$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936323a3a2f34382d3634203d3e20313939373633.roa File: 326131343a373538313a333936323a3a2f34382d3634203d3e20313939373633.roa (raw, json) Hash identifier: oCjl7TQd0xhHJ9B8MSi48PHfMmMZri62JgNd0y5lz+I= Subject key identifier: 63:EC:A1:8D:31:C5:F1:62:0A:BB:91:3A:EF:09:CB:28:FD:0E:64:F0 Certificate issuer: /CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Certificate serial: 7CD5A3A88CF6660FBF9D9FB212B9BE80D3E6313C Authority key identifier: E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936323a3a2f34382d3634203d3e20313939373633.roa Signing time: Mon 08 Sep 2025 15:53:08 +0000 ROA not before: Mon 08 Sep 2025 15:48:08 +0000 ROA not after: Mon 07 Sep 2026 15:53:08 +0000 asID: 199763 IP address blocks: 2a14:7581:3962::/48 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 10 Sep 2025 07:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d5:a3:a8:8c:f6:66:0f:bf:9d:9f:b2:12:b9:be:80:d3:e6:31:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C Validity Not Before: Sep 8 15:48:08 2025 GMT Not After : Sep 7 15:53:08 2026 GMT Subject: CN=63ECA18D31C5F1620ABB913AEF09CB28FD0E64F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:17:70:3e:c2:50:05:01:d0:b4:84:1d:31: 0f:5b:23:95:ff:1f:aa:23:bf:57:eb:9d:54:e4:b5: 68:cc:bc:10:e1:35:a5:f6:4f:d6:d5:89:75:b2:db: 71:88:55:1e:5c:f6:28:6c:78:7d:b5:57:b4:d4:a6: f0:78:c7:1e:2a:26:e3:4c:c3:fc:a4:02:b5:0f:d5: ff:db:e1:9a:2a:39:47:fd:d0:58:1f:48:2c:c4:58: f1:6e:99:51:1b:f5:6a:9e:48:5c:f1:30:fb:b9:44: e3:df:b9:ae:f2:2b:97:d4:a9:2f:e8:ef:25:a0:13: 41:97:d9:44:67:1d:f3:7e:a1:c5:f8:7f:5d:6e:43: c9:79:de:9a:b0:4a:cb:5c:21:b5:28:89:8a:2d:78: 56:99:ab:e9:5a:03:82:c8:82:4c:2f:69:3e:7c:46: 49:bf:14:63:98:31:7b:aa:21:39:44:99:6b:bb:14: 6a:89:78:c7:61:78:c6:ea:14:97:c9:62:52:73:3d: 17:52:e4:dd:ae:e3:17:fb:91:52:1e:cf:3d:04:d6: 3f:1a:87:69:5c:f7:4d:d5:04:24:61:fb:1f:32:2b: fd:9a:5b:b6:0f:46:bd:9b:0c:84:91:19:1e:68:8c: 6a:90:02:c3:51:fd:83:d3:af:76:4a:66:f2:a7:9a: d7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EC:A1:8D:31:C5:F1:62:0A:BB:91:3A:EF:09:CB:28:FD:0E:64:F0 X509v3 Authority Key Identifier: keyid:E8:9F:91:5D:86:BB:9F:13:D0:F2:29:CA:78:CD:6D:9F:3E:AB:CF:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/E89F915D86BB9F13D0F229CA78CD6D9F3EABCF7C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5836e60-6a92-47ef-9b9b-92a84d6d35ba/1/326131343a373538313a333936323a3a2f34382d3634203d3e20313939373633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:3962::/48 Signature Algorithm: sha256WithRSAEncryption 1e:02:d9:5d:8a:cd:e8:b9:b7:71:31:a0:5a:61:d9:71:b4:7a: 9d:4a:64:e0:6d:87:93:31:68:0f:65:e2:68:52:00:fa:e9:df: be:7d:30:15:db:09:f3:33:d8:59:be:65:58:01:bd:31:89:14: 87:d8:58:37:3f:56:9f:cd:5a:90:0d:e0:1c:ed:78:b8:65:f4: 71:3a:c7:2a:16:7d:3c:a4:21:8e:d4:9d:21:dc:88:27:c4:93: ba:2d:2f:18:e2:e4:71:e1:d5:11:da:df:e4:c1:21:37:44:d7: 62:4d:ae:39:c7:06:aa:e4:81:c3:64:88:40:1f:a2:3f:28:54: eb:7f:6f:c9:a9:f7:d5:ca:99:fc:91:8a:d6:29:6b:66:26:24: 36:bf:38:de:e2:5a:b7:1f:dd:c8:ba:74:f2:1f:63:b5:4a:6a: e4:41:3d:8e:00:40:39:b2:c2:33:d3:bb:a2:60:2e:4a:6f:57: 69:dc:b0:8f:a5:71:17:33:16:1a:95:55:1c:09:49:ba:e5:d5: be:d7:1f:e6:35:62:05:b9:51:9d:64:52:83:e1:89:cd:58:35: 48:b1:27:37:12:c6:0b:8a:0e:e7:b6:7a:cc:80:e0:4d:78:f9: f3:a6:2a:9a:f9:4e:ae:1d:d6:be:37:e4:28:9d:a8:ae:a2:4e: dd:dc:a2:74 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfNWjqIz2Zg+/nZ+yErm+gNPmMTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYz RUFCQ0Y3QzAeFw0yNTA5MDgxNTQ4MDhaFw0yNjA5MDcxNTUzMDhaMDMxMTAvBgNV BAMTKDYzRUNBMThEMzFDNUYxNjIwQUJCOTEzQUVGMDlDQjI4RkQwRTY0RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8RdwPsJQBQHQtIQdMQ9bI5X/ H6ojv1frnVTktWjMvBDhNaX2T9bViXWy23GIVR5c9ihseH21V7TUpvB4xx4qJuNM w/ykArUP1f/b4ZoqOUf90FgfSCzEWPFumVEb9WqeSFzxMPu5ROPfua7yK5fUqS/o 7yWgE0GX2URnHfN+ocX4f11uQ8l53pqwSstcIbUoiYoteFaZq+laA4LIgkwvaT58 Rkm/FGOYMXuqITlEmWu7FGqJeMdheMbqFJfJYlJzPRdS5N2u4xf7kVIezz0E1j8a h2lc903VBCRh+x8yK/2aW7YPRr2bDISRGR5ojGqQAsNR/YPTr3ZKZvKnmteJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUY+yhjTHF8WIKu5E67wnLKP0OZPAwHwYDVR0j BBgwFoAU6J+RXYa7nxPQ8inKeM1tnz6rz3wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzU4MzZlNjAtNmE5Mi00N2VmLTliOWItOTJhODRkNmQz NWJhLzEvRTg5RjkxNUQ4NkJCOUYxM0QwRjIyOUNBNzhDRDZEOUYzRUFCQ0Y3Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9FODlGOTE1RDg2QkI5RjEzRDBGMjI5Q0E3 OENENkQ5RjNFQUJDRjdDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNTgzNmU2MC02YTkyLTQ3ZWYtOWI5Yi05MmE4NGQ2ZDM1YmEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzkzNjMyM2EzYTJmMzQzODJkMzYzNDIwM2QzZTIwMzEz OTM5MzczNjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gTliMA0GCSqGSIb3DQEBCwUAA4IBAQAe Atldis3oubdxMaBaYdlxtHqdSmTgbYeTMWgPZeJoUgD66d++fTAV2wnzM9hZvmVY Ab0xiRSH2Fg3P1afzVqQDeAc7Xi4ZfRxOscqFn08pCGO1J0h3IgnxJO6LS8Y4uRx 4dUR2t/kwSE3RNdiTa45xwaq5IHDZIhAH6I/KFTrf2/JqffVypn8kYrWKWtmJiQ2 vzje4lq3H93IunTyH2O1SmrkQT2OAEA5ssIz07uiYC5Kb1dp3LCPpXEXMxYalVUc CUm65dW+1x/mNWIFuVGdZFKD4YnNWDVIsSc3EsYLig7ntnrMgOBNePnzpiqa+U6u Hda+N+Qonaiuok7d3KJ0 -----END CERTIFICATE-----Generated at Tue Sep 9 23:54:47 2025 by rpki-client