$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34342d3434203d3e20313938303235.roa File: 326131343a373538303a3730303a3a2f34342d3434203d3e20313938303235.roa (raw, json) Hash identifier: 4L0QSAftYtcw4WDJTyxob29wy6e4AqxikKCoI1U7ltM= Subject key identifier: 8B:3F:01:0F:A8:4C:0D:BB:9A:CF:31:21:14:FC:86:1A:11:E4:6F:84 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 3F29E706CB6B2296BCC4C6A274C77ABEC18D2B74 Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34342d3434203d3e20313938303235.roa Signing time: Tue 06 May 2025 04:49:11 +0000 ROA not before: Tue 06 May 2025 04:44:11 +0000 ROA not after: Tue 05 May 2026 04:49:11 +0000 asID: 198025 IP address blocks: 2a14:7580:700::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 17:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:29:e7:06:cb:6b:22:96:bc:c4:c6:a2:74:c7:7a:be:c1:8d:2b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: May 6 04:44:11 2025 GMT Not After : May 5 04:49:11 2026 GMT Subject: CN=8B3F010FA84C0DBB9ACF312114FC861A11E46F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:c3:2f:b6:e2:6b:05:2c:30:3f:52:6f:58: 51:10:07:28:9c:bb:ac:57:86:08:95:5f:fe:9f:56: d4:c8:59:dd:be:b0:8e:0f:f6:d9:24:fb:bf:4c:f2: db:7d:87:ee:e5:1a:69:2d:0b:3d:a1:36:2b:a6:36: 12:df:ca:ef:9e:e6:42:49:45:11:8a:ed:36:fb:0b: 07:b2:8d:a1:49:5f:3a:be:83:66:c3:95:fa:34:0c: ea:14:06:6e:cd:dc:18:5f:b6:9f:b9:1c:72:74:ac: 7f:41:8a:81:27:80:4c:db:3c:12:75:65:c8:8f:ea: 41:42:dd:20:cd:f5:b5:c8:33:46:a8:8f:65:a6:bd: 85:f3:f2:12:db:cc:9f:34:26:ec:6e:a4:91:a8:f5: 5d:83:48:4d:8e:92:47:f9:60:64:80:7d:c0:1c:94: 28:9e:75:15:19:70:4f:5c:32:a4:b0:f1:bd:18:1b: 04:0c:08:df:5d:2c:28:83:1e:84:fb:1f:df:58:45: 5e:0e:73:00:da:9f:53:98:4a:e7:a2:55:15:86:21: b5:b7:8f:8d:e3:0c:e1:02:1a:58:be:9b:99:e2:b3: 9a:d3:c0:65:4e:63:a5:63:0d:1b:e5:5e:83:11:3e: 7e:3d:e6:50:11:f8:c3:02:d7:eb:4c:d5:13:17:35: 9a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:3F:01:0F:A8:4C:0D:BB:9A:CF:31:21:14:FC:86:1A:11:E4:6F:84 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3730303a3a2f34342d3434203d3e20313938303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:700::/44 Signature Algorithm: sha256WithRSAEncryption 18:a3:ec:ca:3e:3a:9a:23:ea:a4:3f:50:7b:ee:1a:bf:05:25: 0e:42:48:18:a7:cf:13:d7:8e:76:49:d8:63:0c:c9:21:04:1d: 63:34:9e:20:f0:9c:9c:4f:53:f7:43:f0:af:3f:b5:eb:d6:21: a2:f4:53:3e:9f:9c:ac:a6:d9:3e:a6:14:08:e6:92:2e:31:9b: 48:db:61:ab:cd:52:94:9b:cc:70:dd:a6:04:a3:a4:aa:f9:72: 5a:98:05:b2:51:27:40:b3:db:8f:99:1d:75:23:e1:e4:58:19: ee:b6:9f:37:fb:16:b9:ad:f8:3e:34:c1:20:e8:33:fd:f7:fb: 6b:83:13:da:52:b8:07:17:30:88:fe:c6:94:09:40:0d:91:2f: 53:49:ce:ab:56:60:5e:6c:25:14:aa:57:25:83:00:9a:89:59: f1:8b:69:11:d4:cc:47:78:47:44:4b:16:45:6b:36:66:b9:0e: 7e:cc:41:6b:a0:9e:56:40:e8:13:96:b4:a1:76:d5:7e:f6:dc: e4:52:a2:8a:22:42:d5:aa:1d:96:3e:24:f7:b7:73:1e:72:70: e0:95:94:df:f9:10:78:a9:d9:dd:26:8d:aa:c1:fb:8e:c0:42: 1f:a1:5a:00:91:88:53:e5:25:e0:16:01:fd:5b:c1:06:c1:6c: 86:e2:15:c2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPynnBstrIpa8xMaidMd6vsGNK3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA1MDYwNDQ0MTFaFw0yNjA1MDUwNDQ5MTFaMDMxMTAvBgNV BAMTKDhCM0YwMTBGQTg0QzBEQkI5QUNGMzEyMTE0RkM4NjFBMTFFNDZGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWxcMvtuJrBSwwP1JvWFEQByic u6xXhgiVX/6fVtTIWd2+sI4P9tkk+79M8tt9h+7lGmktCz2hNiumNhLfyu+e5kJJ RRGK7Tb7CweyjaFJXzq+g2bDlfo0DOoUBm7N3Bhftp+5HHJ0rH9BioEngEzbPBJ1 ZciP6kFC3SDN9bXIM0aoj2WmvYXz8hLbzJ80JuxupJGo9V2DSE2Okkf5YGSAfcAc lCiedRUZcE9cMqSw8b0YGwQMCN9dLCiDHoT7H99YRV4OcwDan1OYSueiVRWGIbW3 j43jDOECGli+m5nis5rTwGVOY6VjDRvlXoMRPn495lAR+MMC1+tM1RMXNZqnAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUiz8BD6hMDbuazzEhFPyGGhHkb4QwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzAzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzkz ODMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYAHADANBgkqhkiG9w0BAQsFAAOCAQEAGKPs yj46miPqpD9Qe+4avwUlDkJIGKfPE9eOdknYYwzJIQQdYzSeIPCcnE9T90Pwrz+1 69YhovRTPp+crKbZPqYUCOaSLjGbSNthq81SlJvMcN2mBKOkqvlyWpgFslEnQLPb j5kddSPh5FgZ7rafN/sWua34PjTBIOgz/ff7a4MT2lK4BxcwiP7GlAlADZEvU0nO q1ZgXmwlFKpXJYMAmolZ8YtpEdTMR3hHREsWRWs2ZrkOfsxBa6CeVkDoE5a0oXbV fvbc5FKiiiJC1aodlj4k97dzHnJw4JWU3/kQeKnZ3SaNqsH7jsBCH6FaAJGIU+Ul 4BYB/VvBBsFshuIVwg== -----END CERTIFICATE-----Generated at Thu May 8 05:11:27 2025 by rpki-client