$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa File: 326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa (raw, json) Hash identifier: 9WwOZQ+czh53N90Wic7WKUZpN9yKrnRBc/mSIwdZviM= Subject key identifier: 3A:86:E0:C5:3F:37:63:83:C7:91:3C:49:60:49:20:FF:0B:BB:B2:CF Certificate issuer: /CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Certificate serial: 09C02B00AFF62D693C16A1BEF0A1471C16BC3974 Authority key identifier: 02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa Signing time: Fri 05 Sep 2025 03:06:14 +0000 ROA not before: Fri 05 Sep 2025 03:01:14 +0000 ROA not after: Fri 04 Sep 2026 03:06:14 +0000 asID: 204844 IP address blocks: 2a14:7581:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 05:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c0:2b:00:af:f6:2d:69:3c:16:a1:be:f0:a1:47:1c:16:bc:39:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Validity Not Before: Sep 5 03:01:14 2025 GMT Not After : Sep 4 03:06:14 2026 GMT Subject: CN=3A86E0C53F376383C7913C49604920FF0BBBB2CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a4:80:2c:4c:b8:38:be:64:39:64:18:f8:7f: 48:3c:36:27:e9:16:d3:23:65:a8:20:ba:22:2c:94: 99:7c:77:0c:78:7f:ac:29:f7:13:ad:e2:79:b0:a3: 04:b1:36:9a:8b:f3:58:33:66:ff:63:0e:5d:e9:f7: 8a:1c:3e:a6:a4:50:b2:ab:c2:70:f8:fc:e4:51:60: b7:fe:cf:68:d7:b2:06:71:aa:c1:34:0c:3e:04:10: 51:ec:1e:fa:ff:2d:7d:93:9a:33:60:66:90:2f:c4: b6:5e:15:50:86:e6:68:7e:52:1b:32:f6:eb:90:ab: 27:72:8f:9e:44:c7:f2:07:48:51:92:f8:4e:bf:94: e8:41:54:10:9a:df:28:99:f9:c0:ce:79:e4:65:ae: de:0b:4a:ce:0e:b5:0c:77:41:68:ce:eb:d0:41:8d: 02:05:a5:f8:ce:f8:a1:07:24:4e:1f:9b:13:b9:75: a5:f7:d5:78:80:04:51:28:d0:15:2e:a5:5d:51:83: 28:32:bc:e1:b5:56:64:43:18:ad:47:70:63:60:cd: 28:85:28:69:e1:89:36:36:d1:15:e0:99:55:d3:5c: 82:7f:4d:5f:dc:3e:ff:ba:a8:60:ce:a3:3c:57:af: 0a:2a:86:11:4c:e0:a1:fa:0b:e9:11:e8:3d:fd:e9: 40:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:86:E0:C5:3F:37:63:83:C7:91:3C:49:60:49:20:FF:0B:BB:B2:CF X509v3 Authority Key Identifier: keyid:02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6000::/36 Signature Algorithm: sha256WithRSAEncryption 37:d2:7c:15:ca:06:42:e6:44:f0:d8:91:c8:22:c8:b6:95:a1: e2:d9:60:9b:2c:d5:5a:21:bb:38:be:5d:b9:d0:96:31:62:05: fc:0b:b9:ce:1b:f1:2b:18:71:a3:b2:62:88:96:ad:e3:25:3f: 47:77:17:f0:73:48:54:a0:5c:60:d2:c6:ff:49:f3:47:3d:cb: a0:50:b6:e8:34:07:21:a8:b0:c4:19:79:ae:63:fa:ed:7e:f7: 66:83:d4:8d:51:39:f5:c3:01:98:a2:41:fc:8e:4c:8f:74:6f: b9:95:c9:55:ed:99:13:7c:fb:cc:eb:cc:3d:a4:74:08:ee:8b: 81:89:a4:e9:d1:63:48:b4:b6:ff:b6:51:20:11:77:02:53:74: 1b:2b:f8:47:54:63:98:c9:9f:39:4a:97:0e:5e:c9:fd:fe:64: 73:7a:a9:ca:2f:77:99:36:08:cb:98:61:12:d4:61:33:a2:df: 40:2f:7c:0d:3f:51:59:50:44:aa:7c:fc:4b:ff:19:5b:48:f9: c4:ff:46:2e:ba:66:81:75:6a:12:a3:36:d6:62:78:b2:a3:65: 4a:24:e3:6e:45:83:16:a5:bf:b9:45:e7:51:86:f2:15:f1:64: fc:76:3e:69:74:c4:c0:b7:7b:e3:f9:8d:b1:7f:3d:bf:b2:a6: 4e:76:a2:41 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUCcArAK/2LWk8FqG+8KFHHBa8OXQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhB NjYwNDYyMDAeFw0yNTA5MDUwMzAxMTRaFw0yNjA5MDQwMzA2MTRaMDMxMTAvBgNV BAMTKDNBODZFMEM1M0YzNzYzODNDNzkxM0M0OTYwNDkyMEZGMEJCQkIyQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCypIAsTLg4vmQ5ZBj4f0g8Nifp FtMjZagguiIslJl8dwx4f6wp9xOt4nmwowSxNpqL81gzZv9jDl3p94ocPqakULKr wnD4/ORRYLf+z2jXsgZxqsE0DD4EEFHsHvr/LX2TmjNgZpAvxLZeFVCG5mh+Uhsy 9uuQqydyj55Ex/IHSFGS+E6/lOhBVBCa3yiZ+cDOeeRlrt4LSs4OtQx3QWjO69BB jQIFpfjO+KEHJE4fmxO5daX31XiABFEo0BUupV1RgygyvOG1VmRDGK1HcGNgzSiF KGnhiTY20RXgmVXTXIJ/TV/cPv+6qGDOozxXrwoqhhFM4KH6C+kR6D396UADAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUOobgxT83Y4PHkTxJYEkg/wu7ss8wHwYDVR0j BBgwFoAUAg9+0hf8NlMuawRc+8zaaKZgRiAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNWE3Yzk1NmMtMjJlYi00YmI4LWEzMjctYWQ5NzE2MTI5 NWJjLzAvMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhBNjYwNDYyMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wMjBGN0VEMjE3RkMzNjUzMkU2QjA0NUNG QkNDREE2OEE2NjA0NjIwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81YTdjOTU2Yy0yMmViLTRiYjgtYTMyNy1hZDk3MTYxMjk1YmMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM2MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MDM0MzgzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gWAwDQYJKoZIhvcNAQELBQADggEBADfS fBXKBkLmRPDYkcgiyLaVoeLZYJss1Vohuzi+XbnQljFiBfwLuc4b8SsYcaOyYoiW reMlP0d3F/BzSFSgXGDSxv9J80c9y6BQtug0ByGosMQZea5j+u1+92aD1I1ROfXD AZiiQfyOTI90b7mVyVXtmRN8+8zrzD2kdAjui4GJpOnRY0i0tv+2USARdwJTdBsr +EdUY5jJnzlKlw5eyf3+ZHN6qcovd5k2CMuYYRLUYTOi30AvfA0/UVlQRKp8/Ev/ GVtI+cT/Ri66ZoF1ahKjNtZieLKjZUok425Fgxalv7lF51GG8hXxZPx2Pml0xMC3 e+P5jbF/Pb+ypk52okE= -----END CERTIFICATE-----Generated at Mon Sep 8 16:46:31 2025 by rpki-client