$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa File: 326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa (raw, json) Hash identifier: /ZTYaLZJpZlgJ45nBmwgtPy8Tav/C+028e42QIFVeYU= Subject key identifier: 95:93:1C:76:9C:5F:BE:40:FB:78:BF:81:64:02:A6:81:47:92:DA:16 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 7CD72C6F4536554214C3339E37068DDD4C17CAA4 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa Signing time: Wed 28 May 2025 05:23:00 +0000 ROA not before: Wed 28 May 2025 05:18:00 +0000 ROA not after: Wed 27 May 2026 05:23:00 +0000 asID: 214841 IP address blocks: 2a14:7581:9100::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 07:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d7:2c:6f:45:36:55:42:14:c3:33:9e:37:06:8d:dd:4c:17:ca:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 28 05:18:00 2025 GMT Not After : May 27 05:23:00 2026 GMT Subject: CN=95931C769C5FBE40FB78BF816402A6814792DA16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:60:b4:5c:35:1f:b8:d1:5e:d1:f7:18:7d:df: 1a:d5:23:f9:ab:c1:02:4b:38:06:3b:25:7d:f4:74: dc:15:53:da:91:a8:14:cf:20:c8:59:5e:67:4d:73: bb:41:0b:13:6b:fd:4d:cc:a6:09:76:3a:7d:4d:42: ef:ff:3a:38:db:96:08:89:bf:bf:bc:3d:ba:97:6d: e5:9e:d9:1c:1e:43:cd:a7:17:b7:e0:62:7d:11:ff: b5:5e:01:7f:d7:7a:dd:bc:56:37:ba:63:2f:9f:b3: e2:80:92:ae:b9:63:79:e5:ad:48:f1:d0:84:28:94: 14:52:dd:ca:56:cc:1d:1c:1f:f7:29:48:ce:77:83: 36:5d:7d:77:fe:22:09:2c:19:eb:67:26:6c:ba:fc: b7:e3:23:d4:03:53:8f:48:13:76:b8:15:a0:99:8e: 51:ff:c0:6b:d7:28:04:01:d8:63:92:5c:07:d3:f2: e7:19:af:b1:ef:b5:a5:aa:0e:91:f0:0e:b5:36:22: d3:51:51:78:dd:35:1b:d5:ae:ec:c1:a7:e4:91:a3: 82:29:92:2c:69:3c:21:b5:0e:b2:5e:e0:a0:74:80: ee:ea:c5:2f:61:39:76:90:11:ea:48:5f:8c:f0:7d: 28:6d:33:58:e4:6b:50:87:27:50:fa:45:79:12:c1: 41:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:93:1C:76:9C:5F:BE:40:FB:78:BF:81:64:02:A6:81:47:92:DA:16 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9100::/48 Signature Algorithm: sha256WithRSAEncryption b8:ba:5e:09:ef:74:e6:97:54:20:48:99:00:ee:2f:84:69:4e: c2:23:7d:99:16:64:b5:9d:08:e0:8c:ea:9a:c3:eb:50:2d:3e: e5:1d:5a:68:06:83:12:ea:e4:95:65:07:4b:f9:51:76:93:d9: a5:19:6f:13:f7:79:ee:a7:da:86:00:d3:9a:b2:17:9d:69:aa: 80:81:7c:83:17:e8:13:df:3a:67:da:3d:d3:bd:8f:8f:04:c4: 81:20:4c:7b:34:df:f9:8f:5b:46:2b:1a:85:62:c2:b6:92:d4: 1b:be:4a:88:77:80:41:8e:5c:11:df:90:e2:92:d0:96:73:ba: 3d:5e:54:ea:3b:8f:f7:5b:88:bd:5a:01:39:80:68:cb:cf:a7: 3d:ce:85:d8:e4:e3:c4:b0:92:95:19:1f:c8:27:94:1e:f8:00: 56:a8:75:6e:e6:54:f7:df:b0:6d:9d:92:d7:31:f0:f2:7c:a1: 98:3f:a9:2b:4e:59:c9:95:13:69:35:01:c9:28:f2:33:79:99: ac:c0:11:13:f3:f4:f5:30:a2:84:51:5e:6f:2c:9e:3e:2b:aa: d7:8f:bc:27:54:f5:83:20:47:46:66:78:44:62:9f:e3:2f:74: 7a:7e:73:73:60:ac:f7:6d:4a:dd:11:22:4c:cb:37:31:94:50: 3a:b5:35:50 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfNcsb0U2VUIUwzOeNwaN3UwXyqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA1MjgwNTE4MDBaFw0yNjA1MjcwNTIzMDBaMDMxMTAvBgNV BAMTKDk1OTMxQzc2OUM1RkJFNDBGQjc4QkY4MTY0MDJBNjgxNDc5MkRBMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYLRcNR+40V7R9xh93xrVI/mr wQJLOAY7JX30dNwVU9qRqBTPIMhZXmdNc7tBCxNr/U3Mpgl2On1NQu//OjjblgiJ v7+8PbqXbeWe2RweQ82nF7fgYn0R/7VeAX/Xet28Vje6Yy+fs+KAkq65Y3nlrUjx 0IQolBRS3cpWzB0cH/cpSM53gzZdfXf+IgksGetnJmy6/LfjI9QDU49IE3a4FaCZ jlH/wGvXKAQB2GOSXAfT8ucZr7HvtaWqDpHwDrU2ItNRUXjdNRvVruzBp+SRo4Ip kixpPCG1DrJe4KB0gO7qxS9hOXaQEepIX4zwfShtM1jka1CHJ1D6RXkSwUGXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUlZMcdpxfvkD7eL+BZAKmgUeS2hYwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZEAMA0GCSqGSIb3DQEBCwUAA4IBAQC4 ul4J73Tml1QgSJkA7i+EaU7CI32ZFmS1nQjgjOqaw+tQLT7lHVpoBoMS6uSVZQdL +VF2k9mlGW8T93nup9qGANOashedaaqAgXyDF+gT3zpn2j3TvY+PBMSBIEx7NN/5 j1tGKxqFYsK2ktQbvkqId4BBjlwR35DiktCWc7o9XlTqO4/3W4i9WgE5gGjLz6c9 zoXY5OPEsJKVGR/IJ5Qe+ABWqHVu5lT337BtnZLXMfDyfKGYP6krTlnJlRNpNQHJ KPIzeZmswBET8/T1MKKEUV5vLJ4+K6rXj7wnVPWDIEdGZnhEYp/jL3R6fnNzYKz3 bUrdESJMyzcxlFA6tTVQ -----END CERTIFICATE-----Generated at Sat Jun 7 01:20:28 2025 by rpki-client