$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333966663a3a2f34382d3634203d3e20313939373633.roa File: 326131343a373538313a333966663a3a2f34382d3634203d3e20313939373633.roa (raw, json) Hash identifier: aCq/jKA1GGay4DL6ZU284taMNq3/9u17cmIYZEHZP9Y= Subject key identifier: B2:58:B0:B8:44:D5:F5:3F:33:EA:18:01:1B:7C:37:4B:B5:DB:89:9D Certificate issuer: /CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Certificate serial: 24E2F4D37947362A3DABA1757ABAFD4BB7B9928B Authority key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333966663a3a2f34382d3634203d3e20313939373633.roa Signing time: Thu 17 Jul 2025 17:08:00 +0000 ROA not before: Thu 17 Jul 2025 17:03:00 +0000 ROA not after: Thu 16 Jul 2026 17:08:00 +0000 asID: 199763 IP address blocks: 2a14:7581:39ff::/48 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Jul 2025 17:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e2:f4:d3:79:47:36:2a:3d:ab:a1:75:7a:ba:fd:4b:b7:b9:92:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Validity Not Before: Jul 17 17:03:00 2025 GMT Not After : Jul 16 17:08:00 2026 GMT Subject: CN=B258B0B844D5F53F33EA18011B7C374BB5DB899D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:78:5c:8c:89:46:e6:9d:16:8f:71:25:22:59: df:73:85:2a:b3:1a:0d:a3:cb:2e:4e:42:a7:07:7f: 64:ea:d9:c5:20:1b:40:26:ab:45:20:31:e1:9c:44: 3c:e2:f5:d1:81:8e:66:41:d7:db:c3:a6:51:f7:7c: 12:07:fd:59:38:ff:72:c6:70:9e:32:f8:92:88:ae: 7c:d5:6c:52:ec:5b:88:0c:e9:39:09:d2:79:75:d1: bd:df:1e:3f:4c:a9:e7:f7:6a:3d:b8:33:af:93:2b: 99:cf:8b:69:09:fd:d5:2c:02:f9:dc:d8:18:46:e4: c4:3c:1d:6a:35:e6:64:1f:93:75:7a:37:da:e8:55: 85:13:44:d0:49:03:84:42:eb:d7:a5:b4:de:e2:87: 5e:4c:91:4a:d6:f0:d0:15:d7:ef:a0:9d:41:13:40: 9c:64:5b:bd:62:46:64:0a:99:44:ab:dc:77:15:52: f8:75:a9:58:c5:90:2e:8f:34:f4:27:4b:ec:75:9c: 3e:73:ba:3c:fc:43:6d:93:8b:cc:9d:1a:cc:48:c5: 52:b6:27:8c:bc:de:4c:27:0b:9d:9e:43:66:00:31: cc:b5:de:c5:55:00:b3:44:14:b7:87:3b:35:50:21: ac:34:4a:26:ba:fc:21:07:4c:a8:a7:7c:9d:4f:97: 10:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:58:B0:B8:44:D5:F5:3F:33:EA:18:01:1B:7C:37:4B:B5:DB:89:9D X509v3 Authority Key Identifier: keyid:E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333966663a3a2f34382d3634203d3e20313939373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:39ff::/48 Signature Algorithm: sha256WithRSAEncryption 8f:10:8e:76:03:63:72:15:57:50:d1:37:03:e7:82:9f:88:0b: ac:72:6b:fa:02:36:d4:7a:20:87:fe:1b:d8:c0:4a:a7:51:c4: 85:bd:fa:89:39:16:b4:a8:a9:2d:67:5e:85:75:63:f7:f5:38: 1e:86:23:66:3c:a0:6d:7d:48:4c:54:0d:a0:31:d0:b2:24:d8: 76:59:21:c8:01:ca:a3:ee:bb:fa:73:0f:0e:ed:4f:8e:39:f0: b5:50:01:29:83:ac:8b:9a:dd:42:10:bc:13:d7:11:78:9d:2b: 9d:3a:e1:93:81:7f:26:92:10:5d:9f:d4:93:43:9d:b5:ce:28: 32:e3:08:39:fb:38:e2:25:7b:ef:82:e3:83:6b:c5:1c:08:41: 22:54:ca:e3:09:27:86:c0:54:a8:90:10:a9:f5:0f:84:eb:c9: 8d:4c:83:50:ce:fc:7c:70:0f:0a:91:f6:ed:7f:95:a3:4f:dd: e8:80:ba:88:93:46:89:0e:d8:ba:d8:6f:31:96:8b:8f:db:a5: b4:ad:c1:dd:fc:59:c3:ee:12:20:0f:c5:c4:e7:24:44:9a:59: cc:87:4f:93:c0:75:d1:fa:6c:37:b6:40:96:6a:f5:d8:1b:b0: 4c:c8:36:a0:f9:5d:05:40:c1:db:a9:47:09:92:99:ed:3e:7c: 42:9a:de:37 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJOL003lHNio9q6F1err9S7e5koswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYz RUFCQ0Y3QzAeFw0yNTA3MTcxNzAzMDBaFw0yNjA3MTYxNzA4MDBaMDMxMTAvBgNV BAMTKEIyNThCMEI4NDRENUY1M0YzM0VBMTgwMTFCN0MzNzRCQjVEQjg5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDleFyMiUbmnRaPcSUiWd9zhSqz Gg2jyy5OQqcHf2Tq2cUgG0Amq0UgMeGcRDzi9dGBjmZB19vDplH3fBIH/Vk4/3LG cJ4y+JKIrnzVbFLsW4gM6TkJ0nl10b3fHj9Mqef3aj24M6+TK5nPi2kJ/dUsAvnc 2BhG5MQ8HWo15mQfk3V6N9roVYUTRNBJA4RC69eltN7ih15MkUrW8NAV1++gnUET QJxkW71iRmQKmUSr3HcVUvh1qVjFkC6PNPQnS+x1nD5zujz8Q22Ti8ydGsxIxVK2 J4y83kwnC52eQ2YAMcy13sVVALNEFLeHOzVQIaw0Sia6/CEHTKinfJ1PlxDjAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUsliwuETV9T8z6hgBG3w3S7XbiZ0wHwYDVR0j BBgwFoAU6J+RXYa7nxPQ8inKeM1tnz6rz3wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzU4MzZlNjAtNmE5Mi00N2VmLTliOWItOTJhODRkNmQz NWJhLzEvRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYzRUFCQ0Y3Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9FODlGOTE1RDg2QkI5RjEzRDBGMjI5Q0E3 OENENkQ5RjNFQUJDRjdDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNTgzNmU2MC02YTkyLTQ3ZWYtOWI5Yi05MmE4NGQ2ZDM1YmEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzk2NjY2M2EzYTJmMzQzODJkMzYzNDIwM2QzZTIwMzEz OTM5MzczNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTn/MA0GCSqGSIb3DQEBCwUAA4IBAQCP EI52A2NyFVdQ0TcD54KfiAuscmv6AjbUeiCH/hvYwEqnUcSFvfqJORa0qKktZ16F dWP39TgehiNmPKBtfUhMVA2gMdCyJNh2WSHIAcqj7rv6cw8O7U+OOfC1UAEpg6yL mt1CELwT1xF4nSudOuGTgX8mkhBdn9STQ521zigy4wg5+zjiJXvvguODa8UcCEEi VMrjCSeGwFSokBCp9Q+E68mNTINQzvx8cA8Kkfbtf5WjT93ogLqIk0aJDti62G8x louP26W0rcHd/FnD7hIgD8XE5yREmlnMh0+TwHXR+mw3tkCWavXYG7BMyDag+V0F QMHbqUcJkpntPnxCmt43 -----END CERTIFICATE-----Generated at Tue Jul 22 05:49:05 2025 by rpki-client