$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330313a3a2f34382d3438203d3e20323037343237.roa File: 326131343a373538303a3330313a3a2f34382d3438203d3e20323037343237.roa (raw, json) Hash identifier: jYfB7MgE41V7Cz7ve55LcQtaDn44bK16KlxCccTU4QU= Subject key identifier: F0:BA:10:A7:36:32:E8:C2:64:E2:52:35:25:81:81:DF:24:61:4D:CE Certificate issuer: /CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Certificate serial: 784BED136AD48207AB2451C463C51E72D453C829 Authority key identifier: 5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330313a3a2f34382d3438203d3e20323037343237.roa Signing time: Fri 06 Jun 2025 14:23:43 +0000 ROA not before: Fri 06 Jun 2025 14:18:43 +0000 ROA not after: Fri 05 Jun 2026 14:23:43 +0000 asID: 207427 IP address blocks: 2a14:7580:301::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 09:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:4b:ed:13:6a:d4:82:07:ab:24:51:c4:63:c5:1e:72:d4:53:c8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Validity Not Before: Jun 6 14:18:43 2025 GMT Not After : Jun 5 14:23:43 2026 GMT Subject: CN=F0BA10A73632E8C264E25235258181DF24614DCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:82:61:ec:10:0d:ee:bd:55:20:d7:b6:74:71: a0:6a:ad:45:2d:e3:ac:b5:a8:6e:4c:65:2b:6d:e0: 58:dd:5e:4f:c1:f6:2e:70:cd:8f:4b:34:be:61:fb: 27:77:5f:db:05:b1:e2:07:19:8d:bf:9e:85:63:e6: e4:04:ae:8f:90:26:26:10:98:fc:b5:b6:eb:ec:6f: 78:a3:3a:d5:ef:5a:93:c1:b3:97:57:f3:79:71:0f: c7:7f:81:13:73:ed:39:d0:39:7c:22:eb:f8:d3:fe: bf:f4:ae:fb:d6:57:3a:aa:cd:75:e6:4a:6c:7f:04: bf:33:3f:cc:8d:f2:57:5c:5e:10:0b:82:ab:54:7d: e4:ec:8b:6b:7b:fc:f9:ff:04:22:94:12:dd:8d:e0: 78:a3:15:89:ba:21:ef:68:7d:c5:b5:a6:8d:66:fd: e8:1f:a1:f0:10:e9:2e:aa:54:20:aa:0b:f9:6f:26: ba:06:17:3a:a9:84:bd:c0:bb:f1:15:c4:01:78:ce: a8:92:6c:0b:42:65:02:b0:10:13:9a:58:d7:b0:0e: 3a:f5:85:4e:1e:bf:e2:61:16:bc:1f:80:c7:f4:85: a6:e2:ba:ed:04:38:fc:03:a9:7b:da:09:65:bf:93: 4c:64:1a:14:2d:bf:7d:ac:2d:2e:f4:52:cd:8e:b9: 17:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BA:10:A7:36:32:E8:C2:64:E2:52:35:25:81:81:DF:24:61:4D:CE X509v3 Authority Key Identifier: keyid:5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a3330313a3a2f34382d3438203d3e20323037343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:301::/48 Signature Algorithm: sha256WithRSAEncryption 93:cc:d7:69:d8:c6:da:f0:c2:86:e6:d4:4c:80:2e:47:ac:d0: cc:51:6f:e2:24:fd:a8:89:82:6f:61:55:0e:34:22:cf:97:2c: e1:bb:f9:7a:28:20:aa:06:06:24:ba:6e:c2:cd:44:3f:4e:38: 62:f5:01:e1:d7:20:3e:e8:79:8d:51:c7:b4:71:9d:31:65:e0: 53:fe:d1:e2:4f:a0:60:73:7d:6f:ae:b4:40:5e:0a:1a:31:2f: 94:8f:92:42:85:a1:a1:a1:d5:7a:ec:2a:a5:45:c4:09:c3:39: ce:86:8c:bb:73:60:b2:51:22:2b:16:b6:bb:6b:ab:0d:9e:33: af:6f:dc:a2:24:63:a9:24:c7:1a:c1:c1:70:d7:45:c6:8a:9e: 84:76:e9:40:09:19:bc:35:dc:31:d1:20:83:9f:4d:4e:4f:27: e3:3e:b4:f1:64:ec:31:85:1c:a8:df:96:34:20:8e:f5:f6:f4: b7:cd:a7:22:d8:1b:c4:41:b4:0b:0c:75:0b:ae:b3:8a:9e:bc: 72:9d:88:d9:d8:25:a5:3e:02:ab:d5:c2:c4:0b:36:0b:48:f6: 41:69:dd:46:c2:bb:85:06:a2:74:89:1f:ca:96:79:59:d1:4f: 96:54:d2:4e:e6:49:80:b9:63:74:b9:06:f0:87:eb:1e:c3:5d: 24:90:9e:d1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUeEvtE2rUggerJFHEY8UectRTyCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRF RDkxMTU5MjAeFw0yNTA2MDYxNDE4NDNaFw0yNjA2MDUxNDIzNDNaMDMxMTAvBgNV BAMTKEYwQkExMEE3MzYzMkU4QzI2NEUyNTIzNTI1ODE4MURGMjQ2MTREQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRgmHsEA3uvVUg17Z0caBqrUUt 46y1qG5MZStt4FjdXk/B9i5wzY9LNL5h+yd3X9sFseIHGY2/noVj5uQEro+QJiYQ mPy1tuvsb3ijOtXvWpPBs5dX83lxD8d/gRNz7TnQOXwi6/jT/r/0rvvWVzqqzXXm Smx/BL8zP8yN8ldcXhALgqtUfeTsi2t7/Pn/BCKUEt2N4HijFYm6Ie9ofcW1po1m /egfofAQ6S6qVCCqC/lvJroGFzqphL3Au/EVxAF4zqiSbAtCZQKwEBOaWNewDjr1 hU4ev+JhFrwfgMf0habiuu0EOPwDqXvaCWW/k0xkGhQtv32sLS70Us2OuRfTAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU8LoQpzYy6MJk4lI1JYGB3yRhTc4wHwYDVR0j BBgwFoAUW+bweBw6enT5k8U9wH/EJO2RFZIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDJhZWQwYTQtM2U3Ni00ODMwLWJiYjQtMWNiYzIwNDM1 MmIzLzAvNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRFRDkxMTU5Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81QkU2RjA3ODFDM0E3QTc0Rjk5M0M1M0RD MDdGQzQyNEVEOTExNTkyLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMmFlZDBhNC0zZTc2LTQ4MzAtYmJiNC0xY2JjMjA0MzUyYjMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTMzMzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz NzM0MzIzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYADATANBgkqhkiG9w0BAQsFAAOCAQEAk8zX adjG2vDChubUTIAuR6zQzFFv4iT9qImCb2FVDjQiz5cs4bv5eiggqgYGJLpuws1E P044YvUB4dcgPuh5jVHHtHGdMWXgU/7R4k+gYHN9b660QF4KGjEvlI+SQoWhoaHV euwqpUXECcM5zoaMu3NgslEiKxa2u2urDZ4zr2/coiRjqSTHGsHBcNdFxoqehHbp QAkZvDXcMdEgg59NTk8n4z608WTsMYUcqN+WNCCO9fb0t82nItgbxEG0Cwx1C66z ip68cp2I2dglpT4Cq9XCxAs2C0j2QWndRsK7hQaidIkfypZ5WdFPllTSTuZJgLlj dLkG8IfrHsNdJJCe0Q== -----END CERTIFICATE-----Generated at Sat Jun 7 23:05:13 2025 by rpki-client