$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534303a3a2f34382d3438203d3e20323134343531.roa File: 326130623a396534303a3a2f34382d3438203d3e20323134343531.roa (raw, json) Hash identifier: fbWYhfhqjbEWnM2+gYr8ssviqiMh6Pzbyx5cODHJjkI= Subject key identifier: 11:E2:47:B8:17:DC:4A:79:28:85:F1:27:AC:0D:00:6D:1F:C3:9E:8C Certificate issuer: /CN=D9227930A3E025CD3EE91059F57EFC7573645142 Certificate serial: 2FD64C3909848D336DA59312A9A882298C4CB155 Authority key identifier: D9:22:79:30:A3:E0:25:CD:3E:E9:10:59:F5:7E:FC:75:73:64:51:42 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534303a3a2f34382d3438203d3e20323134343531.roa Signing time: Sun 12 Jan 2025 17:56:16 +0000 ROA not before: Sun 12 Jan 2025 17:51:16 +0000 ROA not after: Sun 11 Jan 2026 17:56:16 +0000 asID: 214451 IP address blocks: 2a0b:9e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Feb 2025 08:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d6:4c:39:09:84:8d:33:6d:a5:93:12:a9:a8:82:29:8c:4c:b1:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9227930A3E025CD3EE91059F57EFC7573645142 Validity Not Before: Jan 12 17:51:16 2025 GMT Not After : Jan 11 17:56:16 2026 GMT Subject: CN=11E247B817DC4A792885F127AC0D006D1FC39E8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:1d:94:da:c4:58:4a:43:3c:b1:94:d1:21: 82:d4:15:6e:18:eb:6f:d3:50:bc:28:f5:70:58:1c: 16:90:86:14:28:2a:e1:04:b9:0b:9d:6b:52:7b:86: 5a:a1:77:93:d7:92:45:b5:c1:ab:4d:c6:90:03:f0: 63:cd:5d:61:5a:8b:00:1c:e8:5f:a9:57:6a:9d:0f: 2d:0e:04:77:eb:35:c0:ae:52:0d:ed:ed:2b:f2:e0: 81:60:32:0e:a3:c6:a7:da:27:39:2e:6b:ea:e1:96: d8:22:75:fa:b5:f9:8b:07:79:38:03:8c:19:14:c7: 19:0a:33:00:18:ef:50:28:81:30:e7:77:d2:c4:ae: 2c:c5:50:25:b0:f3:8d:91:a5:b9:30:e4:65:ed:01: fc:6c:ce:fd:c5:98:7e:28:b5:43:19:d9:f8:a6:7d: c0:6b:fe:bc:89:db:85:03:9f:e7:2a:95:39:5f:3b: 15:52:a5:c6:48:19:cc:38:45:24:c1:83:e6:bc:ba: 59:10:45:08:53:28:48:6d:3f:c7:9c:ed:02:19:59: d3:9d:9a:0a:36:12:14:f6:2c:eb:78:dd:3b:7f:80: 3c:fd:98:f4:6b:1c:7b:28:24:64:ae:2d:06:b8:6e: b5:03:6a:e7:4f:36:6a:96:dc:31:f5:a6:01:b7:a9: 80:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E2:47:B8:17:DC:4A:79:28:85:F1:27:AC:0D:00:6D:1F:C3:9E:8C X509v3 Authority Key Identifier: keyid:D9:22:79:30:A3:E0:25:CD:3E:E9:10:59:F5:7E:FC:75:73:64:51:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534303a3a2f34382d3438203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9e40::/48 Signature Algorithm: sha256WithRSAEncryption 8f:96:9c:d1:e7:e2:bb:0c:ce:d7:de:67:c6:76:71:87:f0:4d: 35:bf:a7:3a:77:e0:12:8f:a7:ca:d6:9f:e4:4b:e4:8c:3c:57: 37:61:d8:df:c0:59:45:ea:dd:a4:7c:88:02:03:9b:49:28:9b: 62:90:a6:ef:d8:40:61:a9:60:bd:ab:7d:e5:87:14:3a:4e:87: d2:91:49:95:a9:b6:d7:46:51:d4:fe:36:69:81:6b:bc:cd:5c: cc:19:08:bb:ea:c6:56:f0:34:25:b7:ad:a5:73:d2:8e:86:9c: 7d:87:9f:ee:e1:25:65:3c:f0:31:6e:5f:a0:ec:c8:cf:52:1b: 1d:a8:66:5a:ba:7d:7b:ef:03:72:b1:99:d0:8a:f3:2f:86:c2: 07:cd:73:dc:89:75:1f:83:b1:cb:7c:f9:cc:b5:61:f4:0c:9c: da:58:0b:e9:75:e8:dc:54:6f:f1:33:4f:b3:d7:2f:4e:e5:bb: c6:36:3a:ce:75:32:c6:4b:d6:59:eb:da:95:85:3e:0a:02:b2: 36:c0:10:55:c8:79:02:eb:1e:90:96:55:a6:65:d2:0d:c6:54: ca:59:46:fb:de:66:6d:d8:58:24:c1:5e:38:7b:1d:7a:86:ba: 54:58:03:bd:3a:bb:a0:3a:62:0f:50:ce:2e:04:f4:cb:ca:ff: d4:93:11:fe -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUL9ZMOQmEjTNtpZMSqaiCKYxMsVUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3 MzY0NTE0MjAeFw0yNTAxMTIxNzUxMTZaFw0yNjAxMTExNzU2MTZaMDMxMTAvBgNV BAMTKDExRTI0N0I4MTdEQzRBNzkyODg1RjEyN0FDMEQwMDZEMUZDMzlFOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChyx2U2sRYSkM8sZTRIYLUFW4Y 62/TULwo9XBYHBaQhhQoKuEEuQuda1J7hlqhd5PXkkW1watNxpAD8GPNXWFaiwAc 6F+pV2qdDy0OBHfrNcCuUg3t7Svy4IFgMg6jxqfaJzkua+rhltgidfq1+YsHeTgD jBkUxxkKMwAY71AogTDnd9LErizFUCWw842Rpbkw5GXtAfxszv3FmH4otUMZ2fim fcBr/ryJ24UDn+cqlTlfOxVSpcZIGcw4RSTBg+a8ulkQRQhTKEhtP8ec7QIZWdOd mgo2EhT2LOt43Tt/gDz9mPRrHHsoJGSuLQa4brUDaudPNmqW3DH1pgG3qYCBAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUEeJHuBfcSnkohfEnrA0AbR/DnowwHwYDVR0j BBgwFoAU2SJ5MKPgJc0+6RBZ9X78dXNkUUIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzQvRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3MzY0NTE0Mi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3MzY0 NTE0Mi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjJjZjhiYTct Y2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdlOTUwLzQvMzI2MTMwNjIzYTM5NjUzNDMw M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM0MzQzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA KgueQAAAMA0GCSqGSIb3DQEBCwUAA4IBAQCPlpzR5+K7DM7X3mfGdnGH8E01v6c6 d+ASj6fK1p/kS+SMPFc3YdjfwFlF6t2kfIgCA5tJKJtikKbv2EBhqWC9q33lhxQ6 TofSkUmVqbbXRlHU/jZpgWu8zVzMGQi76sZW8DQlt62lc9KOhpx9h5/u4SVlPPAx bl+g7MjPUhsdqGZaun177wNysZnQivMvhsIHzXPciXUfg7HLfPnMtWH0DJzaWAvp dejcVG/xM0+z1y9O5bvGNjrOdTLGS9ZZ69qVhT4KArI2wBBVyHkC6x6QllWmZdIN xlTKWUb73mZt2FgkwV44ex16hrpUWAO9OrugOmIPUM4uBPTLyv/UkxH+ -----END CERTIFICATE-----Generated at Wed Feb 5 22:45:42 2025 by rpki-client