$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: bnZ8qUPjXECCR+J8qVtRk4+o0qyK0FyJIhKx6xyFjB8= Subject key identifier: 6F:90:1B:43:96:A6:10:C9:E1:80:E3:19:D7:03:C8:D0:57:49:2E:5C Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 0F5C16D93146C1C1F6CF45BE15F82C55ACCEB17A Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa Signing time: Fri 15 Aug 2025 08:03:15 +0000 ROA not before: Fri 15 Aug 2025 07:58:15 +0000 ROA not after: Fri 14 Aug 2026 08:03:15 +0000 asID: 216324 IP address blocks: 2a14:7581:212::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 18:11:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:5c:16:d9:31:46:c1:c1:f6:cf:45:be:15:f8:2c:55:ac:ce:b1:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Aug 15 07:58:15 2025 GMT Not After : Aug 14 08:03:15 2026 GMT Subject: CN=6F901B4396A610C9E180E319D703C8D057492E5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:ef:6d:1a:b3:e7:0f:e1:96:49:88:74:92: e6:10:77:9a:96:5a:b5:b5:ea:ff:98:57:10:26:e1: 11:b8:1a:7a:82:f8:52:c0:d7:15:45:c7:77:46:fc: 26:f2:86:25:db:94:87:ac:9b:93:5b:18:b6:50:47: 26:d5:60:07:02:fb:b8:75:39:ec:d6:d1:b3:2a:b4: a3:29:12:20:5d:6c:9f:f4:56:63:aa:9b:52:df:ff: 1c:30:9f:35:ad:d5:2a:ee:79:66:94:1d:ed:36:88: 43:2f:7f:b7:a3:95:25:b5:14:e9:f8:6a:d1:7d:52: ba:e1:4d:34:64:97:ac:f3:7e:dc:e2:7a:09:bc:64: ab:92:26:cf:e2:7e:22:42:6c:86:ec:64:5d:a6:ba: 10:15:6c:6e:55:4b:01:97:2c:f5:99:9f:0b:11:64: d2:b0:da:44:6f:cf:38:8a:22:8a:e6:69:63:b7:95: 4c:39:bf:48:0f:45:87:bf:ed:32:e2:4f:86:c2:b0: 78:d2:6f:34:72:eb:52:62:b3:b3:5e:e9:34:13:b4: bc:4e:31:4a:72:89:50:90:34:e7:a9:31:be:e9:ea: 39:6b:f1:d0:3e:9c:6d:fa:a2:7b:33:2e:1d:38:82: cd:75:4e:ce:cb:30:e8:b1:e2:a9:0c:a1:5c:74:af: 75:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:90:1B:43:96:A6:10:C9:E1:80:E3:19:D7:03:C8:D0:57:49:2E:5C X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3231323a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:212::/48 Signature Algorithm: sha256WithRSAEncryption 26:c0:13:06:cf:a2:f9:3d:0b:35:e2:1b:63:85:ef:4a:3a:bb: d6:8b:ca:3a:fb:6d:3a:a3:4a:14:01:7a:19:cb:21:fa:43:88: 0b:b7:2c:a5:ad:92:19:9a:8f:30:80:eb:e3:63:06:ef:f7:fe: 80:57:a8:f2:c6:82:55:bf:ca:5e:99:e7:a2:8e:08:b1:66:bd: 97:03:9a:a8:d4:3b:75:4a:f8:05:86:73:e7:b2:ed:e5:57:2a: 65:05:ba:f8:d7:22:c6:83:36:88:44:93:df:e0:93:7c:cd:ec: 8c:e7:c4:be:0d:7e:1a:16:27:d8:a1:c3:43:3b:cf:ca:55:62: aa:d4:8c:f3:a7:cb:6d:6e:d4:c9:e7:0b:0f:e5:fe:31:c5:d4: c3:b2:bb:6c:46:40:63:f2:bf:d7:02:23:f5:92:9e:34:f1:04: 8c:51:9b:f3:72:75:79:00:b7:42:b4:4d:64:c8:02:f0:50:2a: c8:b3:8a:d2:39:7e:67:26:66:5f:97:f5:84:47:a8:f9:f3:d8: 1a:d3:ab:28:73:bb:96:29:74:ca:84:98:f5:3d:30:88:d7:e2: 52:8e:ac:e1:d1:18:09:14:cb:c4:ec:f7:60:9f:aa:a0:67:8f: 73:b6:2c:83:79:5f:56:34:d4:5f:55:3c:1a:15:8e:a4:10:fd: c1:09:aa:dd -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUD1wW2TFGwcH2z0W+FfgsVazOsXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNTA4MTUwNzU4MTVaFw0yNjA4MTQwODAzMTVaMDMxMTAvBgNV BAMTKDZGOTAxQjQzOTZBNjEwQzlFMTgwRTMxOUQ3MDNDOEQwNTc0OTJFNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8wO9tGrPnD+GWSYh0kuYQd5qW WrW16v+YVxAm4RG4GnqC+FLA1xVFx3dG/CbyhiXblIesm5NbGLZQRybVYAcC+7h1 OezW0bMqtKMpEiBdbJ/0VmOqm1Lf/xwwnzWt1SrueWaUHe02iEMvf7ejlSW1FOn4 atF9UrrhTTRkl6zzftziegm8ZKuSJs/ifiJCbIbsZF2muhAVbG5VSwGXLPWZnwsR ZNKw2kRvzziKIormaWO3lUw5v0gPRYe/7TLiT4bCsHjSbzRy61Jis7Ne6TQTtLxO MUpyiVCQNOepMb7p6jlr8dA+nG36onszLh04gs11Ts7LMOix4qkMoVx0r3UVAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUb5AbQ5amEMnhgOMZ1wPI0FdJLlwwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzEzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYECEjANBgkqhkiG9w0BAQsFAAOCAQEAJsAT Bs+i+T0LNeIbY4XvSjq71ovKOvttOqNKFAF6Gcsh+kOIC7cspa2SGZqPMIDr42MG 7/f+gFeo8saCVb/KXpnnoo4IsWa9lwOaqNQ7dUr4BYZz57Lt5VcqZQW6+NcixoM2 iEST3+CTfM3sjOfEvg1+GhYn2KHDQzvPylViqtSM86fLbW7UyecLD+X+McXUw7K7 bEZAY/K/1wIj9ZKeNPEEjFGb83J1eQC3QrRNZMgC8FAqyLOK0jl+ZyZmX5f1hEeo +fPYGtOrKHO7lil0yoSY9T0wiNfiUo6s4dEYCRTLxOz3YJ+qoGePc7Ysg3lfVjTU X1U8GhWOpBD9wQmq3Q== -----END CERTIFICATE-----Generated at Sat Oct 25 06:52:07 2025 by rpki-client