$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930333a3a2f34382d3438203d3e203331383938.roa File: 326131343a373538303a3930333a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: ypgUGD6Euz3HGS0A9GoVgCiVtLF78aI6ZX/YlUyvGd8= Subject key identifier: D0:39:19:50:47:0E:22:1E:AA:70:24:EB:5F:32:A5:3F:F5:11:E4:CE Certificate issuer: /CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Certificate serial: 36973048D9AE60731E9472F3A8514BB2F384EE45 Authority key identifier: D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930333a3a2f34382d3438203d3e203331383938.roa Signing time: Fri 02 May 2025 15:36:33 +0000 ROA not before: Fri 02 May 2025 15:31:33 +0000 ROA not after: Fri 01 May 2026 15:36:33 +0000 asID: 31898 IP address blocks: 2a14:7580:903::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 09:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:97:30:48:d9:ae:60:73:1e:94:72:f3:a8:51:4b:b2:f3:84:ee:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Validity Not Before: May 2 15:31:33 2025 GMT Not After : May 1 15:36:33 2026 GMT Subject: CN=D0391950470E221EAA7024EB5F32A53FF511E4CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:44:c4:46:30:70:9d:55:19:c5:57:b3:68: ba:76:e4:4f:1d:44:f9:63:04:ba:47:31:99:f7:4e: 2c:c5:f5:3b:c5:55:74:62:e4:ce:97:d3:64:37:ee: 39:01:ef:21:a4:c6:02:66:58:4b:50:42:fd:87:06: 75:b6:3f:66:7f:55:8f:82:88:2b:23:ee:86:84:e2: a8:c8:cb:c4:1c:b9:1d:25:f3:4e:e9:b2:61:7b:26: 02:5b:43:a7:de:e8:13:32:f0:51:83:c0:39:97:2b: 1c:29:ff:2f:d6:91:0f:04:cc:9a:e3:8e:2d:4b:be: 59:86:27:7f:c7:c2:3c:d1:16:20:a3:c0:4a:41:4d: cb:9d:05:4f:0d:ce:8a:cc:91:21:b6:08:f7:0a:38: a6:14:90:8e:08:fd:fd:da:d5:05:28:f6:80:eb:20: 9e:37:d6:3d:8c:19:ab:1f:bd:85:77:79:3f:cf:95: d9:11:41:eb:a8:54:c5:fd:8d:1e:0e:62:7a:a6:ca: 29:bd:9f:f8:9f:87:4f:ef:68:9b:c7:17:a7:ae:d9: 7e:37:fc:c9:86:e3:be:ea:79:44:84:8d:f7:a9:38: 7c:a6:9c:ab:75:9a:f9:a4:e5:72:9c:97:0b:0e:7a: 50:5a:45:8e:9c:2a:6f:d8:cf:46:c4:41:f2:cf:80: af:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:39:19:50:47:0E:22:1E:AA:70:24:EB:5F:32:A5:3F:F5:11:E4:CE X509v3 Authority Key Identifier: keyid:D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930333a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:903::/48 Signature Algorithm: sha256WithRSAEncryption 9b:78:a7:76:f8:90:2f:a9:36:0d:ae:01:0c:2b:f1:9c:98:b9: 03:86:57:67:70:60:28:a4:5f:c7:db:32:f7:f6:c1:d1:af:08: 33:3c:5d:2b:7c:6a:ef:46:70:9b:6d:52:48:3e:db:b2:09:d2: 6a:db:07:61:a4:a9:ea:5a:62:5b:99:29:0f:2f:b1:73:04:fd: 92:85:73:53:60:4d:b3:5b:73:ec:33:27:3c:0a:b4:c5:41:2c: a2:15:f7:7c:2a:e6:e7:55:6b:6e:ca:e4:37:64:30:42:96:a4: 16:50:ce:d3:42:82:78:96:45:06:cf:fa:e6:f1:df:5a:72:fc: af:aa:bb:5e:ba:5e:6b:5f:ca:6c:5a:4c:c0:2b:99:6c:10:61: 62:86:ed:0d:ec:ab:01:a1:e1:e5:f8:c5:d2:ff:b5:05:de:dc: cc:61:2b:73:1e:fd:87:68:ec:db:f5:86:02:6e:6f:97:bc:6c: d4:7a:19:43:ed:0c:0a:4e:8e:98:3a:a9:41:01:ff:c3:94:a6: 36:dd:ef:8b:6c:4b:2f:44:20:5e:03:98:ed:19:4f:b1:0a:61: bb:1b:e5:06:4e:63:c2:fd:d3:b2:40:e4:b9:a8:c9:23:49:99: 92:fe:c2:76:6e:be:0a:a0:7f:f4:66:fd:38:9c:61:c6:c3:17: 97:68:ca:e4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUNpcwSNmuYHMelHLzqFFLsvOE7kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRB MEJBOEQ0QTAeFw0yNTA1MDIxNTMxMzNaFw0yNjA1MDExNTM2MzNaMDMxMTAvBgNV BAMTKEQwMzkxOTUwNDcwRTIyMUVBQTcwMjRFQjVGMzJBNTNGRjUxMUU0Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM+ETERjBwnVUZxVezaLp25E8d RPljBLpHMZn3TizF9TvFVXRi5M6X02Q37jkB7yGkxgJmWEtQQv2HBnW2P2Z/VY+C iCsj7oaE4qjIy8QcuR0l807psmF7JgJbQ6fe6BMy8FGDwDmXKxwp/y/WkQ8EzJrj ji1LvlmGJ3/HwjzRFiCjwEpBTcudBU8NzorMkSG2CPcKOKYUkI4I/f3a1QUo9oDr IJ431j2MGasfvYV3eT/PldkRQeuoVMX9jR4OYnqmyim9n/ifh0/vaJvHF6eu2X43 /MmG477qeUSEjfepOHymnKt1mvmk5XKclwsOelBaRY6cKm/Yz0bEQfLPgK8hAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQU0DkZUEcOIh6qcCTrXzKlP/UR5M4wHwYDVR0j BBgwFoAU1hWry6UBVWSt6bRz1k8eNKC6jUowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTNmNjg1NjEtMGE3NC00Y2NhLWJmOGYtMTJmYWFhZmM4 ZWI4LzMvRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRBMEJBOEQ0QS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9ENjE1QUJDQkE1MDE1NTY0QURFOUI0NzNE NjRGMUUzNEEwQkE4RDRBLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xM2Y2ODU2MS0wYTc0LTRjY2EtYmY4Zi0xMmZhYWFmYzhlYjgvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzAzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzEz ODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWACQMwDQYJKoZIhvcNAQELBQADggEBAJt4p3b4 kC+pNg2uAQwr8ZyYuQOGV2dwYCikX8fbMvf2wdGvCDM8XSt8au9GcJttUkg+27IJ 0mrbB2GkqepaYluZKQ8vsXME/ZKFc1NgTbNbc+wzJzwKtMVBLKIV93wq5udVa27K 5DdkMEKWpBZQztNCgniWRQbP+ubx31py/K+qu166XmtfymxaTMArmWwQYWKG7Q3s qwGh4eX4xdL/tQXe3MxhK3Me/Ydo7Nv1hgJub5e8bNR6GUPtDApOjpg6qUEB/8OU pjbd74tsSy9EIF4DmO0ZT7EKYbsb5QZOY8L907JA5LmoySNJmZL+wnZuvgqgf/Rm /TicYcbDF5doyuQ= -----END CERTIFICATE-----Generated at Thu May 8 20:39:56 2025 by rpki-client