$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa File: 326130353a646663353a3a2f34372d3437203d3e20323033303639.roa (raw, json) Hash identifier: lqIlXTFIWSBiRqL977xA8LwWmhjqpimo3uxiYjVeS/M= Subject key identifier: 68:DB:47:6F:3B:2C:B2:FC:37:93:76:96:98:FF:DC:82:E3:22:FF:B5 Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5 Certificate serial: 2CE737659460AB94908D6F942ABD6E9B70D8C1CE Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa Signing time: Fri 07 Mar 2025 18:10:32 +0000 ROA not before: Fri 07 Mar 2025 18:05:32 +0000 ROA not after: Fri 06 Mar 2026 18:10:32 +0000 asID: 203069 IP address blocks: 2a05:dfc5::/47 maxlen: 47 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 08:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:e7:37:65:94:60:ab:94:90:8d:6f:94:2a:bd:6e:9b:70:d8:c1:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5 Validity Not Before: Mar 7 18:05:32 2025 GMT Not After : Mar 6 18:10:32 2026 GMT Subject: CN=68DB476F3B2CB2FC3793769698FFDC82E322FFB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:77:ea:54:2a:70:c3:72:3c:e0:fc:2b:4d:05: ca:30:7c:50:10:76:a5:b6:98:86:ab:7a:97:a2:66: 8e:9c:d0:b7:bb:fa:ee:5b:ac:3d:13:25:46:be:e4: 46:71:46:31:68:17:11:ce:3f:18:0e:b7:67:1f:01: 3f:99:e6:8b:e9:40:b2:fc:c7:94:78:be:d2:ff:6b: f8:14:89:1d:3e:14:b8:47:48:de:76:ba:80:7a:63: b1:a8:4e:98:bd:69:00:8d:1e:4c:56:7c:bd:c3:d9: 2f:82:57:9e:b2:69:51:a6:29:fe:f9:7d:36:af:18: 02:bf:64:fa:aa:4e:da:76:d0:c3:32:8f:11:5a:ef: eb:ad:3e:e0:98:e5:08:7c:3e:45:6f:7c:96:1d:94: 9e:e2:d0:05:3a:92:d2:ca:ae:31:15:48:6a:06:08: 8d:68:cf:42:e8:cf:68:cc:e4:47:bb:f2:c1:65:00: ce:51:4b:08:59:f2:56:d4:34:4b:7b:27:50:6a:f8: 67:a3:54:09:67:38:3a:9a:7b:db:3b:7a:b3:48:78: 79:cb:a4:68:45:95:90:00:d5:63:97:fe:7b:51:df: 3a:af:bf:77:cd:79:97:c2:c9:5d:55:a7:4b:1a:a1: ce:6c:ca:a4:07:c7:11:f6:b1:7d:6c:9d:43:0d:53: b5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:DB:47:6F:3B:2C:B2:FC:37:93:76:96:98:FF:DC:82:E3:22:FF:B5 X509v3 Authority Key Identifier: keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a3a2f34372d3437203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5::/47 Signature Algorithm: sha256WithRSAEncryption 5f:a5:d7:23:14:61:39:be:e6:cb:5a:72:b2:c6:0e:1e:90:fe: 45:21:d3:8c:95:e0:75:aa:a4:b5:64:bd:cd:8a:dc:f6:50:1b: a4:35:c4:90:91:12:71:1b:92:19:da:15:95:c6:c8:c8:25:86: 86:ff:f6:71:19:03:8f:c7:6c:93:f1:49:5d:4d:a0:c5:d5:b8: 65:37:96:9a:4d:db:a7:a2:39:3f:fb:6c:3b:e9:29:86:86:b8: 80:c0:7e:61:00:4c:42:87:da:c2:38:70:33:68:a1:8f:98:66: 00:24:8c:0e:2d:9e:cc:85:c2:89:ea:cd:69:db:cb:8b:35:dc: 53:e5:16:4d:72:ff:78:00:be:53:3f:38:2f:09:85:09:35:cd: e6:42:7c:cb:ab:8a:5c:3c:82:a6:6f:5b:d4:a8:ae:c6:cf:08: 0b:18:be:b6:12:3b:00:e0:db:db:57:90:e0:21:97:55:a7:4f: cf:32:5e:60:08:ba:d0:2c:a5:0b:6c:01:09:a8:1b:b2:da:54: 9b:92:24:3e:59:38:aa:81:1e:1d:11:00:5c:33:b3:b5:d1:80: 0c:0a:f2:80:3e:26:f5:d1:53:ae:25:27:11:79:37:4f:8b:6e: ec:f7:dc:54:d9:1d:46:58:f3:74:b9:1f:52:03:32:4e:b8:40: 40:19:a0:c3 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIULOc3ZZRgq5SQjW+UKr1um3DYwc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0 MEIyQjZCNTAeFw0yNTAzMDcxODA1MzJaFw0yNjAzMDYxODEwMzJaMDMxMTAvBgNV BAMTKDY4REI0NzZGM0IyQ0IyRkMzNzkzNzY5Njk4RkZEQzgyRTMyMkZGQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOd+pUKnDDcjzg/CtNBcowfFAQ dqW2mIarepeiZo6c0Le7+u5brD0TJUa+5EZxRjFoFxHOPxgOt2cfAT+Z5ovpQLL8 x5R4vtL/a/gUiR0+FLhHSN52uoB6Y7GoTpi9aQCNHkxWfL3D2S+CV56yaVGmKf75 fTavGAK/ZPqqTtp20MMyjxFa7+utPuCY5Qh8PkVvfJYdlJ7i0AU6ktLKrjEVSGoG CI1oz0Loz2jM5Ee78sFlAM5RSwhZ8lbUNEt7J1Bq+GejVAlnODqae9s7erNIeHnL pGhFlZAA1WOX/ntR3zqvv3fNeZfCyV1Vp0saoc5syqQHxxH2sX1snUMNU7UHAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUaNtHbzsssvw3k3aWmP/cguMi/7UwHwYDVR0j BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy QjZCNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1 M2EzYTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIzMDMzMzAzNjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcB KgXfxQAAMA0GCSqGSIb3DQEBCwUAA4IBAQBfpdcjFGE5vubLWnKyxg4ekP5FIdOM leB1qqS1ZL3Nitz2UBukNcSQkRJxG5IZ2hWVxsjIJYaG//ZxGQOPx2yT8UldTaDF 1bhlN5aaTdunojk/+2w76SmGhriAwH5hAExCh9rCOHAzaKGPmGYAJIwOLZ7MhcKJ 6s1p28uLNdxT5RZNcv94AL5TPzgvCYUJNc3mQnzLq4pcPIKmb1vUqK7GzwgLGL62 EjsA4NvbV5DgIZdVp0/PMl5gCLrQLKULbAEJqBuy2lSbkiQ+WTiqgR4dEQBcM7O1 0YAMCvKAPib10VOuJScReTdPi27s99xU2R1GWPN0uR9SAzJOuEBAGaDD -----END CERTIFICATE-----Generated at Sat Apr 5 23:20:55 2025 by rpki-client