$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366663303a3a2f34342d3438203d3e20323037333839.roa File: 326131343a373538313a366663303a3a2f34342d3438203d3e20323037333839.roa (raw, json) Hash identifier: k0slLXQGak8JfXgcycld4UCv11bkqqJyVwy8WgUs0W4= Subject key identifier: 04:77:9F:5A:F3:5E:46:AD:C0:D7:A4:09:25:F5:CB:1D:70:18:86:CF Certificate issuer: /CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Certificate serial: 0FBF584483007A880197C86C7833E46A32742664 Authority key identifier: 02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366663303a3a2f34342d3438203d3e20323037333839.roa Signing time: Fri 05 Sep 2025 03:06:36 +0000 ROA not before: Fri 05 Sep 2025 03:01:36 +0000 ROA not after: Fri 04 Sep 2026 03:06:36 +0000 asID: 207389 IP address blocks: 2a14:7581:6fc0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Sep 2025 07:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:bf:58:44:83:00:7a:88:01:97:c8:6c:78:33:e4:6a:32:74:26:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=020F7ED217FC36532E6B045CFBCCDA68A6604620 Validity Not Before: Sep 5 03:01:36 2025 GMT Not After : Sep 4 03:06:36 2026 GMT Subject: CN=04779F5AF35E46ADC0D7A40925F5CB1D701886CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0e:b5:ac:23:85:e1:6c:33:0c:f3:35:e9:e8: 19:bd:56:6d:08:e5:a5:78:6c:a1:e8:a8:50:01:d4: 64:3c:9f:89:30:79:ef:70:07:ca:aa:95:e2:0c:f7: a5:f4:e3:38:65:f9:51:3d:94:d6:96:f0:ef:2a:7b: 9f:f5:d1:9c:1f:64:c4:86:a6:84:21:85:07:7a:6b: 59:23:01:0b:1c:51:4d:88:aa:f6:49:bd:9c:7c:3d: 76:bf:1e:a1:bc:98:8f:76:e1:84:64:cd:21:f8:42: d2:0a:65:23:84:0b:9f:8a:32:7a:03:b3:79:d5:f1: a3:84:18:45:46:21:6a:e7:d7:f0:70:39:20:b2:6e: 9c:dd:b2:e6:a1:bb:5a:7f:9a:d1:bd:b8:c3:c2:59: 25:33:ef:11:e9:ed:66:95:b3:bc:ca:df:f8:9f:16: 31:09:e6:8c:11:a2:3c:25:a9:44:98:5d:53:d4:85: 6b:f7:06:fe:b8:b1:ad:4c:0b:f1:a6:54:b4:f2:52: a3:6a:e5:e6:3a:54:71:e8:6c:b7:e1:7a:42:7e:1c: 22:6c:ea:2c:0f:b6:4e:db:c1:97:f6:d3:fe:af:73: 53:d5:bd:bd:f0:1f:32:be:4b:f0:7a:9a:5f:a6:65: f5:e3:b1:32:70:f6:ba:62:1c:7e:8a:7c:53:f7:c9: e2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:77:9F:5A:F3:5E:46:AD:C0:D7:A4:09:25:F5:CB:1D:70:18:86:CF X509v3 Authority Key Identifier: keyid:02:0F:7E:D2:17:FC:36:53:2E:6B:04:5C:FB:CC:DA:68:A6:60:46:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/020F7ED217FC36532E6B045CFBCCDA68A6604620.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5a7c956c-22eb-4bb8-a327-ad97161295bc/0/326131343a373538313a366663303a3a2f34342d3438203d3e20323037333839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6fc0::/44 Signature Algorithm: sha256WithRSAEncryption 2c:b4:09:e0:07:05:f6:18:a1:ca:dc:46:65:64:83:dd:48:65: dd:9e:d6:b8:40:c4:d8:da:ec:88:8b:aa:75:2b:35:78:5e:a8: 3a:1c:ac:84:cd:3b:c0:f8:44:c2:0e:ae:5a:25:03:c3:33:88: 2e:07:df:bb:cb:fd:53:c9:4f:76:ed:88:7e:b0:8c:2a:ee:7f: 82:1b:cc:be:c6:a3:78:65:8b:19:bd:23:ae:c6:4f:2e:3f:c7: 29:2e:24:24:fc:22:d3:af:df:b4:78:8f:20:1f:83:27:7a:da: 77:da:7a:0a:b9:24:b1:be:15:e1:1c:1a:bf:59:c0:50:a7:51: 29:4a:fb:25:99:67:c1:ea:1c:1f:9e:6b:33:c0:a8:18:d2:d0: 37:ac:f5:db:11:13:13:e9:c4:dd:71:9e:c2:8c:b3:32:b0:e1: ba:71:63:b3:5e:98:d1:00:f8:ae:51:07:b8:47:39:3f:50:14: 81:05:b1:9b:bb:65:39:95:cb:91:f7:a3:b3:d7:e6:13:5e:46: 3d:0c:90:25:78:91:2e:65:e5:e7:66:60:2e:fd:eb:c9:7d:f2: 8d:5c:9a:24:52:91:c2:2f:d1:87:d2:3f:0f:9c:4e:8b:dc:ba: 19:08:f4:5a:1f:8d:e3:68:db:9c:45:ad:e6:11:99:e3:42:da: 89:e4:fd:8c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUD79YRIMAeogBl8hseDPkajJ0JmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhB NjYwNDYyMDAeFw0yNTA5MDUwMzAxMzZaFw0yNjA5MDQwMzA2MzZaMDMxMTAvBgNV BAMTKDA0Nzc5RjVBRjM1RTQ2QURDMEQ3QTQwOTI1RjVDQjFENzAxODg2Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrDrWsI4XhbDMM8zXp6Bm9Vm0I 5aV4bKHoqFAB1GQ8n4kwee9wB8qqleIM96X04zhl+VE9lNaW8O8qe5/10ZwfZMSG poQhhQd6a1kjAQscUU2IqvZJvZx8PXa/HqG8mI924YRkzSH4QtIKZSOEC5+KMnoD s3nV8aOEGEVGIWrn1/BwOSCybpzdsuahu1p/mtG9uMPCWSUz7xHp7WaVs7zK3/if FjEJ5owRojwlqUSYXVPUhWv3Bv64sa1MC/GmVLTyUqNq5eY6VHHobLfhekJ+HCJs 6iwPtk7bwZf20/6vc1PVvb3wHzK+S/B6ml+mZfXjsTJw9rpiHH6KfFP3yeIPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUBHefWvNeRq3A16QJJfXLHXAYhs8wHwYDVR0j BBgwFoAUAg9+0hf8NlMuawRc+8zaaKZgRiAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNWE3Yzk1NmMtMjJlYi00YmI4LWEzMjctYWQ5NzE2MTI5 NWJjLzAvMDIwRjdFRDIxN0ZDMzY1MzJFNkIwNDVDRkJDQ0RBNjhBNjYwNDYyMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wMjBGN0VEMjE3RkMzNjUzMkU2QjA0NUNG QkNDREE2OEE2NjA0NjIwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81YTdjOTU2Yy0yMmViLTRiYjgtYTMyNy1hZDk3MTYxMjk1YmMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjY2MzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MDM3MzMzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gW/AMA0GCSqGSIb3DQEBCwUAA4IBAQAs tAngBwX2GKHK3EZlZIPdSGXdnta4QMTY2uyIi6p1KzV4Xqg6HKyEzTvA+ETCDq5a JQPDM4guB9+7y/1TyU927Yh+sIwq7n+CG8y+xqN4ZYsZvSOuxk8uP8cpLiQk/CLT r9+0eI8gH4Mnetp32noKuSSxvhXhHBq/WcBQp1EpSvslmWfB6hwfnmszwKgY0tA3 rPXbERMT6cTdcZ7CjLMysOG6cWOzXpjRAPiuUQe4Rzk/UBSBBbGbu2U5lcuR96Oz 1+YTXkY9DJAleJEuZeXnZmAu/evJffKNXJokUpHCL9GH0j8PnE6L3LoZCPRaH43j aNucRa3mEZnjQtqJ5P2M -----END CERTIFICATE-----Generated at Tue Sep 9 16:58:11 2025 by rpki-client