$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130303a3a2f34302d3430203d3e20323136333234.roa File: 326131343a373538313a3130303a3a2f34302d3430203d3e20323136333234.roa (raw, json) Hash identifier: 1ZRliiRchRYJb2ZnVZIJW6zuGLCEWcYxXjAo/vekCUw= Subject key identifier: EE:E7:C0:DA:B4:1C:41:9D:27:BD:0D:C3:BB:8B:29:0C:65:9B:E5:7D Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 36344296BCCE9747F8752B77B923FB40D4048ED3 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130303a3a2f34302d3430203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 09:03:17 +0000 ROA not before: Fri 15 Aug 2025 08:58:17 +0000 ROA not after: Fri 14 Aug 2026 09:03:17 +0000 asID: 216324 IP address blocks: 2a14:7581:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 18:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:34:42:96:bc:ce:97:47:f8:75:2b:77:b9:23:fb:40:d4:04:8e:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 08:58:17 2025 GMT Not After : Aug 14 09:03:17 2026 GMT Subject: CN=EEE7C0DAB41C419D27BD0DC3BB8B290C659BE57D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dd:85:81:c3:e2:6b:f4:af:93:7c:95:e1:6b: e6:29:47:96:9b:0e:bb:71:1f:f0:6e:82:8b:24:27: cf:14:73:c5:5f:e7:26:95:4e:98:42:e4:24:15:be: 9a:3d:d7:39:39:1b:8c:df:c4:fc:42:f4:cf:e1:b6: 34:14:4f:c3:1c:ca:82:26:9b:b4:20:c0:fe:a4:02: 4d:60:bc:31:a4:8e:ad:3a:20:80:2d:2e:3a:45:20: bd:41:f5:50:fd:5c:85:63:d4:ec:ea:5a:9e:31:24: 46:75:8c:e1:8c:5d:f2:df:a0:23:a0:a8:92:32:e6: 51:3d:6b:8e:12:58:ec:83:47:0b:fa:aa:45:c4:a3: 1f:97:c6:c0:55:49:18:5b:db:84:95:bf:7f:76:ee: 36:b3:ca:f7:37:c6:56:11:4b:41:dc:90:03:21:bc: d3:e4:de:d3:2d:a0:77:2a:79:3d:c2:67:7c:58:c3: de:48:f8:b0:d8:27:87:59:c9:b0:f3:2c:33:c4:2c: 8f:e2:93:32:35:b1:fd:87:fc:8b:50:8f:d9:68:e0: 9b:ca:c5:bf:90:7d:03:87:74:b1:c2:13:dd:b2:6a: 54:b5:98:2d:9f:fe:27:17:e2:5c:6c:95:58:31:78: 88:a1:17:61:26:57:1b:7b:80:2d:30:bf:39:0c:a2: 1d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E7:C0:DA:B4:1C:41:9D:27:BD:0D:C3:BB:8B:29:0C:65:9B:E5:7D X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130303a3a2f34302d3430203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:100::/40 Signature Algorithm: sha256WithRSAEncryption 47:b1:12:48:46:a7:cd:3b:c7:d7:f9:8d:7f:30:4b:c1:5b:2b: 10:e0:56:2f:d3:44:c5:2f:d8:72:81:9f:fd:29:dd:16:d2:bb: f1:fe:d7:90:a2:3a:46:be:5a:3d:f3:0b:f6:ce:7e:fc:2f:c0: 37:18:83:cb:ac:96:87:a4:7e:51:d6:52:3e:a9:47:95:63:c8: 62:96:23:a7:2e:71:36:f8:53:a2:a5:55:57:7c:34:8d:77:9d: 1a:a6:da:3b:27:7e:69:f4:91:d3:5f:62:77:cc:77:b2:52:ca: 84:74:12:de:5a:d6:b1:2d:fa:7c:f6:76:39:88:1a:f8:3d:f6: 94:9f:d1:81:88:d9:0f:d0:21:1f:e2:7f:82:c9:38:c3:82:5a: 72:62:42:fa:58:23:a7:86:ab:16:38:53:45:f7:cd:93:70:e9: a5:4c:ac:a5:db:cf:1c:f4:a0:57:8c:cc:46:cd:9b:72:b4:93: 12:96:d2:ab:86:59:bf:22:40:08:96:41:3e:bf:86:e4:e6:25: 69:ac:94:b4:c7:50:ec:80:5c:56:37:44:74:fc:4f:dc:ac:ab: 7e:93:e2:2d:7a:e6:3f:3d:b5:b4:05:2d:09:28:f0:67:fc:88: d4:a5:17:ba:0d:49:2e:99:3b:b9:0f:92:c6:88:c2:ab:0d:c1: 7b:79:d3:f9 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUNjRClrzOl0f4dSt3uSP7QNQEjtMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwODU4MTdaFw0yNjA4MTQwOTAzMTdaMDMxMTAvBgNV BAMTKEVFRTdDMERBQjQxQzQxOUQyN0JEMERDM0JCOEIyOTBDNjU5QkU1N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA3YWBw+Jr9K+TfJXha+YpR5ab DrtxH/BugoskJ88Uc8Vf5yaVTphC5CQVvpo91zk5G4zfxPxC9M/htjQUT8McyoIm m7QgwP6kAk1gvDGkjq06IIAtLjpFIL1B9VD9XIVj1OzqWp4xJEZ1jOGMXfLfoCOg qJIy5lE9a44SWOyDRwv6qkXEox+XxsBVSRhb24SVv3927jazyvc3xlYRS0HckAMh vNPk3tMtoHcqeT3CZ3xYw95I+LDYJ4dZybDzLDPELI/ikzI1sf2H/ItQj9lo4JvK xb+QfQOHdLHCE92yalS1mC2f/icX4lxslVgxeIihF2EmVxt7gC0wvzkMoh23AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU7ufA2rQcQZ0nvQ3Du4spDGWb5X0wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYEBMA0GCSqGSIb3DQEBCwUAA4IBAQBHsRJI RqfNO8fX+Y1/MEvBWysQ4FYv00TFL9hygZ/9Kd0W0rvx/teQojpGvlo98wv2zn78 L8A3GIPLrJaHpH5R1lI+qUeVY8hiliOnLnE2+FOipVVXfDSNd50apto7J35p9JHT X2J3zHeyUsqEdBLeWtaxLfp89nY5iBr4PfaUn9GBiNkP0CEf4n+CyTjDglpyYkL6 WCOnhqsWOFNF982TcOmlTKyl288c9KBXjMxGzZtytJMSltKrhlm/IkAIlkE+v4bk 5iVprJS0x1DsgFxWN0R0/E/crKt+k+IteuY/PbW0BS0JKPBn/IjUpRe6DUkumTu5 D5LGiMKrDcF7edP5 -----END CERTIFICATE-----Generated at Sat Oct 25 06:44:16 2025 by rpki-client