$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: k1Bl+G9czty8sHMW8O+46mNTqdftQUpqa17e2vnITlU= Subject key identifier: 6B:B8:D2:12:E1:B7:9C:35:AB:76:81:7F:B8:EC:5B:47:6E:02:B9:DB Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 404F4E253A2549EC8BB26F0A3521584B8A517202 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 06:03:08 +0000 ROA not before: Fri 15 Aug 2025 05:58:08 +0000 ROA not after: Fri 14 Aug 2026 06:03:08 +0000 asID: 216324 IP address blocks: 2a14:7581:203::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 18:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4f:4e:25:3a:25:49:ec:8b:b2:6f:0a:35:21:58:4b:8a:51:72:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 05:58:08 2025 GMT Not After : Aug 14 06:03:08 2026 GMT Subject: CN=6BB8D212E1B79C35AB76817FB8EC5B476E02B9DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7e:11:f1:79:f3:47:9f:93:79:f2:35:d7:f1: 47:88:7c:cb:5e:bc:3f:d8:88:49:3f:de:45:6d:e1: a2:db:00:ee:14:3e:42:6f:a8:50:b0:e1:37:f5:b6: a8:13:ae:9e:05:dd:91:38:10:84:7f:4a:5b:96:e8: dd:6b:54:18:89:65:d3:9c:b0:f7:d1:11:ea:16:21: 2f:98:48:bf:bb:90:38:04:48:75:9d:bf:1d:0a:07: f3:72:b3:04:4f:4e:73:3a:45:0c:26:6d:70:67:35: 8b:9a:b9:54:d1:44:f1:cc:a7:9a:d2:21:f0:30:46: cf:15:89:95:cc:0a:db:1f:90:2c:a4:2f:69:41:54: 2f:31:15:3a:6b:e5:56:1a:36:09:8f:cd:49:da:61: 23:83:33:d6:31:dd:35:ea:dd:e3:9c:46:2d:e5:e4: b3:34:b9:48:16:e8:46:33:64:99:c0:d4:0e:b6:bd: d3:c3:ae:c4:9c:9e:ac:1c:dc:af:0b:cd:2c:06:8a: a1:75:91:fd:da:25:a3:15:18:63:bb:04:2a:76:7d: 8a:71:8f:22:9d:bb:07:13:4f:a0:33:71:73:48:a0: b2:c7:14:4b:12:6b:bf:bc:0a:ef:e8:cc:3b:b0:7c: 3a:cf:b7:9b:61:64:95:d2:c5:f8:76:88:69:c8:4b: 6b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:B8:D2:12:E1:B7:9C:35:AB:76:81:7F:B8:EC:5B:47:6E:02:B9:DB X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3230333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:203::/48 Signature Algorithm: sha256WithRSAEncryption 4e:5e:9e:06:93:19:18:51:7c:af:55:44:84:79:b2:28:f1:a9: ff:53:33:08:23:20:c3:30:3d:b4:35:23:54:bb:c8:e3:9c:b8: 8f:8b:9a:2d:9a:6d:fa:39:25:88:f9:d0:dc:17:ce:8f:a9:f2: f0:b9:6c:cf:35:25:c9:2a:56:14:37:01:1f:0c:5b:eb:79:77: ce:dc:85:61:93:50:3e:2e:18:24:ad:cf:68:6c:9c:29:d8:b8: 6f:c2:33:0a:e7:45:d6:a6:74:7c:ab:4c:98:c3:5b:bd:8b:48: 1c:99:a8:20:b4:80:63:7a:af:3e:32:e6:bc:5e:a8:9e:e8:33: ad:e1:f8:16:44:72:3e:c3:c9:2b:33:3f:e3:89:18:bb:ca:d9: 66:85:9f:e8:ec:32:fe:2e:7a:2c:69:34:56:48:d8:5d:58:48: a7:ae:0d:65:b2:5c:ad:cc:22:86:e8:5f:ff:b8:7e:60:f6:0e: f5:f9:ce:67:66:a8:09:4c:d2:b8:98:15:1b:ee:50:99:1b:36: 31:55:cf:1b:fd:e3:59:ba:4a:4f:b5:f7:51:c6:79:bf:55:25: 13:db:c6:71:b1:38:76:2a:e6:04:5b:ad:57:38:86:0d:71:b1: 31:dd:49:9d:f8:82:d3:83:97:e0:28:c8:89:8e:f7:23:79:55: 85:28:9b:2c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUQE9OJTolSeyLsm8KNSFYS4pRcgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNTU4MDhaFw0yNjA4MTQwNjAzMDhaMDMxMTAvBgNV BAMTKDZCQjhEMjEyRTFCNzlDMzVBQjc2ODE3RkI4RUM1QjQ3NkUwMkI5REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsfhHxefNHn5N58jXX8UeIfMte vD/YiEk/3kVt4aLbAO4UPkJvqFCw4Tf1tqgTrp4F3ZE4EIR/SluW6N1rVBiJZdOc sPfREeoWIS+YSL+7kDgESHWdvx0KB/NyswRPTnM6RQwmbXBnNYuauVTRRPHMp5rS IfAwRs8ViZXMCtsfkCykL2lBVC8xFTpr5VYaNgmPzUnaYSODM9Yx3TXq3eOcRi3l 5LM0uUgW6EYzZJnA1A62vdPDrsScnqwc3K8LzSwGiqF1kf3aJaMVGGO7BCp2fYpx jyKduwcTT6AzcXNIoLLHFEsSa7+8Cu/ozDuwfDrPt5thZJXSxfh2iGnIS2tvAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUa7jSEuG3nDWrdoF/uOxbR24CudswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECAzANBgkqhkiG9w0BAQsFAAOCAQEATl6e BpMZGFF8r1VEhHmyKPGp/1MzCCMgwzA9tDUjVLvI45y4j4uaLZpt+jkliPnQ3BfO j6ny8LlszzUlySpWFDcBHwxb63l3ztyFYZNQPi4YJK3PaGycKdi4b8IzCudF1qZ0 fKtMmMNbvYtIHJmoILSAY3qvPjLmvF6onugzreH4FkRyPsPJKzM/44kYu8rZZoWf 6Owy/i56LGk0VkjYXVhIp64NZbJcrcwihuhf/7h+YPYO9fnOZ2aoCUzSuJgVG+5Q mRs2MVXPG/3jWbpKT7X3UcZ5v1UlE9vGcbE4dirmBFutVziGDXGxMd1JnfiC04OX 4CjIiY73I3lVhSibLA== -----END CERTIFICATE-----Generated at Sat Oct 25 06:44:13 2025 by rpki-client