$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936363a3a2f34382d3634203d3e20313939373633.roa File: 326131343a373538313a333936363a3a2f34382d3634203d3e20313939373633.roa (raw, json) Hash identifier: +BDNAKrmKMibTT2xQwMz+K+qOmE3P6UuU3BvjMVQ0iI= Subject key identifier: 47:C2:D3:34:03:8C:1A:3A:87:E8:DC:54:11:A9:CC:A3:D8:2F:3B:75 Certificate issuer: /CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Certificate serial: 5E5FABF1C144AA31BD4031638016C45C97E53A5D Authority key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936363a3a2f34382d3634203d3e20313939373633.roa Signing time: Fri 25 Jul 2025 22:05:38 +0000 ROA not before: Fri 25 Jul 2025 22:00:38 +0000 ROA not after: Fri 24 Jul 2026 22:05:38 +0000 asID: 199763 IP address blocks: 2a14:7581:3966::/48 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Jul 2025 00:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:5f:ab:f1:c1:44:aa:31:bd:40:31:63:80:16:c4:5c:97:e5:3a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Validity Not Before: Jul 25 22:00:38 2025 GMT Not After : Jul 24 22:05:38 2026 GMT Subject: CN=47C2D334038C1A3A87E8DC5411A9CCA3D82F3B75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b3:f5:00:68:26:74:8e:4e:43:44:7f:8a:4e: 28:b4:72:45:a1:02:f7:49:88:c8:19:a6:dc:bc:01: 29:b3:7d:14:3c:c6:06:db:ed:a5:86:ce:80:e0:8e: 6d:71:09:65:57:1d:58:c0:02:d7:03:e3:60:54:fe: e0:8c:40:99:bf:72:b0:23:12:bd:c9:6b:ca:41:04: 6d:39:e6:3d:f4:d9:65:4e:2c:82:20:44:c7:1b:03: 07:1f:fd:95:0e:d0:cd:98:67:bf:11:b2:21:66:a0: ae:bd:48:7f:4f:eb:42:63:25:41:cc:dd:57:37:84: 1e:6f:c7:70:73:90:0a:55:d4:c9:75:1b:b6:96:7f: 3d:5f:8b:ed:ec:ea:47:7f:43:c1:16:1c:ee:47:1d: 64:44:8c:d4:a0:b3:4e:15:74:16:8e:14:08:99:00: 49:f7:94:42:41:cd:c1:df:38:bc:42:ca:f2:7b:cc: 89:35:41:d1:22:a3:79:ad:73:8f:e7:f8:f7:cb:c6: 3f:5d:70:59:f1:9c:34:d6:63:7d:d4:ed:6e:19:29: b1:2d:84:4a:cc:67:7a:cf:bf:ad:80:80:b5:71:76: 05:44:ed:21:82:99:c0:6c:a3:5d:e7:63:f8:ef:c7: 5c:7d:ff:0a:13:fa:13:de:c6:44:8d:7c:52:ed:1a: 8a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C2:D3:34:03:8C:1A:3A:87:E8:DC:54:11:A9:CC:A3:D8:2F:3B:75 X509v3 Authority Key Identifier: keyid:E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936363a3a2f34382d3634203d3e20313939373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:3966::/48 Signature Algorithm: sha256WithRSAEncryption 18:0a:d8:e8:50:fc:3b:bb:c0:50:46:fc:cf:c3:fd:44:8a:20: 2a:5d:1d:45:28:1c:c8:0f:1d:48:d8:fc:bd:8f:18:90:4d:e0: 8d:79:62:ef:5c:9b:03:84:86:56:3a:e0:63:90:bc:03:3d:35: 74:49:80:41:09:78:1c:70:e8:a6:1b:1d:0d:eb:ef:1c:0d:1e: 73:58:3f:77:3d:53:a6:eb:65:69:67:68:0f:26:cc:00:1c:3c: 9c:b6:42:6a:70:32:fd:c8:d7:df:20:11:17:32:68:88:76:df: 77:bf:3f:df:da:f9:3b:45:b8:a0:0f:ee:86:ff:f6:c6:18:d1: 8b:4b:8b:df:91:5c:1d:1f:83:09:26:85:82:96:38:0b:ef:c6: 16:a9:1a:13:53:0d:27:e5:42:4d:cd:19:3f:48:d0:a0:f1:49: e6:a6:68:3e:25:97:1a:8e:8d:c7:12:15:a4:89:b4:55:9c:4b: 8d:8d:64:c3:f0:81:7c:07:16:10:15:f8:ce:33:6f:b6:f6:75: a4:cc:25:ce:1d:1a:a9:5c:14:73:be:28:83:10:53:bc:d3:b6: db:94:33:84:dd:4c:2a:19:07:e5:0c:d4:24:f8:4c:9e:71:7e: 38:83:b0:22:af:92:25:41:8e:ce:17:2a:67:c0:49:34:c5:b2: 44:fe:4f:7b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXl+r8cFEqjG9QDFjgBbEXJflOl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYz RUFCQ0Y3QzAeFw0yNTA3MjUyMjAwMzhaFw0yNjA3MjQyMjA1MzhaMDMxMTAvBgNV BAMTKDQ3QzJEMzM0MDM4QzFBM0E4N0U4REM1NDExQTlDQ0EzRDgyRjNCNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4s/UAaCZ0jk5DRH+KTii0ckWh AvdJiMgZpty8ASmzfRQ8xgbb7aWGzoDgjm1xCWVXHVjAAtcD42BU/uCMQJm/crAj Er3Ja8pBBG055j302WVOLIIgRMcbAwcf/ZUO0M2YZ78RsiFmoK69SH9P60JjJUHM 3Vc3hB5vx3BzkApV1Ml1G7aWfz1fi+3s6kd/Q8EWHO5HHWREjNSgs04VdBaOFAiZ AEn3lEJBzcHfOLxCyvJ7zIk1QdEio3mtc4/n+PfLxj9dcFnxnDTWY33U7W4ZKbEt hErMZ3rPv62AgLVxdgVE7SGCmcBso13nY/jvx1x9/woT+hPexkSNfFLtGorxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUR8LTNAOMGjqH6NxUEanMo9gvO3UwHwYDVR0j BBgwFoAU6J+RXYa7nxPQ8inKeM1tnz6rz3wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzU4MzZlNjAtNmE5Mi00N2VmLTliOWItOTJhODRkNmQz NWJhLzEvRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYzRUFCQ0Y3Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9FODlGOTE1RDg2QkI5RjEzRDBGMjI5Q0E3 OENENkQ5RjNFQUJDRjdDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNTgzNmU2MC02YTkyLTQ3ZWYtOWI5Yi05MmE4NGQ2ZDM1YmEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzkzNjM2M2EzYTJmMzQzODJkMzYzNDIwM2QzZTIwMzEz OTM5MzczNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTlmMA0GCSqGSIb3DQEBCwUAA4IBAQAY CtjoUPw7u8BQRvzPw/1EiiAqXR1FKBzIDx1I2Py9jxiQTeCNeWLvXJsDhIZWOuBj kLwDPTV0SYBBCXgccOimGx0N6+8cDR5zWD93PVOm62VpZ2gPJswAHDyctkJqcDL9 yNffIBEXMmiIdt93vz/f2vk7RbigD+6G//bGGNGLS4vfkVwdH4MJJoWCljgL78YW qRoTUw0n5UJNzRk/SNCg8Unmpmg+JZcajo3HEhWkibRVnEuNjWTD8IF8BxYQFfjO M2+29nWkzCXOHRqpXBRzviiDEFO807bblDOE3UwqGQflDNQk+EyecX44g7Air5Il QY7OFypnwEk0xbJE/k97 -----END CERTIFICATE-----Generated at Sat Jul 26 12:23:23 2025 by rpki-client