$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333030303a3a2f34302d3438203d3e20323037353239.roa File: 326131343a373538313a333030303a3a2f34302d3438203d3e20323037353239.roa (raw, json) Hash identifier: 49tQr1GLN9QvPACiaQcXfaSDsuhRZJax3rEAyqF9fvs= Subject key identifier: 4B:66:80:37:87:3C:3A:FB:67:94:C7:DE:03:BA:8B:4E:67:0A:99:8F Certificate issuer: /CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Certificate serial: 2BA46C3EFFCD784B3F1ADBDC04C8904D1D82C0A0 Authority key identifier: 20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333030303a3a2f34302d3438203d3e20323037353239.roa Signing time: Sat 06 Sep 2025 13:18:15 +0000 ROA not before: Sat 06 Sep 2025 13:13:15 +0000 ROA not after: Sat 05 Sep 2026 13:18:15 +0000 asID: 207529 IP address blocks: 2a14:7581:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 20:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:a4:6c:3e:ff:cd:78:4b:3f:1a:db:dc:04:c8:90:4d:1d:82:c0:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202A82DA6E73CE4262E18BAED60A3FA6C88923F0 Validity Not Before: Sep 6 13:13:15 2025 GMT Not After : Sep 5 13:18:15 2026 GMT Subject: CN=4B668037873C3AFB6794C7DE03BA8B4E670A998F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:76:6d:fd:a8:fc:24:0e:69:b7:28:c5:47: 43:b9:5c:db:e9:3a:cc:bb:50:15:42:bd:74:0c:fc: e4:bd:bf:97:7d:c7:da:c5:de:d4:f2:57:b8:77:0f: 1e:df:c1:db:c6:90:6d:0a:af:b5:de:96:d3:94:8a: d9:fe:f3:52:d1:41:fd:c0:85:72:6f:89:72:bf:5c: f6:31:35:f2:0d:9c:0d:06:91:28:8c:27:44:12:1d: 26:d6:16:23:42:1b:da:fc:68:eb:59:01:6b:83:ee: 02:44:6d:e7:89:d8:64:12:d3:cb:7b:13:3a:fe:a0: 72:a2:bf:d0:0b:01:2f:ae:38:00:92:ef:61:63:46: 66:cd:5a:37:58:35:49:ba:94:33:36:3c:b9:d1:40: f2:1d:c2:29:37:87:3a:33:47:a5:1c:6c:54:f3:80: b1:de:d9:b1:b7:c6:81:14:8b:c2:7e:c1:a2:b7:4e: b2:4f:12:d7:82:29:11:e0:85:1b:08:ed:b2:9d:53: 87:1c:c5:7e:62:33:a0:0d:ca:2c:96:f9:58:74:d5: 59:2c:be:4a:fd:58:83:4e:09:df:e9:75:dd:15:b7: 41:b3:58:62:3c:2a:33:80:24:f3:0d:94:52:43:60: eb:4f:0d:61:ad:5a:36:29:66:f4:88:0e:50:6f:7e: d9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:66:80:37:87:3C:3A:FB:67:94:C7:DE:03:BA:8B:4E:67:0A:99:8F X509v3 Authority Key Identifier: keyid:20:2A:82:DA:6E:73:CE:42:62:E1:8B:AE:D6:0A:3F:A6:C8:89:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/202A82DA6E73CE4262E18BAED60A3FA6C88923F0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d9bd3888-9302-4b6f-a017-2b4bba5e57bb/1/326131343a373538313a333030303a3a2f34302d3438203d3e20323037353239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:3000::/40 Signature Algorithm: sha256WithRSAEncryption 16:e9:48:e3:d5:47:8d:21:79:d3:93:3a:7a:10:25:27:22:ef: 96:bc:a3:9e:7c:5d:67:9d:c4:d0:06:ce:4c:37:a5:20:d9:b2: 8d:23:69:c2:bf:6f:b6:22:b1:6f:74:d4:f8:d4:18:59:70:b2: 7b:4c:05:a7:d7:bb:7d:9c:6f:b9:c2:a6:3f:a3:9e:57:3a:36: 7e:bf:89:01:68:49:e8:c8:e2:cb:92:ee:9e:bd:86:07:c7:0d: 98:bd:cc:26:f5:4e:8f:6e:51:76:3f:55:a7:cd:0a:38:08:e6: 9f:18:99:1d:38:6f:7e:7c:32:18:a8:37:e4:b6:10:58:9d:97: 3a:8f:f5:0c:5f:24:fd:c3:56:6e:44:c4:04:8d:73:32:e8:70: 2e:de:7e:8f:4c:57:e5:d5:5f:d2:b8:34:68:c5:f8:03:3e:f7: bf:ae:e0:b7:92:60:97:79:12:67:27:0a:bb:20:56:1c:a0:dc: 38:97:4d:4d:ab:eb:e9:c8:fa:1d:94:9d:75:1e:8a:15:47:65: ca:95:57:b6:a3:95:69:17:13:e3:0c:bb:77:d6:bc:6f:01:21: e3:70:c7:b7:6a:c7:20:20:a6:75:8d:48:b8:2c:31:20:c4:b3: e8:b9:15:8e:f0:e2:9d:55:72:a1:a5:3c:8e:c4:00:2a:26:27: 64:53:cb:48 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUK6RsPv/NeEs/GtvcBMiQTR2CwKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZD ODg5MjNGMDAeFw0yNTA5MDYxMzEzMTVaFw0yNjA5MDUxMzE4MTVaMDMxMTAvBgNV BAMTKDRCNjY4MDM3ODczQzNBRkI2Nzk0QzdERTAzQkE4QjRFNjcwQTk5OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73XZt/aj8JA5ptyjFR0O5XNvp Osy7UBVCvXQM/OS9v5d9x9rF3tTyV7h3Dx7fwdvGkG0Kr7XeltOUitn+81LRQf3A hXJviXK/XPYxNfINnA0GkSiMJ0QSHSbWFiNCG9r8aOtZAWuD7gJEbeeJ2GQS08t7 Ezr+oHKiv9ALAS+uOACS72FjRmbNWjdYNUm6lDM2PLnRQPIdwik3hzozR6UcbFTz gLHe2bG3xoEUi8J+waK3TrJPEteCKRHghRsI7bKdU4ccxX5iM6ANyiyW+Vh01Vks vkr9WINOCd/pdd0Vt0GzWGI8KjOAJPMNlFJDYOtPDWGtWjYpZvSIDlBvftm/AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUS2aAN4c8OvtnlMfeA7qLTmcKmY8wHwYDVR0j BBgwFoAUICqC2m5zzkJi4Yuu1go/psiJI/AwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDliZDM4ODgtOTMwMi00YjZmLWEwMTctMmI0YmJhNWU1 N2JiLzEvMjAyQTgyREE2RTczQ0U0MjYyRTE4QkFFRDYwQTNGQTZDODg5MjNGMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMDJBODJEQTZFNzNDRTQyNjJFMThCQUVE NjBBM0ZBNkM4ODkyM0YwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kOWJkMzg4OC05MzAyLTRiNmYtYTAxNy0yYjRiYmE1ZTU3YmIvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMzMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDM3MzUzMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gTAwDQYJKoZIhvcNAQELBQADggEBABbp SOPVR40hedOTOnoQJSci75a8o558XWedxNAGzkw3pSDZso0jacK/b7YisW901PjU GFlwsntMBafXu32cb7nCpj+jnlc6Nn6/iQFoSejI4suS7p69hgfHDZi9zCb1To9u UXY/VafNCjgI5p8YmR04b358MhioN+S2EFidlzqP9QxfJP3DVm5ExASNczLocC7e fo9MV+XVX9K4NGjF+AM+97+u4LeSYJd5EmcnCrsgVhyg3DiXTU2r6+nI+h2UnXUe ihVHZcqVV7ajlWkXE+MMu3fWvG8BIeNwx7dqxyAgpnWNSLgsMSDEs+i5FY7w4p1V cqGlPI7EAComJ2RTy0g= -----END CERTIFICATE-----Generated at Sat Oct 25 11:37:06 2025 by rpki-client