$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/326131343a373538303a6330303a3a2f34302d3438203d3e20313531313934.roa File: 326131343a373538303a6330303a3a2f34302d3438203d3e20313531313934.roa (raw, json) Hash identifier: u8FYHOPbqE1MSDqxryvbkkQVPt9ds3RaHvtwriF25Bo= Subject key identifier: 82:7F:D1:76:95:D2:B9:7F:5C:5B:73:E5:73:D4:6F:FB:DD:AB:24:0F Certificate issuer: /CN=6B5432AF3212182697F0E937473AF3EB52E68EA2 Certificate serial: 1ADE4A81CA05B9FDCEF976D2A9EC25F32F5C6C2C Authority key identifier: 6B:54:32:AF:32:12:18:26:97:F0:E9:37:47:3A:F3:EB:52:E6:8E:A2 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/326131343a373538303a6330303a3a2f34302d3438203d3e20313531313934.roa Signing time: Sun 09 Mar 2025 08:20:48 +0000 ROA not before: Sun 09 Mar 2025 08:15:48 +0000 ROA not after: Sun 08 Mar 2026 08:20:48 +0000 asID: 151194 IP address blocks: 2a14:7580:c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.crl rsync://rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 09:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:de:4a:81:ca:05:b9:fd:ce:f9:76:d2:a9:ec:25:f3:2f:5c:6c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B5432AF3212182697F0E937473AF3EB52E68EA2 Validity Not Before: Mar 9 08:15:48 2025 GMT Not After : Mar 8 08:20:48 2026 GMT Subject: CN=827FD17695D2B97F5C5B73E573D46FFBDDAB240F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:78:e1:d6:b2:10:6c:2e:28:0f:0c:e1:8d:57: dd:90:d4:05:6c:e6:fb:28:d2:29:4c:35:de:71:19: 1f:75:5b:be:21:75:a9:83:f5:37:c3:37:c9:f4:1e: 8f:9c:aa:13:1f:93:59:7e:09:14:98:f6:a5:c3:12: 15:d4:60:d2:eb:8a:4e:b3:3e:59:c3:0a:f3:3d:db: 1d:77:06:b5:db:6e:76:f3:bb:cc:3a:08:7f:a0:c2: 74:d6:67:36:1b:7b:17:93:a0:af:76:a0:2c:b6:b0: 1d:6a:74:e2:af:8b:bb:33:9c:97:cc:e4:b8:32:87: 82:ae:8e:fb:df:20:44:f9:87:d9:e2:be:88:85:98: e6:93:f3:df:63:dc:6b:f8:25:07:23:7a:19:c4:89: 48:d7:e4:bf:14:8e:84:bb:c8:74:c6:e1:e2:26:e8: 8c:75:ef:2a:8e:96:24:c8:3b:2d:df:29:50:26:2f: 92:e3:91:c9:93:80:d2:dc:e2:4d:69:3b:cc:94:5d: a5:e3:be:c8:5b:97:72:c6:5f:a7:00:28:a8:4f:ef: 59:08:98:5f:82:f6:d1:c7:cc:c3:d0:cb:22:09:35: d0:61:ae:99:e2:f1:04:7c:74:20:b9:21:42:5c:c2: a7:2d:0c:e6:b1:03:b3:98:2e:ad:6e:10:98:0a:55: f1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7F:D1:76:95:D2:B9:7F:5C:5B:73:E5:73:D4:6F:FB:DD:AB:24:0F X509v3 Authority Key Identifier: keyid:6B:54:32:AF:32:12:18:26:97:F0:E9:37:47:3A:F3:EB:52:E6:8E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/6B5432AF3212182697F0E937473AF3EB52E68EA2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0ef4267e-d149-41e9-bd94-3c51043d2c5b/0/326131343a373538303a6330303a3a2f34302d3438203d3e20313531313934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:c00::/40 Signature Algorithm: sha256WithRSAEncryption 01:15:6d:a6:65:27:6b:d9:98:6d:0f:d2:ce:ec:e5:a8:16:b2: ef:d6:5c:23:17:9b:7b:a9:f5:1c:87:7e:1a:f4:d7:d2:62:b2: ae:2e:a6:bc:2b:13:35:af:15:90:9a:7c:04:b7:1f:3b:85:e3: 53:d9:62:11:ff:67:9f:38:0a:8f:22:14:0c:91:db:78:bf:ca: 72:34:a3:c3:27:f6:f0:96:e3:7c:79:b8:fe:ce:69:f9:ff:0a: a2:4f:8a:5b:8a:13:9c:8f:1c:2d:d7:2e:7c:54:2f:dd:33:c0: 29:e9:10:7f:a1:3b:a5:1d:58:f8:35:b1:da:75:0f:e3:37:13: b4:4f:da:4d:53:6c:a8:6a:7b:d2:85:20:4a:bf:a4:21:b3:b8: 5b:c8:ea:d8:fd:06:2b:3b:f6:92:44:41:ad:50:96:50:cd:e8: 18:1c:fa:73:2c:50:9c:f1:5b:c2:ee:d0:08:b0:a3:0a:eb:05: dc:77:a2:b7:9b:0e:7f:45:0b:59:d1:9e:0e:cb:4e:58:66:de: 0b:37:4f:b5:d1:d1:fd:13:b9:c4:99:68:4d:30:0d:89:1d:db: 6e:c5:5b:8b:1e:0c:b3:c8:2a:72:51:e5:f2:5b:a0:3c:45:ca: d4:33:ae:17:49:b3:0d:c6:ce:14:84:3d:07:c6:0a:52:c1:ea: 5e:c3:16:1b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUGt5KgcoFuf3O+XbSqewl8y9cbCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI1NDMyQUYzMjEyMTgyNjk3RjBFOTM3NDczQUYzRUI1 MkU2OEVBMjAeFw0yNTAzMDkwODE1NDhaFw0yNjAzMDgwODIwNDhaMDMxMTAvBgNV BAMTKDgyN0ZEMTc2OTVEMkI5N0Y1QzVCNzNFNTczRDQ2RkZCRERBQjI0MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2eOHWshBsLigPDOGNV92Q1AVs 5vso0ilMNd5xGR91W74hdamD9TfDN8n0Ho+cqhMfk1l+CRSY9qXDEhXUYNLrik6z PlnDCvM92x13BrXbbnbzu8w6CH+gwnTWZzYbexeToK92oCy2sB1qdOKvi7sznJfM 5Lgyh4KujvvfIET5h9nivoiFmOaT899j3Gv4JQcjehnEiUjX5L8UjoS7yHTG4eIm 6Ix17yqOliTIOy3fKVAmL5LjkcmTgNLc4k1pO8yUXaXjvshbl3LGX6cAKKhP71kI mF+C9tHHzMPQyyIJNdBhrpni8QR8dCC5IUJcwqctDOaxA7OYLq1uEJgKVfGDAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUgn/RdpXSuX9cW3Plc9Rv+92rJA8wHwYDVR0j BBgwFoAUa1QyrzISGCaX8Ok3Rzrz61LmjqIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGVmNDI2N2UtZDE0OS00MWU5LWJkOTQtM2M1MTA0M2Qy YzViLzAvNkI1NDMyQUYzMjEyMTgyNjk3RjBFOTM3NDczQUYzRUI1MkU2OEVBMi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82QjU0MzJBRjMyMTIxODI2OTdGMEU5Mzc0 NzNBRjNFQjUyRTY4RUEyLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wZWY0MjY3ZS1kMTQ5LTQxZTktYmQ5NC0zYzUxMDQzZDJjNWIvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTYzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzUz MTMxMzkzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYAMMA0GCSqGSIb3DQEBCwUAA4IBAQABFW2m ZSdr2ZhtD9LO7OWoFrLv1lwjF5t7qfUch34a9NfSYrKuLqa8KxM1rxWQmnwEtx87 heNT2WIR/2efOAqPIhQMkdt4v8pyNKPDJ/bwluN8ebj+zmn5/wqiT4pbihOcjxwt 1y58VC/dM8Ap6RB/oTulHVj4NbHadQ/jNxO0T9pNU2yoanvShSBKv6Qhs7hbyOrY /QYrO/aSREGtUJZQzegYHPpzLFCc8VvC7tAIsKMK6wXcd6K3mw5/RQtZ0Z4Oy05Y Zt4LN0+10dH9E7nEmWhNMA2JHdtuxVuLHgyzyCpyUeXyW6A8RcrUM64XSbMNxs4U hD0HxgpSwepewxYb -----END CERTIFICATE-----Generated at Sat Apr 5 18:36:13 2025 by rpki-client