$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa File: 326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa (raw, json) Hash identifier: nMmiIj2RlJjYPT/1+XLEzvCEDF/otDgwrHV2q/RTde4= Subject key identifier: 91:D6:CE:DD:35:5D:69:39:98:BA:5E:1A:83:42:77:16:2F:C6:E3:37 Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5 Certificate serial: 15A634664DE72978CBC35246276AD2B7E5741F56 Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa Signing time: Fri 07 Mar 2025 18:10:31 +0000 ROA not before: Fri 07 Mar 2025 18:05:31 +0000 ROA not after: Fri 06 Mar 2026 18:10:31 +0000 asID: 203069 IP address blocks: 2a05:dfc5:2f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a6:34:66:4d:e7:29:78:cb:c3:52:46:27:6a:d2:b7:e5:74:1f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5 Validity Not Before: Mar 7 18:05:31 2025 GMT Not After : Mar 6 18:10:31 2026 GMT Subject: CN=91D6CEDD355D693998BA5E1A834277162FC6E337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:59:07:c1:ab:ae:cd:b7:74:b7:f7:c4:53:8e: 7c:6c:76:f7:92:4e:89:9f:5f:96:6f:2d:78:85:29: cc:49:d8:b6:c3:70:bc:ac:04:23:3d:dc:b8:40:b8: 59:c0:f3:68:c7:87:7a:f1:1b:69:cb:b0:46:be:0f: 7a:e7:a6:86:3a:f3:c9:2d:3c:9b:f0:16:e6:80:00: fe:98:02:ea:4d:43:20:71:48:d0:4a:eb:28:51:32: 7d:2c:b1:c1:75:b9:01:10:6f:b5:a1:06:16:d5:1d: 2b:5a:dd:e1:ae:91:7d:2b:6f:8b:35:94:90:e0:4e: 1e:06:63:ca:ab:a2:e0:cb:ae:ca:c5:57:70:dc:14: 29:b2:c3:9e:80:68:6e:69:9b:c7:e6:96:41:bd:98: 10:4a:38:1c:c3:d1:07:0d:53:50:6f:8d:b2:4f:a4: ad:b4:28:d9:38:24:14:4d:b6:b5:eb:8b:25:2d:5b: 95:2f:09:59:99:a0:37:20:32:2c:93:0b:32:98:55: d6:ca:73:d4:3b:50:2e:dc:96:5e:25:80:da:f3:35: 9f:6f:07:5e:7a:1c:cb:cc:d1:5c:35:e7:f3:9f:91: c2:bb:e4:7c:21:0e:57:d3:95:1a:89:d5:b2:4b:27: 50:e3:9c:82:55:13:14:c0:54:52:59:58:0e:10:17: 9f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D6:CE:DD:35:5D:69:39:98:BA:5E:1A:83:42:77:16:2F:C6:E3:37 X509v3 Authority Key Identifier: keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a326630303a3a2f34302d3430203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 83:c6:37:aa:3a:51:d1:36:ee:6a:c4:ff:a1:ad:22:b6:a7:8d: 5b:25:b4:cc:43:2f:54:31:74:ef:b4:f8:6b:ef:93:70:02:c9: 17:5f:4a:20:97:f7:bd:9c:46:b2:2c:bc:e3:6b:b6:a2:4a:20: d9:f7:ff:33:68:43:41:3c:e1:ce:8e:4e:f6:da:45:68:8e:02: cf:ef:b9:52:37:6e:9f:57:48:f5:55:d0:38:29:1b:0a:cc:d4: ee:6e:35:1f:c3:88:26:56:ac:86:77:0e:fc:e5:68:56:1b:54: c7:83:f7:62:35:aa:de:10:18:48:b5:76:a0:12:37:3b:0f:88: d5:ba:7a:a1:f9:2c:82:35:de:37:16:0d:1c:e8:2f:3c:e0:af: 26:ed:f6:7e:b0:80:da:b8:38:ee:17:b5:00:60:83:08:d4:9f: f8:73:e3:7d:e0:c0:f4:3b:27:6a:7e:82:c5:bb:81:fd:e0:f0: 4d:90:9e:e6:a7:4d:7d:6d:9d:0b:a0:96:b6:53:8c:78:ff:3b: 40:af:a1:9a:95:cd:04:dd:6b:81:35:09:d3:34:02:9e:39:41: f4:c7:16:1e:36:32:a7:d2:44:32:75:91:5b:e9:51:7f:3b:0e: 76:14:cf:d5:25:47:06:46:91:a7:f1:bb:f6:3d:38:c8:73:07: b6:7f:da:80 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUFaY0Zk3nKXjLw1JGJ2rSt+V0H1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0 MEIyQjZCNTAeFw0yNTAzMDcxODA1MzFaFw0yNjAzMDYxODEwMzFaMDMxMTAvBgNV BAMTKDkxRDZDRUREMzU1RDY5Mzk5OEJBNUUxQTgzNDI3NzE2MkZDNkUzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGWQfBq67Nt3S398RTjnxsdveS TomfX5ZvLXiFKcxJ2LbDcLysBCM93LhAuFnA82jHh3rxG2nLsEa+D3rnpoY688kt PJvwFuaAAP6YAupNQyBxSNBK6yhRMn0sscF1uQEQb7WhBhbVHSta3eGukX0rb4s1 lJDgTh4GY8qrouDLrsrFV3DcFCmyw56AaG5pm8fmlkG9mBBKOBzD0QcNU1BvjbJP pK20KNk4JBRNtrXriyUtW5UvCVmZoDcgMiyTCzKYVdbKc9Q7UC7cll4lgNrzNZ9v B156HMvM0Vw15/OfkcK75HwhDlfTlRqJ1bJLJ1DjnIJVExTAVFJZWA4QF5+tAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUkdbO3TVdaTmYul4ag0J3Fi/G4zcwHwYDVR0j BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy QjZCNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzMjY2MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzAzMzMwMzYzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoF38UvMA0GCSqGSIb3DQEBCwUAA4IBAQCDxjeqOlHRNu5qxP+h rSK2p41bJbTMQy9UMXTvtPhr75NwAskXX0ogl/e9nEayLLzja7aiSiDZ9/8zaENB POHOjk722kVojgLP77lSN26fV0j1VdA4KRsKzNTubjUfw4gmVqyGdw785WhWG1TH g/diNareEBhItXagEjc7D4jVunqh+SyCNd43Fg0c6C884K8m7fZ+sIDauDjuF7UA YIMI1J/4c+N94MD0OydqfoLFu4H94PBNkJ7mp019bZ0LoJa2U4x4/ztAr6Galc0E 3WuBNQnTNAKeOUH0xxYeNjKn0kQydZFb6VF/Ow52FM/VJUcGRpGn8bv2PTjIcwe2 f9qA -----END CERTIFICATE-----Generated at Sun Apr 6 01:12:26 2025 by rpki-client