$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a666666323a3a2f34382d3438203d3e20323037343237.roa File: 326131343a373538303a666666323a3a2f34382d3438203d3e20323037343237.roa (raw, json) Hash identifier: 9gAMmES5n2Z5a0zD2q3WOv8FxdvupYnl9n7vw0+tj9M= Subject key identifier: 23:86:8D:1C:DB:7F:00:2F:0A:F8:82:04:5A:88:72:2F:65:B4:7F:EE Certificate issuer: /CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Certificate serial: 2BABD5F5E9217B7EFB77436A188576F514FB0F7C Authority key identifier: 5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a666666323a3a2f34382d3438203d3e20323037343237.roa Signing time: Fri 06 Jun 2025 14:03:28 +0000 ROA not before: Fri 06 Jun 2025 13:58:28 +0000 ROA not after: Fri 05 Jun 2026 14:03:28 +0000 asID: 207427 IP address blocks: 2a14:7580:fff2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ab:d5:f5:e9:21:7b:7e:fb:77:43:6a:18:85:76:f5:14:fb:0f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BE6F0781C3A7A74F993C53DC07FC424ED911592 Validity Not Before: Jun 6 13:58:28 2025 GMT Not After : Jun 5 14:03:28 2026 GMT Subject: CN=23868D1CDB7F002F0AF882045A88722F65B47FEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:ba:50:81:47:e2:ba:47:80:5a:c1:8a:4b: 82:89:b0:1f:73:9c:82:58:8f:c3:36:f2:2b:62:20: de:85:ce:7d:ca:78:9d:9f:f0:8d:75:4d:01:53:4c: 71:90:a8:69:bd:d7:c7:46:39:bf:66:43:e3:c0:63: 67:2e:d5:0a:de:aa:56:1d:d9:99:37:ca:fa:c5:80: 9f:24:52:97:6b:c2:05:c5:5e:ad:f5:d8:53:2c:b5: f5:41:51:93:88:cf:43:dd:54:34:9a:33:61:d6:bb: e1:d4:a2:f6:02:8f:f0:6b:a3:1f:a6:51:43:61:ef: a4:b1:a9:28:98:04:45:d0:04:f8:ca:41:5d:69:95: bb:f7:4b:b0:fa:b2:3d:d1:e7:88:7c:06:99:e0:50: 74:43:9f:45:62:e7:54:f1:3b:41:f3:c1:ba:e8:2e: 89:6c:62:e8:9b:b5:c6:dc:44:53:6b:e1:3f:ad:f3: fd:07:29:55:03:40:70:c5:ff:c2:47:a4:65:8c:3b: 04:d6:44:65:c7:7e:a6:2e:a5:c2:b4:9c:ee:72:74: 5b:28:33:32:b5:cb:2d:ed:b2:f7:33:a9:c9:a3:3b: 19:24:85:f2:b7:9e:71:38:28:9f:9a:99:4b:27:4c: 03:97:e1:db:de:01:60:0a:f3:c2:04:a2:e7:d5:c3: 40:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:86:8D:1C:DB:7F:00:2F:0A:F8:82:04:5A:88:72:2F:65:B4:7F:EE X509v3 Authority Key Identifier: keyid:5B:E6:F0:78:1C:3A:7A:74:F9:93:C5:3D:C0:7F:C4:24:ED:91:15:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/5BE6F0781C3A7A74F993C53DC07FC424ED911592.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/02aed0a4-3e76-4830-bbb4-1cbc204352b3/0/326131343a373538303a666666323a3a2f34382d3438203d3e20323037343237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fff2::/48 Signature Algorithm: sha256WithRSAEncryption 92:86:c4:ec:97:aa:ba:97:a1:1b:e3:67:3b:f1:95:35:6f:03: ec:17:de:42:40:cf:e7:d4:c7:df:17:ec:e4:d0:a9:be:a6:05: 20:20:d1:01:ad:e3:21:1f:32:72:88:48:80:b0:d0:30:4e:31: 3b:b9:f5:66:9e:f1:68:ac:64:d9:44:1f:85:9a:9a:81:aa:dc: 73:91:b3:fc:21:04:b1:12:03:36:11:73:3e:88:3b:e2:57:10: 58:f8:32:47:2b:13:22:9d:c1:14:fc:2b:c8:43:b7:c8:79:8b: 08:df:78:df:7a:2d:69:9f:7e:7f:ee:33:a7:16:7a:ca:41:c4: 74:49:08:bb:79:39:82:1d:84:7e:0c:3e:f1:11:ad:56:6c:c4: 19:f8:d3:45:10:2d:48:db:6e:94:4a:55:11:42:05:2a:d9:db: 13:ce:0c:0f:f7:37:1d:b3:4f:29:7f:ae:e8:4a:cf:5d:23:4b: 47:de:b5:73:2b:a5:f2:9b:95:7f:93:d1:06:53:71:d2:dc:7d: 44:52:1b:34:53:fd:e5:f5:e7:72:c1:56:00:4a:c4:f5:6f:b6: bd:32:2e:a9:fc:93:59:64:88:2e:bf:cb:be:c7:45:6c:76:70: 7f:8d:2d:ba:15:ec:70:4b:23:97:fe:ce:b2:24:db:e3:1f:18: 13:78:96:68 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUK6vV9ekhe377d0NqGIV29RT7D3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRF RDkxMTU5MjAeFw0yNTA2MDYxMzU4MjhaFw0yNjA2MDUxNDAzMjhaMDMxMTAvBgNV BAMTKDIzODY4RDFDREI3RjAwMkYwQUY4ODIwNDVBODg3MjJGNjVCNDdGRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn8rpQgUfiukeAWsGKS4KJsB9z nIJYj8M28itiIN6Fzn3KeJ2f8I11TQFTTHGQqGm918dGOb9mQ+PAY2cu1QreqlYd 2Zk3yvrFgJ8kUpdrwgXFXq312FMstfVBUZOIz0PdVDSaM2HWu+HUovYCj/Brox+m UUNh76SxqSiYBEXQBPjKQV1plbv3S7D6sj3R54h8BpngUHRDn0Vi51TxO0Hzwbro LolsYuibtcbcRFNr4T+t8/0HKVUDQHDF/8JHpGWMOwTWRGXHfqYupcK0nO5ydFso MzK1yy3tsvczqcmjOxkkhfK3nnE4KJ+amUsnTAOX4dveAWAK88IEoufVw0CRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUI4aNHNt/AC8K+IIEWohyL2W0f+4wHwYDVR0j BBgwFoAUW+bweBw6enT5k8U9wH/EJO2RFZIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDJhZWQwYTQtM2U3Ni00ODMwLWJiYjQtMWNiYzIwNDM1 MmIzLzAvNUJFNkYwNzgxQzNBN0E3NEY5OTNDNTNEQzA3RkM0MjRFRDkxMTU5Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81QkU2RjA3ODFDM0E3QTc0Rjk5M0M1M0RD MDdGQzQyNEVEOTExNTkyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMmFlZDBhNC0zZTc2LTQ4MzAtYmJiNC0xY2JjMjA0MzUyYjMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjY2NjMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM3MzQzMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP/yMA0GCSqGSIb3DQEBCwUAA4IBAQCS hsTsl6q6l6Eb42c78ZU1bwPsF95CQM/n1MffF+zk0Km+pgUgINEBreMhHzJyiEiA sNAwTjE7ufVmnvForGTZRB+FmpqBqtxzkbP8IQSxEgM2EXM+iDviVxBY+DJHKxMi ncEU/CvIQ7fIeYsI33jfei1pn35/7jOnFnrKQcR0SQi7eTmCHYR+DD7xEa1WbMQZ +NNFEC1I226USlURQgUq2dsTzgwP9zcds08pf67oSs9dI0tH3rVzK6Xym5V/k9EG U3HS3H1EUhs0U/3l9edywVYASsT1b7a9Mi6p/JNZZIguv8u+x0VsdnB/jS26Fexw SyOX/s6yJNvjHxgTeJZo -----END CERTIFICATE-----Generated at Sun Jun 8 03:15:11 2025 by rpki-client