$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530323a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530323a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: 17K75gKk9Ptw+4fExoXjv2d3NaK5okRRH4N3S2O0I68= Subject key identifier: 7C:42:95:62:ED:52:47:EE:93:CF:0E:B2:B3:9E:6D:46:EA:49:17:D7 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 4937C98C3F2CEF7D601C206D3E9595A0EEB06AA3 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530323a3a2f34382d3438203d3e20323135393536.roa Signing time: Mon 03 Mar 2025 00:06:20 +0000 ROA not before: Mon 03 Mar 2025 00:01:20 +0000 ROA not after: Mon 02 Mar 2026 00:06:20 +0000 asID: 215956 IP address blocks: 2a14:7580:ee02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 25 Oct 2025 08:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:37:c9:8c:3f:2c:ef:7d:60:1c:20:6d:3e:95:95:a0:ee:b0:6a:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 3 00:01:20 2025 GMT Not After : Mar 2 00:06:20 2026 GMT Subject: CN=7C429562ED5247EE93CF0EB2B39E6D46EA4917D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f7:3c:21:c8:24:16:51:16:99:22:92:a3:a0: 8e:b5:93:03:64:ac:4c:10:e4:8e:56:76:84:bb:9e: cc:04:50:26:d1:ee:b7:ca:c1:da:ae:88:63:a4:d7: 08:82:10:97:1e:50:ec:1e:64:fb:c9:44:1b:0c:42: ba:53:db:a3:bb:09:b8:30:ef:46:bb:23:78:85:11: 07:e3:03:02:94:85:a9:3c:19:6c:a6:17:b2:fc:ae: 70:92:85:7a:fb:da:2a:b6:5e:fa:8e:cf:59:54:36: 5f:61:e6:bf:7e:dd:04:3a:77:1c:e4:82:44:f3:88: 43:ce:4a:00:37:15:d9:af:1f:9e:2c:2c:6f:04:41: 46:7b:2e:27:3c:f0:5d:28:89:15:7e:89:65:41:ef: f4:63:d3:76:ea:b1:27:27:72:4b:0f:9d:71:ff:b5: 3d:d2:5f:ae:e5:dd:5b:68:ba:c3:7f:11:35:f4:db: f2:5e:25:06:d6:33:8f:cc:bb:7a:2b:39:ab:ee:10: 92:56:13:4b:39:c7:3f:81:ee:2e:a8:8b:d9:ec:f3: 75:32:ee:2b:36:fb:55:f6:d4:9d:a2:88:90:5b:ed: 95:a6:fc:28:ec:51:f4:bb:68:e1:fa:ac:0b:a8:92: 12:0c:ff:43:d5:b8:97:52:b3:78:8c:48:24:14:60: 21:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:42:95:62:ED:52:47:EE:93:CF:0E:B2:B3:9E:6D:46:EA:49:17:D7 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530323a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee02::/48 Signature Algorithm: sha256WithRSAEncryption b8:79:2e:6f:5e:d9:42:6f:77:c8:01:91:2e:c7:99:16:2c:7c: 3a:62:70:68:a2:e2:0a:5b:ff:d1:1f:34:cb:d9:5b:a3:39:7a: cb:7f:ec:80:b1:23:c1:aa:ae:f9:86:e1:2a:a9:ee:77:bd:d9: 16:49:82:71:08:ab:ee:e8:f9:03:54:e4:fe:bd:aa:1b:c5:67: d1:b2:f3:1e:80:1a:8d:b8:1d:20:33:bb:9b:37:9e:1a:12:84: 1d:b4:3c:47:1e:be:0f:39:62:c0:b9:41:e7:fd:5d:80:9b:54: 22:55:84:59:18:88:fe:44:2e:57:81:36:b0:14:34:b2:eb:c6: a5:84:3a:cc:b3:32:b4:4f:1d:9c:ce:04:0d:e5:3e:b8:d7:c0: 8a:18:c3:4a:59:7f:79:31:6e:fe:42:0a:69:e0:e9:82:4a:40: c4:b2:4c:81:9a:00:d7:32:cc:20:e2:fa:39:c5:0b:db:bc:b0: 38:ef:5d:0d:96:80:92:aa:f3:ce:42:00:2e:c7:22:4b:38:c2: a3:d4:de:c6:1c:ab:9f:6b:07:a7:6d:57:31:fe:77:13:99:fc: c0:19:f1:1a:b3:fe:d3:47:58:95:fa:c6:e6:1e:72:c2:88:3c: 9a:ff:e4:fd:db:bd:28:41:63:b2:10:07:b9:b8:76:61:72:ab: f1:0a:b9:cd -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSTfJjD8s731gHCBtPpWVoO6waqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDMwMDAxMjBaFw0yNjAzMDIwMDA2MjBaMDMxMTAvBgNV BAMTKDdDNDI5NTYyRUQ1MjQ3RUU5M0NGMEVCMkIzOUU2RDQ2RUE0OTE3RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC39zwhyCQWURaZIpKjoI61kwNk rEwQ5I5WdoS7nswEUCbR7rfKwdquiGOk1wiCEJceUOweZPvJRBsMQrpT26O7Cbgw 70a7I3iFEQfjAwKUhak8GWymF7L8rnCShXr72iq2XvqOz1lUNl9h5r9+3QQ6dxzk gkTziEPOSgA3FdmvH54sLG8EQUZ7Lic88F0oiRV+iWVB7/Rj03bqsScncksPnXH/ tT3SX67l3VtousN/ETX02/JeJQbWM4/Mu3orOavuEJJWE0s5xz+B7i6oi9ns83Uy 7is2+1X21J2iiJBb7ZWm/CjsUfS7aOH6rAuokhIM/0PVuJdSs3iMSCQUYCFvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUfEKVYu1SR+6Tzw6ys55tRupJF9cwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4CMA0GCSqGSIb3DQEBCwUAA4IBAQC4 eS5vXtlCb3fIAZEux5kWLHw6YnBoouIKW//RHzTL2VujOXrLf+yAsSPBqq75huEq qe53vdkWSYJxCKvu6PkDVOT+vaobxWfRsvMegBqNuB0gM7ubN54aEoQdtDxHHr4P OWLAuUHn/V2Am1QiVYRZGIj+RC5XgTawFDSy68alhDrMszK0Tx2czgQN5T6418CK GMNKWX95MW7+Qgpp4OmCSkDEskyBmgDXMswg4vo5xQvbvLA4710NloCSqvPOQgAu xyJLOMKj1N7GHKufawenbVcx/ncTmfzAGfEas/7TR1iV+sbmHnLCiDya/+T9270o QWOyEAe5uHZhcqvxCrnN -----END CERTIFICATE-----Generated at Fri Oct 24 16:39:58 2025 by rpki-client