$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: vhYSAJwWV/kUrFIYDy1kvhWF6QPE2LCkox0XSbnTkfw= Subject key identifier: 1E:E8:5E:81:96:63:05:86:49:1A:AC:31:C6:F8:E4:14:97:30:96:EF Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 5059970FC9C314717CC85AE08250133D7829D310 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa Signing time: Mon 25 Aug 2025 08:01:24 +0000 ROA not before: Mon 25 Aug 2025 07:56:24 +0000 ROA not after: Mon 24 Aug 2026 08:01:24 +0000 asID: 216324 IP address blocks: 2a14:7581:153::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 13:55:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:59:97:0f:c9:c3:14:71:7c:c8:5a:e0:82:50:13:3d:78:29:d3:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 25 07:56:24 2025 GMT Not After : Aug 24 08:01:24 2026 GMT Subject: CN=1EE85E8196630586491AAC31C6F8E414973096EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f9:32:a3:aa:d7:21:bb:3f:a4:ce:6c:40:97: ba:86:20:28:54:e3:ad:42:6a:16:4b:d5:5d:7a:0a: b2:d7:96:57:c5:43:77:1e:4a:ff:af:14:e4:9a:d3: d5:f3:a5:60:ad:29:e6:21:4e:1c:2e:8c:12:ab:df: f0:d1:e7:9c:e0:a8:a6:6a:bf:9b:95:88:34:0a:4f: 99:dd:eb:18:8d:cd:c9:16:e5:88:de:d7:6b:c0:50: 96:27:42:45:28:4a:74:40:d9:20:6c:a3:29:43:23: bf:27:18:12:83:a1:d0:d2:ab:63:08:92:14:d2:86: 14:12:b8:e8:0d:e9:1b:76:88:d2:1d:69:66:50:29: 1a:e5:8e:45:36:ca:ef:19:5c:f2:85:10:40:2b:02: 76:9c:1b:27:7d:ea:fe:ba:25:be:fd:2c:19:d0:af: 5b:26:3a:1a:f3:bb:15:9c:be:c4:42:5a:57:aa:81: 65:22:4d:a5:a3:29:19:34:21:85:6b:d8:7f:7c:4f: 8a:f8:78:f0:84:29:aa:6d:f5:0d:34:8d:3d:df:a3: 39:d9:bc:29:92:bf:67:0d:60:40:b8:84:c0:67:5a: 33:01:47:25:ef:5a:c9:1c:e7:a6:dc:63:1c:56:5e: 09:9e:52:5c:12:3c:b8:0a:09:8a:23:63:c8:9b:21: 2c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:E8:5E:81:96:63:05:86:49:1A:AC:31:C6:F8:E4:14:97:30:96:EF X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:153::/48 Signature Algorithm: sha256WithRSAEncryption a3:0d:cb:8a:05:d3:17:25:58:b1:a1:94:76:f7:a5:7f:c3:88: d1:1c:37:a9:08:98:96:41:07:3b:7b:2a:21:b1:a1:b5:73:db: 98:d3:5d:f8:ac:cb:48:b4:b5:5a:c1:db:5b:d8:18:23:29:85: 84:50:4b:99:b8:04:34:d8:4e:71:2c:94:67:14:e1:a8:ae:e9: 2e:03:80:c0:88:4c:de:97:9e:50:8b:5c:52:f5:d3:b5:f9:4f: 9c:ab:38:8b:07:b8:ea:5e:69:ac:1e:76:b6:2e:03:e4:90:f6: 1a:99:f5:fb:3e:06:8f:98:a8:84:e7:5a:20:9f:f2:fd:6c:ce: ca:eb:23:91:f2:b9:84:d1:3e:81:29:75:c0:5f:9a:0a:72:a0: 8f:fc:98:25:56:30:f8:80:67:1e:02:f4:95:0e:37:0e:32:0a: d9:fe:4f:3f:99:7f:33:e5:bc:ac:0d:e5:83:35:47:a2:73:ff: 1f:86:53:ed:f4:5a:6a:60:e8:97:c9:9e:f4:18:d9:8a:4a:af: 00:84:75:2d:0b:2f:a9:49:e2:ea:95:8a:d5:84:77:99:dd:be: 83:08:15:f3:49:cb:0f:cc:7a:59:a8:16:65:4a:32:e7:47:b9: c1:54:4a:8f:e1:54:80:15:20:72:e6:66:26:50:4b:03:d6:ce: e7:11:f9:e9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUUFmXD8nDFHF8yFrgglATPXgp0xAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MjUwNzU2MjRaFw0yNjA4MjQwODAxMjRaMDMxMTAvBgNV BAMTKDFFRTg1RTgxOTY2MzA1ODY0OTFBQUMzMUM2RjhFNDE0OTczMDk2RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+TKjqtchuz+kzmxAl7qGIChU 461CahZL1V16CrLXllfFQ3ceSv+vFOSa09XzpWCtKeYhThwujBKr3/DR55zgqKZq v5uViDQKT5nd6xiNzckW5Yje12vAUJYnQkUoSnRA2SBsoylDI78nGBKDodDSq2MI khTShhQSuOgN6Rt2iNIdaWZQKRrljkU2yu8ZXPKFEEArAnacGyd96v66Jb79LBnQ r1smOhrzuxWcvsRCWleqgWUiTaWjKRk0IYVr2H98T4r4ePCEKapt9Q00jT3foznZ vCmSv2cNYEC4hMBnWjMBRyXvWskc56bcYxxWXgmeUlwSPLgKCYojY8ibISyHAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUHuhegZZjBYZJGqwxxvjkFJcwlu8wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzUzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEBUzANBgkqhkiG9w0BAQsFAAOCAQEAow3L igXTFyVYsaGUdvelf8OI0Rw3qQiYlkEHO3sqIbGhtXPbmNNd+KzLSLS1WsHbW9gY IymFhFBLmbgENNhOcSyUZxThqK7pLgOAwIhM3peeUItcUvXTtflPnKs4iwe46l5p rB52ti4D5JD2Gpn1+z4Gj5iohOdaIJ/y/WzOyusjkfK5hNE+gSl1wF+aCnKgj/yY JVYw+IBnHgL0lQ43DjIK2f5PP5l/M+W8rA3lgzVHonP/H4ZT7fRaamDol8me9BjZ ikqvAIR1LQsvqUni6pWK1YR3md2+gwgV80nLD8x6WagWZUoy50e5wVRKj+FUgBUg cuZmJlBLA9bO5xH56Q== -----END CERTIFICATE-----Generated at Mon Sep 8 15:25:25 2025 by rpki-client