$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa File: 326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa (raw, json) Hash identifier: B/V5ud+StvDXjqEGvB3k810Cv5LJwyUE9nhfaTbPqMk= Subject key identifier: 2C:BD:F5:B0:0C:52:08:6B:8D:5D:D9:F7:3A:E3:2A:75:C5:81:32:89 Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5 Certificate serial: 6438133907394B7B0920F86F290EF4FB3AFC9285 Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa Signing time: Wed 09 Apr 2025 20:19:06 +0000 ROA not before: Wed 09 Apr 2025 20:14:06 +0000 ROA not after: Wed 08 Apr 2026 20:19:06 +0000 asID: 203069 IP address blocks: 2a05:dfc5:10::/47 maxlen: 47 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 18:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:38:13:39:07:39:4b:7b:09:20:f8:6f:29:0e:f4:fb:3a:fc:92:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5 Validity Not Before: Apr 9 20:14:06 2025 GMT Not After : Apr 8 20:19:06 2026 GMT Subject: CN=2CBDF5B00C52086B8D5DD9F73AE32A75C5813289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:24:62:2e:45:41:5c:e3:8f:a1:14:3a:8a: 44:60:8a:93:a4:c1:1b:98:c1:d2:25:e6:db:46:2c: fa:2b:2d:e7:2b:b2:f1:18:88:5a:6c:48:34:33:03: d9:be:62:90:bb:13:7d:bc:1c:cd:ee:b1:1c:0f:e7: fc:7d:f6:56:57:0c:33:93:36:b1:80:f1:ee:04:1c: f5:af:de:72:fb:98:78:26:d3:36:b3:96:c4:18:00: fc:48:a6:c0:38:bc:1b:2d:0c:f1:bb:c1:9f:e9:e6: f0:5b:b9:80:8e:a0:02:f7:d1:bb:fb:ea:31:ff:87: 5c:f5:5f:45:36:fc:c9:16:08:8f:c1:70:1a:53:2e: 66:76:5c:e3:af:59:ac:80:5b:71:9f:e9:dc:92:17: a5:f5:0b:28:f8:6e:b2:22:f4:8e:74:67:00:8b:28: 5a:28:66:1e:0d:82:94:bb:2b:8e:cd:cd:7e:60:bf: ca:d0:b4:03:a9:b6:c1:e2:fe:c9:ca:b9:b2:e2:57: a0:f5:9d:25:95:32:53:23:c0:38:0c:13:a9:c6:00: 72:04:4c:83:ac:8c:1e:66:46:df:12:cd:73:9e:79: 2e:f3:79:c3:1f:b8:4b:e9:a7:85:16:30:5d:e9:ad: 19:e6:32:bc:fb:38:29:d0:09:f6:96:ef:78:2c:80: 71:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BD:F5:B0:0C:52:08:6B:8D:5D:D9:F7:3A:E3:2A:75:C5:81:32:89 X509v3 Authority Key Identifier: keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a31303a3a2f34372d3437203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:10::/47 Signature Algorithm: sha256WithRSAEncryption 9a:82:4b:ec:32:77:68:ca:bb:c1:8f:5d:cc:61:a2:3a:63:51: 20:b3:ed:fd:a3:62:46:9e:97:d0:b7:a4:cc:43:19:ca:41:34: d9:ee:a4:fd:12:9f:74:84:15:1f:9c:c5:67:89:ee:ab:36:da: 9a:07:47:04:da:39:67:83:2f:6f:21:a3:31:d1:2f:51:36:5c: 96:17:12:d5:33:e9:66:89:ab:2d:89:51:2b:80:fc:24:35:67: 67:3d:b4:8c:86:08:e9:d6:79:db:dd:08:28:50:ce:fe:e1:47: 1a:87:09:0c:dd:6c:d6:8d:8f:69:89:c1:a5:c9:99:51:87:2c: ca:93:87:12:2f:25:b8:c7:2f:c9:f6:1b:73:82:78:c1:24:78: e3:37:21:af:6f:74:d4:6c:1d:37:0c:5a:54:40:b4:9c:e3:ae: 8c:bc:b9:8a:dc:84:f9:7a:02:2e:8e:73:59:7f:18:c8:ed:c0: a7:e6:bc:61:38:77:47:23:f8:2c:db:8e:f7:71:c9:c2:ef:5b: 81:61:95:db:78:6b:f3:06:e5:83:32:5c:20:50:a0:9d:7a:ca: f7:35:ba:8d:12:9a:48:10:1a:3b:67:54:9b:b4:b6:a8:75:a3: a8:0a:52:58:ca:48:a0:b3:52:82:7d:bd:d8:da:39:e4:24:db: 71:15:fd:7a -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUZDgTOQc5S3sJIPhvKQ70+zr8koUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0 MEIyQjZCNTAeFw0yNTA0MDkyMDE0MDZaFw0yNjA0MDgyMDE5MDZaMDMxMTAvBgNV BAMTKDJDQkRGNUIwMEM1MjA4NkI4RDVERDlGNzNBRTMyQTc1QzU4MTMyODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2DCRiLkVBXOOPoRQ6ikRgipOk wRuYwdIl5ttGLPorLecrsvEYiFpsSDQzA9m+YpC7E328HM3usRwP5/x99lZXDDOT NrGA8e4EHPWv3nL7mHgm0zazlsQYAPxIpsA4vBstDPG7wZ/p5vBbuYCOoAL30bv7 6jH/h1z1X0U2/MkWCI/BcBpTLmZ2XOOvWayAW3Gf6dySF6X1Cyj4brIi9I50ZwCL KFooZh4NgpS7K47NzX5gv8rQtAOptsHi/snKubLiV6D1nSWVMlMjwDgME6nGAHIE TIOsjB5mRt8SzXOeeS7zecMfuEvpp4UWMF3prRnmMrz7OCnQCfaW73gsgHHJAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQULL31sAxSCGuNXdn3OuMqdcWBMokwHwYDVR0j BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy QjZCNS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzMTMwM2EzYTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcBKgXfxQAQMA0GCSqGSIb3DQEBCwUAA4IBAQCagkvsMndoyrvBj13MYaI6 Y1Egs+39o2JGnpfQt6TMQxnKQTTZ7qT9Ep90hBUfnMVnie6rNtqaB0cE2jlngy9v IaMx0S9RNlyWFxLVM+lmiastiVErgPwkNWdnPbSMhgjp1nnb3QgoUM7+4UcahwkM 3WzWjY9picGlyZlRhyzKk4cSLyW4xy/J9htzgnjBJHjjNyGvb3TUbB03DFpUQLSc 466MvLmK3IT5egIujnNZfxjI7cCn5rxhOHdHI/gs2473ccnC71uBYZXbeGvzBuWD MlwgUKCdesr3NbqNEppIEBo7Z1SbtLaodaOoClJYykigs1KCfb3Y2jnkJNtxFf16 -----END CERTIFICATE-----Generated at Sat May 10 09:57:06 2025 by rpki-client