$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa File: 326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: bCiofQWMJSaySUeiY2qS/MAuuKogqYNrtvLxDo6NKzA= Subject key identifier: 78:7D:B2:95:AC:BA:8C:A6:17:EF:DC:36:51:A3:91:E4:D8:54:93:14 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 2A97448CA5CA48956AE0EEE163A37F0080B33485 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa Signing time: Tue 25 Mar 2025 11:02:47 +0000 ROA not before: Tue 25 Mar 2025 10:57:47 +0000 ROA not after: Tue 24 Mar 2026 11:02:47 +0000 asID: 31898 IP address blocks: 2a0b:4e07:6fc::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 04:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:97:44:8c:a5:ca:48:95:6a:e0:ee:e1:63:a3:7f:00:80:b3:34:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Mar 25 10:57:47 2025 GMT Not After : Mar 24 11:02:47 2026 GMT Subject: CN=787DB295ACBA8CA617EFDC3651A391E4D8549314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:30:15:4d:58:2b:24:1e:1d:97:fa:1f:33:d5: 88:8b:31:4f:71:5d:8e:3e:81:a8:e4:70:c0:9a:68: a4:91:9f:12:a3:7e:a9:63:4b:32:08:db:06:f2:f5: f9:7b:02:34:7f:43:e0:90:a1:c8:8f:79:5a:7b:78: 57:70:74:2b:86:83:a3:54:a0:bc:7e:ed:b9:a8:3e: 6b:16:4f:2c:10:64:55:e8:5e:4c:de:d4:c8:70:1f: 54:f6:11:a0:cd:77:ea:0a:56:52:27:ea:50:97:29: 20:bf:34:a2:d9:70:24:1b:a2:c2:f2:25:04:86:20: 9e:f3:90:ff:56:33:15:bb:a6:fd:0f:b3:7a:da:5b: fe:67:33:69:cf:77:30:3b:bc:e3:ed:de:83:90:8a: 43:69:4a:c8:52:99:73:3b:28:91:20:84:2d:2c:3d: 00:83:ba:60:03:af:f6:27:55:6a:78:7e:5e:75:40: 5f:ef:5b:ed:ae:fb:ef:12:d0:e4:cb:1c:01:b6:02: aa:71:32:96:39:d6:45:04:75:31:e8:37:61:8f:b9: 03:63:21:3b:72:5b:4e:7b:70:96:8c:f9:e8:53:50: fe:9f:aa:0d:1d:e2:a9:bf:4d:0c:e8:eb:f8:2b:a4: fc:51:e3:2c:27:94:79:59:74:f7:ba:4d:7d:7f:b3: 42:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7D:B2:95:AC:BA:8C:A6:17:EF:DC:36:51:A3:91:E4:D8:54:93:14 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3666633a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:6fc::/48 Signature Algorithm: sha256WithRSAEncryption 15:66:39:f3:3b:54:75:3e:4b:52:c7:01:66:de:9e:b7:9e:1d: d2:fc:b2:ff:4d:aa:eb:f7:fe:7f:f7:08:08:b5:df:bf:b0:35: 76:fc:8a:15:c9:54:cc:c5:b3:4b:cf:0b:3a:99:4c:e1:f1:de: d5:d3:36:fe:ff:52:16:a5:9c:d6:93:6e:05:41:00:ee:06:89: 5b:f1:eb:43:e9:b1:0f:c8:64:96:b1:2a:d4:f1:3d:22:47:0a: 9b:50:6e:e8:b4:68:ac:0f:99:e1:fd:70:37:04:4a:8b:16:97: 5f:db:7e:21:f6:aa:74:14:5d:3c:35:fc:fb:30:4e:72:6d:cd: 3b:59:fd:e5:0c:7c:d0:4b:fc:61:2c:da:f8:04:de:69:1a:19: 20:dd:91:02:ef:e2:32:7a:f2:71:27:8f:ef:4e:05:2e:5e:2f: 1a:37:f6:d8:a6:f4:ca:e7:1e:fe:30:d5:12:fc:81:df:86:91: 8b:4f:ea:7e:98:fa:ab:c5:31:fe:39:4c:b1:ac:27:91:ad:13: 64:34:12:8b:53:47:3b:1b:b9:00:de:48:93:e7:82:7c:54:63: 0c:d5:45:56:d5:1d:a8:c4:ca:33:e5:c3:e3:57:05:b3:a1:de: 68:3c:ce:19:2a:04:68:fd:33:d4:9c:4e:05:57:0a:7e:2a:00: 68:25:20:57 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUKpdEjKXKSJVq4O7hY6N/AICzNIUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNTAzMjUxMDU3NDdaFw0yNjAzMjQxMTAyNDdaMDMxMTAvBgNV BAMTKDc4N0RCMjk1QUNCQThDQTYxN0VGREMzNjUxQTM5MUU0RDg1NDkzMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiMBVNWCskHh2X+h8z1YiLMU9x XY4+gajkcMCaaKSRnxKjfqljSzII2wby9fl7AjR/Q+CQociPeVp7eFdwdCuGg6NU oLx+7bmoPmsWTywQZFXoXkze1MhwH1T2EaDNd+oKVlIn6lCXKSC/NKLZcCQbosLy JQSGIJ7zkP9WMxW7pv0Ps3raW/5nM2nPdzA7vOPt3oOQikNpSshSmXM7KJEghC0s PQCDumADr/YnVWp4fl51QF/vW+2u++8S0OTLHAG2AqpxMpY51kUEdTHoN2GPuQNj ITtyW057cJaM+ehTUP6fqg0d4qm/TQzo6/grpPxR4ywnlHlZdPe6TX1/s0J9AgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUeH2ylay6jKYX79w2UaOR5NhUkxQwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM2NjY2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzEz ODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqC04HBvwwDQYJKoZIhvcNAQELBQADggEBABVmOfM7 VHU+S1LHAWbenreeHdL8sv9Nquv3/n/3CAi137+wNXb8ihXJVMzFs0vPCzqZTOHx 3tXTNv7/UhalnNaTbgVBAO4GiVvx60PpsQ/IZJaxKtTxPSJHCptQbui0aKwPmeH9 cDcESosWl1/bfiH2qnQUXTw1/PswTnJtzTtZ/eUMfNBL/GEs2vgE3mkaGSDdkQLv 4jJ68nEnj+9OBS5eLxo39tim9MrnHv4w1RL8gd+GkYtP6n6Y+qvFMf45TLGsJ5Gt E2Q0EotTRzsbuQDeSJPngnxUYwzVRVbVHajEyjPlw+NXBbOh3mg8zhkqBGj9M9Sc TgVXCn4qAGglIFc= -----END CERTIFICATE-----Generated at Sat Apr 5 13:06:00 2025 by rpki-client