$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634663a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666634663a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: 6pA9NNrKrI4+zxZxo4gukhaJn6WiNbtje4w/VFUeaKs= Subject key identifier: C7:66:8E:EF:B7:AE:6C:C9:4F:D3:03:70:E8:DE:F5:60:DC:C5:6F:84 Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 4AC0EE6EB4B4BB1DE4DE1E68542DD9FEFFE6BB5C Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634663a3a2f34382d3438203d3e20323134333434.roa Signing time: Thu 01 May 2025 06:31:31 +0000 ROA not before: Thu 01 May 2025 06:26:31 +0000 ROA not after: Thu 30 Apr 2026 06:31:31 +0000 asID: 214344 IP address blocks: 2a14:7580:ff4f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 07:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:c0:ee:6e:b4:b4:bb:1d:e4:de:1e:68:54:2d:d9:fe:ff:e6:bb:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: May 1 06:26:31 2025 GMT Not After : Apr 30 06:31:31 2026 GMT Subject: CN=C7668EEFB7AE6CC94FD30370E8DEF560DCC56F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5a:f4:10:a9:59:12:a0:5f:e2:4e:aa:aa:06: 8e:33:a7:4c:39:76:26:8c:84:02:43:ce:cb:d8:4d: 74:4b:40:5a:03:1f:a6:75:bf:a3:15:a8:17:1c:91: 87:e9:9e:99:ca:2d:8c:02:33:1f:5c:a0:81:cf:5b: 7f:be:b6:53:99:16:ff:60:06:3e:35:a8:b4:b3:ac: c5:77:61:e3:8e:34:8f:eb:e9:ad:3a:48:9c:0d:d1: 32:e5:8f:a3:ed:fc:cb:92:79:87:73:12:7a:cc:72: 7d:1e:87:e4:27:17:15:3a:2a:a3:b1:a4:1c:46:2e: d8:c3:6f:d9:4c:fd:f8:a2:cd:68:29:1d:cc:bc:14: 6e:99:25:91:d6:19:3b:07:68:7b:fa:4c:20:4a:12: 93:19:26:72:64:2a:35:46:df:c9:6f:08:db:35:5e: 7d:b8:7f:60:fd:92:82:93:fe:a6:f7:23:29:f4:78: 51:84:0d:fe:e5:78:30:45:98:bf:04:8d:1d:2b:27: 95:2c:db:6e:e0:cf:e8:22:d8:7d:11:96:29:50:ea: 04:6c:62:27:c5:dd:65:da:30:84:7d:4d:3b:92:e6: 67:d1:2e:90:83:22:ba:dd:b0:d8:9b:45:00:95:c7: ce:3c:ee:21:bf:71:94:10:da:69:07:2e:01:67:ac: ea:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:66:8E:EF:B7:AE:6C:C9:4F:D3:03:70:E8:DE:F5:60:DC:C5:6F:84 X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538303a666634663a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff4f::/48 Signature Algorithm: sha256WithRSAEncryption 39:cc:94:26:92:1c:1b:b3:0b:58:78:50:61:4f:f5:d0:26:b6: 60:9a:a3:b2:65:97:d0:c3:35:c8:04:8b:8c:d3:87:3d:85:c4: 5e:fb:c0:40:3d:65:94:0e:50:39:31:cd:32:f9:f5:4e:94:8c: 27:e2:a3:72:11:14:2e:72:3a:b1:c6:b2:d0:1c:31:7e:56:95: 5f:e2:16:70:11:2f:27:f2:ea:6d:63:c5:d1:44:86:09:a3:a1: 17:79:6c:c5:f0:43:46:14:f2:53:55:22:34:6e:ae:8a:28:10: 04:93:b2:28:45:81:ce:b5:af:eb:6f:d9:2f:14:a4:34:ec:a1: 87:73:ab:19:9d:e4:c7:9d:b9:01:6f:ad:06:0c:52:b8:e1:f8: 74:87:de:50:ce:86:d7:20:d7:8d:cb:dc:2f:a7:e0:83:4b:85: 89:f5:66:24:10:be:8f:9e:ed:24:b8:ae:d0:20:88:63:4b:50: de:e4:ed:dd:e6:91:17:00:78:c1:6f:d5:1e:79:b7:3b:28:94: 24:72:ca:89:c4:a2:22:0d:97:7d:4c:c1:47:a0:e1:c3:1f:0a: c7:c2:44:93:b4:cf:ba:24:ec:5a:87:10:dd:1f:b0:82:ff:90: be:2e:75:05:e6:d6:a3:cd:b6:3a:86:95:52:b4:c6:5a:ad:16: d1:26:66:b0 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSsDubrS0ux3k3h5oVC3Z/v/mu1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA1MDEwNjI2MzFaFw0yNjA0MzAwNjMxMzFaMDMxMTAvBgNV BAMTKEM3NjY4RUVGQjdBRTZDQzk0RkQzMDM3MEU4REVGNTYwRENDNTZGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyWvQQqVkSoF/iTqqqBo4zp0w5 diaMhAJDzsvYTXRLQFoDH6Z1v6MVqBcckYfpnpnKLYwCMx9coIHPW3++tlOZFv9g Bj41qLSzrMV3YeOONI/r6a06SJwN0TLlj6Pt/MuSeYdzEnrMcn0eh+QnFxU6KqOx pBxGLtjDb9lM/fiizWgpHcy8FG6ZJZHWGTsHaHv6TCBKEpMZJnJkKjVG38lvCNs1 Xn24f2D9koKT/qb3Iyn0eFGEDf7leDBFmL8EjR0rJ5Us227gz+gi2H0RlilQ6gRs YifF3WXaMIR9TTuS5mfRLpCDIrrdsNibRQCVx8487iG/cZQQ2mkHLgFnrOoJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUx2aO77eubMlP0wNw6N71YNzFb4QwHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNDY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9PMA0GCSqGSIb3DQEBCwUAA4IBAQA5 zJQmkhwbswtYeFBhT/XQJrZgmqOyZZfQwzXIBIuM04c9hcRe+8BAPWWUDlA5Mc0y +fVOlIwn4qNyERQucjqxxrLQHDF+VpVf4hZwES8n8uptY8XRRIYJo6EXeWzF8ENG FPJTVSI0bq6KKBAEk7IoRYHOta/rb9kvFKQ07KGHc6sZneTHnbkBb60GDFK44fh0 h95QzobXINeNy9wvp+CDS4WJ9WYkEL6Pnu0kuK7QIIhjS1De5O3d5pEXAHjBb9Ue ebc7KJQkcsqJxKIiDZd9TMFHoOHDHwrHwkSTtM+6JOxahxDdH7CC/5C+LnUF5taj zbY6hpVStMZarRbRJmaw -----END CERTIFICATE-----Generated at Fri May 9 00:28:17 2025 by rpki-client