$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635343a3a2f34382d3438203d3e20323039373130.roa File: 326131343a373538303a666635343a3a2f34382d3438203d3e20323039373130.roa (raw, json) Hash identifier: i7VkbN6Rb5CnHlmR8BF2dlC+Uq3PFV4wJTcaolWAu+U= Subject key identifier: BA:AA:5D:08:11:EA:A7:02:E3:B7:4B:19:B9:A8:84:F1:7E:4B:1E:E6 Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 1A864E11549ECC330BB96BA75FDECE1EFE89D987 Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635343a3a2f34382d3438203d3e20323039373130.roa Signing time: Tue 20 May 2025 08:26:36 +0000 ROA not before: Tue 20 May 2025 08:21:36 +0000 ROA not after: Tue 19 May 2026 08:26:36 +0000 asID: 209710 IP address blocks: 2a14:7580:ff54::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 08:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:86:4e:11:54:9e:cc:33:0b:b9:6b:a7:5f:de:ce:1e:fe:89:d9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: May 20 08:21:36 2025 GMT Not After : May 19 08:26:36 2026 GMT Subject: CN=BAAA5D0811EAA702E3B74B19B9A884F17E4B1EE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:41:b5:9c:61:a7:09:c3:37:6f:41:d1:81:1e: 1e:00:89:e3:89:c0:26:99:8f:fe:4f:fc:ee:4d:66: c7:03:6e:1b:cb:3b:5f:41:41:0b:c2:55:94:83:c4: 96:bd:cd:70:41:f9:f8:d2:48:80:7e:1e:13:f9:ba: 37:08:78:22:69:15:6e:8b:98:07:e9:d3:95:14:63: 56:e0:0a:e9:bb:0b:aa:41:b4:a9:c1:72:04:1d:c9: 7a:93:89:83:e6:ae:f1:c6:1d:15:73:2d:38:5f:85: 38:8e:79:21:30:50:24:60:97:a3:aa:ad:64:82:68: 89:ef:16:e8:66:41:91:7c:2b:da:f2:3c:73:12:5b: a2:8a:4e:76:89:36:16:a5:bb:43:7f:7c:e7:62:c7: 1e:98:20:27:e8:03:8d:4c:27:a7:65:e3:61:e2:1b: 81:84:cd:c3:a3:22:a6:3a:40:a9:3e:0f:0c:7d:fe: c2:f4:d2:91:04:31:fb:c7:d8:ba:53:2c:c4:6c:73: a6:a5:83:21:cf:a4:bb:0b:d2:a6:21:90:89:28:3b: c5:69:75:6e:df:a4:e4:e9:e5:4c:fc:36:0c:7b:b0: 6d:af:47:8a:77:6c:13:f5:e3:b4:a5:e9:13:4f:62: c7:3e:55:b0:94:27:ac:f8:9f:87:40:75:9b:1f:84: e0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AA:5D:08:11:EA:A7:02:E3:B7:4B:19:B9:A8:84:F1:7E:4B:1E:E6 X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635343a3a2f34382d3438203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff54::/48 Signature Algorithm: sha256WithRSAEncryption 6e:46:27:73:80:cb:24:e5:e9:2c:cc:a2:ea:1b:6d:d7:cd:b6: 83:48:78:31:14:07:84:ae:ea:d0:81:46:2b:f0:2b:12:f1:13: dc:e6:03:7d:08:b9:ac:61:c4:64:ce:de:a2:e1:a4:25:d5:1f: 07:6e:61:52:ce:88:27:3a:eb:7c:7f:f6:72:3d:bb:0f:bd:74: 0e:b9:74:c5:b5:9e:d9:f9:03:b6:78:df:d1:18:9b:cd:35:70: f5:e4:37:80:b2:0f:c2:00:92:63:b8:6a:1b:c9:c2:84:14:cd: 6d:8a:9d:31:8d:11:00:77:75:d2:0d:1d:f8:89:74:28:69:08: 0d:cc:17:2d:a1:1d:a8:4f:c1:17:4c:ea:bc:4e:da:c7:d3:3b: 43:95:ed:58:61:e0:6b:7b:4f:bd:64:47:53:63:22:25:e2:b8: b7:62:b7:79:5f:f5:b0:a3:76:6b:91:1f:93:f4:59:07:da:d5: fb:a5:cf:69:72:f0:8b:2d:9a:5b:86:45:2c:6a:4a:ce:49:6c: 96:88:d5:03:75:91:a4:35:11:4b:42:55:d4:8a:9a:16:15:06: e8:0e:24:ba:d2:35:5d:26:9a:19:e4:c6:97:65:d1:c9:e3:78: c4:a1:4a:3d:13:b2:92:12:48:10:e2:94:6d:e7:30:82:aa:b9: 75:fc:a9:da -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUGoZOEVSezDMLuWunX97OHv6J2YcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNTA1MjAwODIxMzZaFw0yNjA1MTkwODI2MzZaMDMxMTAvBgNV BAMTKEJBQUE1RDA4MTFFQUE3MDJFM0I3NEIxOUI5QTg4NEYxN0U0QjFFRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQQbWcYacJwzdvQdGBHh4AieOJ wCaZj/5P/O5NZscDbhvLO19BQQvCVZSDxJa9zXBB+fjSSIB+HhP5ujcIeCJpFW6L mAfp05UUY1bgCum7C6pBtKnBcgQdyXqTiYPmrvHGHRVzLThfhTiOeSEwUCRgl6Oq rWSCaInvFuhmQZF8K9ryPHMSW6KKTnaJNhalu0N/fOdixx6YICfoA41MJ6dl42Hi G4GEzcOjIqY6QKk+Dwx9/sL00pEEMfvH2LpTLMRsc6algyHPpLsL0qYhkIkoO8Vp dW7fpOTp5Uz8Ngx7sG2vR4p3bBP147Sl6RNPYsc+VbCUJ6z4n4dAdZsfhOCDAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUuqpdCBHqpwLjt0sZuaiE8X5LHuYwHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzczMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9UMA0GCSqGSIb3DQEBCwUAA4IBAQBu RidzgMsk5ekszKLqG23XzbaDSHgxFAeErurQgUYr8CsS8RPc5gN9CLmsYcRkzt6i 4aQl1R8HbmFSzognOut8f/ZyPbsPvXQOuXTFtZ7Z+QO2eN/RGJvNNXD15DeAsg/C AJJjuGobycKEFM1tip0xjREAd3XSDR34iXQoaQgNzBctoR2oT8EXTOq8TtrH0ztD le1YYeBre0+9ZEdTYyIl4ri3Yrd5X/Wwo3ZrkR+T9FkH2tX7pc9pcvCLLZpbhkUs akrOSWyWiNUDdZGkNRFLQlXUipoWFQboDiS60jVdJpoZ5MaXZdHJ43jEoUo9E7KS EkgQ4pRt5zCCqrl1/Kna -----END CERTIFICATE-----Generated at Fri Oct 24 16:41:36 2025 by rpki-client