$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa File: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (raw, json) Hash identifier: GyqnDZwlRU44RSAJS6AmGof5uxXXmzhkRtpFSrxG7Nw= Subject key identifier: DA:9D:57:3D:1A:54:B9:E5:8E:93:93:75:24:B4:ED:21:5A:F2:B5:AE Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 576A65C785C9B54BBC0A2AA4054E39C7FD915B9A Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa Signing time: Thu 27 Feb 2025 06:15:06 +0000 ROA not before: Thu 27 Feb 2025 06:10:06 +0000 ROA not after: Thu 26 Feb 2026 06:15:06 +0000 asID: 215470 IP address blocks: 2a14:7580:f301::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 13:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:6a:65:c7:85:c9:b5:4b:bc:0a:2a:a4:05:4e:39:c7:fd:91:5b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Feb 27 06:10:06 2025 GMT Not After : Feb 26 06:15:06 2026 GMT Subject: CN=DA9D573D1A54B9E58E93937524B4ED215AF2B5AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c8:92:d2:83:9a:ef:33:72:56:e8:57:24:e4: 9d:16:4b:78:cd:11:80:70:ba:25:34:e9:81:67:99: 71:45:33:40:cb:48:36:ac:12:4d:9b:b3:c1:47:4b: 79:69:0c:3b:1f:1d:51:53:c9:9c:ab:03:fb:02:46: cb:d6:1d:84:1e:c7:56:42:72:d9:4a:7a:df:82:ba: d4:99:8d:42:81:ea:0d:64:1d:03:2e:d2:8c:b1:28: 6d:33:cf:de:b7:e9:de:02:f9:54:2e:7e:47:31:5d: 90:8f:f8:81:44:d7:7f:de:a4:0d:0a:1d:12:1f:b3: 17:6a:0e:3d:59:76:1a:93:e9:a4:0e:92:bf:35:4b: ba:d3:de:ab:37:62:b0:0a:21:86:07:51:88:24:c8: 04:2a:04:26:99:c1:41:19:88:88:a1:66:90:38:3d: f5:db:88:37:93:25:d7:f6:e0:28:d4:c2:5d:85:dc: e2:c1:98:90:c9:a7:8a:4f:41:23:ea:d7:6e:49:d6: 67:c0:6f:e1:44:a0:66:b7:10:39:21:04:fc:aa:5f: e5:19:49:aa:8c:65:00:63:f3:03:2a:f1:ca:ac:30: 9e:35:52:68:59:a2:f5:16:90:52:77:9e:01:80:b0: 8d:eb:0e:db:8d:5e:57:97:c7:39:57:34:b7:17:8d: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:9D:57:3D:1A:54:B9:E5:8E:93:93:75:24:B4:ED:21:5A:F2:B5:AE X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:f301::/48 Signature Algorithm: sha256WithRSAEncryption a5:a7:c6:4e:4f:6f:bc:a9:ea:94:64:a0:7a:a9:0c:38:19:df: 98:40:c6:2e:f5:53:68:d7:92:e0:a0:d3:73:2c:5d:a4:a6:d9: 7f:c5:70:45:69:7f:b8:00:1d:e1:df:37:25:45:e8:bc:e4:bc: f5:d3:f1:9b:6a:25:26:b8:61:7d:a7:fd:2f:fc:1b:1a:88:ea: 63:d9:28:bf:05:84:78:c6:2f:6d:63:20:bb:5b:b6:12:2d:bb: 9f:22:27:75:96:7f:ef:33:97:6a:01:e0:66:89:b2:5b:a8:8d: 7b:d2:92:42:e7:bb:59:3d:72:c3:c4:8a:c0:3d:03:50:80:17: b8:4c:af:7c:75:d2:cc:b5:e7:62:a3:da:37:59:d7:57:a2:ee: d9:9a:cf:5d:98:01:95:0e:01:91:30:11:1d:e2:89:15:7c:db: 6f:02:ee:e4:42:3e:f0:41:a2:62:aa:71:ee:6d:e0:f6:e4:14: 2a:af:a6:ff:c3:06:b2:f9:ef:a8:5a:19:f6:d3:57:31:06:d8: bd:7b:cd:d9:53:27:fa:9e:b7:cd:87:17:85:35:9d:a8:f6:f7: d7:a6:ce:f9:95:0c:0c:1f:a7:b6:59:c9:15:d7:70:5c:6c:16: 1c:bc:15:a4:54:98:5e:eb:e7:1a:8b:12:d4:b3:03:04:25:7e: 35:fe:f9:6c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUV2plx4XJtUu8CiqkBU45x/2RW5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTAyMjcwNjEwMDZaFw0yNjAyMjYwNjE1MDZaMDMxMTAvBgNV BAMTKERBOUQ1NzNEMUE1NEI5RTU4RTkzOTM3NTI0QjRFRDIxNUFGMkI1QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpyJLSg5rvM3JW6Fck5J0WS3jN EYBwuiU06YFnmXFFM0DLSDasEk2bs8FHS3lpDDsfHVFTyZyrA/sCRsvWHYQex1ZC ctlKet+CutSZjUKB6g1kHQMu0oyxKG0zz9636d4C+VQufkcxXZCP+IFE13/epA0K HRIfsxdqDj1ZdhqT6aQOkr81S7rT3qs3YrAKIYYHUYgkyAQqBCaZwUEZiIihZpA4 PfXbiDeTJdf24CjUwl2F3OLBmJDJp4pPQSPq125J1mfAb+FEoGa3EDkhBPyqX+UZ SaqMZQBj8wMq8cqsMJ41UmhZovUWkFJ3ngGAsI3rDtuNXleXxzlXNLcXjVEPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU2p1XPRpUueWOk5N1JLTtIVryta4wHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2MzMzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gPMBMA0GCSqGSIb3DQEBCwUAA4IBAQCl p8ZOT2+8qeqUZKB6qQw4Gd+YQMYu9VNo15LgoNNzLF2kptl/xXBFaX+4AB3h3zcl Rei85Lz10/GbaiUmuGF9p/0v/BsaiOpj2Si/BYR4xi9tYyC7W7YSLbufIid1ln/v M5dqAeBmibJbqI170pJC57tZPXLDxIrAPQNQgBe4TK98ddLMtedio9o3WddXou7Z ms9dmAGVDgGRMBEd4okVfNtvAu7kQj7wQaJiqnHubeD25BQqr6b/wway+e+oWhn2 01cxBti9e83ZUyf6nrfNhxeFNZ2o9vfXps75lQwMH6e2WckV13BcbBYcvBWkVJhe 6+caixLUswMEJX41/vls -----END CERTIFICATE-----Generated at Sat Apr 5 04:31:00 2025 by rpki-client