$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f34382d3438203d3e20323134343531.roa File: 326131343a373538353a3a2f34382d3438203d3e20323134343531.roa (raw, json) Hash identifier: 1/nE4baiMVs2LRMXh5sGVXRwRPcJEy8duBZuI+RSScs= Subject key identifier: 96:2B:BB:B2:60:97:44:D7:E8:54:C0:9A:48:C8:6E:68:71:EE:02:9C Certificate issuer: /CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Certificate serial: 3205F99BE5B9D60F45F51CF8F5DAC67E96946FBB Authority key identifier: 41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f34382d3438203d3e20323134343531.roa Signing time: Fri 24 Jan 2025 20:36:51 +0000 ROA not before: Fri 24 Jan 2025 20:31:51 +0000 ROA not after: Fri 23 Jan 2026 20:36:51 +0000 asID: 214451 IP address blocks: 2a14:7585::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:05:f9:9b:e5:b9:d6:0f:45:f5:1c:f8:f5:da:c6:7e:96:94:6f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Validity Not Before: Jan 24 20:31:51 2025 GMT Not After : Jan 23 20:36:51 2026 GMT Subject: CN=962BBBB2609744D7E854C09A48C86E6871EE029C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ff:a0:2d:e9:8d:22:04:63:46:9e:f2:9f:19: f8:c0:92:a2:3a:e2:87:87:77:e1:21:29:b0:16:23: 8a:ba:9b:2b:bc:0c:a5:5c:a2:5f:5f:2e:3f:26:51: 92:9a:b5:f3:7a:5a:6d:f4:57:10:82:a8:f1:7c:4c: d0:e3:db:eb:c0:c2:12:97:ed:24:20:ed:aa:35:d1: 76:5e:d5:4e:a8:54:4d:9a:15:5b:89:13:1b:3f:57: b4:66:cd:0a:42:4c:0b:f7:47:1d:d2:49:53:55:6c: 73:c7:2d:ad:65:a3:7a:19:ae:43:5a:c1:12:19:16: 09:9c:93:17:25:a9:1c:83:b7:48:61:3a:e2:30:03: 4c:e7:58:42:42:e5:46:aa:54:6f:7c:b1:d9:d8:29: 3a:09:94:f5:57:0a:3c:50:c9:b6:3c:05:de:64:ff: ea:0b:4f:f0:72:7d:fc:7a:4e:9f:dd:38:5c:ea:d4: aa:ef:27:8d:2b:38:85:e7:ce:91:59:d8:74:08:eb: 9f:7d:dc:8f:e8:9a:86:64:d8:df:b6:1e:01:c2:9c: 8e:80:97:68:e5:bb:e5:1f:dc:62:21:95:7d:c9:fc: ad:48:fb:62:93:ed:62:2e:39:6a:d4:d0:78:9e:25: 7d:56:aa:6e:cd:ca:9f:42:96:3c:5a:e8:11:84:bc: 75:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:2B:BB:B2:60:97:44:D7:E8:54:C0:9A:48:C8:6E:68:71:EE:02:9C X509v3 Authority Key Identifier: keyid:41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538353a3a2f34382d3438203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7585::/48 Signature Algorithm: sha256WithRSAEncryption 2c:6e:6c:d6:98:9d:ce:1b:0c:f7:c7:d4:d9:d9:19:0b:0d:c4: 81:23:26:2d:4a:53:55:00:a0:90:5e:d5:72:83:a0:17:23:ba: 10:cb:24:73:c3:b8:40:79:95:86:3f:7b:63:9f:92:2f:8d:91: 30:fd:0b:95:53:f0:d6:42:a8:67:72:53:0e:43:94:e4:aa:ac: 00:be:6b:f0:0a:56:af:13:ed:04:9a:c6:15:18:02:df:04:20: 4b:02:55:57:b8:80:97:dd:22:db:cc:81:8c:a5:90:06:b7:e8: 71:27:5f:cf:60:8a:17:a4:31:d6:94:51:f4:c9:a2:a0:e3:ba: 81:7e:85:ea:0e:0a:1e:1a:39:cf:69:95:64:b3:09:96:90:b4: a9:06:71:67:ef:9b:38:02:6a:58:b6:1f:bb:0b:2b:42:85:c8: b7:59:39:93:c4:d0:fa:5d:60:a6:a7:64:26:79:ac:96:67:53: d4:a9:80:05:d4:5f:0c:91:88:62:c2:6b:ff:39:90:e1:36:22: cc:c9:c7:33:d9:e0:e6:0d:41:ae:42:84:fa:32:fd:30:23:44: fb:e2:00:7d:9c:1f:23:40:6d:53:f4:4c:3b:f9:07:34:0d:47: 52:8d:55:dc:c8:e3:26:68:ab:ac:d5:07:52:9d:33:0d:16:7b: e5:90:32:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUMgX5m+W51g9F9Rz49drGfpaUb7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYw QzJENEI0QjAeFw0yNTAxMjQyMDMxNTFaFw0yNjAxMjMyMDM2NTFaMDMxMTAvBgNV BAMTKDk2MkJCQkIyNjA5NzQ0RDdFODU0QzA5QTQ4Qzg2RTY4NzFFRTAyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW/6At6Y0iBGNGnvKfGfjAkqI6 4oeHd+EhKbAWI4q6myu8DKVcol9fLj8mUZKatfN6Wm30VxCCqPF8TNDj2+vAwhKX 7SQg7ao10XZe1U6oVE2aFVuJExs/V7RmzQpCTAv3Rx3SSVNVbHPHLa1lo3oZrkNa wRIZFgmckxclqRyDt0hhOuIwA0znWEJC5UaqVG98sdnYKToJlPVXCjxQybY8Bd5k /+oLT/Byffx6Tp/dOFzq1KrvJ40rOIXnzpFZ2HQI65993I/omoZk2N+2HgHCnI6A l2jlu+Uf3GIhlX3J/K1I+2KT7WIuOWrU0HieJX1Wqm7Nyp9Cljxa6BGEvHVhAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUliu7smCXRNfoVMCaSMhuaHHuApwwHwYDVR0j BBgwFoAUQca1VnrbdkYiKhufGqcDjwwtS0swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzEvNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYwQzJENEI0Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC80MUM2QjU1NjdBREI3NjQ2MjIyQTFCOUYx QUE3MDM4RjBDMkQ0QjRCLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yMmNmOGJhNy1jYjAyLTQxOGItYmUwNC00ZDlmM2EwN2U5NTAvMS8zMjYxMzEz NDNhMzczNTM4MzUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzQzNDM1MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqFHWFAAAwDQYJKoZIhvcNAQELBQADggEBACxubNaYnc4bDPfH 1NnZGQsNxIEjJi1KU1UAoJBe1XKDoBcjuhDLJHPDuEB5lYY/e2Ofki+NkTD9C5VT 8NZCqGdyUw5DlOSqrAC+a/AKVq8T7QSaxhUYAt8EIEsCVVe4gJfdItvMgYylkAa3 6HEnX89gihekMdaUUfTJoqDjuoF+heoOCh4aOc9plWSzCZaQtKkGcWfvmzgCali2 H7sLK0KFyLdZOZPE0PpdYKanZCZ5rJZnU9SpgAXUXwyRiGLCa/85kOE2IszJxzPZ 4OYNQa5ChPoy/TAjRPviAH2cHyNAbVP0TDv5BzQNR1KNVdzI4yZoq6zVB1KdMw0W e+WQMqc= -----END CERTIFICATE-----Generated at Sat Apr 5 04:34:26 2025 by rpki-client