$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393062303a3a2f34342d3438203d3e203134343437.roa File: 326131343a373538313a393062303a3a2f34342d3438203d3e203134343437.roa (raw, json) Hash identifier: 0s1d24KMFu1kYJPCMrebtn4XcHECqVsweN9wGCszluU= Subject key identifier: B7:2C:23:86:AF:62:32:24:F0:90:F7:60:22:91:9E:A9:D2:10:E3:0F Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 4F5D8CC002438793A90424B6A8EB47A45602FB79 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393062303a3a2f34342d3438203d3e203134343437.roa Signing time: Mon 01 Sep 2025 05:54:47 +0000 ROA not before: Mon 01 Sep 2025 05:49:47 +0000 ROA not after: Mon 31 Aug 2026 05:54:47 +0000 asID: 14447 IP address blocks: 2a14:7581:90b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 13:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5d:8c:c0:02:43:87:93:a9:04:24:b6:a8:eb:47:a4:56:02:fb:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: Sep 1 05:49:47 2025 GMT Not After : Aug 31 05:54:47 2026 GMT Subject: CN=B72C2386AF623224F090F76022919EA9D210E30F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:54:95:da:97:00:39:a3:22:cb:28:59:ed: 02:66:36:44:f4:34:84:b9:19:31:c9:7c:1a:72:d1: 16:18:f2:8d:0d:5e:f9:11:a7:81:36:ab:63:0c:e5: f4:8a:a9:36:e6:cd:19:c7:10:ab:37:e3:f0:b2:79: 78:ee:d5:c6:65:9b:2b:26:ac:0d:d4:8c:92:15:cc: e9:1f:b7:10:99:fe:6d:69:95:df:4e:98:1b:85:13: 57:95:d0:fc:33:7c:89:74:87:af:a0:73:92:23:6a: fc:c7:cf:19:dd:45:f2:61:5a:6c:b2:e2:c1:87:a6: bd:f3:28:c5:ba:0f:d0:db:7b:30:dd:18:82:7a:c6: a0:d3:a2:fc:72:82:4b:5f:e6:c0:c8:6d:fa:0f:2f: 02:a8:05:8e:98:5a:54:bb:42:30:62:cf:34:44:99: 6e:76:45:a2:86:fe:74:5c:9a:5c:e8:51:f0:07:34: f3:f7:0d:44:01:e2:b6:86:3a:8e:be:9a:34:f8:74: 46:1a:62:15:1f:1f:f2:49:7c:16:19:d3:5b:d6:f6: 99:15:4d:5b:71:23:d7:13:81:a7:4a:74:2b:9f:5d: 4c:f9:f8:6e:09:5f:b5:c4:ab:e8:93:91:66:92:8c: 7c:49:39:eb:db:06:63:8e:b0:fb:a3:3b:77:e7:4e: c5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2C:23:86:AF:62:32:24:F0:90:F7:60:22:91:9E:A9:D2:10:E3:0F X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393062303a3a2f34342d3438203d3e203134343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90b0::/44 Signature Algorithm: sha256WithRSAEncryption 88:7b:53:dd:dc:a3:5c:ad:85:89:80:02:2e:7a:4e:df:20:56: d7:ba:c4:69:01:5a:e5:2d:22:23:96:64:d9:17:33:a0:33:02: e4:de:62:46:0f:49:55:8d:7c:85:58:5d:c2:c2:93:61:78:e8: a4:a6:8c:ca:d8:a6:e8:e8:e7:41:6c:80:46:79:1f:3f:05:78: fa:fa:3e:cc:cb:b0:83:b5:a1:a0:43:e5:37:6a:69:1a:15:6b: 5f:9e:c9:ef:ec:46:ff:36:8f:d2:d9:e4:31:7e:8b:6a:2a:ef: 1f:7f:ef:fd:aa:e9:19:2f:91:cd:38:06:77:bd:a1:0e:83:8e: 38:21:53:df:d8:77:87:9c:16:75:ad:6c:3f:0a:bd:7c:29:70: 2a:57:2f:8c:1b:17:ac:cb:58:58:50:0b:36:48:c1:d3:61:3e: 7e:ee:5d:53:20:30:1a:f2:77:fa:be:6e:38:58:c6:7d:66:46: 16:96:95:aa:ee:49:3f:56:96:8e:08:8c:57:81:f1:dd:21:24: 63:9b:0f:14:dd:11:ec:63:b7:3c:79:5b:75:7a:dd:9a:bc:22: 89:15:53:77:85:94:9b:d4:60:e2:5d:c8:4b:b2:ba:44:9a:81: 3d:5d:8d:36:75:87:e3:28:a4:a9:d3:3f:ae:91:6a:36:7e:6f: a7:02:46:c6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUT12MwAJDh5OpBCS2qOtHpFYC+3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA5MDEwNTQ5NDdaFw0yNjA4MzEwNTU0NDdaMDMxMTAvBgNV BAMTKEI3MkMyMzg2QUY2MjMyMjRGMDkwRjc2MDIyOTE5RUE5RDIxMEUzMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpL1SV2pcAOaMiyyhZ7QJmNkT0 NIS5GTHJfBpy0RYY8o0NXvkRp4E2q2MM5fSKqTbmzRnHEKs34/CyeXju1cZlmysm rA3UjJIVzOkftxCZ/m1pld9OmBuFE1eV0PwzfIl0h6+gc5IjavzHzxndRfJhWmyy 4sGHpr3zKMW6D9DbezDdGIJ6xqDTovxygktf5sDIbfoPLwKoBY6YWlS7QjBizzRE mW52RaKG/nRcmlzoUfAHNPP3DUQB4raGOo6+mjT4dEYaYhUfH/JJfBYZ01vW9pkV TVtxI9cTgadKdCufXUz5+G4JX7XEq+iTkWaSjHxJOevbBmOOsPujO3fnTsWJAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUtywjhq9iMiTwkPdgIpGeqdIQ4w8wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz NDM0MzQzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYGQsDANBgkqhkiG9w0BAQsFAAOCAQEAiHtT 3dyjXK2FiYACLnpO3yBW17rEaQFa5S0iI5Zk2RczoDMC5N5iRg9JVY18hVhdwsKT YXjopKaMytim6OjnQWyARnkfPwV4+vo+zMuwg7WhoEPlN2ppGhVrX57J7+xG/zaP 0tnkMX6LairvH3/v/arpGS+RzTgGd72hDoOOOCFT39h3h5wWda1sPwq9fClwKlcv jBsXrMtYWFALNkjB02E+fu5dUyAwGvJ3+r5uOFjGfWZGFpaVqu5JP1aWjgiMV4Hx 3SEkY5sPFN0R7GO3PHlbdXrdmrwiiRVTd4WUm9Rg4l3IS7K6RJqBPV2NNnWH4yik qdM/rpFqNn5vpwJGxg== -----END CERTIFICATE-----Generated at Mon Sep 8 15:45:34 2025 by rpki-client