$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a6234643a3a2f34382d3438203d3e20323133343238.roa File: 326130663a383563313a6234643a3a2f34382d3438203d3e20323133343238.roa (raw, json) Hash identifier: MorJ8/zqWP+ENMZ78Dfg8lahRlU/VfcwHwmQyMuE7hc= Subject key identifier: C3:31:53:A9:65:E0:EB:6A:FC:C7:8B:E6:74:B8:D0:D3:54:7A:12:F8 Certificate issuer: /CN=A4A082EAE8EF48C7B407C40E742479EADD862089 Certificate serial: 4F6722850F3D13AFFFAD59DB6F927E76DB8D8980 Authority key identifier: A4:A0:82:EA:E8:EF:48:C7:B4:07:C4:0E:74:24:79:EA:DD:86:20:89 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a6234643a3a2f34382d3438203d3e20323133343238.roa Signing time: Tue 04 Mar 2025 18:56:43 +0000 ROA not before: Tue 04 Mar 2025 18:51:43 +0000 ROA not after: Tue 03 Mar 2026 18:56:43 +0000 asID: 213428 IP address blocks: 2a0f:85c1:b4d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 21:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:67:22:85:0f:3d:13:af:ff:ad:59:db:6f:92:7e:76:db:8d:89:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4A082EAE8EF48C7B407C40E742479EADD862089 Validity Not Before: Mar 4 18:51:43 2025 GMT Not After : Mar 3 18:56:43 2026 GMT Subject: CN=C33153A965E0EB6AFCC78BE674B8D0D3547A12F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:67:d2:6f:34:c6:86:94:ee:00:55:68:04: 75:f4:aa:6f:31:8a:13:1f:04:a5:ba:1b:11:64:12: 59:30:5e:12:87:2a:08:8d:fb:e8:87:10:25:c4:c2: b8:c4:7d:ae:63:b9:0e:02:58:fc:49:88:8e:f8:c6: 9f:56:e5:ed:ad:65:5d:bf:05:96:73:47:e4:57:e7: dd:c3:5d:ff:61:12:df:4f:57:d6:bc:9e:dd:60:b8: d9:5a:0a:ba:20:86:ba:21:b8:c7:cd:0b:b0:40:fd: 31:c3:e5:c8:c9:c9:c7:b7:97:e2:8d:32:84:41:08: 56:ba:15:59:9d:50:b1:8a:7d:96:b2:c7:a3:cf:65: 27:47:fc:7f:ff:75:75:cd:fa:16:46:92:42:b1:45: a0:02:87:5b:28:e0:b8:e8:34:42:ed:cd:82:cb:d3: 48:e8:55:53:ad:cf:b1:a6:e2:ee:45:89:85:14:d8: e3:f7:f3:80:99:6d:a9:eb:3a:04:a1:70:87:d5:22: 35:ba:28:41:86:62:b6:07:80:32:98:2f:e5:75:59: fd:79:b6:56:30:35:09:2f:5c:fd:97:5a:05:af:2a: fc:05:71:17:23:9d:51:4a:d2:c1:98:37:68:17:d6: 8d:fa:2a:44:53:90:b4:6f:b3:b4:7f:f3:31:ab:17: ab:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:31:53:A9:65:E0:EB:6A:FC:C7:8B:E6:74:B8:D0:D3:54:7A:12:F8 X509v3 Authority Key Identifier: keyid:A4:A0:82:EA:E8:EF:48:C7:B4:07:C4:0E:74:24:79:EA:DD:86:20:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a6234643a3a2f34382d3438203d3e20323133343238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:b4d::/48 Signature Algorithm: sha256WithRSAEncryption 3f:d0:f9:13:07:7e:ca:c5:ce:3d:cd:ca:73:31:b0:d5:9a:31: bc:93:98:e5:1c:2f:fe:c3:11:9f:5e:b8:94:d5:b6:57:7e:5b: 0a:41:21:20:42:db:89:71:c7:70:2f:b7:69:f0:26:59:d7:81: 12:75:7c:00:2f:1e:a1:35:62:aa:ab:3e:05:38:8c:4c:59:2b: bf:6c:5a:78:0d:ca:07:54:15:f2:08:50:92:e1:80:4d:70:ec: 2b:68:cb:b9:13:04:19:2c:6c:66:e7:7f:62:e5:1c:d9:14:ce: 4f:e6:22:b0:22:57:43:78:d0:18:76:6d:7a:41:d7:14:84:56: db:5f:42:17:a1:ff:61:e9:63:0c:97:3c:aa:07:20:e5:ef:62: bb:ca:93:21:49:c6:49:93:99:7c:10:19:a8:e2:15:c0:d4:a1: b0:f4:d1:ce:2c:08:18:5e:02:05:c9:63:01:b9:45:80:7c:69: 92:13:d0:5d:52:c6:3c:1f:6b:ee:e2:7f:64:3b:04:b9:a3:9c: f2:84:a6:57:b0:15:54:34:50:31:e0:82:ea:2a:d0:ac:ef:88: 47:10:c7:9e:f3:b5:43:49:56:56:df:57:87:6f:9a:20:7d:15: be:5a:43:2b:3d:d3:fa:2a:42:d2:b5:e6:e2:a2:48:96:e5:f8: 41:2f:93:43 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUT2cihQ89E6//rVnbb5J+dtuNiYAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRBMDgyRUFFOEVGNDhDN0I0MDdDNDBFNzQyNDc5RUFE RDg2MjA4OTAeFw0yNTAzMDQxODUxNDNaFw0yNjAzMDMxODU2NDNaMDMxMTAvBgNV BAMTKEMzMzE1M0E5NjVFMEVCNkFGQ0M3OEJFNjc0QjhEMEQzNTQ3QTEyRjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIWGfSbzTGhpTuAFVoBHX0qm8x ihMfBKW6GxFkElkwXhKHKgiN++iHECXEwrjEfa5juQ4CWPxJiI74xp9W5e2tZV2/ BZZzR+RX593DXf9hEt9PV9a8nt1guNlaCroghrohuMfNC7BA/THD5cjJyce3l+KN MoRBCFa6FVmdULGKfZayx6PPZSdH/H//dXXN+hZGkkKxRaACh1so4LjoNELtzYLL 00joVVOtz7Gm4u5FiYUU2OP384CZbanrOgShcIfVIjW6KEGGYrYHgDKYL+V1Wf15 tlYwNQkvXP2XWgWvKvwFcRcjnVFK0sGYN2gX1o36KkRTkLRvs7R/8zGrF6t7AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUwzFTqWXg62r8x4vmdLjQ01R6EvgwHwYDVR0j BBgwFoAUpKCC6ujvSMe0B8QOdCR56t2GIIkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzEvQTRBMDgyRUFFOEVGNDhDN0I0MDdDNDBFNzQyNDc5RUFERDg2MjA4OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC9BNEEwODJFQUU4RUY0OEM3QjQwN0M0MEU3 NDI0NzlFQUREODYyMDg5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTYyMzQ2NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz MzM0MzIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcELTTANBgkqhkiG9w0BAQsFAAOCAQEAP9D5 Ewd+ysXOPc3KczGw1ZoxvJOY5Rwv/sMRn164lNW2V35bCkEhIELbiXHHcC+3afAm WdeBEnV8AC8eoTViqqs+BTiMTFkrv2xaeA3KB1QV8ghQkuGATXDsK2jLuRMEGSxs Zud/YuUc2RTOT+YisCJXQ3jQGHZtekHXFIRW219CF6H/YeljDJc8qgcg5e9iu8qT IUnGSZOZfBAZqOIVwNShsPTRziwIGF4CBcljAblFgHxpkhPQXVLGPB9r7uJ/ZDsE uaOc8oSmV7AVVDRQMeCC6irQrO+IRxDHnvO1Q0lWVt9Xh2+aIH0VvlpDKz3T+ipC 0rXm4qJIluX4QS+TQw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:22:35 2025 by rpki-client