$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538333a313030303a3a2f33362d3336203d3e20323135313038.roa File: 326131343a373538333a313030303a3a2f33362d3336203d3e20323135313038.roa (raw, json) Hash identifier: Uc2wuWBne08reeuhGMV9FbwTFk0eKIo5Ei95b36hJuE= Subject key identifier: F6:07:55:6E:F2:16:C6:C3:86:C5:DC:BB:9F:1F:51:87:66:86:02:9B Certificate issuer: /CN=FDEE16BDC5420A60A3D6A8A29BD302650937B88C Certificate serial: 4B84703014FC9119961D2C656B2E8B7962B6617B Authority key identifier: FD:EE:16:BD:C5:42:0A:60:A3:D6:A8:A2:9B:D3:02:65:09:37:B8:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538333a313030303a3a2f33362d3336203d3e20323135313038.roa Signing time: Thu 03 Jul 2025 14:49:14 +0000 ROA not before: Thu 03 Jul 2025 14:44:14 +0000 ROA not after: Thu 02 Jul 2026 14:49:14 +0000 asID: 215108 IP address blocks: 2a14:7583:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.crl rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 04:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:84:70:30:14:fc:91:19:96:1d:2c:65:6b:2e:8b:79:62:b6:61:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FDEE16BDC5420A60A3D6A8A29BD302650937B88C Validity Not Before: Jul 3 14:44:14 2025 GMT Not After : Jul 2 14:49:14 2026 GMT Subject: CN=F607556EF216C6C386C5DCBB9F1F51876686029B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:de:75:81:d8:0d:b8:d5:93:a3:6b:e8:68:b7: ce:d3:a8:61:fc:02:fa:4a:d8:1a:9a:69:bf:16:ca: 6b:60:54:29:92:e6:c9:85:fc:f1:8d:f3:30:63:2f: be:16:37:9b:24:82:43:5a:22:84:ea:e0:5f:3d:fc: fe:5b:82:9f:1b:1a:01:fb:af:67:3e:fd:bd:a7:fa: d3:75:54:bd:cb:73:c5:b7:01:69:e0:54:34:32:f2: f5:4b:b2:38:32:1c:1d:f3:44:db:4a:80:4c:58:33: 23:63:70:a5:e7:94:60:bc:d4:e1:58:45:35:fa:2f: a0:d7:b1:16:62:c9:b0:bd:40:96:7b:a6:63:75:f3: bc:63:9e:ba:d7:98:41:c6:11:b7:6c:e5:8a:6c:fd: af:d8:4e:3c:a1:cd:a2:51:13:d6:38:93:e4:28:6c: 93:6c:3b:8f:a5:02:54:a6:41:58:62:7f:18:58:bf: cf:73:d5:fb:4e:08:44:9b:d4:72:0b:3c:1a:d0:63: 5e:3b:e0:1f:e9:f0:d1:72:d4:02:6c:64:87:ba:17: c2:01:e3:f5:1a:d2:6b:17:f7:f6:ef:36:5a:47:b2: e5:2c:da:a2:1c:d1:32:2e:91:8d:7e:31:c5:b4:24: 67:f8:c7:11:ee:ca:ae:44:f5:25:ab:cc:87:eb:a1: 41:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:07:55:6E:F2:16:C6:C3:86:C5:DC:BB:9F:1F:51:87:66:86:02:9B X509v3 Authority Key Identifier: keyid:FD:EE:16:BD:C5:42:0A:60:A3:D6:A8:A2:9B:D3:02:65:09:37:B8:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FDEE16BDC5420A60A3D6A8A29BD302650937B88C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/705b1897-d907-4dfc-b68b-77f485f58d6c/0/326131343a373538333a313030303a3a2f33362d3336203d3e20323135313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:1000::/36 Signature Algorithm: sha256WithRSAEncryption 73:bb:9c:72:13:b6:af:b0:06:bf:bd:8b:01:fc:be:f1:cb:f2: a5:37:7e:db:a2:dd:6a:59:f4:d5:2a:5a:01:d8:c3:e3:e0:84: f7:17:c7:59:94:bf:3d:61:14:51:08:09:06:c9:61:62:8b:ba: e9:61:b4:e4:d1:a0:c8:53:85:8f:db:13:d7:c6:6e:cf:26:f2: c4:19:c1:4e:47:26:2f:d6:28:f3:ba:ab:54:75:15:bf:ad:7a: b1:ba:f3:72:c2:7a:4b:de:27:78:4f:f2:98:ec:c9:3f:70:85: 4b:65:5c:d5:eb:45:ab:a4:ed:54:20:44:65:b5:41:02:26:b6: 35:77:07:52:b8:d1:25:e8:85:f2:7b:04:2c:d5:ac:e1:2d:8e: a1:57:6e:6e:cf:36:22:1f:48:79:25:c6:7b:79:c5:0f:07:f0: ae:ea:65:08:10:5b:21:2e:2a:94:32:a1:98:64:dd:c7:14:21: 96:36:a9:fa:20:9c:3d:2e:f2:30:cd:ae:b7:89:5c:33:66:24: 1e:b4:f1:67:ca:01:64:96:91:d4:5f:29:1f:bc:62:08:70:12: 7b:23:8c:7e:e1:50:24:da:2b:ce:4a:0e:2f:0e:0d:fe:b6:19: 1a:ba:9b:18:e5:e5:19:1f:a9:77:e8:fe:e2:62:7c:25:68:fd: 47:41:99:a4 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUS4RwMBT8kRmWHSxlay6LeWK2YXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkRFRTE2QkRDNTQyMEE2MEEzRDZBOEEyOUJEMzAyNjUw OTM3Qjg4QzAeFw0yNTA3MDMxNDQ0MTRaFw0yNjA3MDIxNDQ5MTRaMDMxMTAvBgNV BAMTKEY2MDc1NTZFRjIxNkM2QzM4NkM1RENCQjlGMUY1MTg3NjY4NjAyOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC63nWB2A241ZOja+hot87TqGH8 AvpK2Bqaab8WymtgVCmS5smF/PGN8zBjL74WN5skgkNaIoTq4F89/P5bgp8bGgH7 r2c+/b2n+tN1VL3Lc8W3AWngVDQy8vVLsjgyHB3zRNtKgExYMyNjcKXnlGC81OFY RTX6L6DXsRZiybC9QJZ7pmN187xjnrrXmEHGEbds5Yps/a/YTjyhzaJRE9Y4k+Qo bJNsO4+lAlSmQVhifxhYv89z1ftOCESb1HILPBrQY1474B/p8NFy1AJsZIe6F8IB 4/Ua0msX9/bvNlpHsuUs2qIc0TIukY1+McW0JGf4xxHuyq5E9SWrzIfroUFhAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU9gdVbvIWxsOGxdy7nx9Rh2aGApswHwYDVR0j BBgwFoAU/e4WvcVCCmCj1qiim9MCZQk3uIwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzA1YjE4OTctZDkwNy00ZGZjLWI2OGItNzdmNDg1ZjU4 ZDZjLzAvRkRFRTE2QkRDNTQyMEE2MEEzRDZBOEEyOUJEMzAyNjUwOTM3Qjg4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GREVFMTZCREM1NDIwQTYwQTNENkE4QTI5 QkQzMDI2NTA5MzdCODhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MDViMTg5Ny1kOTA3LTRkZmMtYjY4Yi03N2Y0ODVmNThkNmMvMC8zMjYxMzEz NDNhMzczNTM4MzMzYTMxMzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzEzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gxAwDQYJKoZIhvcNAQELBQADggEBAHO7 nHITtq+wBr+9iwH8vvHL8qU3ftui3WpZ9NUqWgHYw+PghPcXx1mUvz1hFFEICQbJ YWKLuulhtOTRoMhThY/bE9fGbs8m8sQZwU5HJi/WKPO6q1R1Fb+terG683LCekve J3hP8pjsyT9whUtlXNXrRauk7VQgRGW1QQImtjV3B1K40SXohfJ7BCzVrOEtjqFX bm7PNiIfSHklxnt5xQ8H8K7qZQgQWyEuKpQyoZhk3ccUIZY2qfognD0u8jDNrreJ XDNmJB608WfKAWSWkdRfKR+8YghwEnsjjH7hUCTaK85KDi8ODf62GRq6mxjl5Rkf qXfo/uJifCVo/UdBmaQ= -----END CERTIFICATE-----Generated at Mon Jul 21 12:22:37 2025 by rpki-client