$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: /zrjZ0ZqEzRDQ5mOWK+S06L45z9UxNhwijRkpqGoHX0= Subject key identifier: 85:30:68:37:2A:2C:F1:9A:94:E7:FA:34:9C:EC:D1:51:50:E7:8F:0B Certificate issuer: /CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Certificate serial: 73650ABC5BACE8234CA24E5726CC514D54A27602 Authority key identifier: 87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa Signing time: Mon 28 Apr 2025 16:23:28 +0000 ROA not before: Mon 28 Apr 2025 16:18:28 +0000 ROA not after: Mon 27 Apr 2026 16:23:28 +0000 asID: 214344 IP address blocks: 2a14:7581:9903::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 13:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:65:0a:bc:5b:ac:e8:23:4c:a2:4e:57:26:cc:51:4d:54:a2:76:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4C84D4366DBB15A9090A55AA2DCEBA8723945 Validity Not Before: Apr 28 16:18:28 2025 GMT Not After : Apr 27 16:23:28 2026 GMT Subject: CN=853068372A2CF19A94E7FA349CECD15150E78F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cd:d0:ca:44:ef:86:cd:12:2d:87:91:2b:44: bb:eb:ad:fd:46:79:52:54:90:2c:59:4e:6e:67:25: 01:8e:eb:76:46:f3:76:30:31:24:88:f6:be:7f:ce: c3:1a:07:a4:db:18:0f:de:2d:5e:92:14:38:13:4a: 88:9a:be:e6:97:a8:44:fd:73:f9:f0:45:3f:56:79: 9a:56:e9:f5:e0:3b:49:8f:d0:88:de:9e:b8:08:24: e7:1e:86:97:0d:16:e0:bd:cf:f8:dc:7c:ad:de:95: ae:6b:7a:ad:b5:9f:72:43:03:79:ba:aa:82:fd:43: 88:ab:f1:5a:ea:28:7e:49:51:78:ab:f3:0c:3b:42: 25:67:4d:3a:9d:a9:cd:fe:a2:89:28:79:a7:ea:65: 1e:7b:22:f9:7b:55:ef:3a:5c:7b:22:52:0a:aa:de: d9:4f:4c:11:5d:b7:59:04:80:24:50:58:55:43:a8: cc:0f:c9:0f:16:85:ff:a1:d7:8b:6b:f8:95:31:29: ba:ff:36:53:e2:4d:77:51:13:f4:45:31:4b:0a:96: 67:05:e0:ed:96:0a:d6:58:d9:5a:ee:27:49:95:13: ea:50:e4:f5:c3:8a:91:c4:21:56:14:df:aa:fd:1f: 3b:de:a3:c9:fb:cd:ac:28:a3:4d:33:58:00:75:6e: 92:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:30:68:37:2A:2C:F1:9A:94:E7:FA:34:9C:EC:D1:51:50:E7:8F:0B X509v3 Authority Key Identifier: keyid:87:A4:C8:4D:43:66:DB:B1:5A:90:90:A5:5A:A2:DC:EB:A8:72:39:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/87A4C84D4366DBB15A9090A55AA2DCEBA8723945.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a5d4c00b-d105-4906-b981-1d0343e301da/1/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9903::/48 Signature Algorithm: sha256WithRSAEncryption 46:4f:bc:d6:a7:be:b4:ca:76:67:af:85:87:fa:1d:e9:c7:4f: f9:d5:ac:ac:81:09:cd:f9:92:6d:31:a2:e5:17:b8:13:09:1e: f6:f5:98:37:bb:85:e5:66:a8:81:1e:1b:73:e8:34:66:1b:3f: 05:93:69:ce:6c:ae:26:d4:7e:34:57:b1:45:55:d7:ef:8b:73: 12:95:bd:53:3b:dc:c8:16:0d:eb:4d:62:2b:79:bc:b6:b5:62: 3a:0f:75:ac:f9:14:49:0e:ef:64:fa:6e:3f:a3:25:b9:b6:14: d3:70:ed:b2:e1:da:92:20:c0:40:48:1c:50:0c:c7:9f:ec:ff: 82:09:84:a5:a9:1f:ed:1f:f0:80:3b:99:cf:39:1b:13:40:ff: c3:1d:b3:9f:68:ea:eb:76:59:3a:92:18:64:62:f6:2d:bb:ad: 58:ea:06:db:45:e6:92:f2:c0:40:a3:aa:cd:d7:d8:eb:6e:f9: ee:69:fc:99:66:ae:47:10:af:bb:b0:65:6d:92:2c:07:be:fc: 52:4f:54:10:ae:7b:22:3e:90:22:ba:a8:60:e3:8f:19:89:ae: f2:2b:8b:98:ae:e1:f9:89:d4:44:69:3f:26:5c:7c:cf:18:52: 74:a9:ea:0c:4c:bb:37:34:d6:5d:fb:54:6a:45:6d:b0:0f:1b: 89:9f:a2:b0 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUc2UKvFus6CNMok5XJsxRTVSidgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJB ODcyMzk0NTAeFw0yNTA0MjgxNjE4MjhaFw0yNjA0MjcxNjIzMjhaMDMxMTAvBgNV BAMTKDg1MzA2ODM3MkEyQ0YxOUE5NEU3RkEzNDlDRUNEMTUxNTBFNzhGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnzdDKRO+GzRIth5ErRLvrrf1G eVJUkCxZTm5nJQGO63ZG83YwMSSI9r5/zsMaB6TbGA/eLV6SFDgTSoiavuaXqET9 c/nwRT9WeZpW6fXgO0mP0IjenrgIJOcehpcNFuC9z/jcfK3ela5req21n3JDA3m6 qoL9Q4ir8VrqKH5JUXir8ww7QiVnTTqdqc3+ookoeafqZR57Ivl7Ve86XHsiUgqq 3tlPTBFdt1kEgCRQWFVDqMwPyQ8Whf+h14tr+JUxKbr/NlPiTXdRE/RFMUsKlmcF 4O2WCtZY2VruJ0mVE+pQ5PXDipHEIVYU36r9Hzveo8n7zawoo00zWAB1bpLJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUhTBoNyos8ZqU5/o0nOzRUVDnjwswHwYDVR0j BBgwFoAUh6TITUNm27FakJClWqLc66hyOUUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTVkNGMwMGItZDEwNS00OTA2LWI5ODEtMWQwMzQzZTMw MWRhLzEvODdBNEM4NEQ0MzY2REJCMTVBOTA5MEE1NUFBMkRDRUJBODcyMzk0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84N0E0Qzg0RDQzNjZEQkIxNUE5MDkwQTU1 QUEyRENFQkE4NzIzOTQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9hNWQ0YzAwYi1kMTA1LTQ5MDYtYjk4MS0xZDAzNDNlMzAxZGEvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkDMA0GCSqGSIb3DQEBCwUAA4IBAQBG T7zWp760ynZnr4WH+h3px0/51aysgQnN+ZJtMaLlF7gTCR729Zg3u4XlZqiBHhtz 6DRmGz8Fk2nObK4m1H40V7FFVdfvi3MSlb1TO9zIFg3rTWIreby2tWI6D3Ws+RRJ Du9k+m4/oyW5thTTcO2y4dqSIMBASBxQDMef7P+CCYSlqR/tH/CAO5nPORsTQP/D HbOfaOrrdlk6khhkYvYtu61Y6gbbReaS8sBAo6rN19jrbvnuafyZZq5HEK+7sGVt kiwHvvxST1QQrnsiPpAiuqhg448Zia7yK4uYruH5idREaT8mXHzPGFJ0qeoMTLs3 NNZd+1RqRW2wDxuJn6Kw -----END CERTIFICATE-----Generated at Wed May 7 18:45:39 2025 by rpki-client