$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/326131343a373538333a663330303a3a2f34302d3438203d3e20323035303038.roa File: 326131343a373538333a663330303a3a2f34302d3438203d3e20323035303038.roa (raw, json) Hash identifier: Pw4yBx8L2Vx0/YJcoRiVJ2ZHCDI/+/xVhxU2P0lxb8w= Subject key identifier: 7E:DA:E1:D2:58:CC:43:06:E1:71:7D:42:8F:17:BE:F9:58:42:27:41 Certificate issuer: /CN=6E57E27AC23C8932C53853BF557B28CD590488AC Certificate serial: 039069B482F4FF9D527C392D9264245B71B224D8 Authority key identifier: 6E:57:E2:7A:C2:3C:89:32:C5:38:53:BF:55:7B:28:CD:59:04:88:AC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6E57E27AC23C8932C53853BF557B28CD590488AC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/326131343a373538333a663330303a3a2f34302d3438203d3e20323035303038.roa Signing time: Fri 29 Aug 2025 13:25:51 +0000 ROA not before: Fri 29 Aug 2025 13:20:51 +0000 ROA not after: Fri 28 Aug 2026 13:25:51 +0000 asID: 205008 IP address blocks: 2a14:7583:f300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/6E57E27AC23C8932C53853BF557B28CD590488AC.crl rsync://rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/6E57E27AC23C8932C53853BF557B28CD590488AC.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6E57E27AC23C8932C53853BF557B28CD590488AC.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 00:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:90:69:b4:82:f4:ff:9d:52:7c:39:2d:92:64:24:5b:71:b2:24:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E57E27AC23C8932C53853BF557B28CD590488AC Validity Not Before: Aug 29 13:20:51 2025 GMT Not After : Aug 28 13:25:51 2026 GMT Subject: CN=7EDAE1D258CC4306E1717D428F17BEF958422741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:be:29:ba:a3:e4:e8:25:20:3e:b6:06:d3:bf: 02:ea:62:de:e8:75:d5:b9:8a:6d:d7:4b:d6:36:d6: a4:4f:21:f6:c1:1f:24:75:a1:fd:b0:67:ed:95:58: a9:12:28:3f:49:9a:b3:b7:d7:24:08:24:50:a3:9c: f5:40:9c:22:ad:71:ec:38:81:02:21:6e:00:e4:b9: c0:e4:c8:5b:fb:b5:bb:94:a6:22:b7:68:91:4d:59: a9:f4:05:61:d7:a9:69:4a:83:35:23:13:e0:d8:fa: 0f:09:55:f3:e7:a9:cd:ad:30:6a:3d:8b:27:5b:e6: 71:4f:08:0b:f6:25:26:77:aa:bf:6b:fa:91:17:bc: 20:53:18:72:cc:18:78:11:37:af:5f:25:da:ec:11: 35:f9:f2:cb:9e:ad:d9:5d:ae:b8:48:e1:4e:2f:19: dc:7d:d3:3e:79:94:77:27:58:fa:c4:22:cb:cf:4f: 9d:c8:c2:91:92:f8:dd:0c:48:07:5e:df:a8:76:b0: df:0e:59:8f:66:4f:35:aa:91:4e:38:ed:1f:67:2f: b4:17:ae:05:dd:b7:3c:ba:c2:41:0f:9d:7f:9a:4e: 91:22:ec:cb:9b:f5:cd:3c:fe:64:17:b1:94:c9:08: 0b:76:97:a7:14:cd:13:48:36:e8:26:b9:c1:71:b5: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:DA:E1:D2:58:CC:43:06:E1:71:7D:42:8F:17:BE:F9:58:42:27:41 X509v3 Authority Key Identifier: keyid:6E:57:E2:7A:C2:3C:89:32:C5:38:53:BF:55:7B:28:CD:59:04:88:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/6E57E27AC23C8932C53853BF557B28CD590488AC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6E57E27AC23C8932C53853BF557B28CD590488AC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2285be6f-5111-4c3c-8254-d2e415510284/1/326131343a373538333a663330303a3a2f34302d3438203d3e20323035303038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f300::/40 Signature Algorithm: sha256WithRSAEncryption 89:73:01:83:d0:ff:65:f7:ba:24:11:bd:7a:1b:e5:72:f2:53: 12:ef:c4:34:7d:04:0b:d2:2c:d3:03:f4:a6:36:4e:28:db:d2: 4a:f1:ae:1d:96:34:34:29:0e:88:8e:ec:7e:b2:50:29:d9:4d: 68:8d:84:a0:57:23:2e:42:90:41:05:ab:e2:ea:0e:af:28:ac: bf:21:cc:ae:36:9d:2b:37:84:79:7c:a0:cb:6c:48:62:f3:db: 9d:78:a5:21:fb:c9:4b:df:ec:e2:3e:91:0e:62:1f:22:86:f3: 38:4d:56:94:1d:5a:a7:f2:23:3f:2f:df:96:9a:c1:28:fc:50: 1a:d5:3f:73:38:9e:e7:87:b0:fa:44:bb:45:98:32:ad:00:14: 88:66:72:3c:98:ff:0a:d2:e8:63:c0:3a:cb:b4:d2:fb:f5:a3: ab:96:2e:14:f0:96:73:c5:f5:09:c5:ac:5e:d0:53:e4:c7:b9: c0:79:f7:09:00:1e:7e:06:58:fa:40:fe:60:76:3c:6e:d4:a3: 40:ab:cf:23:b5:1c:89:b2:09:33:c6:f6:f4:c2:c9:23:47:f0: 1c:de:06:ed:ee:8f:71:62:28:cc:11:2c:21:2c:b1:bd:48:f4: dc:ad:c6:a9:49:64:d2:44:6e:1a:c2:3d:97:48:d2:e9:72:99: 9c:cb:e1:2b -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUA5BptIL0/51SfDktkmQkW3GyJNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkU1N0UyN0FDMjNDODkzMkM1Mzg1M0JGNTU3QjI4Q0Q1 OTA0ODhBQzAeFw0yNTA4MjkxMzIwNTFaFw0yNjA4MjgxMzI1NTFaMDMxMTAvBgNV BAMTKDdFREFFMUQyNThDQzQzMDZFMTcxN0Q0MjhGMTdCRUY5NTg0MjI3NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBvim6o+ToJSA+tgbTvwLqYt7o ddW5im3XS9Y21qRPIfbBHyR1of2wZ+2VWKkSKD9JmrO31yQIJFCjnPVAnCKtcew4 gQIhbgDkucDkyFv7tbuUpiK3aJFNWan0BWHXqWlKgzUjE+DY+g8JVfPnqc2tMGo9 iydb5nFPCAv2JSZ3qr9r+pEXvCBTGHLMGHgRN69fJdrsETX58suerdldrrhI4U4v Gdx90z55lHcnWPrEIsvPT53IwpGS+N0MSAde36h2sN8OWY9mTzWqkU447R9nL7QX rgXdtzy6wkEPnX+aTpEi7Mub9c08/mQXsZTJCAt2l6cUzRNINugmucFxtUlDAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUftrh0ljMQwbhcX1Cjxe++VhCJ0EwHwYDVR0j BBgwFoAUblfiesI8iTLFOFO/VXsozVkEiKwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjI4NWJlNmYtNTExMS00YzNjLTgyNTQtZDJlNDE1NTEw Mjg0LzEvNkU1N0UyN0FDMjNDODkzMkM1Mzg1M0JGNTU3QjI4Q0Q1OTA0ODhBQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82RTU3RTI3QUMyM0M4OTMyQzUzODUzQkY1 NTdCMjhDRDU5MDQ4OEFDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yMjg1YmU2Zi01MTExLTRjM2MtODI1NC1kMmU0MTU1MTAyODQvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM1MzAzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1g/MwDQYJKoZIhvcNAQELBQADggEBAIlz AYPQ/2X3uiQRvXob5XLyUxLvxDR9BAvSLNMD9KY2Tijb0krxrh2WNDQpDoiO7H6y UCnZTWiNhKBXIy5CkEEFq+LqDq8orL8hzK42nSs3hHl8oMtsSGLz2514pSH7yUvf 7OI+kQ5iHyKG8zhNVpQdWqfyIz8v35aawSj8UBrVP3M4nueHsPpEu0WYMq0AFIhm cjyY/wrS6GPAOsu00vv1o6uWLhTwlnPF9QnFrF7QU+THucB59wkAHn4GWPpA/mB2 PG7Uo0CrzyO1HImyCTPG9vTCySNH8BzeBu3uj3FiKMwRLCEssb1I9NytxqlJZNJE bhrCPZdI0ulymZzL4Ss= -----END CERTIFICATE-----Generated at Mon Sep 8 16:55:25 2025 by rpki-client