$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653339303a3a2f34342d3434203d3e20333937303332.roa File: 326131343a373538343a653339303a3a2f34342d3434203d3e20333937303332.roa (raw, json) Hash identifier: lLg4au3IVvnSiHqBxXRTNckohkijbwJ1gyWVOIjX72Q= Subject key identifier: A7:3A:5D:F8:97:61:8D:67:E6:B5:04:79:0E:C3:05:56:59:A8:A6:9F Certificate issuer: /CN=FB2E043F755DA1329FB66347D17DC2B79A73C3FA Certificate serial: 48C128050430F00E7553945C116AE237DE6DA166 Authority key identifier: FB:2E:04:3F:75:5D:A1:32:9F:B6:63:47:D1:7D:C2:B7:9A:73:C3:FA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653339303a3a2f34342d3434203d3e20333937303332.roa Signing time: Fri 29 Aug 2025 15:37:03 +0000 ROA not before: Fri 29 Aug 2025 15:32:03 +0000 ROA not after: Fri 28 Aug 2026 15:37:03 +0000 asID: 397032 IP address blocks: 2a14:7584:e390::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.crl rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 10:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:c1:28:05:04:30:f0:0e:75:53:94:5c:11:6a:e2:37:de:6d:a1:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB2E043F755DA1329FB66347D17DC2B79A73C3FA Validity Not Before: Aug 29 15:32:03 2025 GMT Not After : Aug 28 15:37:03 2026 GMT Subject: CN=A73A5DF897618D67E6B504790EC3055659A8A69F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1b:18:fb:4e:10:0a:de:01:d2:37:3f:72:cd: 06:c1:9e:f6:68:7f:31:20:1a:15:dd:57:c2:87:49: 9c:00:e4:81:1d:98:20:7d:c8:f7:3f:2f:47:23:07: 12:e8:e3:da:23:2a:e8:04:8a:2c:60:26:80:ee:06: 39:60:c2:f6:d3:89:46:9a:80:41:bf:72:b2:9d:f0: 15:58:63:b2:7d:23:8a:80:14:44:b5:e0:ec:77:4f: a5:c5:f9:24:c1:71:0b:9a:dd:72:46:94:ff:ed:1e: ad:db:6a:b2:e4:68:e1:c0:11:b3:9a:bb:fb:43:b4: aa:45:2b:2a:6c:e8:46:e3:f4:74:ff:d9:34:6b:5f: 23:cb:99:10:e2:0b:5c:fa:bd:f3:b1:6b:b4:59:6f: e6:27:49:ca:78:c0:11:5d:bb:50:97:8f:a0:18:db: c3:02:88:fc:ff:70:32:3c:8a:27:b4:79:46:b7:74: 48:45:57:3c:56:05:ce:31:c4:2b:2b:da:3a:4b:27: 6e:87:88:e3:20:95:f0:56:66:c1:53:e9:d7:2f:b2: d6:f0:be:6e:6e:f0:e8:14:b0:a4:32:77:4b:d5:23: 1d:62:e1:44:00:13:ef:cc:b9:14:11:67:20:0e:b9: 44:18:84:0a:25:2e:26:c4:20:41:d7:ef:da:19:a3: fe:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3A:5D:F8:97:61:8D:67:E6:B5:04:79:0E:C3:05:56:59:A8:A6:9F X509v3 Authority Key Identifier: keyid:FB:2E:04:3F:75:5D:A1:32:9F:B6:63:47:D1:7D:C2:B7:9A:73:C3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653339303a3a2f34342d3434203d3e20333937303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:e390::/44 Signature Algorithm: sha256WithRSAEncryption 0e:05:76:04:ad:35:cf:fd:80:a7:c1:ad:6f:85:d3:80:fa:05: 09:bc:ef:50:9a:d2:75:70:c5:25:c2:82:03:e1:e8:17:46:af: 33:fa:d4:01:9b:2f:b5:5a:d1:42:a2:8d:8b:86:bc:98:cf:e5: 11:1d:78:02:62:e2:80:33:f0:a2:57:70:63:5d:48:8e:b7:bc: 70:49:c8:b2:f0:73:8a:44:a8:0e:f9:e7:41:09:87:3a:ec:4d: de:5c:9e:fd:c8:01:59:89:4b:2c:21:79:6f:a9:13:09:b9:29: 95:18:51:6f:ba:cd:cc:3e:f6:d6:46:36:c7:9e:8b:93:9e:40: 88:88:17:5f:81:73:7e:8b:ea:31:1e:a7:8a:98:54:69:63:24: ed:41:73:80:5f:17:b7:5f:7a:5d:cf:a6:7e:f8:9e:0d:76:d3: b5:68:67:1a:b8:cc:7b:1c:d6:da:0e:05:95:66:31:cc:08:cc: ad:3e:da:b8:33:9c:4c:1c:57:01:a0:2f:3b:e4:a7:5b:78:2c: 3f:f4:f8:ac:12:21:f5:cc:97:31:97:df:11:c3:25:43:46:47: f7:1b:73:67:19:24:85:51:70:3d:9b:57:18:7b:3c:dc:3e:40: dc:97:05:49:3f:fc:a2:86:4a:01:64:b1:51:e8:12:50:70:0f: 34:6d:3e:d2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSMEoBQQw8A51U5RcEWriN95toWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIyRTA0M0Y3NTVEQTEzMjlGQjY2MzQ3RDE3REMyQjc5 QTczQzNGQTAeFw0yNTA4MjkxNTMyMDNaFw0yNjA4MjgxNTM3MDNaMDMxMTAvBgNV BAMTKEE3M0E1REY4OTc2MThENjdFNkI1MDQ3OTBFQzMwNTU2NTlBOEE2OUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqGxj7ThAK3gHSNz9yzQbBnvZo fzEgGhXdV8KHSZwA5IEdmCB9yPc/L0cjBxLo49ojKugEiixgJoDuBjlgwvbTiUaa gEG/crKd8BVYY7J9I4qAFES14Ox3T6XF+STBcQua3XJGlP/tHq3barLkaOHAEbOa u/tDtKpFKyps6Ebj9HT/2TRrXyPLmRDiC1z6vfOxa7RZb+YnScp4wBFdu1CXj6AY 28MCiPz/cDI8iie0eUa3dEhFVzxWBc4xxCsr2jpLJ26HiOMglfBWZsFT6dcvstbw vm5u8OgUsKQyd0vVIx1i4UQAE+/MuRQRZyAOuUQYhAolLibEIEHX79oZo/4JAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUpzpd+JdhjWfmtQR5DsMFVlmopp8wHwYDVR0j BBgwFoAU+y4EP3VdoTKftmNH0X3Ct5pzw/owDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk0NTYyMTQtOGQyNS00YjVlLTllMDQtMzVjMGE3YTI2 NDcwLzAvRkIyRTA0M0Y3NTVEQTEzMjlGQjY2MzQ3RDE3REMyQjc5QTczQzNGQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GQjJFMDQzRjc1NURBMTMyOUZCNjYzNDdE MTdEQzJCNzlBNzNDM0ZBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTQ1NjIxNC04ZDI1LTRiNWUtOWUwNC0zNWMwYTdhMjY0NzAvMC8zMjYxMzEz NDNhMzczNTM4MzQzYTY1MzMzOTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzMz OTM3MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1hOOQMA0GCSqGSIb3DQEBCwUAA4IBAQAO BXYErTXP/YCnwa1vhdOA+gUJvO9QmtJ1cMUlwoID4egXRq8z+tQBmy+1WtFCoo2L hryYz+URHXgCYuKAM/CiV3BjXUiOt7xwSciy8HOKRKgO+edBCYc67E3eXJ79yAFZ iUssIXlvqRMJuSmVGFFvus3MPvbWRjbHnouTnkCIiBdfgXN+i+oxHqeKmFRpYyTt QXOAXxe3X3pdz6Z++J4NdtO1aGcauMx7HNbaDgWVZjHMCMytPtq4M5xMHFcBoC87 5KdbeCw/9PisEiH1zJcxl98RwyVDRkf3G3NnGSSFUXA9m1cYezzcPkDclwVJP/yi hkoBZLFR6BJQcA80bT7S -----END CERTIFICATE-----Generated at Mon Sep 8 13:54:48 2025 by rpki-client