$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/326130363a613030353a6432643a3a2f34382d3438203d3e203530313034.roa File: 326130363a613030353a6432643a3a2f34382d3438203d3e203530313034.roa (raw, json) Hash identifier: kLshiO0rOW+ggqCV108F0+7nFme7ukmop3yjQDLvDOs= Subject key identifier: DE:2D:20:25:04:8E:85:CB:3C:2D:AA:80:C5:F3:98:7C:78:E7:AE:0A Certificate issuer: /CN=6EC74C12BEB63E6D47484ACE255EC241A80F5486 Certificate serial: 553F7D54F27D7809C7776BCE7C74D5BADC8A89B9 Authority key identifier: 6E:C7:4C:12:BE:B6:3E:6D:47:48:4A:CE:25:5E:C2:41:A8:0F:54:86 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/6EC74C12BEB63E6D47484ACE255EC241A80F5486.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/326130363a613030353a6432643a3a2f34382d3438203d3e203530313034.roa Signing time: Thu 27 Feb 2025 04:51:49 +0000 ROA not before: Thu 27 Feb 2025 04:46:49 +0000 ROA not after: Thu 26 Feb 2026 04:51:49 +0000 asID: 50104 IP address blocks: 2a06:a005:d2d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/6EC74C12BEB63E6D47484ACE255EC241A80F5486.crl rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/6EC74C12BEB63E6D47484ACE255EC241A80F5486.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/6EC74C12BEB63E6D47484ACE255EC241A80F5486.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 12:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:3f:7d:54:f2:7d:78:09:c7:77:6b:ce:7c:74:d5:ba:dc:8a:89:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EC74C12BEB63E6D47484ACE255EC241A80F5486 Validity Not Before: Feb 27 04:46:49 2025 GMT Not After : Feb 26 04:51:49 2026 GMT Subject: CN=DE2D2025048E85CB3C2DAA80C5F3987C78E7AE0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0a:a0:b3:15:ed:c0:f7:de:d6:57:ef:a2:e9: 63:0e:99:29:30:a9:ea:42:22:2c:c9:40:47:4d:03: ee:60:0c:fe:eb:93:7f:86:cf:18:e0:b6:45:f8:d5: 8b:89:17:4c:d2:d5:49:44:86:13:53:60:1a:d8:bd: 4e:df:6b:62:85:e6:eb:e4:4d:ca:78:2f:d4:8a:ff: 68:ec:85:a8:7c:db:f9:8e:59:fe:c1:7b:a6:63:25: d3:f6:73:ea:45:5d:fa:9e:79:3d:be:8a:53:ff:88: 2e:bd:2f:72:ba:96:14:c2:1d:af:03:7f:c9:b2:e3: ba:6f:e2:19:d0:65:15:43:e7:42:29:c3:9d:82:f8: 4a:84:45:ea:91:0d:e4:ab:6a:78:b4:c9:94:f6:dc: e3:36:04:96:0e:6a:15:bb:57:98:74:12:96:c1:b6: 17:5e:89:73:1b:3f:0c:88:14:0c:b5:fa:b4:35:aa: 3b:0e:22:b3:1d:33:2e:1d:a5:45:88:15:1c:bd:61: 6f:a0:36:43:b2:22:a4:2b:ad:71:a2:83:4e:5d:0d: 0d:c7:6f:82:30:c6:c4:5e:57:0c:7c:90:a3:64:d7: 43:bc:c4:34:7b:50:d7:ce:a5:a6:d5:88:97:7a:1a: 4b:8c:d7:28:e3:36:85:30:ae:89:9a:fe:f6:62:ae: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2D:20:25:04:8E:85:CB:3C:2D:AA:80:C5:F3:98:7C:78:E7:AE:0A X509v3 Authority Key Identifier: keyid:6E:C7:4C:12:BE:B6:3E:6D:47:48:4A:CE:25:5E:C2:41:A8:0F:54:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/6EC74C12BEB63E6D47484ACE255EC241A80F5486.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/6EC74C12BEB63E6D47484ACE255EC241A80F5486.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bd306b4-e5c3-48f9-b2ee-36a9bdded8c4/5/326130363a613030353a6432643a3a2f34382d3438203d3e203530313034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a005:d2d::/48 Signature Algorithm: sha256WithRSAEncryption 1f:a2:d3:61:46:1a:69:d8:5b:e1:9c:67:41:3f:15:9b:91:28: 73:eb:7f:90:9b:8a:65:a2:f8:1e:47:fb:6d:7c:79:e2:00:f1: 4e:76:56:2e:47:94:79:36:16:10:c2:5b:35:32:fa:c1:9d:b6: 26:ce:e6:c5:dd:43:d8:c9:d5:80:13:fc:4c:51:a4:89:79:f5: a5:e7:68:72:1a:55:55:19:11:75:21:59:28:48:71:9b:4f:cb: 85:61:87:77:58:a3:6b:c9:6d:3d:c3:f0:bc:15:99:7c:d5:03: 91:a9:73:c0:d2:6d:2d:9b:1c:b2:a9:59:92:35:f9:1b:94:b0: b4:38:28:4a:ac:10:15:11:03:c9:84:37:e9:0b:dc:1c:13:79: 39:1b:36:a7:e5:9c:ed:d7:e1:88:4d:9f:7d:e0:c9:13:9d:f5: c9:43:82:2c:4e:e0:b3:74:c6:7f:15:09:81:f8:e6:b7:2f:f0: bd:8b:6a:c7:1b:50:07:2b:23:6e:8b:9d:48:76:71:2b:95:f8: a1:1e:1f:76:01:0b:72:06:a2:94:02:29:38:7b:b9:c5:12:17: 8d:88:12:85:2d:5a:42:d3:52:34:15:95:46:90:9a:ce:55:ed: 4b:3f:68:ff:ca:30:f9:29:b8:80:57:c2:ab:40:dc:61:cc:93: cd:bf:33:3d -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUVT99VPJ9eAnHd2vOfHTVutyKibkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkVDNzRDMTJCRUI2M0U2RDQ3NDg0QUNFMjU1RUMyNDFB ODBGNTQ4NjAeFw0yNTAyMjcwNDQ2NDlaFw0yNjAyMjYwNDUxNDlaMDMxMTAvBgNV BAMTKERFMkQyMDI1MDQ4RTg1Q0IzQzJEQUE4MEM1RjM5ODdDNzhFN0FFMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnCqCzFe3A997WV++i6WMOmSkw qepCIizJQEdNA+5gDP7rk3+GzxjgtkX41YuJF0zS1UlEhhNTYBrYvU7fa2KF5uvk Tcp4L9SK/2jshah82/mOWf7Be6ZjJdP2c+pFXfqeeT2+ilP/iC69L3K6lhTCHa8D f8my47pv4hnQZRVD50Ipw52C+EqEReqRDeSrani0yZT23OM2BJYOahW7V5h0EpbB thdeiXMbPwyIFAy1+rQ1qjsOIrMdMy4dpUWIFRy9YW+gNkOyIqQrrXGig05dDQ3H b4IwxsReVwx8kKNk10O8xDR7UNfOpabViJd6GkuM1yjjNoUwroma/vZirr7XAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQU3i0gJQSOhcs8LaqAxfOYfHjnrgowHwYDVR0j BBgwFoAUbsdMEr62Pm1HSErOJV7CQagPVIYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQtZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVk OGM0LzUvNkVDNzRDMTJCRUI2M0U2RDQ3NDg0QUNFMjU1RUMyNDFBODBGNTQ4Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvNkVDNzRDMTJCRUI2M0U2RDQ3NDg0QUNFMjU1RUMyNDFBODBG NTQ4Ni5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJkMzA2YjQt ZTVjMy00OGY5LWIyZWUtMzZhOWJkZGVkOGM0LzUvMzI2MTMwMzYzYTYxMzAzMDM1 M2E2NDMyNjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzNTMwMzEzMDM0LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKgagBQ0tMA0GCSqGSIb3DQEBCwUAA4IBAQAfotNhRhpp2FvhnGdBPxWb kShz63+Qm4plovgeR/ttfHniAPFOdlYuR5R5NhYQwls1MvrBnbYmzubF3UPYydWA E/xMUaSJefWl52hyGlVVGRF1IVkoSHGbT8uFYYd3WKNryW09w/C8FZl81QORqXPA 0m0tmxyyqVmSNfkblLC0OChKrBAVEQPJhDfpC9wcE3k5Gzan5Zzt1+GITZ994MkT nfXJQ4IsTuCzdMZ/FQmB+Oa3L/C9i2rHG1AHKyNui51IdnErlfihHh92AQtyBqKU Aik4e7nFEheNiBKFLVpC01I0FZVGkJrOVe1LP2j/yjD5KbiAV8KrQNxhzJPNvzM9 -----END CERTIFICATE-----Generated at Sat Apr 5 04:34:21 2025 by rpki-client