$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa File: 326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa (raw, json) Hash identifier: q6g7NvOylKcoMKHIBFZ0Cue6q0bByY4gqgu482bGvYs= Subject key identifier: 07:06:13:44:CF:28:51:EB:2E:20:6F:82:CE:5B:76:17:0D:D6:86:A7 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 4E2740779459AA77DD6A61841F2D136EE5DC447E Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa Signing time: Sun 04 May 2025 13:12:18 +0000 ROA not before: Sun 04 May 2025 13:07:18 +0000 ROA not after: Sun 03 May 2026 13:12:18 +0000 asID: 198025 IP address blocks: 2a14:7580:700::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 13:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:27:40:77:94:59:aa:77:dd:6a:61:84:1f:2d:13:6e:e5:dc:44:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: May 4 13:07:18 2025 GMT Not After : May 3 13:12:18 2026 GMT Subject: CN=07061344CF2851EB2E206F82CE5B76170DD686A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:10:11:8c:66:36:78:87:c0:a5:9f:4a:c2:10: b8:ff:f0:2d:4b:f6:8d:1b:45:7b:01:e6:55:f1:08: 3f:11:d6:58:62:a3:e3:d7:ac:52:7e:91:a6:0c:ee: 47:72:6d:5f:e2:1b:8b:15:fe:3d:9f:99:32:ef:3b: d8:e7:b9:cc:75:88:a4:c7:44:ba:21:19:c0:b4:72: ef:d2:63:31:34:96:d4:b2:88:f7:f5:24:1d:f4:8a: 29:69:8f:69:44:77:85:0b:c7:4d:d0:80:55:9f:f1: eb:ae:e3:23:ab:9b:94:68:be:4b:dd:82:a5:7a:3f: c1:25:5c:23:3f:ff:83:53:d1:69:47:2c:5a:8d:51: 91:b8:33:2c:b4:1e:45:11:a2:3a:3a:e1:2a:af:6a: b1:f5:e4:26:58:bb:fa:87:a5:51:a0:bf:1f:88:93: 0f:32:e9:1d:e8:9c:56:29:94:70:65:c8:19:d1:d0: dd:61:ae:a3:ad:8e:71:81:64:75:6a:db:99:95:eb: 5c:6a:5c:03:46:18:f0:c9:e1:e6:7b:51:48:60:db: fa:b7:ad:bb:1e:ea:75:7c:e1:a7:96:e6:92:bd:b4: 9d:dd:69:86:00:b0:f1:bf:80:ab:ea:66:6d:14:5e: a5:58:72:e0:8f:ed:cb:58:77:63:33:88:51:80:53: e2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:06:13:44:CF:28:51:EB:2E:20:6F:82:CE:5B:76:17:0D:D6:86:A7 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34302d3430203d3e20313938303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:700::/40 Signature Algorithm: sha256WithRSAEncryption 28:9b:8b:94:37:bc:14:b5:e2:98:b9:63:63:76:c0:ff:47:f1: 6e:52:58:c7:f9:95:13:01:43:ca:81:21:98:5c:6e:2a:9a:ab: e0:2f:9c:5a:78:ce:91:f0:87:0c:98:d1:8c:a1:33:8a:24:65: ad:d9:c9:2f:96:39:42:12:00:1b:6f:e9:87:e7:56:20:4f:46: 17:92:f9:f3:29:7d:ca:ef:00:07:85:a8:02:48:b8:43:1a:60: 51:e2:7f:22:59:35:18:35:90:56:b1:eb:ca:a1:05:07:08:c4: 99:cf:21:38:84:95:25:fa:a4:45:d7:fc:30:13:03:a5:18:b2: 5d:79:d2:33:30:98:04:02:0c:3a:0f:5e:72:b7:fa:16:fa:b9: 3a:d0:b1:c1:b7:b4:01:a2:fa:e1:0d:48:92:28:1e:49:26:3f: 8e:21:3f:be:b0:3d:3f:88:21:a2:a4:02:40:9a:cc:5b:d4:47: 67:98:23:d9:bb:3c:76:60:98:db:b9:e9:72:a1:85:ec:e1:90: 44:1d:ef:d3:bb:c2:22:84:dc:2e:5f:c8:61:8d:db:01:27:99: ee:a8:1d:fa:ae:60:ed:ee:e9:9c:0c:38:d9:73:0a:17:5f:1e: 13:c3:95:43:b1:27:73:71:59:c8:34:0c:12:fa:1f:fb:1c:c0: 08:98:58:ac -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUTidAd5RZqnfdamGEHy0TbuXcRH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA1MDQxMzA3MThaFw0yNjA1MDMxMzEyMThaMDMxMTAvBgNV BAMTKDA3MDYxMzQ0Q0YyODUxRUIyRTIwNkY4MkNFNUI3NjE3MERENjg2QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVEBGMZjZ4h8Cln0rCELj/8C1L 9o0bRXsB5lXxCD8R1lhio+PXrFJ+kaYM7kdybV/iG4sV/j2fmTLvO9jnucx1iKTH RLohGcC0cu/SYzE0ltSyiPf1JB30iilpj2lEd4ULx03QgFWf8euu4yOrm5Rovkvd gqV6P8ElXCM//4NT0WlHLFqNUZG4Myy0HkURojo64SqvarH15CZYu/qHpVGgvx+I kw8y6R3onFYplHBlyBnR0N1hrqOtjnGBZHVq25mV61xqXANGGPDJ4eZ7UUhg2/q3 rbse6nV84aeW5pK9tJ3daYYAsPG/gKvqZm0UXqVYcuCP7ctYd2MziFGAU+IXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUBwYTRM8oUesuIG+Czlt2Fw3WhqcwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMxMzkz ODMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYAHMA0GCSqGSIb3DQEBCwUAA4IBAQAom4uU N7wUteKYuWNjdsD/R/FuUljH+ZUTAUPKgSGYXG4qmqvgL5xaeM6R8IcMmNGMoTOK JGWt2ckvljlCEgAbb+mH51YgT0YXkvnzKX3K7wAHhagCSLhDGmBR4n8iWTUYNZBW sevKoQUHCMSZzyE4hJUl+qRF1/wwEwOlGLJdedIzMJgEAgw6D15yt/oW+rk60LHB t7QBovrhDUiSKB5JJj+OIT++sD0/iCGipAJAmsxb1EdnmCPZuzx2YJjbuelyoYXs 4ZBEHe/Tu8IihNwuX8hhjdsBJ5nuqB36rmDt7umcDDjZcwoXXx4Tw5VDsSdzcVnI NAwS+h/7HMAImFis -----END CERTIFICATE-----Generated at Wed May 7 22:09:16 2025 by rpki-client