$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa File: 326131343a316563313a3a2f33322d3332203d3e20323037323532.roa (raw, json) Hash identifier: ZnCFtDlyKKIKHxL+mnWSwMiKEny7fbonjbSjngpcz7c= Subject key identifier: 17:F7:46:19:1C:80:D2:68:77:E0:29:B8:E2:3A:DD:E0:E4:4B:C0:8D Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 118276CE7C105080BBB28B18C3574023528CA020 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa Signing time: Tue 06 May 2025 14:59:55 +0000 ROA not before: Tue 06 May 2025 14:54:55 +0000 ROA not after: Tue 05 May 2026 14:59:55 +0000 asID: 207252 IP address blocks: 2a14:1ec1::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 05:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:82:76:ce:7c:10:50:80:bb:b2:8b:18:c3:57:40:23:52:8c:a0:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: May 6 14:54:55 2025 GMT Not After : May 5 14:59:55 2026 GMT Subject: CN=17F746191C80D26877E029B8E23ADDE0E44BC08D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cf:8c:37:a2:cd:61:37:ad:0e:68:b5:3f:a5: 4c:69:ae:af:9e:61:e4:7b:eb:3a:c7:c8:2a:c1:88: fa:96:a4:3a:92:87:fa:5c:13:2a:b2:4f:b9:8b:5f: c4:77:a6:4b:74:55:c5:40:27:e3:bd:2d:17:5d:ec: 31:e3:02:8b:a6:3b:21:2c:75:66:dc:64:2a:4e:cd: 86:2a:66:7d:c9:92:94:2b:88:10:cb:b4:91:10:72: 00:1d:77:5a:d2:74:22:94:50:2d:d0:05:2c:bb:15: e6:63:87:aa:ed:62:a5:b8:df:2b:1b:ce:36:1a:f1: 12:3f:cb:8b:98:34:e8:4e:4b:8a:07:77:42:f7:64: 6d:da:df:8d:63:dd:48:bd:85:54:32:6b:4d:f5:07: ac:69:ce:cd:8b:65:94:9c:3a:56:a6:4c:72:72:86: eb:b4:fd:84:59:33:56:85:d9:6d:4d:1a:09:47:41: 81:9d:38:26:04:18:e1:de:96:ea:1e:f9:b4:6b:22: d3:96:81:d1:1c:a9:9d:bb:9e:2b:e1:4f:f4:37:e6: d2:3c:cb:23:c0:8b:03:c4:23:41:fd:92:de:e8:80: 3e:5b:49:b7:9c:7f:0c:74:c4:31:cb:95:22:f5:69: 26:a8:e0:38:59:07:a0:25:58:8c:e7:74:1d:e1:28: 07:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F7:46:19:1C:80:D2:68:77:E0:29:B8:E2:3A:DD:E0:E4:4B:C0:8D X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1::/32 Signature Algorithm: sha256WithRSAEncryption 2d:f2:52:4f:2d:47:6c:15:c1:a8:2f:29:77:bb:ad:9e:83:a4: 07:06:b7:f5:96:ee:45:83:53:41:45:a7:53:a0:ca:61:a5:cd: 63:a2:ba:b8:bc:71:89:f3:8e:84:8e:8a:41:e7:2d:c9:45:f0: 43:95:a9:52:a8:e4:b0:16:a8:bf:99:0b:f8:9d:89:f0:37:ae: 61:b8:fa:e4:27:3f:67:19:7d:35:23:d8:d8:b1:64:31:5a:35: a8:da:bc:2c:31:ac:dc:79:86:5c:d8:14:0a:05:80:70:8a:86: 5a:48:01:98:d7:a5:e4:f9:23:1d:e8:4a:49:2a:9e:f1:46:c6: cd:6a:e6:01:b3:42:a8:98:7a:a7:f7:a9:62:9d:29:f2:ad:b1: f6:d0:dc:ff:d5:d0:22:3e:ff:6b:9f:6e:a7:93:ac:39:2c:01: 21:fa:8d:41:43:0b:97:38:7d:74:83:e8:0e:01:4d:5c:cd:cf: a3:d2:b2:48:b8:e1:87:02:c7:15:1c:50:38:c8:ff:bd:29:44: 9e:ff:2d:c2:aa:c4:c1:4f:34:22:47:0c:b8:81:0d:4d:09:0f: 62:81:a4:9a:2b:51:29:61:bc:b1:b4:52:10:8e:83:54:14:31: 2a:dc:5a:5b:39:bc:13:85:0f:f1:ee:1b:d2:9d:0b:4e:0d:4a: ce:d5:e9:85 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUEYJ2znwQUIC7sosYw1dAI1KMoCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNTA1MDYxNDU0NTVaFw0yNjA1MDUxNDU5NTVaMDMxMTAvBgNV BAMTKDE3Rjc0NjE5MUM4MEQyNjg3N0UwMjlCOEUyM0FEREUwRTQ0QkMwOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQz4w3os1hN60OaLU/pUxprq+e YeR76zrHyCrBiPqWpDqSh/pcEyqyT7mLX8R3pkt0VcVAJ+O9LRdd7DHjAoumOyEs dWbcZCpOzYYqZn3JkpQriBDLtJEQcgAdd1rSdCKUUC3QBSy7FeZjh6rtYqW43ysb zjYa8RI/y4uYNOhOS4oHd0L3ZG3a341j3Ui9hVQya031B6xpzs2LZZScOlamTHJy huu0/YRZM1aF2W1NGglHQYGdOCYEGOHeluoe+bRrItOWgdEcqZ27nivhT/Q35tI8 yyPAiwPEI0H9kt7ogD5bSbecfwx0xDHLlSL1aSao4DhZB6AlWIzndB3hKAfbAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUF/dGGRyA0mh34Cm44jrd4ORLwI0wHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMjMwMzczMjM1MzIu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAqFB7BMA0GCSqGSIb3DQEBCwUAA4IBAQAt8lJPLUdsFcGoLyl3 u62eg6QHBrf1lu5Fg1NBRadToMphpc1jorq4vHGJ846EjopB5y3JRfBDlalSqOSw Fqi/mQv4nYnwN65huPrkJz9nGX01I9jYsWQxWjWo2rwsMazceYZc2BQKBYBwioZa SAGY16Xk+SMd6EpJKp7xRsbNauYBs0KomHqn96linSnyrbH20Nz/1dAiPv9rn26n k6w5LAEh+o1BQwuXOH10g+gOAU1czc+j0rJIuOGHAscVHFA4yP+9KUSe/y3CqsTB TzQiRwy4gQ1NCQ9igaSaK1EpYbyxtFIQjoNUFDEq3FpbObwThQ/x7hvSnQtODUrO 1emF -----END CERTIFICATE-----Generated at Thu May 8 20:41:38 2025 by rpki-client