$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538303a666666353a3a2f34382d3438203d3e20323037353239.roa File: 326131343a373538303a666666353a3a2f34382d3438203d3e20323037353239.roa (raw, json) Hash identifier: 8GEpSwKR5aAKrW7JpZcQNrVUIUKVu8YVCYytf208qTw= Subject key identifier: 3D:9E:D5:00:1D:04:49:95:A0:B2:C2:BE:B8:F0:D8:E5:8E:44:5C:B8 Certificate issuer: /CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Certificate serial: 60232FF76680F1CF3E72ED3CCD8231023DBFABED Authority key identifier: 20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538303a666666353a3a2f34382d3438203d3e20323037353239.roa Signing time: Sat 06 Sep 2025 13:18:27 +0000 ROA not before: Sat 06 Sep 2025 13:13:27 +0000 ROA not after: Sat 05 Sep 2026 13:18:27 +0000 asID: 207529 IP address blocks: 2a14:7580:fff5::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 15:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:23:2f:f7:66:80:f1:cf:3e:72:ed:3c:cd:82:31:02:3d:bf:ab:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Validity Not Before: Sep 6 13:13:27 2025 GMT Not After : Sep 5 13:18:27 2026 GMT Subject: CN=3D9ED5001D044995A0B2C2BEB8F0D8E58E445CB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4d:4c:88:3a:ae:2c:0a:ec:4c:d9:2a:ab:4a: a1:f9:f5:22:3b:9e:93:24:52:e4:5c:db:d3:bf:1b: 7b:a6:f8:21:13:7a:27:0b:19:83:6e:0b:80:a7:68: 9d:91:a9:87:59:2a:e0:0e:e7:09:f1:2c:88:c6:ac: a6:8e:87:b0:47:89:8f:bb:fb:d5:3e:3f:c9:e5:59: 18:c0:bd:4b:e2:8a:c0:6b:1c:ce:29:84:ae:a1:64: 7c:c5:57:8f:4b:22:d0:d4:7e:ee:1f:36:9b:a7:35: a4:6a:2f:cf:de:a9:19:22:18:7a:6f:0f:25:9c:68: 26:57:90:59:98:d5:4d:40:2f:92:33:ea:e7:81:6f: f7:88:15:1f:d9:f9:6a:be:5e:43:19:ef:2f:68:34: f1:a7:b0:7b:63:70:8a:c8:6e:6a:ef:e7:f3:ce:95: 81:f9:a8:b5:c7:0c:ce:85:a9:65:40:3c:29:33:e3: 15:66:72:3a:2d:d0:6b:d6:52:ea:81:86:4e:b9:ff: 37:84:f0:87:c3:95:63:57:a3:ce:6e:85:0a:fa:c9: 68:e0:1b:2e:27:94:9b:4a:51:20:ce:43:f1:97:03: dd:1a:a1:39:84:c6:fb:3e:3e:2b:b0:22:58:98:de: 60:54:93:1b:17:b8:19:ff:04:b9:54:7e:fd:2e:3f: 89:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9E:D5:00:1D:04:49:95:A0:B2:C2:BE:B8:F0:D8:E5:8E:44:5C:B8 X509v3 Authority Key Identifier: keyid:20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538303a666666353a3a2f34382d3438203d3e20323037353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fff5::/48 Signature Algorithm: sha256WithRSAEncryption 97:59:d0:d0:bd:a4:d9:75:3f:b1:c9:26:8e:a3:0a:87:6c:b4: 03:9b:bf:5f:98:e3:f4:b2:5b:f6:9a:6b:b6:ef:cc:17:c9:4d: 9c:de:cf:f5:d8:f2:36:ea:e8:5f:8e:a6:54:1a:66:ed:e2:9a: c1:53:d3:bf:d1:9b:bb:77:a4:b6:c5:b8:2e:d8:94:3c:c2:f9: fc:ce:d7:80:f1:f7:fd:16:92:f6:db:06:fc:3c:61:fd:25:23: 28:38:6c:63:c9:8a:b8:0f:7f:80:26:34:73:d4:41:80:0b:ce: 4a:e3:6a:7a:38:ff:b0:0b:7a:8b:a0:89:5b:60:1d:59:4a:44: d1:94:31:43:5a:c3:0a:9e:d5:66:73:fb:0f:0b:7b:ec:2f:52: f5:c7:21:ea:a8:2c:00:ec:7e:5b:fd:55:ba:16:3e:a0:3e:5f: f5:cc:5a:47:be:2f:ca:c8:bf:c1:93:4c:c9:d4:34:2d:33:cd: a2:e0:0b:65:03:3c:f7:93:d6:9f:8e:b3:47:97:96:80:6d:e5: e9:04:23:9c:63:3f:2b:18:38:5a:99:86:95:da:a1:91:e7:40: 33:79:d2:52:c4:eb:27:2b:13:10:05:e9:87:6f:0e:d5:96:a8: 00:2e:f7:14:41:85:93:b9:63:88:ef:d3:03:ed:4e:fa:31:ae: 34:b2:a5:db -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYCMv92aA8c8+cu08zYIxAj2/q+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZD ODg5MjNGMDAeFw0yNTA5MDYxMzEzMjdaFw0yNjA5MDUxMzE4MjdaMDMxMTAvBgNV BAMTKDNEOUVENTAwMUQwNDQ5OTVBMEIyQzJCRUI4RjBEOEU1OEU0NDVDQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChTUyIOq4sCuxM2SqrSqH59SI7 npMkUuRc29O/G3um+CETeicLGYNuC4CnaJ2RqYdZKuAO5wnxLIjGrKaOh7BHiY+7 +9U+P8nlWRjAvUviisBrHM4phK6hZHzFV49LItDUfu4fNpunNaRqL8/eqRkiGHpv DyWcaCZXkFmY1U1AL5Iz6ueBb/eIFR/Z+Wq+XkMZ7y9oNPGnsHtjcIrIbmrv5/PO lYH5qLXHDM6FqWVAPCkz4xVmcjot0GvWUuqBhk65/zeE8IfDlWNXo85uhQr6yWjg Gy4nlJtKUSDOQ/GXA90aoTmExvs+PiuwIliY3mBUkxsXuBn/BLlUfv0uP4kRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUPZ7VAB0ESZWgssK+uPDY5Y5EXLgwHwYDVR0j BBgwFoAUICqC2m5zzkJi4Yuu1go/psiJI/AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDliZDM4ODgtOTMwMi00YjZmLWEwMTctMmI0YmJhNWU1 N2JiLzEvMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZDODg5MjNGMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMDJBODJEQTZFNzNDRTQyNjJFMThCQUVE NjBBM0ZBNkM4ODkyM0YwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kOWJkMzg4OC05MzAyLTRiNmYtYTAxNy0yYjRiYmE1ZTU3YmIvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjY2NjM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM3MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP/1MA0GCSqGSIb3DQEBCwUAA4IBAQCX WdDQvaTZdT+xySaOowqHbLQDm79fmOP0slv2mmu278wXyU2c3s/12PI26uhfjqZU Gmbt4prBU9O/0Zu7d6S2xbgu2JQ8wvn8zteA8ff9FpL22wb8PGH9JSMoOGxjyYq4 D3+AJjRz1EGAC85K42p6OP+wC3qLoIlbYB1ZSkTRlDFDWsMKntVmc/sPC3vsL1L1 xyHqqCwA7H5b/VW6Fj6gPl/1zFpHvi/KyL/Bk0zJ1DQtM82i4AtlAzz3k9afjrNH l5aAbeXpBCOcYz8rGDhamYaV2qGR50AzedJSxOsnKxMQBemHbw7VlqgALvcUQYWT uWOI79MD7U76Ma40sqXb -----END CERTIFICATE-----Generated at Tue Sep 9 04:14:53 2025 by rpki-client