$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634343a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666634343a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: wAwmvjP2Xs/JgKfPKl1DdsDpWK9Z2qkOeMDP05em2JQ= Subject key identifier: 98:47:13:46:01:4A:8B:D4:56:50:A6:B4:E7:2B:3F:EA:60:31:8B:8D Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 43493294DB72159CFC221D1EEC25F75582A17CBB Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634343a3a2f34382d3438203d3e20323134333434.roa Signing time: Thu 01 May 2025 06:31:03 +0000 ROA not before: Thu 01 May 2025 06:26:03 +0000 ROA not after: Thu 30 Apr 2026 06:31:03 +0000 asID: 214344 IP address blocks: 2a14:7580:ff44::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 13:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:49:32:94:db:72:15:9c:fc:22:1d:1e:ec:25:f7:55:82:a1:7c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: May 1 06:26:03 2025 GMT Not After : Apr 30 06:31:03 2026 GMT Subject: CN=98471346014A8BD45650A6B4E72B3FEA60318B8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:49:58:83:ae:1b:0d:b5:42:26:ae:79:b0: 14:a1:2b:24:1f:ac:de:79:04:8a:9d:3f:16:aa:ac: 27:39:2b:e1:80:da:45:db:a2:92:dd:19:ed:27:1b: 08:df:78:4c:cc:68:29:42:aa:fe:a9:13:96:25:8a: d9:ea:5c:2d:5f:b0:a8:aa:0b:59:b1:80:97:23:f8: b2:1d:3a:5f:d0:24:0d:7a:4d:8c:98:32:79:77:a1: a1:38:e3:cf:80:8b:24:dd:6d:59:57:33:6d:b9:61: b0:c7:93:ac:14:12:97:85:88:a3:ce:e6:e5:02:64: 07:9e:ba:12:1d:e6:38:41:ea:4c:e7:34:f0:fe:5b: f0:ef:6d:0c:7e:b7:8b:06:78:18:83:4d:09:4d:68: e7:37:18:ad:9b:e1:2d:35:2c:27:30:d7:cb:83:d5: cd:8d:f0:95:d6:80:d2:9e:c2:ac:36:fe:4c:10:39: d3:22:a2:5b:a9:83:4f:93:8a:d9:d6:67:cc:68:c0: 4e:4c:79:00:57:e5:cd:35:39:8a:ef:c7:2e:2f:ef: 68:28:b4:d4:8e:32:83:ec:b3:e3:b4:47:44:0e:2e: 38:2f:71:28:13:11:d1:11:2e:bd:9d:58:28:c1:cb: cc:66:d6:88:1d:72:d8:ea:0b:a7:23:f2:67:e5:0f: 1f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:47:13:46:01:4A:8B:D4:56:50:A6:B4:E7:2B:3F:EA:60:31:8B:8D X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634343a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff44::/48 Signature Algorithm: sha256WithRSAEncryption 35:95:f5:6d:ee:06:3f:4c:f5:8f:a3:4d:69:bb:86:a1:36:84: f3:19:3c:91:b5:3f:1e:f2:ef:a2:be:e5:a5:9a:52:bf:c4:95: d3:33:fb:0e:71:1b:fa:03:01:ba:53:1a:f2:b0:04:e1:76:ce: de:09:2e:e5:09:a3:e7:58:f7:3f:16:c1:c1:a2:07:fe:48:c7: 1e:ba:f3:cd:86:db:cd:ff:a2:a4:50:ff:db:a3:1a:19:81:a4: 13:14:3d:e9:5f:69:bc:ad:c9:99:d8:36:06:b7:cd:61:23:10: 2b:d6:1e:58:9f:bc:3f:e8:27:20:25:e2:c9:b7:ed:e9:34:7e: ba:77:13:0e:90:4e:91:53:45:c0:de:a2:f2:fa:39:9c:dc:7f: 05:b8:79:05:c4:26:ae:6c:0c:a2:e9:ce:55:84:25:06:70:2b: 37:8b:23:4e:21:ca:bd:f9:72:c4:5b:78:6d:7c:6d:83:a9:7e: 63:4a:fc:64:8e:56:fe:3a:da:db:ee:d3:00:6a:32:23:1c:09: 89:16:14:40:1e:b6:73:57:af:99:49:ab:74:0a:be:ca:a5:38: 5d:b3:32:ca:64:cf:57:d2:83:1e:71:41:a6:b6:47:9f:e6:3e: 87:c4:50:1d:9c:ed:86:f5:03:61:e4:c0:d1:a5:8b:74:78:2d: 50:fc:57:5e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQ0kylNtyFZz8Ih0e7CX3VYKhfLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA1MDEwNjI2MDNaFw0yNjA0MzAwNjMxMDNaMDMxMTAvBgNV BAMTKDk4NDcxMzQ2MDE0QThCRDQ1NjUwQTZCNEU3MkIzRkVBNjAzMThCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpqElYg64bDbVCJq55sBShKyQf rN55BIqdPxaqrCc5K+GA2kXbopLdGe0nGwjfeEzMaClCqv6pE5YlitnqXC1fsKiq C1mxgJcj+LIdOl/QJA16TYyYMnl3oaE448+AiyTdbVlXM225YbDHk6wUEpeFiKPO 5uUCZAeeuhId5jhB6kznNPD+W/DvbQx+t4sGeBiDTQlNaOc3GK2b4S01LCcw18uD 1c2N8JXWgNKewqw2/kwQOdMiolupg0+TitnWZ8xowE5MeQBX5c01OYrvxy4v72go tNSOMoPss+O0R0QOLjgvcSgTEdERLr2dWCjBy8xm1ogdctjqC6cj8mflDx/fAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUmEcTRgFKi9RWUKa05ys/6mAxi40wHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNDM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9EMA0GCSqGSIb3DQEBCwUAA4IBAQA1 lfVt7gY/TPWPo01pu4ahNoTzGTyRtT8e8u+ivuWlmlK/xJXTM/sOcRv6AwG6Uxry sAThds7eCS7lCaPnWPc/FsHBogf+SMceuvPNhtvN/6KkUP/boxoZgaQTFD3pX2m8 rcmZ2DYGt81hIxAr1h5Yn7w/6CcgJeLJt+3pNH66dxMOkE6RU0XA3qLy+jmc3H8F uHkFxCaubAyi6c5VhCUGcCs3iyNOIcq9+XLEW3htfG2DqX5jSvxkjlb+Otrb7tMA ajIjHAmJFhRAHrZzV6+ZSat0Cr7KpThdszLKZM9X0oMecUGmtkef5j6HxFAdnO2G 9QNh5MDRpYt0eC1Q/Fde -----END CERTIFICATE-----Generated at Wed May 7 21:47:33 2025 by rpki-client