$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa File: 326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa (raw, json) Hash identifier: HYPQYH9q04uUtQ2nRIqre2hb3Qbqb6C2ZO6Rxb9EvzQ= Subject key identifier: 41:5C:4E:28:C4:31:79:2A:C4:FF:1B:61:E5:89:42:31:16:D4:94:5D Certificate issuer: /CN=847138B5401830B89B52403C777718BB40B2B6B5 Certificate serial: 712ABDE49F9A752C4E732A8B69480D691C61AC2D Authority key identifier: 84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa Signing time: Fri 07 Mar 2025 18:10:25 +0000 ROA not before: Fri 07 Mar 2025 18:05:25 +0000 ROA not after: Fri 06 Mar 2026 18:10:25 +0000 asID: 203069 IP address blocks: 2a05:dfc5:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 08:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2a:bd:e4:9f:9a:75:2c:4e:73:2a:8b:69:48:0d:69:1c:61:ac:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=847138B5401830B89B52403C777718BB40B2B6B5 Validity Not Before: Mar 7 18:05:25 2025 GMT Not After : Mar 6 18:10:25 2026 GMT Subject: CN=415C4E28C431792AC4FF1B61E589423116D4945D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6e:05:44:38:9e:4e:99:12:bd:8e:74:0b:24: a0:86:2e:89:6e:17:a8:76:96:f0:5d:12:b6:2f:61: 49:41:33:1f:3b:d1:4a:e8:b7:62:79:c2:72:17:5e: 64:7c:43:37:8d:ee:c4:6d:d9:bf:f6:76:4a:2f:8a: 84:5b:41:ce:2f:b3:59:4f:de:1d:8e:a4:b6:35:bd: 87:cf:2f:64:13:52:93:3c:fa:a8:d7:0b:5a:de:d7: 74:1d:58:bb:4e:2c:99:7f:c0:62:62:77:59:5d:63: 01:19:90:4b:47:a6:6b:8d:3e:a3:b1:c3:1d:05:7c: 25:c2:76:01:21:02:2a:26:0a:fa:45:bc:89:cc:cc: fe:1d:c3:13:4a:e3:e9:76:d0:0d:f8:87:19:87:be: 65:90:21:a9:cb:a0:a9:28:e0:a0:66:c4:0f:b3:1a: ce:a4:21:69:3e:e0:c8:56:0f:2a:cc:c6:08:ea:2a: aa:3b:2f:9c:1b:0e:a4:ab:f8:07:97:6c:68:8c:10: f0:fb:4c:6f:d2:30:29:dc:aa:71:a6:80:69:58:32: 9b:c3:ae:31:1e:21:d6:5a:5b:6a:b7:4f:cb:b6:0a: f7:cd:46:86:88:bb:e9:31:44:66:0d:92:ea:6b:76: f3:ca:4e:0f:85:cf:a0:7d:72:95:30:15:ee:98:c8: f9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5C:4E:28:C4:31:79:2A:C4:FF:1B:61:E5:89:42:31:16:D4:94:5D X509v3 Authority Key Identifier: keyid:84:71:38:B5:40:18:30:B8:9B:52:40:3C:77:77:18:BB:40:B2:B6:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/847138B5401830B89B52403C777718BB40B2B6B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/847138B5401830B89B52403C777718BB40B2B6B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/4/326130353a646663353a623030623a3a2f34382d3438203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc5:b00b::/48 Signature Algorithm: sha256WithRSAEncryption c9:b1:7c:7f:51:f9:59:e7:1c:3c:0e:d9:7e:93:16:c0:0a:d1: aa:fe:d4:12:c8:72:83:a7:03:d9:a5:75:45:0d:cf:03:84:32: de:cd:62:d7:85:f0:67:7b:08:a2:a0:fd:62:eb:45:a1:19:33: ab:c3:e1:97:e7:1c:8d:5e:52:1e:8d:e7:f6:23:cc:5c:ca:c9: e4:74:0a:a5:89:5d:64:80:5f:ef:a6:25:de:61:9a:01:e4:13: a7:a1:62:fc:24:f1:dc:95:3e:69:13:64:d7:5d:c8:a8:2c:16: 4e:f9:ec:2d:ee:03:11:1b:01:a2:1c:48:6c:9e:8f:4e:62:9d: 92:21:16:13:b3:1f:8c:06:0d:1f:23:dc:d6:b9:d4:52:28:c8: 0e:01:17:83:b7:55:e4:20:25:46:bb:26:ea:0b:ab:64:2a:5c: 39:1b:d9:64:27:7a:27:d1:f9:f8:77:4b:7b:94:f5:cf:57:ef: 5a:78:d9:9f:ee:97:e6:64:0b:28:f9:cd:d7:01:12:84:98:6a: d0:0d:9d:7a:c9:fd:dd:fe:41:db:d1:78:5a:30:ba:fa:88:43: 3c:16:70:e9:f5:76:61:89:e5:b1:49:b7:90:db:3c:5b:63:51: 65:19:1d:52:11:c2:1b:df:2d:60:f8:af:bc:56:d4:3d:be:9f: d9:61:d8:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUcSq95J+adSxOcyqLaUgNaRxhrC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0 MEIyQjZCNTAeFw0yNTAzMDcxODA1MjVaFw0yNjAzMDYxODEwMjVaMDMxMTAvBgNV BAMTKDQxNUM0RTI4QzQzMTc5MkFDNEZGMUI2MUU1ODk0MjMxMTZENDk0NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEbgVEOJ5OmRK9jnQLJKCGLolu F6h2lvBdErYvYUlBMx870Urot2J5wnIXXmR8QzeN7sRt2b/2dkovioRbQc4vs1lP 3h2OpLY1vYfPL2QTUpM8+qjXC1re13QdWLtOLJl/wGJid1ldYwEZkEtHpmuNPqOx wx0FfCXCdgEhAiomCvpFvInMzP4dwxNK4+l20A34hxmHvmWQIanLoKko4KBmxA+z Gs6kIWk+4MhWDyrMxgjqKqo7L5wbDqSr+AeXbGiMEPD7TG/SMCncqnGmgGlYMpvD rjEeIdZaW2q3T8u2CvfNRoaIu+kxRGYNkuprdvPKTg+Fz6B9cpUwFe6YyPnhAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUQVxOKMQxeSrE/xth5YlCMRbUlF0wHwYDVR0j BBgwFoAUhHE4tUAYMLibUkA8d3cYu0CytrUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzQvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIyQjZCNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvODQ3MTM4QjU0MDE4MzBCODlCNTI0MDNDNzc3NzE4QkI0MEIy QjZCNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMWJmOGU5Nzct NzI3OC00NmNmLWFiZDEtOTljZDFmZDJiZTRlLzQvMzI2MTMwMzUzYTY0NjY2MzM1 M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMzMwMzYzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38WwCzANBgkqhkiG9w0BAQsFAAOCAQEAybF8f1H5WeccPA7Z fpMWwArRqv7UEshyg6cD2aV1RQ3PA4Qy3s1i14XwZ3sIoqD9YutFoRkzq8Phl+cc jV5SHo3n9iPMXMrJ5HQKpYldZIBf76Yl3mGaAeQTp6Fi/CTx3JU+aRNk113IqCwW TvnsLe4DERsBohxIbJ6PTmKdkiEWE7MfjAYNHyPc1rnUUijIDgEXg7dV5CAlRrsm 6gurZCpcORvZZCd6J9H5+HdLe5T1z1fvWnjZn+6X5mQLKPnN1wEShJhq0A2desn9 3f5B29F4WjC6+ohDPBZw6fV2YYnlsUm3kNs8W2NRZRkdUhHCG98tYPivvFbUPb6f 2WHYAA== -----END CERTIFICATE-----Generated at Sat Apr 5 21:22:04 2025 by rpki-client