$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: nCwmmbP9gIjoEy95/v504iaQnyadcB1V8SB+J8/exJE= Subject key identifier: 87:44:57:A2:C0:AD:3E:2A:A2:A7:E7:29:AE:0A:0E:CE:A9:D8:65:82 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 06279206F48984EA27326E32D4BCDF024470E817 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 28 May 2025 05:23:00 +0000 ROA not before: Wed 28 May 2025 05:18:00 +0000 ROA not after: Wed 27 May 2026 05:23:00 +0000 asID: 215364 IP address blocks: 2a14:7581:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:27:92:06:f4:89:84:ea:27:32:6e:32:d4:bc:df:02:44:70:e8:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 28 05:18:00 2025 GMT Not After : May 27 05:23:00 2026 GMT Subject: CN=874457A2C0AD3E2AA2A7E729AE0A0ECEA9D86582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:de:77:a2:23:88:d2:d1:06:76:36:c3:69:af: 5f:70:68:af:27:ac:da:ed:d8:4a:51:a0:73:37:ec: a2:e0:9d:d3:08:1e:7c:85:60:14:5a:ed:76:10:be: de:28:45:2d:f8:1d:22:1b:9b:55:89:eb:9e:85:57: 87:9a:4c:7c:e6:f3:be:64:cd:84:90:86:fb:40:ab: c0:f7:20:57:fc:52:84:bd:6e:9d:af:97:db:ec:46: d9:64:76:7d:91:d7:98:22:23:e2:27:a1:9d:40:0b: 45:aa:46:09:ee:95:3d:ad:7e:b8:fd:1e:ba:81:4e: 72:0f:fd:6a:1e:b2:b9:5c:fb:1a:07:cf:35:a1:3d: 3b:48:20:00:b8:db:11:3c:00:06:5a:72:de:e8:2a: ef:8b:40:22:43:c6:d7:e1:2e:85:ad:c4:cb:e7:42: 3b:0f:77:fe:3c:62:45:06:02:3d:ee:e2:fa:95:df: 4b:8e:c5:f1:9b:66:c8:07:d8:68:a9:23:ef:df:8c: 88:ac:ad:a3:2e:8c:27:31:6b:f0:20:12:7b:44:01: cc:3a:d3:fb:1c:82:f5:0f:37:71:64:d6:85:b8:d3: a3:c7:49:da:65:38:7e:bc:a5:74:7b:99:da:5e:2c: fc:ca:9e:06:6f:70:56:de:7a:35:68:6a:d8:a4:95: 71:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:44:57:A2:C0:AD:3E:2A:A2:A7:E7:29:AE:0A:0E:CE:A9:D8:65:82 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a6666303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:ff0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:cf:d2:cf:21:bf:a6:7d:1b:30:1e:2b:27:7b:2d:a9:92:37: c2:58:46:99:64:42:da:de:e4:76:38:31:6c:a7:27:40:0e:bc: 75:1c:ca:a0:f4:80:98:08:3f:cc:fa:b7:57:dd:ab:24:3f:58: aa:27:ea:2e:0e:4c:34:c3:bb:79:c2:b8:57:eb:c0:fa:6a:85: 0b:f3:a9:84:45:d0:fd:92:48:a7:52:42:ad:c5:a8:66:ef:60: c6:46:d4:95:d4:d5:fc:b9:6b:80:20:96:b0:53:6c:96:cb:ec: 6b:92:a6:d3:35:ff:75:6a:38:1b:46:55:6d:71:d3:01:54:86: c0:58:6d:b8:07:23:07:6b:eb:4a:ee:b0:c4:c2:5c:16:c1:11: a1:43:7d:43:9e:8c:90:33:4e:6b:93:ad:80:de:37:15:27:be: fd:a1:5c:51:74:ff:18:71:50:2a:10:d1:2e:f7:12:8d:5c:c6: 06:d7:db:f2:e5:8f:6c:a5:57:40:01:3e:51:58:c3:c0:af:23: 2e:28:81:f9:df:ab:e5:99:e4:f7:e4:c8:05:cc:89:ab:47:42: f4:0b:15:be:8d:d3:db:06:47:f4:b3:eb:a7:ed:a0:2e:6e:bf: 36:98:ab:d5:e2:20:b6:71:e9:2d:e4:c4:ac:31:8e:e2:0f:37: 50:4b:f2:ae -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUBieSBvSJhOonMm4y1LzfAkRw6BcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNTA1MjgwNTE4MDBaFw0yNjA1MjcwNTIzMDBaMDMxMTAvBgNV BAMTKDg3NDQ1N0EyQzBBRDNFMkFBMkE3RTcyOUFFMEEwRUNFQTlEODY1ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI3neiI4jS0QZ2NsNpr19waK8n rNrt2EpRoHM37KLgndMIHnyFYBRa7XYQvt4oRS34HSIbm1WJ656FV4eaTHzm875k zYSQhvtAq8D3IFf8UoS9bp2vl9vsRtlkdn2R15giI+InoZ1AC0WqRgnulT2tfrj9 HrqBTnIP/Woesrlc+xoHzzWhPTtIIAC42xE8AAZact7oKu+LQCJDxtfhLoWtxMvn QjsPd/48YkUGAj3u4vqV30uOxfGbZsgH2GipI+/fjIisraMujCcxa/AgEntEAcw6 0/scgvUPN3Fk1oW406PHSdplOH68pXR7mdpeLPzKngZvcFbeejVoatiklXEVAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUh0RXosCtPiqip+cprgoOzqnYZYIwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY2NjYzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NTMzMzYzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEP8DANBgkqhkiG9w0BAQsFAAOCAQEAjM/S zyG/pn0bMB4rJ3stqZI3wlhGmWRC2t7kdjgxbKcnQA68dRzKoPSAmAg/zPq3V92r JD9YqifqLg5MNMO7ecK4V+vA+mqFC/OphEXQ/ZJIp1JCrcWoZu9gxkbUldTV/Llr gCCWsFNslsvsa5Km0zX/dWo4G0ZVbXHTAVSGwFhtuAcjB2vrSu6wxMJcFsERoUN9 Q56MkDNOa5OtgN43FSe+/aFcUXT/GHFQKhDRLvcSjVzGBtfb8uWPbKVXQAE+UVjD wK8jLiiB+d+r5Znk9+TIBcyJq0dC9AsVvo3T2wZH9LPrp+2gLm6/Npir1eIgtnHp LeTErDGO4g83UEvyrg== -----END CERTIFICATE-----Generated at Sun Jun 8 06:19:52 2025 by rpki-client