$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a616131303a3a2f34382d3438203d3e20323134323233.roa File: 326130613a363034343a616131303a3a2f34382d3438203d3e20323134323233.roa (raw, json) Hash identifier: KQuKUZL8gd5sT2aK4fAeEoGOF4zcj5xw/DVnFe2Ltsw= Subject key identifier: BE:C8:2C:8A:66:4A:74:60:8E:0F:89:EA:AA:A6:AE:6E:33:A8:78:E1 Certificate issuer: /CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Certificate serial: 438F3566E8AC9BCF5D5A8395CFDEB26C2F0D9A48 Authority key identifier: ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a616131303a3a2f34382d3438203d3e20323134323233.roa Signing time: Sun 04 May 2025 14:39:43 +0000 ROA not before: Sun 04 May 2025 14:34:43 +0000 ROA not after: Sun 03 May 2026 14:39:43 +0000 asID: 214223 IP address blocks: 2a0a:6044:aa10::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 18:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:8f:35:66:e8:ac:9b:cf:5d:5a:83:95:cf:de:b2:6c:2f:0d:9a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Validity Not Before: May 4 14:34:43 2025 GMT Not After : May 3 14:39:43 2026 GMT Subject: CN=BEC82C8A664A74608E0F89EAAAA6AE6E33A878E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:72:1b:ca:58:8b:60:52:6c:34:b3:d7:6d: 69:75:c5:47:52:bd:75:95:5c:21:c7:4e:be:db:f0: 27:40:0b:a0:87:4a:de:a1:65:37:2a:d0:92:fa:e1: b7:ff:4c:08:64:af:d3:4f:56:0b:cd:71:d6:b7:7d: 0d:9f:69:ec:3c:b8:ee:20:a2:1f:86:8e:bf:d7:43: f3:8b:d2:b7:d5:d8:c3:81:08:cc:ea:f6:76:40:27: 1a:8b:a9:23:17:57:0d:18:62:71:aa:84:8c:c1:d3: fd:9b:0b:fc:46:ef:d4:7a:19:0e:20:0a:a0:fe:56: f2:6e:b6:d7:a6:b6:47:d2:85:91:49:f4:cf:01:59: 51:db:1d:ec:00:31:f8:e9:67:22:d1:6d:be:33:1d: fe:6b:78:30:9c:62:29:ed:7f:e4:c0:66:07:4b:03: 79:7f:12:2f:c8:8d:d7:41:67:0b:6b:23:2d:0c:74: 93:a4:6b:80:22:89:70:8d:0b:68:05:ce:8e:ff:de: 6c:7a:24:32:86:95:f4:a5:3f:90:4a:f4:a2:36:8b: 2c:f6:e5:e8:39:96:1b:fa:a0:4d:5f:bd:3d:c0:e8: 5a:94:60:85:9c:c2:b5:52:69:42:8d:84:7d:8f:10: 30:dc:78:7d:5f:04:07:5c:b3:39:79:f8:8f:ae:e5: 16:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C8:2C:8A:66:4A:74:60:8E:0F:89:EA:AA:A6:AE:6E:33:A8:78:E1 X509v3 Authority Key Identifier: keyid:ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a616131303a3a2f34382d3438203d3e20323134323233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:aa10::/48 Signature Algorithm: sha256WithRSAEncryption 19:0c:30:2b:a9:34:74:77:ed:1d:2b:44:9e:65:43:0c:11:88: 7a:28:b1:aa:9c:d5:df:8e:e0:1c:eb:41:57:d7:17:e0:d0:b8: 69:8b:1c:a0:c5:21:31:a5:3b:79:86:ce:35:9e:2c:01:6a:e0: ac:b3:3e:8a:cb:10:cd:c0:30:0c:8e:ba:d3:a7:e0:e8:8b:a8: 95:35:30:05:42:7a:bb:4d:80:79:60:13:a5:5f:a9:c5:e5:c1: f1:7b:53:e5:5c:f3:fd:f5:6b:b4:75:f0:e1:2a:e0:81:1a:31: b6:f4:0f:9f:ee:dd:68:ef:39:24:af:24:fb:2b:c9:eb:d9:37: 54:f0:14:6d:70:70:3e:59:08:2c:81:7f:42:ae:d1:e6:91:1a: 59:0f:fd:0a:cb:95:5a:f0:b4:dc:7a:57:75:dc:f8:a6:1e:de: 8b:22:bd:ab:8f:73:63:3c:e3:6f:ab:72:2d:9f:71:10:76:22: 58:f1:34:1e:7b:76:7a:31:c3:b5:dd:77:4e:51:c0:46:16:a8: df:a1:eb:af:29:20:fe:a8:fe:4b:3c:ee:82:04:91:3f:2d:44: 25:d5:6a:55:bd:ba:55:cc:5a:14:ad:18:9e:b9:37:c5:c7:b8: 62:3c:1e:05:05:83:73:5c:10:15:13:2a:a8:15:de:dd:4f:b2: 4a:a0:c5:b1 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQ481Zuism89dWoOVz96ybC8NmkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0 OTQxNTQyOTAeFw0yNTA1MDQxNDM0NDNaFw0yNjA1MDMxNDM5NDNaMDMxMTAvBgNV BAMTKEJFQzgyQzhBNjY0QTc0NjA4RTBGODlFQUFBQTZBRTZFMzNBODc4RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ3nIbyliLYFJsNLPXbWl1xUdS vXWVXCHHTr7b8CdAC6CHSt6hZTcq0JL64bf/TAhkr9NPVgvNcda3fQ2faew8uO4g oh+Gjr/XQ/OL0rfV2MOBCMzq9nZAJxqLqSMXVw0YYnGqhIzB0/2bC/xG79R6GQ4g CqD+VvJuttemtkfShZFJ9M8BWVHbHewAMfjpZyLRbb4zHf5reDCcYintf+TAZgdL A3l/Ei/IjddBZwtrIy0MdJOka4AiiXCNC2gFzo7/3mx6JDKGlfSlP5BK9KI2iyz2 5eg5lhv6oE1fvT3A6FqUYIWcwrVSaUKNhH2PEDDceH1fBAdcszl5+I+u5RZFAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUvsgsimZKdGCOD4nqqqaubjOoeOEwHwYDVR0j BBgwFoAU7QuK4D1iUNWe+Oe+VW2U60lBVCkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmYwZDRiNGUtOWY3NC00ZGY0LWJmNWUtMDkyOTA5NmRi ZTA0LzMvRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0OTQxNTQyOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy9FRDBCOEFFMDNENjI1MEQ1OUVGOEU3QkU1 NTZEOTRFQjQ5NDE1NDI5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yZjBkNGI0ZS05Zjc0LTRkZjQtYmY1ZS0wOTI5MDk2ZGJlMDQvMy8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYxNjEzMTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRKoQMA0GCSqGSIb3DQEBCwUAA4IBAQAZ DDArqTR0d+0dK0SeZUMMEYh6KLGqnNXfjuAc60FX1xfg0LhpixygxSExpTt5hs41 niwBauCssz6KyxDNwDAMjrrTp+Doi6iVNTAFQnq7TYB5YBOlX6nF5cHxe1PlXPP9 9Wu0dfDhKuCBGjG29A+f7t1o7zkkryT7K8nr2TdU8BRtcHA+WQgsgX9CrtHmkRpZ D/0Ky5Va8LTceld13PimHt6LIr2rj3NjPONvq3Itn3EQdiJY8TQee3Z6McO13XdO UcBGFqjfoeuvKSD+qP5LPO6CBJE/LUQl1WpVvbpVzFoUrRieuTfFx7hiPB4FBYNz XBAVEyqoFd7dT7JKoMWx -----END CERTIFICATE-----Generated at Fri May 9 08:36:21 2025 by rpki-client