$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa File: 326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa (raw, json) Hash identifier: nEpVXZ4G7eLeVLBw2JFUizV21nv5AkYeo88InoKYBm4= Subject key identifier: 06:A5:20:19:34:D9:9E:DE:B0:C7:45:F6:48:B2:09:E8:46:D6:00:F7 Certificate issuer: /CN=F861C17CCC63A8FE4F54B725229D4182E376702E Certificate serial: 4B6D95AC38A5AA1CEB53858FDDD23B0A16332B0A Authority key identifier: F8:61:C1:7C:CC:63:A8:FE:4F:54:B7:25:22:9D:41:82:E3:76:70:2E Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F861C17CCC63A8FE4F54B725229D4182E376702E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa Signing time: Wed 26 Mar 2025 05:43:14 +0000 ROA not before: Wed 26 Mar 2025 05:38:14 +0000 ROA not after: Wed 25 Mar 2026 05:43:14 +0000 asID: 215108 IP address blocks: 2a14:7580:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/F861C17CCC63A8FE4F54B725229D4182E376702E.crl rsync://rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/F861C17CCC63A8FE4F54B725229D4182E376702E.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F861C17CCC63A8FE4F54B725229D4182E376702E.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 19:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:6d:95:ac:38:a5:aa:1c:eb:53:85:8f:dd:d2:3b:0a:16:33:2b:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F861C17CCC63A8FE4F54B725229D4182E376702E Validity Not Before: Mar 26 05:38:14 2025 GMT Not After : Mar 25 05:43:14 2026 GMT Subject: CN=06A5201934D99EDEB0C745F648B209E846D600F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:18:a7:61:ba:ae:07:54:8d:ec:3f:4c:2a: 12:ae:18:1f:40:24:f7:c4:1b:e7:9f:28:11:dc:1c: 70:a2:37:47:26:af:68:c0:61:19:c7:f7:c5:16:10: 01:ec:f2:96:e0:6d:8d:f9:43:b3:16:ac:6e:0d:40: 87:31:12:ed:d4:14:65:58:54:29:f1:4e:28:e2:48: d6:e9:07:fc:30:6e:9d:e8:5c:20:16:f5:0e:d5:83: 24:20:37:5b:e7:30:bc:b7:ac:9e:62:b0:3e:84:5a: 54:69:3d:98:a6:85:ad:c2:53:3c:a8:b7:e0:ff:e2: 44:8b:81:72:91:28:d2:8b:79:0b:7f:ad:6d:9e:62: d1:ed:72:8f:2f:a5:a4:c9:34:ae:19:60:a9:66:71: fb:dd:16:08:eb:50:8e:b5:41:37:22:a1:c5:be:41: 11:ab:6d:99:16:fe:be:97:b0:30:c8:5b:5c:5d:b1: 74:8e:52:2d:47:dc:0f:26:6f:b0:fb:bf:55:4c:db: 25:b4:8c:7c:a5:f3:0e:50:35:ad:4f:67:69:bd:f7: 28:77:e5:c9:11:ce:f9:f3:93:6a:87:a1:5e:0b:4f: 62:68:16:60:3e:f6:4a:66:62:e5:a3:11:cd:27:46: 7b:75:4d:4d:8a:ce:92:7f:df:be:1f:34:4b:f8:28: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A5:20:19:34:D9:9E:DE:B0:C7:45:F6:48:B2:09:E8:46:D6:00:F7 X509v3 Authority Key Identifier: keyid:F8:61:C1:7C:CC:63:A8:FE:4F:54:B7:25:22:9D:41:82:E3:76:70:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/F861C17CCC63A8FE4F54B725229D4182E376702E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F861C17CCC63A8FE4F54B725229D4182E376702E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1028ecde-2bba-4e46-a245-fbc81d5c1432/0/326131343a373538303a373030303a3a2f33362d3336203d3e20323135313038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:7000::/36 Signature Algorithm: sha256WithRSAEncryption 77:7d:2a:c5:27:32:89:ad:c6:07:db:9b:49:db:da:8f:de:c7: 1c:d1:4a:68:d5:fe:6a:fc:de:56:bd:5b:74:63:d2:9b:da:ad: b2:22:3b:a7:7d:92:22:cc:b5:c3:1f:58:10:1d:46:e8:2f:87: 0d:f5:ac:a8:3b:77:3c:58:f3:d0:76:4a:d1:d2:58:00:a4:a6: cc:51:8c:23:fa:d9:1b:f3:dc:0b:e7:51:3a:61:99:d3:d8:e1: 11:bf:fc:2d:97:2e:5a:fb:c9:84:b7:4b:1c:98:26:ad:7e:5d: 95:57:fd:a6:b6:25:ca:f6:e7:19:2f:27:0e:94:71:9c:2d:e6: 00:7f:b7:fa:d8:02:40:b1:48:ae:bf:2e:77:41:2e:b0:14:1a: a2:38:ab:78:bb:dd:64:7b:ae:d5:f7:1b:1b:bc:eb:64:f9:91: 38:c6:90:39:70:34:68:cb:14:85:54:72:d5:2a:b0:6e:d7:fa: 8c:32:48:ee:f4:54:1d:1c:6a:a9:81:c0:24:f9:f1:31:32:dc: 0e:61:4a:c3:e3:fd:91:ff:f2:1f:09:13:c7:da:5a:6a:43:d6: 99:b4:8a:04:ae:73:d3:a1:d5:12:e7:f7:b9:58:86:3a:71:68: 24:3a:3e:00:eb:4e:0e:88:5d:5a:79:3a:1e:38:4b:69:b7:c8: f0:28:a2:eb -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUS22VrDilqhzrU4WP3dI7ChYzKwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjg2MUMxN0NDQzYzQThGRTRGNTRCNzI1MjI5RDQxODJF Mzc2NzAyRTAeFw0yNTAzMjYwNTM4MTRaFw0yNjAzMjUwNTQzMTRaMDMxMTAvBgNV BAMTKDA2QTUyMDE5MzREOTlFREVCMEM3NDVGNjQ4QjIwOUU4NDZENjAwRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMshinYbquB1SN7D9MKhKuGB9A JPfEG+efKBHcHHCiN0cmr2jAYRnH98UWEAHs8pbgbY35Q7MWrG4NQIcxEu3UFGVY VCnxTijiSNbpB/wwbp3oXCAW9Q7VgyQgN1vnMLy3rJ5isD6EWlRpPZimha3CUzyo t+D/4kSLgXKRKNKLeQt/rW2eYtHtco8vpaTJNK4ZYKlmcfvdFgjrUI61QTciocW+ QRGrbZkW/r6XsDDIW1xdsXSOUi1H3A8mb7D7v1VM2yW0jHyl8w5QNa1PZ2m99yh3 5ckRzvnzk2qHoV4LT2JoFmA+9kpmYuWjEc0nRnt1TU2KzpJ/374fNEv4KLUFAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUBqUgGTTZnt6wx0X2SLIJ6EbWAPcwHwYDVR0j BBgwFoAU+GHBfMxjqP5PVLclIp1BguN2cC4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTAyOGVjZGUtMmJiYS00ZTQ2LWEyNDUtZmJjODFkNWMx NDMyLzAvRjg2MUMxN0NDQzYzQThGRTRGNTRCNzI1MjI5RDQxODJFMzc2NzAyRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GODYxQzE3Q0NDNjNBOEZFNEY1NEI3MjUy MjlENDE4MkUzNzY3MDJFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xMDI4ZWNkZS0yYmJhLTRlNDYtYTI0NS1mYmM4MWQ1YzE0MzIvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzEzMDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gHAwDQYJKoZIhvcNAQELBQADggEBAHd9 KsUnMomtxgfbm0nb2o/exxzRSmjV/mr83la9W3Rj0pvarbIiO6d9kiLMtcMfWBAd Rugvhw31rKg7dzxY89B2StHSWACkpsxRjCP62Rvz3AvnUTphmdPY4RG//C2XLlr7 yYS3SxyYJq1+XZVX/aa2Jcr25xkvJw6UcZwt5gB/t/rYAkCxSK6/LndBLrAUGqI4 q3i73WR7rtX3Gxu862T5kTjGkDlwNGjLFIVUctUqsG7X+owySO70VB0caqmBwCT5 8TEy3A5hSsPj/ZH/8h8JE8faWmpD1pm0igSuc9Oh1RLn97lYhjpxaCQ6PgDrTg6I XVp5Oh44S2m3yPAoous= -----END CERTIFICATE-----Generated at Sat Apr 5 10:25:34 2025 by rpki-client