$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa File: 326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa (raw, json) Hash identifier: QqrEAgQ9KVf7ZQUOM0TpQsecdMXugk6D6FG8k8ML6dQ= Subject key identifier: 07:52:23:3D:31:91:14:24:63:57:9C:17:68:2D:B1:1B:C8:CD:D5:45 Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 535E5D6BEDE220A181676B4151EEBA8694B68A58 Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa Signing time: Wed 30 Apr 2025 05:05:57 +0000 ROA not before: Wed 30 Apr 2025 05:00:57 +0000 ROA not after: Wed 29 Apr 2026 05:05:57 +0000 asID: 209668 IP address blocks: 2a06:1283:ba00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 20:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:5e:5d:6b:ed:e2:20:a1:81:67:6b:41:51:ee:ba:86:94:b6:8a:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Apr 30 05:00:57 2025 GMT Not After : Apr 29 05:05:57 2026 GMT Subject: CN=0752233D3191142463579C17682DB11BC8CDD545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:c6:e2:93:30:0b:bd:55:86:8e:ae:e4:fe:10: 3d:bd:9a:e6:35:44:7f:bd:43:18:03:e3:d1:ca:00: ae:70:9f:da:06:b7:34:42:8d:62:ef:9c:dd:82:61: 9c:82:99:7e:22:f5:6e:55:64:2a:01:88:0c:89:81: 2e:b0:74:42:2e:d8:a3:72:55:84:16:6c:39:ed:7a: 83:5f:bb:5c:f5:de:2f:ef:62:df:1e:a3:c0:a3:95: 5d:d9:28:5e:17:6b:dd:c8:4b:b6:80:73:86:46:51: 68:37:d5:68:da:ef:9c:bf:4b:03:4b:2a:26:7d:5d: 73:45:b3:16:d9:d2:d3:cd:bc:24:52:97:12:3e:52: db:72:c2:12:49:db:7e:f8:21:48:8f:3c:64:b2:ab: 57:fb:c0:00:55:cc:34:7b:e3:3c:ba:9a:17:80:94: 22:17:2a:f5:82:e2:39:13:12:a3:43:3d:6f:11:ab: 0d:d2:2a:1e:a2:99:46:2e:a9:e6:5c:af:7f:04:f2: 3d:6f:f7:a6:03:d8:c7:a6:25:08:c5:0d:50:dc:31: 20:4f:fe:d1:c0:d0:6d:b5:8d:d5:be:78:d7:b0:97: 9c:5f:32:2b:4b:bf:0f:10:03:41:e9:ee:4a:13:87: 3c:39:10:36:c9:ac:1b:38:bd:3c:55:bc:a9:c1:23: 9a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:52:23:3D:31:91:14:24:63:57:9C:17:68:2D:B1:1B:C8:CD:D5:45 X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:ba00::/40 Signature Algorithm: sha256WithRSAEncryption 44:d6:d2:a1:58:26:96:c6:03:2d:85:65:49:3b:19:3c:61:bb: dc:ff:7d:cb:6b:1b:5d:c8:6f:21:ba:93:ed:ca:60:29:9d:f9: 02:fa:42:dd:84:d6:ac:59:7c:5d:a2:47:30:3c:25:69:cf:03: ef:0a:5d:9b:01:52:73:b0:64:3a:dd:5e:97:6e:83:cd:6d:b3: 94:79:07:2b:ee:ab:f5:e6:00:3e:78:94:c1:ce:63:46:86:28: 91:64:9f:d5:cf:6e:d3:f8:13:54:8d:c6:62:de:14:68:a7:59: 17:52:8f:61:0b:84:02:0a:5f:86:9a:31:10:2a:f2:00:43:07: f4:a4:cf:41:ee:39:7e:cc:f1:bc:b4:70:fb:ba:4c:cb:16:12: ad:83:13:3d:6d:13:4a:ae:79:5c:7a:f3:7d:44:0f:7a:85:8a: 66:97:28:ae:96:e6:66:f6:34:45:1a:d1:a4:a8:69:a6:af:82: b9:01:a0:8e:98:db:28:d1:79:3e:fb:17:08:6a:81:7b:96:1b: 21:fd:69:6c:d2:53:3b:be:1f:8a:a4:a5:43:81:b5:61:17:4b: a7:bc:fb:1d:64:74:40:3e:c7:d8:91:2d:f1:1a:00:8d:a7:72: b5:ed:21:35:8f:5d:39:3a:6c:ca:54:ad:66:24:55:56:7b:5f: 4d:42:50:13 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUU15da+3iIKGBZ2tBUe66hpS2ilgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNTA0MzAwNTAwNTdaFw0yNjA0MjkwNTA1NTdaMDMxMTAvBgNV BAMTKDA3NTIyMzNEMzE5MTE0MjQ2MzU3OUMxNzY4MkRCMTFCQzhDREQ1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNxuKTMAu9VYaOruT+ED29muY1 RH+9QxgD49HKAK5wn9oGtzRCjWLvnN2CYZyCmX4i9W5VZCoBiAyJgS6wdEIu2KNy VYQWbDnteoNfu1z13i/vYt8eo8CjlV3ZKF4Xa93IS7aAc4ZGUWg31Wja75y/SwNL KiZ9XXNFsxbZ0tPNvCRSlxI+UttywhJJ2374IUiPPGSyq1f7wABVzDR74zy6mheA lCIXKvWC4jkTEqNDPW8Rqw3SKh6imUYuqeZcr38E8j1v96YD2MemJQjFDVDcMSBP /tHA0G21jdW+eNewl5xfMitLvw8QA0Hp7koThzw5EDbJrBs4vTxVvKnBI5rfAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUB1IjPTGRFCRjV5wXaC2xG8jN1UUwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjYxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzAzOTM2MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoO6MA0GCSqGSIb3DQEBCwUAA4IBAQBE1tKhWCaWxgMthWVJ Oxk8Ybvc/33LaxtdyG8hupPtymApnfkC+kLdhNasWXxdokcwPCVpzwPvCl2bAVJz sGQ63V6XboPNbbOUeQcr7qv15gA+eJTBzmNGhiiRZJ/Vz27T+BNUjcZi3hRop1kX Uo9hC4QCCl+GmjEQKvIAQwf0pM9B7jl+zPG8tHD7ukzLFhKtgxM9bRNKrnlcevN9 RA96hYpmlyiuluZm9jRFGtGkqGmmr4K5AaCOmNso0Xk++xcIaoF7lhsh/Wls0lM7 vh+KpKVDgbVhF0unvPsdZHRAPsfYkS3xGgCNp3K17SE1j105OmzKVK1mJFVWe19N QlAT -----END CERTIFICATE-----Generated at Sat May 10 10:21:38 2025 by rpki-client