$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34322d3432203d3e203331383938.roa File: 326131343a373538303a3530303a3a2f34322d3432203d3e203331383938.roa (raw, json) Hash identifier: 7z5RoyaJRkP9nx99eQ4HknE9KjY7eFLuMQrU4NhLP9s= Subject key identifier: 0D:D2:1E:13:D9:2C:1E:6B:76:67:6A:7C:7B:5F:1D:74:67:3D:1D:BA Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 445FEF898A907346560C5209AA8076A265488845 Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34322d3432203d3e203331383938.roa Signing time: Mon 08 Sep 2025 07:45:06 +0000 ROA not before: Mon 08 Sep 2025 07:40:06 +0000 ROA not after: Mon 07 Sep 2026 07:45:06 +0000 asID: 31898 IP address blocks: 2a14:7580:500::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 16:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:5f:ef:89:8a:90:73:46:56:0c:52:09:aa:80:76:a2:65:48:88:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: Sep 8 07:40:06 2025 GMT Not After : Sep 7 07:45:06 2026 GMT Subject: CN=0DD21E13D92C1E6B76676A7C7B5F1D74673D1DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:39:72:ac:b0:f5:34:f4:d6:44:b8:02:1d:30: e4:8f:27:f2:8e:e4:99:eb:f4:5e:0e:17:ba:58:46: 55:23:99:0e:55:0d:78:09:fb:98:ce:20:b1:df:fe: 71:eb:47:f0:db:03:aa:ee:27:05:2f:2d:d1:ac:d6: af:f0:cf:24:c4:93:76:1d:98:da:e8:36:bd:16:68: 74:60:15:1a:66:2f:a7:c5:f9:e9:1a:f9:f3:11:ef: 40:06:11:ae:50:d9:b2:ca:56:b1:45:9f:81:94:23: 1c:cf:68:63:84:7b:b7:0c:2b:2b:81:92:03:d8:85: 21:a8:3f:e0:66:df:3b:8a:42:96:33:b6:81:29:0e: 6a:50:74:8e:de:07:26:e4:c4:91:e1:25:96:8a:5a: f9:c6:76:27:f1:71:80:06:dc:94:a0:1e:ba:a8:33: 53:c2:77:73:38:e3:65:d2:8e:a9:3e:44:6d:d2:2b: b7:61:cb:54:2d:a4:7c:4c:3a:51:51:d4:dd:d0:98: 54:35:d6:8a:de:a8:14:0d:c5:26:1c:16:b3:b6:60: a0:8c:61:a9:cc:cb:0a:ea:05:cf:cf:9f:21:61:5a: ba:37:56:61:16:e5:3b:c4:d1:ec:03:e3:ed:21:ed: 10:88:c8:09:21:63:9b:c0:81:2b:45:2c:ef:81:e4: ee:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D2:1E:13:D9:2C:1E:6B:76:67:6A:7C:7B:5F:1D:74:67:3D:1D:BA X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34322d3432203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:500::/42 Signature Algorithm: sha256WithRSAEncryption a0:d1:03:e0:79:57:f5:3b:9e:dd:cc:e6:17:21:0b:c1:16:e8: f0:fa:40:62:21:84:b0:62:39:3f:08:d6:92:76:3a:9f:25:01: 93:23:5a:48:a1:90:89:ba:82:2f:6f:84:d3:ea:09:47:2f:13: 12:99:f3:5c:fb:68:b0:1a:fd:15:d4:9c:6b:c6:97:95:d3:9b: 29:8b:20:8b:37:e8:70:7b:80:88:db:b2:e0:f4:ef:37:0b:55: 60:62:95:c4:32:cd:af:1f:6b:d4:23:68:90:2e:1b:e5:b1:41: a7:1d:f0:ff:3c:e6:a9:75:f8:a4:90:18:7f:2a:9d:4d:21:4c: b3:5e:06:7d:25:1a:ae:d5:16:41:e0:6d:39:a5:62:3d:1d:27: 1a:6d:21:f1:10:1f:e1:b8:04:b0:bd:4e:d4:9f:04:9d:10:b8: 83:92:fc:11:8f:31:c8:b0:16:1a:30:40:b4:4b:1e:47:01:34: 25:54:eb:6c:89:24:e2:f9:86:99:0b:6a:d4:4f:6f:96:6f:64: 05:4e:3a:9e:de:03:11:9c:dd:bc:47:6f:d1:f0:28:5e:86:c7: bb:f9:2c:fb:a0:a5:54:98:3a:0c:7b:02:47:d7:c4:5a:e2:15: dd:43:f7:b8:45:23:3d:a9:cb:6f:79:7b:01:b8:54:9c:e7:ee: 2f:db:c0:4b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIURF/viYqQc0ZWDFIJqoB2omVIiEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNTA5MDgwNzQwMDZaFw0yNjA5MDcwNzQ1MDZaMDMxMTAvBgNV BAMTKDBERDIxRTEzRDkyQzFFNkI3NjY3NkE3QzdCNUYxRDc0NjczRDFEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeOXKssPU09NZEuAIdMOSPJ/KO 5Jnr9F4OF7pYRlUjmQ5VDXgJ+5jOILHf/nHrR/DbA6ruJwUvLdGs1q/wzyTEk3Yd mNroNr0WaHRgFRpmL6fF+eka+fMR70AGEa5Q2bLKVrFFn4GUIxzPaGOEe7cMKyuB kgPYhSGoP+Bm3zuKQpYztoEpDmpQdI7eBybkxJHhJZaKWvnGdifxcYAG3JSgHrqo M1PCd3M442XSjqk+RG3SK7dhy1QtpHxMOlFR1N3QmFQ11oreqBQNxSYcFrO2YKCM YanMywrqBc/PnyFhWro3VmEW5TvE0ewD4+0h7RCIyAkhY5vAgStFLO+B5O6nAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUDdIeE9ksHmt2Z2p8e18ddGc9HbowHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTM1MzAzMDNhM2EyZjM0MzIyZDM0MzIyMDNkM2UyMDMzMzEz ODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwYqFHWABQAwDQYJKoZIhvcNAQELBQADggEBAKDRA+B5 V/U7nt3M5hchC8EW6PD6QGIhhLBiOT8I1pJ2Op8lAZMjWkihkIm6gi9vhNPqCUcv ExKZ81z7aLAa/RXUnGvGl5XTmymLIIs36HB7gIjbsuD07zcLVWBilcQyza8fa9Qj aJAuG+WxQacd8P885ql1+KSQGH8qnU0hTLNeBn0lGq7VFkHgbTmlYj0dJxptIfEQ H+G4BLC9TtSfBJ0QuIOS/BGPMciwFhowQLRLHkcBNCVU62yJJOL5hpkLatRPb5Zv ZAVOOp7eAxGc3bxHb9HwKF6Gx7v5LPugpVSYOgx7AkfXxFriFd1D97hFIz2py295 ewG4VJzn7i/bwEs= -----END CERTIFICATE-----Generated at Thu Oct 9 00:59:15 2025 by rpki-client