$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa File: 326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa (raw, json) Hash identifier: EMfRivpVVkkRHPmgBone6RlxxUukb9hWMuKhZxdYoxE= Subject key identifier: 85:0B:93:7C:D9:53:C2:86:8D:56:40:11:AA:1C:2F:B2:BE:27:C6:81 Certificate issuer: /CN=A6E0BBA193794B8146B360D50420A9C4DC77C845 Certificate serial: 40391F62F3E0962124EE3FFE624DAD6CA5EE1B23 Authority key identifier: A6:E0:BB:A1:93:79:4B:81:46:B3:60:D5:04:20:A9:C4:DC:77:C8:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/A6E0BBA193794B8146B360D50420A9C4DC77C845.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa Signing time: Thu 03 Apr 2025 12:22:40 +0000 ROA not before: Thu 03 Apr 2025 12:17:40 +0000 ROA not after: Thu 02 Apr 2026 12:22:40 +0000 asID: 215956 IP address blocks: 2a0a:6044:bb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/A6E0BBA193794B8146B360D50420A9C4DC77C845.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/A6E0BBA193794B8146B360D50420A9C4DC77C845.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/A6E0BBA193794B8146B360D50420A9C4DC77C845.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 18:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:39:1f:62:f3:e0:96:21:24:ee:3f:fe:62:4d:ad:6c:a5:ee:1b:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6E0BBA193794B8146B360D50420A9C4DC77C845 Validity Not Before: Apr 3 12:17:40 2025 GMT Not After : Apr 2 12:22:40 2026 GMT Subject: CN=850B937CD953C2868D564011AA1C2FB2BE27C681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:25:11:59:61:41:79:e1:2d:ed:31:92:06:75: ae:94:f0:33:6b:9b:a6:96:b0:11:59:6e:b7:f6:97: c0:cd:cc:da:65:71:72:68:cf:cf:aa:ea:ce:ea:59: c6:85:65:d0:1f:62:b8:99:da:fc:86:04:8e:42:06: 35:3c:bd:9c:f4:1b:eb:ca:a5:42:95:cc:83:d4:d4: c0:79:35:b3:98:a2:c7:e8:70:09:2b:6f:be:30:79: 63:ab:d3:f1:d2:31:cf:a7:d0:6b:0e:1a:b4:e4:cc: 09:f7:d5:4f:14:fe:3e:2d:52:07:5b:4f:9a:99:90: 9f:b4:a4:fa:c7:bf:d1:d8:4f:ae:80:7a:94:20:75: 72:d0:16:ff:a2:d9:76:98:48:82:c0:f2:5e:eb:f2: f7:d6:a9:4f:da:ce:c2:c0:a3:7d:e2:9a:24:9e:97: a9:24:e4:6d:e8:0f:ad:52:93:b9:89:48:e6:5e:1c: 76:8d:78:3a:05:ae:c8:f5:ac:fb:c0:23:9f:7b:68: fc:35:70:6e:a2:b2:6c:e6:6e:1e:45:8d:5f:9e:64: a8:a0:77:d9:54:1d:c1:45:96:da:90:e3:7f:1b:ad: 35:52:c6:aa:c8:21:2e:1f:07:9b:5c:ee:22:04:89: a5:95:47:18:a4:8c:4e:77:f3:b7:6e:8f:97:de:19: 4f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0B:93:7C:D9:53:C2:86:8D:56:40:11:AA:1C:2F:B2:BE:27:C6:81 X509v3 Authority Key Identifier: keyid:A6:E0:BB:A1:93:79:4B:81:46:B3:60:D5:04:20:A9:C4:DC:77:C8:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/A6E0BBA193794B8146B360D50420A9C4DC77C845.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/A6E0BBA193794B8146B360D50420A9C4DC77C845.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/2/326130613a363034343a626230303a3a2f34302d3430203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:bb00::/40 Signature Algorithm: sha256WithRSAEncryption 07:b1:1d:3e:47:df:96:ad:6f:ba:f1:77:e3:87:c0:59:5f:f4: 4e:93:e9:79:d2:90:1c:23:e5:00:f7:a9:40:6e:be:0b:11:af: 61:96:89:40:db:fd:e0:19:42:1e:4c:37:59:ec:70:36:ee:e4: 30:86:e0:4f:7a:14:ef:00:c7:f7:30:a2:61:fc:ac:b2:c4:16: 42:c6:58:c0:19:73:f0:35:4d:6b:54:68:03:c6:54:4b:07:e4: 27:3e:63:7c:f8:a4:67:4e:51:05:cd:78:dc:82:29:74:f7:a2: 2b:78:01:17:dc:cd:ae:d9:ad:48:06:ac:7f:8c:1f:ae:01:6c: 86:3c:3e:c4:bc:6e:b8:a6:6a:33:b0:0b:20:18:8c:2b:a6:fb: 09:48:f1:19:af:fc:00:61:0b:24:1e:bd:70:63:37:ba:b5:0d: 04:fc:fe:e3:ad:c9:d4:d2:cb:6f:40:3e:08:6c:e1:ef:1b:3f: 15:0d:33:72:6b:23:73:21:eb:5a:57:65:90:ab:5f:5f:58:79: f2:58:a4:fc:ec:25:de:79:ec:80:e1:0c:f1:63:d5:b6:90:0b: 1f:04:35:81:05:08:33:e4:c4:ce:32:4f:b1:91:99:44:47:de: ad:7c:40:83:de:03:51:88:9e:30:bc:cb:8b:6d:eb:69:f1:5f: bf:e8:4c:f7 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUQDkfYvPgliEk7j/+Yk2tbKXuGyMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZFMEJCQTE5Mzc5NEI4MTQ2QjM2MEQ1MDQyMEE5QzRE Qzc3Qzg0NTAeFw0yNTA0MDMxMjE3NDBaFw0yNjA0MDIxMjIyNDBaMDMxMTAvBgNV BAMTKDg1MEI5MzdDRDk1M0MyODY4RDU2NDAxMUFBMUMyRkIyQkUyN0M2ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMJRFZYUF54S3tMZIGda6U8DNr m6aWsBFZbrf2l8DNzNplcXJoz8+q6s7qWcaFZdAfYriZ2vyGBI5CBjU8vZz0G+vK pUKVzIPU1MB5NbOYosfocAkrb74weWOr0/HSMc+n0GsOGrTkzAn31U8U/j4tUgdb T5qZkJ+0pPrHv9HYT66AepQgdXLQFv+i2XaYSILA8l7r8vfWqU/azsLAo33imiSe l6kk5G3oD61Sk7mJSOZeHHaNeDoFrsj1rPvAI597aPw1cG6ismzmbh5FjV+eZKig d9lUHcFFltqQ438brTVSxqrIIS4fB5tc7iIEiaWVRxikjE5387duj5feGU/1AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUhQuTfNlTwoaNVkARqhwvsr4nxoEwHwYDVR0j BBgwFoAUpuC7oZN5S4FGs2DVBCCpxNx3yEUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzIvQTZFMEJCQTE5Mzc5NEI4MTQ2QjM2MEQ1MDQyMEE5QzREQzc3Qzg0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy9BNkUwQkJBMTkzNzk0QjgxNDZCMzYwRDUw NDIwQTlDNERDNzdDODQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjIzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRLswDQYJKoZIhvcNAQELBQADggEBAAex HT5H35atb7rxd+OHwFlf9E6T6XnSkBwj5QD3qUBuvgsRr2GWiUDb/eAZQh5MN1ns cDbu5DCG4E96FO8Ax/cwomH8rLLEFkLGWMAZc/A1TWtUaAPGVEsH5Cc+Y3z4pGdO UQXNeNyCKXT3oit4ARfcza7ZrUgGrH+MH64BbIY8PsS8brimajOwCyAYjCum+wlI 8Rmv/ABhCyQevXBjN7q1DQT8/uOtydTSy29APghs4e8bPxUNM3JrI3Mh61pXZZCr X19YefJYpPzsJd557IDhDPFj1baQCx8ENYEFCDPkxM4yT7GRmURH3q18QIPeA1GI njC8y4tt62nxX7/oTPc= -----END CERTIFICATE-----Generated at Wed May 14 12:07:56 2025 by rpki-client