$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa File: 326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa (raw, json) Hash identifier: bvyg3HtIyqBCxLiPY89KCRG9IWT8nd/t/MqdudiybDI= Subject key identifier: 85:3E:D7:E5:83:9C:54:38:99:EC:41:14:C9:05:6D:56:D7:94:9F:E5 Certificate issuer: /CN=FDEE16BDC5420A60A3D6A8A29BD302650937B88C Certificate serial: 2F5E8AAC70495CB8650469C4E2389BE2F5EB348A Authority key identifier: FD:EE:16:BD:C5:42:0A:60:A3:D6:A8:A2:9B:D3:02:65:09:37:B8:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa Signing time: Thu 03 Jul 2025 14:48:55 +0000 ROA not before: Thu 03 Jul 2025 14:43:55 +0000 ROA not after: Thu 02 Jul 2026 14:48:55 +0000 asID: 215108 IP address blocks: 2a14:7580:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.crl rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 04:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5e:8a:ac:70:49:5c:b8:65:04:69:c4:e2:38:9b:e2:f5:eb:34:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FDEE16BDC5420A60A3D6A8A29BD302650937B88C Validity Not Before: Jul 3 14:43:55 2025 GMT Not After : Jul 2 14:48:55 2026 GMT Subject: CN=853ED7E5839C543899EC4114C9056D56D7949FE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:16:4b:33:71:e1:41:4a:fe:d1:53:5b:9c:d0: ea:de:12:15:24:0a:67:df:4f:37:bc:05:1b:1d:07: 63:a8:84:13:f2:45:dd:35:83:79:5f:4e:43:24:2a: cf:cb:16:8b:db:54:ac:5a:d4:52:de:02:12:3b:69: 42:61:76:ad:6e:bd:28:20:7d:b8:13:fd:66:af:6a: 40:cd:09:2b:d3:ec:7e:5f:dc:97:3a:27:4b:00:59: 82:9b:c2:73:5b:7a:3b:b5:dd:19:28:35:06:4c:e1: 05:dd:7b:5a:a7:76:31:77:d1:d4:b9:7e:70:d3:f1: b3:8e:04:5e:41:1b:34:10:99:c9:12:43:94:9a:9c: 70:b0:ff:00:26:6c:5d:3b:9a:d7:0f:18:87:a5:10: 7b:63:56:11:28:20:f9:92:36:17:70:eb:dd:82:51: 82:39:a7:bd:b7:5b:1c:f4:34:90:98:b4:53:df:8b: 24:dc:fa:fb:6d:2f:18:cd:80:9f:06:27:20:ff:6a: 19:49:92:72:59:30:12:24:86:7c:1b:d2:84:a4:67: 46:96:5a:80:5a:1d:e0:43:5b:e9:0c:2e:70:f2:85: a8:5c:9a:dd:16:8a:40:29:48:56:09:df:44:3c:35: b4:8d:3d:7a:96:bc:05:58:4a:73:f7:1e:78:f3:a8: 52:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:3E:D7:E5:83:9C:54:38:99:EC:41:14:C9:05:6D:56:D7:94:9F:E5 X509v3 Authority Key Identifier: keyid:FD:EE:16:BD:C5:42:0A:60:A3:D6:A8:A2:9B:D3:02:65:09:37:B8:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:7000::/36 Signature Algorithm: sha256WithRSAEncryption 44:f6:d1:f8:6e:7c:2b:8d:42:a4:fa:58:2e:22:0c:1b:65:c9: c0:1b:e1:05:49:46:2d:62:d2:a4:73:1b:39:b0:0b:d1:39:9e: e3:80:a7:3e:99:25:cd:c0:ac:73:37:b9:05:e8:d5:03:47:84: 95:c8:08:bc:c2:58:22:8e:30:d7:2c:02:b0:93:e6:46:98:6d: e4:7d:f7:52:9c:4c:ee:4c:25:bb:37:b3:33:ef:6a:6c:0a:2e: dc:b2:ee:bd:a5:34:95:1f:d0:d7:65:16:98:f5:e5:04:a2:68: 7a:66:40:0a:b5:f5:cf:e9:0f:fb:35:c4:3b:df:a3:e0:a8:b3: a8:31:5b:24:01:89:e2:c2:2e:c8:89:ac:60:9c:68:f7:2d:b5: 83:f5:89:a3:41:b2:24:8e:f5:90:bb:b4:b4:40:a2:a1:58:95: 22:d9:de:93:91:b4:cb:ea:f6:b3:58:84:16:cb:13:84:33:7f: 01:1c:10:42:b5:a9:70:e2:dc:e7:02:7c:21:55:03:e5:05:a8: db:70:81:83:f8:7d:03:6c:10:97:df:7c:2d:d4:87:94:b7:80: ba:8a:4b:05:11:a3:e9:f2:f1:70:68:ba:e7:1d:2a:d6:1c:81: 71:e0:da:0b:f1:23:d9:3b:24:7d:de:a0:be:2d:c7:89:38:2e: 80:85:c3:10 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUL16KrHBJXLhlBGnE4jib4vXrNIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkRFRTE2QkRDNTQyMEE2MEEzRDZBOEEyOUJEMzAyNjUw OTM3Qjg4QzAeFw0yNTA3MDMxNDQzNTVaFw0yNjA3MDIxNDQ4NTVaMDMxMTAvBgNV BAMTKDg1M0VEN0U1ODM5QzU0Mzg5OUVDNDExNEM5MDU2RDU2RDc5NDlGRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1FkszceFBSv7RU1uc0OreEhUk CmffTze8BRsdB2OohBPyRd01g3lfTkMkKs/LFovbVKxa1FLeAhI7aUJhdq1uvSgg fbgT/WavakDNCSvT7H5f3Jc6J0sAWYKbwnNbeju13RkoNQZM4QXde1qndjF30dS5 fnDT8bOOBF5BGzQQmckSQ5SanHCw/wAmbF07mtcPGIelEHtjVhEoIPmSNhdw692C UYI5p723Wxz0NJCYtFPfiyTc+vttLxjNgJ8GJyD/ahlJknJZMBIkhnwb0oSkZ0aW WoBaHeBDW+kMLnDyhahcmt0WikApSFYJ30Q8NbSNPXqWvAVYSnP3HnjzqFLhAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUhT7X5YOcVDiZ7EEUyQVtVteUn+UwHwYDVR0j BBgwFoAU/e4WvcVCCmCj1qiim9MCZQk3uIwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzA1YjE4OTctZDkwNy00ZGZjLWI2OGItNzdmNDg1ZjU4 ZDZjLzAvRkRFRTE2QkRDNTQyMEE2MEEzRDZBOEEyOUJEMzAyNjUwOTM3Qjg4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GREVFMTZCREM1NDIwQTYwQTNENkE4QTI5 QkQzMDI2NTA5MzdCODhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MDViMTg5Ny1kOTA3LTRkZmMtYjY4Yi03N2Y0ODVmNThkNmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzEzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gHAwDQYJKoZIhvcNAQELBQADggEBAET2 0fhufCuNQqT6WC4iDBtlycAb4QVJRi1i0qRzGzmwC9E5nuOApz6ZJc3ArHM3uQXo 1QNHhJXICLzCWCKOMNcsArCT5kaYbeR991KcTO5MJbs3szPvamwKLtyy7r2lNJUf 0NdlFpj15QSiaHpmQAq19c/pD/s1xDvfo+Cos6gxWyQBieLCLsiJrGCcaPcttYP1 iaNBsiSO9ZC7tLRAoqFYlSLZ3pORtMvq9rNYhBbLE4QzfwEcEEK1qXDi3OcCfCFV A+UFqNtwgYP4fQNsEJfffC3Uh5S3gLqKSwURo+ny8XBouucdKtYcgXHg2gvxI9k7 JH3eoL4tx4k4LoCFwxA= -----END CERTIFICATE-----Generated at Mon Jul 21 12:22:37 2025 by rpki-client