$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634363a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666634363a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: INfgk/A/FB6y22LomhkCbMfma8QUd57K4w9Tk5H86CM= Subject key identifier: 6D:C3:00:E3:77:91:35:1F:71:F8:34:2C:95:5B:4A:83:70:FE:65:27 Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 154AE405DC648DF33320ECF5982EFCB03F2C9028 Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634363a3a2f34382d3438203d3e20323134333434.roa Signing time: Thu 28 Aug 2025 07:52:15 +0000 ROA not before: Thu 28 Aug 2025 07:47:15 +0000 ROA not after: Thu 27 Aug 2026 07:52:15 +0000 asID: 214344 IP address blocks: 2a14:7580:ff46::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 05:59:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:4a:e4:05:dc:64:8d:f3:33:20:ec:f5:98:2e:fc:b0:3f:2c:90:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: Aug 28 07:47:15 2025 GMT Not After : Aug 27 07:52:15 2026 GMT Subject: CN=6DC300E37791351F71F8342C955B4A8370FE6527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:62:05:12:6e:54:c2:8f:93:97:22:43:b4:0b: c7:bd:2a:75:41:3f:f6:62:da:c0:5d:ef:f5:b7:38: 9e:fd:ba:3d:9e:ba:5a:06:a6:6c:69:b1:09:c9:77: 31:0a:d2:37:fb:43:4d:d5:54:98:e0:17:07:81:32: c4:64:7e:d3:ec:a6:ba:c9:c4:ec:f8:0c:f3:75:9d: 21:93:01:de:4c:33:0c:44:bd:32:52:b4:09:a5:f3: fc:d3:00:07:4d:97:6b:73:5d:2f:46:88:ed:91:57: fd:0e:90:70:c9:cc:1a:6f:ea:62:84:ac:be:cc:e4: 3e:4c:fa:fe:ba:c6:72:71:70:3f:db:f9:ed:f3:1c: e4:39:85:12:da:95:3f:4e:94:c0:d3:e7:ff:6a:30: ec:e6:f6:05:f2:e9:39:dc:7d:13:45:a3:88:ce:2b: f9:49:17:bd:41:24:e7:50:89:be:40:04:af:8d:58: 4f:9e:62:15:8c:5b:22:77:e1:cf:9c:91:cd:20:e9: 51:73:8f:52:c3:2a:68:87:7b:d3:d3:51:30:4a:07: 28:d4:4d:96:87:de:26:1a:18:f7:75:02:c2:1e:57: f1:8a:39:89:ad:7a:b1:9c:5a:e4:02:32:49:94:fc: 2a:b2:c8:16:7c:83:99:6f:2d:00:98:cc:04:2b:d9: cf:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C3:00:E3:77:91:35:1F:71:F8:34:2C:95:5B:4A:83:70:FE:65:27 X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634363a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff46::/48 Signature Algorithm: sha256WithRSAEncryption 92:e0:4c:d3:34:3e:ca:73:ce:6b:af:7b:fc:78:41:91:6b:6b: b7:d0:dc:48:f4:09:a1:95:01:ac:de:b7:76:7e:d7:d9:3b:2f: 18:a0:a5:eb:ec:a7:f7:df:f3:e7:35:eb:25:2f:ec:72:e6:3f: e7:7a:5f:16:1f:02:11:72:76:05:31:07:7a:08:72:c0:21:ff: e0:29:1e:53:d1:84:19:0c:34:51:45:d4:b4:8d:ef:2d:03:a1: 14:4a:a7:8b:45:ab:ef:e8:b2:40:40:e4:05:43:a2:09:e8:05: a2:11:88:e0:57:9c:b7:f4:10:9b:72:ab:9d:f1:89:16:55:7b: 53:05:3a:a8:d5:23:fb:89:3a:9f:2f:e2:71:d9:65:2f:7d:16: 3d:e5:eb:08:bc:9a:55:96:c3:3f:71:8a:cb:76:40:15:68:a5: e9:c3:4e:b8:93:31:f4:7d:79:21:f8:cd:cb:87:15:ae:d5:ed: c6:98:da:a1:28:17:05:f4:ef:9e:a0:ee:cf:c6:fb:05:9c:d4: 33:87:7f:87:d1:39:bc:f8:c4:ba:4c:05:b2:4f:9f:d7:e9:d1: 10:09:06:3b:ee:cb:2f:88:24:ae:8b:16:da:7e:56:26:f8:1e: e6:26:bf:a9:37:6e:22:6f:9f:74:e8:ec:fc:88:61:c4:cc:f8: f0:e9:49:02 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFUrkBdxkjfMzIOz1mC78sD8skCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA4MjgwNzQ3MTVaFw0yNjA4MjcwNzUyMTVaMDMxMTAvBgNV BAMTKDZEQzMwMEUzNzc5MTM1MUY3MUY4MzQyQzk1NUI0QTgzNzBGRTY1MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeYgUSblTCj5OXIkO0C8e9KnVB P/Zi2sBd7/W3OJ79uj2euloGpmxpsQnJdzEK0jf7Q03VVJjgFweBMsRkftPsprrJ xOz4DPN1nSGTAd5MMwxEvTJStAml8/zTAAdNl2tzXS9GiO2RV/0OkHDJzBpv6mKE rL7M5D5M+v66xnJxcD/b+e3zHOQ5hRLalT9OlMDT5/9qMOzm9gXy6TncfRNFo4jO K/lJF71BJOdQib5ABK+NWE+eYhWMWyJ34c+ckc0g6VFzj1LDKmiHe9PTUTBKByjU TZaH3iYaGPd1AsIeV/GKOYmterGcWuQCMkmU/CqyyBZ8g5lvLQCYzAQr2c8fAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUbcMA43eRNR9x+DQslVtKg3D+ZScwHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9GMA0GCSqGSIb3DQEBCwUAA4IBAQCS 4EzTND7Kc85rr3v8eEGRa2u30NxI9AmhlQGs3rd2ftfZOy8YoKXr7Kf33/PnNesl L+xy5j/nel8WHwIRcnYFMQd6CHLAIf/gKR5T0YQZDDRRRdS0je8tA6EUSqeLRavv 6LJAQOQFQ6IJ6AWiEYjgV5y39BCbcqud8YkWVXtTBTqo1SP7iTqfL+Jx2WUvfRY9 5esIvJpVlsM/cYrLdkAVaKXpw064kzH0fXkh+M3LhxWu1e3GmNqhKBcF9O+eoO7P xvsFnNQzh3+H0Tm8+MS6TAWyT5/X6dEQCQY77ssviCSuixbaflYm+B7mJr+pN24i b5906Oz8iGHEzPjw6UkC -----END CERTIFICATE-----Generated at Mon Sep 8 16:55:27 2025 by rpki-client