$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653361303a3a2f34342d3434203d3e20333937303332.roa File: 326131343a373538343a653361303a3a2f34342d3434203d3e20333937303332.roa (raw, json) Hash identifier: JCyGJNLuGhm2G7yv8F0G1yT21Qa/DAGdxn1vxIgtXH8= Subject key identifier: 35:BC:49:6B:3E:AC:53:E9:8F:ED:E1:87:C5:C0:23:8B:22:7B:B5:0A Certificate issuer: /CN=FB2E043F755DA1329FB66347D17DC2B79A73C3FA Certificate serial: 3288C3CF2A9C2B6E2C7FB65E37730BF16E803BEA Authority key identifier: FB:2E:04:3F:75:5D:A1:32:9F:B6:63:47:D1:7D:C2:B7:9A:73:C3:FA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653361303a3a2f34342d3434203d3e20333937303332.roa Signing time: Fri 29 Aug 2025 15:37:15 +0000 ROA not before: Fri 29 Aug 2025 15:32:15 +0000 ROA not after: Fri 28 Aug 2026 15:37:15 +0000 asID: 397032 IP address blocks: 2a14:7584:e3a0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.crl rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 10:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:88:c3:cf:2a:9c:2b:6e:2c:7f:b6:5e:37:73:0b:f1:6e:80:3b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB2E043F755DA1329FB66347D17DC2B79A73C3FA Validity Not Before: Aug 29 15:32:15 2025 GMT Not After : Aug 28 15:37:15 2026 GMT Subject: CN=35BC496B3EAC53E98FEDE187C5C0238B227BB50A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5b:2d:d0:5a:43:38:53:13:35:54:87:40:07: e6:5e:e5:e0:97:73:e5:79:bc:75:c5:40:54:20:8e: 4e:fe:0d:42:5e:0d:74:31:9d:74:fb:5c:0f:a8:a1: 72:a4:01:96:c5:29:34:5a:80:3c:a7:e3:cd:c2:9e: 68:cc:ee:86:25:a6:3e:c2:8e:49:b9:cc:92:a5:13: f6:d5:a7:1f:86:7d:50:df:a1:6d:09:30:a2:91:50: 29:5e:18:8d:07:4f:a7:76:19:3b:2e:3c:42:9f:a3: dc:05:7d:7c:2e:89:64:12:29:ff:aa:f0:c3:9b:15: 09:1a:6e:5a:d1:86:e5:6d:92:cb:a7:12:62:71:b3: cd:91:a9:81:de:da:1a:c3:67:9d:91:de:78:7a:39: 76:76:e7:a8:19:9b:ae:a3:f1:c5:f6:d8:c8:a4:58: 3f:42:e2:13:59:3b:bc:6f:e7:42:d7:1e:ca:86:8b: 40:a6:16:7a:94:ed:74:49:ea:6e:d2:b0:96:f0:73: 63:82:8b:51:7a:84:21:c0:96:a9:91:dc:0c:34:03: 8b:7c:ce:18:83:f8:ce:f0:ec:77:5d:e1:2d:8a:c0: f4:54:30:6f:1a:fc:a8:ef:e1:40:20:17:f6:ea:61: e5:9f:a4:11:70:a2:20:28:c9:ff:f9:bc:ce:09:6b: ed:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BC:49:6B:3E:AC:53:E9:8F:ED:E1:87:C5:C0:23:8B:22:7B:B5:0A X509v3 Authority Key Identifier: keyid:FB:2E:04:3F:75:5D:A1:32:9F:B6:63:47:D1:7D:C2:B7:9A:73:C3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FB2E043F755DA1329FB66347D17DC2B79A73C3FA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09456214-8d25-4b5e-9e04-35c0a7a26470/0/326131343a373538343a653361303a3a2f34342d3434203d3e20333937303332.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:e3a0::/44 Signature Algorithm: sha256WithRSAEncryption 66:27:b5:97:a7:3c:a2:28:9d:9c:7c:63:c1:39:3a:0c:57:e3: 0c:74:e4:f8:e6:a8:f1:20:35:ea:91:7e:0e:e2:c0:20:6a:20: 22:ca:04:2f:2c:06:05:1d:35:dd:07:4a:b2:58:0e:91:ce:31: 5b:f6:fc:1c:df:f0:62:56:6c:23:d1:18:ba:e5:d1:1c:d1:3e: 6e:81:08:a3:3d:0c:58:52:8a:f4:d4:e7:12:2b:96:b0:ce:e6: 05:01:ad:45:fe:1c:da:9f:f5:bc:90:0e:8d:f8:29:a2:a4:3f: 09:84:e9:0d:1a:de:01:21:37:6f:92:cb:dd:f4:2c:c6:3f:3e: 82:dc:76:a2:e8:40:af:f4:fb:a2:1b:76:6c:d2:8a:2e:ba:fb: 7b:c2:cf:ab:90:e4:48:28:a8:23:a4:a6:2f:bf:9d:81:34:ac: 52:02:fd:a7:f1:5f:8a:89:44:d1:81:8c:d7:96:e1:eb:54:04: 40:20:9e:5a:ee:da:ab:59:e3:73:fa:ce:db:3a:46:ae:49:6e: 06:1a:3e:ba:85:d6:8c:83:c2:24:63:a5:82:9f:85:ea:47:a8: e9:81:ed:ec:3f:2e:b0:e9:c0:d5:21:d1:ce:eb:20:f9:da:15: 8e:67:b4:e9:05:ef:e7:41:78:44:8a:64:cc:60:31:11:48:98: 80:02:2a:cc -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUMojDzyqcK24sf7ZeN3ML8W6AO+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIyRTA0M0Y3NTVEQTEzMjlGQjY2MzQ3RDE3REMyQjc5 QTczQzNGQTAeFw0yNTA4MjkxNTMyMTVaFw0yNjA4MjgxNTM3MTVaMDMxMTAvBgNV BAMTKDM1QkM0OTZCM0VBQzUzRTk4RkVERTE4N0M1QzAyMzhCMjI3QkI1MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHWy3QWkM4UxM1VIdAB+Ze5eCX c+V5vHXFQFQgjk7+DUJeDXQxnXT7XA+ooXKkAZbFKTRagDyn483CnmjM7oYlpj7C jkm5zJKlE/bVpx+GfVDfoW0JMKKRUCleGI0HT6d2GTsuPEKfo9wFfXwuiWQSKf+q 8MObFQkablrRhuVtksunEmJxs82RqYHe2hrDZ52R3nh6OXZ256gZm66j8cX22Mik WD9C4hNZO7xv50LXHsqGi0CmFnqU7XRJ6m7SsJbwc2OCi1F6hCHAlqmR3Aw0A4t8 zhiD+M7w7Hdd4S2KwPRUMG8a/Kjv4UAgF/bqYeWfpBFwoiAoyf/5vM4Ja+0XAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUNbxJaz6sU+mP7eGHxcAjiyJ7tQowHwYDVR0j BBgwFoAU+y4EP3VdoTKftmNH0X3Ct5pzw/owDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk0NTYyMTQtOGQyNS00YjVlLTllMDQtMzVjMGE3YTI2 NDcwLzAvRkIyRTA0M0Y3NTVEQTEzMjlGQjY2MzQ3RDE3REMyQjc5QTczQzNGQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GQjJFMDQzRjc1NURBMTMyOUZCNjYzNDdE MTdEQzJCNzlBNzNDM0ZBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTQ1NjIxNC04ZDI1LTRiNWUtOWUwNC0zNWMwYTdhMjY0NzAvMC8zMjYxMzEz NDNhMzczNTM4MzQzYTY1MzM2MTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzMz OTM3MzAzMzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1hOOgMA0GCSqGSIb3DQEBCwUAA4IBAQBm J7WXpzyiKJ2cfGPBOToMV+MMdOT45qjxIDXqkX4O4sAgaiAiygQvLAYFHTXdB0qy WA6RzjFb9vwc3/BiVmwj0Ri65dEc0T5ugQijPQxYUor01OcSK5awzuYFAa1F/hza n/W8kA6N+CmipD8JhOkNGt4BITdvksvd9CzGPz6C3Hai6ECv9PuiG3Zs0oouuvt7 ws+rkORIKKgjpKYvv52BNKxSAv2n8V+KiUTRgYzXluHrVARAIJ5a7tqrWeNz+s7b OkauSW4GGj66hdaMg8IkY6WCn4XqR6jpge3sPy6w6cDVIdHO6yD52hWOZ7TpBe/n QXhEimTMYDERSJiAAirM -----END CERTIFICATE-----Generated at Mon Sep 8 13:53:47 2025 by rpki-client