$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa File: 326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa (raw, json) Hash identifier: G6hVCSFBjLf5sSVJuWclRF4hwJVUKmhh7yFq5RsJRpo= Subject key identifier: A7:EF:88:79:2B:6E:2E:4E:2A:86:C5:32:A1:57:00:7D:29:B6:A1:B3 Certificate issuer: /CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Certificate serial: 4C1A40F05232AB2AA889EA052B589CC8D640518B Authority key identifier: 5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa Signing time: Fri 06 Jun 2025 14:03:26 +0000 ROA not before: Fri 06 Jun 2025 13:58:26 +0000 ROA not after: Fri 05 Jun 2026 14:03:26 +0000 asID: 207427 IP address blocks: 2a14:7580:300::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:1a:40:f0:52:32:ab:2a:a8:89:ea:05:2b:58:9c:c8:d6:40:51:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Validity Not Before: Jun 6 13:58:26 2025 GMT Not After : Jun 5 14:03:26 2026 GMT Subject: CN=A7EF88792B6E2E4E2A86C532A157007D29B6A1B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:bc:cb:4b:cb:70:cf:81:58:10:8b:39:2b: a8:67:6f:87:ba:46:df:c6:0a:aa:c1:2b:b7:96:02: 5a:38:2f:2b:f7:6b:ac:ba:de:b2:e8:d1:dc:8e:54: b5:56:48:7f:df:9c:0c:7f:01:a6:cb:12:3a:5c:21: ac:68:af:39:21:e8:f3:b8:fe:7b:61:e9:ad:88:eb: 3d:19:2e:00:4f:65:87:a7:8b:5b:7d:9b:f3:7b:e4: f5:6f:17:58:46:61:89:64:cf:70:59:d6:52:a1:0d: e5:4c:8d:b3:89:51:29:96:af:5e:91:5b:89:4d:c6: d8:2c:1d:9b:37:7f:92:14:8a:37:83:32:7f:af:93: 4e:f1:a4:5b:0b:f3:2d:2f:7e:3a:51:50:cf:c4:0a: 7e:84:93:d6:c6:d5:f5:67:ac:a4:23:1d:f0:88:eb: b8:bd:5d:a0:ec:33:cd:45:cc:90:fb:de:4e:e2:d7: 8d:75:d4:54:de:5b:68:94:e6:45:ec:24:01:5e:33: 3a:30:92:a9:3d:6b:f7:c5:62:79:ca:82:44:10:f9: 26:4d:5b:f3:f5:a7:fe:b3:11:c7:12:80:64:81:7d: 55:7e:39:6f:78:af:67:99:b1:32:24:4a:cc:3a:d7: ef:cd:6d:49:3a:75:82:8f:8c:77:f6:ba:f4:d7:5b: 9b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EF:88:79:2B:6E:2E:4E:2A:86:C5:32:A1:57:00:7D:29:B6:A1:B3 X509v3 Authority Key Identifier: keyid:5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330303a3a2f34382d3438203d3e20323037343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:300::/48 Signature Algorithm: sha256WithRSAEncryption 5c:26:9c:25:e1:21:bc:d9:d1:3e:c5:d8:6d:52:ec:50:e0:1b: 67:fd:73:1c:30:17:f9:8e:09:1f:09:75:b1:db:d4:7b:df:ec: 13:58:19:ff:cf:a5:89:d8:f8:1a:c5:13:25:65:37:85:cd:97: 59:d6:1c:f5:2d:73:0e:0f:5d:fc:fa:ad:37:f3:88:40:33:f4: a0:50:6a:d6:87:e4:02:ee:c7:97:f7:2e:e6:99:a4:2a:12:c3: 7b:76:f2:c4:9e:5b:74:ca:d1:55:19:77:95:9d:7f:10:0e:8b: fb:6b:09:40:a8:51:61:b1:cf:e9:83:8f:61:1e:97:49:c8:d0: 5b:0a:4e:72:10:84:76:61:19:bf:a9:67:e8:05:af:c2:6b:61: c8:21:73:42:84:7f:70:45:e7:31:cd:49:a8:8d:69:e7:24:02: 7e:0b:50:73:1a:83:cb:37:89:4d:ef:c6:ad:b4:45:f0:8a:b5: 90:bb:9a:cd:1b:9d:df:08:ef:9b:a5:3d:84:81:4c:91:ea:21: a4:d7:f3:61:2f:8c:3e:63:b2:f1:8a:af:64:01:78:fe:54:58: 37:a1:90:21:70:15:3a:79:b4:f8:1f:df:81:ab:fc:14:85:ad: 62:48:b6:63:b5:be:29:ea:9f:d9:f1:78:68:81:b2:80:43:df: e7:c4:b1:c4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUTBpA8FIyqyqoieoFK1icyNZAUYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRF RDkxMTU5MjAeFw0yNTA2MDYxMzU4MjZaFw0yNjA2MDUxNDAzMjZaMDMxMTAvBgNV BAMTKEE3RUY4ODc5MkI2RTJFNEUyQTg2QzUzMkExNTcwMDdEMjlCNkExQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgYrzLS8twz4FYEIs5K6hnb4e6 Rt/GCqrBK7eWAlo4Lyv3a6y63rLo0dyOVLVWSH/fnAx/AabLEjpcIaxorzkh6PO4 /nth6a2I6z0ZLgBPZYeni1t9m/N75PVvF1hGYYlkz3BZ1lKhDeVMjbOJUSmWr16R W4lNxtgsHZs3f5IUijeDMn+vk07xpFsL8y0vfjpRUM/ECn6Ek9bG1fVnrKQjHfCI 67i9XaDsM81FzJD73k7i14111FTeW2iU5kXsJAFeMzowkqk9a/fFYnnKgkQQ+SZN W/P1p/6zEccSgGSBfVV+OW94r2eZsTIkSsw61+/NbUk6dYKPjHf2uvTXW5uDAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUp++IeStuLk4qhsUyoVcAfSm2obMwHwYDVR0j BBgwFoAUW+bweBw6enT5k8U9wH/EJO2RFZIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDJhZWQwYTQtM2U3Ni00ODMwLWJiYjQtMWNiYzIwNDM1 MmIzLzAvNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRFRDkxMTU5Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81QkU2RjA3ODFDM0E3QTc0Rjk5M0M1M0RD MDdGQzQyNEVEOTExNTkyLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMmFlZDBhNC0zZTc2LTQ4MzAtYmJiNC0xY2JjMjA0MzUyYjMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTMzMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz NzM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYADADANBgkqhkiG9w0BAQsFAAOCAQEAXCac JeEhvNnRPsXYbVLsUOAbZ/1zHDAX+Y4JHwl1sdvUe9/sE1gZ/8+lidj4GsUTJWU3 hc2XWdYc9S1zDg9d/PqtN/OIQDP0oFBq1ofkAu7Hl/cu5pmkKhLDe3byxJ5bdMrR VRl3lZ1/EA6L+2sJQKhRYbHP6YOPYR6XScjQWwpOchCEdmEZv6ln6AWvwmthyCFz QoR/cEXnMc1JqI1p5yQCfgtQcxqDyzeJTe/GrbRF8Iq1kLuazRud3wjvm6U9hIFM keohpNfzYS+MPmOy8YqvZAF4/lRYN6GQIXAVOnm0+B/fgav8FIWtYki2Y7W+Keqf 2fF4aIGygEPf58SxxA== -----END CERTIFICATE-----Generated at Sat Jun 7 14:46:35 2025 by rpki-client