51:2f:88:d0: 36:da:f9:8d:e7:6a:ac:d2:d6:fa:6c:4b:47:b1:56:33:6c:bb: 6f:ed:aa:3c:15:17:d8:41:1e:e7:22:9e:c1:a3:1d:20:a9:ce: ef:30:59:6a:6a:77:5e:0c:ca:d4:11:2e:ef:8b:18:a2:f1:4f: 93:5d:0b:ab:3b:b9:e6:80:1e:45:bb:a8:62:80:ae:e2:fb:08: 73:33:27:94:d3:7d:a2:e3:0a:cb:0e:58:2f:5a:f8:8f:c4:63: f1:76:bb:18:e0:2f:9b:44:58:bc:e9:3a:66:fb:d7:4a:ab:be: 63:3c:4c:5e:60:10:59:e2:c4:5f:75:61:3b:55:0d:35:94:96: c3:4b:43:98:41:5c:17:ce:8c:d6:fb:f9:35:7e:c2:4e:5e:1a: 39:f0:d7:ae:9f:22:30:3b:5b:0f:30:6d:0d:09:1f:10:aa:14: b0:09:45:94:56:28:53:fb:53:26:a9:d8:4f:9e:1f:5d:51:24: d1:cf:14:44 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUaoCQQonJ3202r9vVvnq8ojujzdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE3MTBFMjFCQzQxRTk4MjdENTJENjZERTk4RUY4RTlB Q0U5QjFFODAeFw0yNTA3MTgyMzMwMDhaFw0yNjA3MTcyMzM1MDhaMDMxMTAvBgNV BAMTKEE2QTE0Qzk0ODk0QkNGNDEwMjQ4Qzc1OTREMDZENTk0NjFBMTVCMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdQyEF6cphmuria3fIfv/Cc7wn tXryhMLJVfw17EEMJRSJf5JkuSRdYP55O2/EHMiX312Blgk8u//9B62knk3czBDt A/MmFw2jcHXoTCKjLT9HDkYGaUcss0YPx2so3Kfu0aO4YoefKAsss4h6/rRjAn87 mBoHN95js3swy7pgk0xIM6RjUvRZKN+URf/G5ItjzpmQLu3sOQKkztBzVhcjofF5 VpNVjoD/1FsLHNLYjsL9LSm7irzkW5xRC8RInwk9iWiWOWgtAGzsFi3VLoMG/WBf NDBkC8WMcIDoqRJvUlaFc9nNc6dqHWRePsKJ0UsBfBd+4jt5caZsDn1r43XNAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUpqFMlIlLz0ECSMdZTQbVlGGhWzYwHwYDVR0j BBgwFoAU+nEOIbxB6YJ9UtZt6Y746azpsegwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTljODNlNWMtNGI1NS00YTFhLTgwMDMtMWI3ZWNjNTFk NDdhLzMvRkE3MTBFMjFCQzQxRTk4MjdENTJENjZERTk4RUY4RTlBQ0U5QjFFOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GQTcxMEUyMUJDNDFFOTgyN0Q1MkQ2NkRF OThFRjhFOUFDRTlCMUU4LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81OWM4M2U1Yy00YjU1LTRhMWEtODAwMy0xYjdlY2M1MWQ0N2EvMy8zMjYxMzEz NDNhMzczNTM4MzQzYTM0MzgzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTMxMzMzNTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1hEgAMA0GCSqGSIb3DQEBCwUAA4IBAQBq vbm9GQ/vONdDN/RW2hO5zfYT9q67BhbVfwAjnSNexAW1rGN+8OVLGd8wgTHT8/SY juv8gL8COhqAZQHz5lyXxd53g1EviNA22vmN52qs0tb6bEtHsVYzbLtv7ao8FRfY QR7nIp7Box0gqc7vMFlqandeDMrUES7vixii8U+TXQurO7nmgB5Fu6higK7i+whz MyeU032i4wrLDlgvWviPxGPxdrsY4C+bRFi86Tpm+9dKq75jPExeYBBZ4sRfdWE7 VQ01lJbDS0OYQVwXzozW+/k1fsJOXho58NeunyIwO1sPMG0NCR8QqhSwCUWUVihT +1MmqdhPnh9dUSTRzxRE -----END CERTIFICATE-----Generated at Mon Jul 21 19:19:25 2025 by rpki-client