$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534343a3a2f34342d3434203d3e20323134343531.roa File: 326130623a396534343a3a2f34342d3434203d3e20323134343531.roa (raw, json) Hash identifier: gA7AKko1OAfo6xCnsM9aOOaXUGb50l0SxaUxR4/Y/Kk= Subject key identifier: FE:1C:9E:0B:ED:AA:7E:5A:40:BC:41:66:B1:6E:02:A7:D1:EF:22:BA Certificate issuer: /CN=D9227930A3E025CD3EE91059F57EFC7573645142 Certificate serial: 11C504156CE226A356B378BA37C19CB6E5CFC5F8 Authority key identifier: D9:22:79:30:A3:E0:25:CD:3E:E9:10:59:F5:7E:FC:75:73:64:51:42 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534343a3a2f34342d3434203d3e20323134343531.roa Signing time: Fri 24 Jan 2025 04:31:20 +0000 ROA not before: Fri 24 Jan 2025 04:26:20 +0000 ROA not after: Fri 23 Jan 2026 04:31:20 +0000 asID: 214451 IP address blocks: 2a0b:9e44::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Feb 2025 08:35:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:c5:04:15:6c:e2:26:a3:56:b3:78:ba:37:c1:9c:b6:e5:cf:c5:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9227930A3E025CD3EE91059F57EFC7573645142 Validity Not Before: Jan 24 04:26:20 2025 GMT Not After : Jan 23 04:31:20 2026 GMT Subject: CN=FE1C9E0BEDAA7E5A40BC4166B16E02A7D1EF22BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:66:3f:30:7c:f0:4a:99:cd:f0:d7:98:6f:40: 19:33:57:d0:09:2d:1f:9e:c6:81:75:b9:63:b4:e1: c2:84:76:6b:c4:13:94:10:7c:c6:db:c7:0b:d7:93: d0:87:0f:fa:8b:a2:cf:77:86:f7:86:81:a5:d4:44: a2:29:9d:4b:99:6f:d8:ca:66:28:2c:06:8c:80:7b: 9e:31:5c:95:8c:11:1a:dc:ea:8d:76:85:4d:42:14: 09:2b:73:36:72:0c:b3:b0:c2:a7:08:dd:d5:e0:7f: 15:9c:db:5b:00:d3:b6:97:27:c9:be:a5:4b:dd:eb: 11:4f:b1:36:d7:4b:04:59:c1:31:d2:e3:30:ad:67: 5a:da:60:26:33:27:05:c7:23:42:3a:cb:28:83:25: aa:46:bc:d8:e6:44:d1:f2:04:26:81:b3:df:c9:45: d0:58:0f:51:9e:1a:bf:f3:9f:fc:e4:0a:31:1d:be: 26:1c:7b:3c:1e:71:a9:87:83:ea:31:e9:4e:95:7d: 1f:b2:e7:c9:14:6b:e9:8e:97:43:44:9f:39:b2:d1: aa:f3:ca:d1:d7:89:c2:db:60:eb:e7:89:a6:f3:87: 0f:de:fb:d4:ca:0c:de:9e:35:96:ab:91:ae:02:41: 74:54:b7:2f:1c:75:a2:28:83:99:eb:4d:6c:03:b6: 5a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1C:9E:0B:ED:AA:7E:5A:40:BC:41:66:B1:6E:02:A7:D1:EF:22:BA X509v3 Authority Key Identifier: keyid:D9:22:79:30:A3:E0:25:CD:3E:E9:10:59:F5:7E:FC:75:73:64:51:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/D9227930A3E025CD3EE91059F57EFC7573645142.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D9227930A3E025CD3EE91059F57EFC7573645142.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/4/326130623a396534343a3a2f34342d3434203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9e44::/44 Signature Algorithm: sha256WithRSAEncryption 18:8b:7c:d0:68:6c:49:67:4a:f8:c6:d7:51:cb:e1:f7:d9:a5: 37:87:2a:ae:af:6b:23:e4:4a:3b:ed:eb:ff:25:e4:09:60:d8: eb:5d:9d:c5:e9:c0:47:ac:42:aa:fa:f9:83:33:8b:ae:a9:5f: db:6e:83:77:da:7f:99:fd:3b:0f:1f:85:e9:76:52:a8:a9:7f: d0:1b:be:e9:3e:34:4d:71:8d:5c:88:72:5f:44:2c:93:fa:4b: 0d:b2:21:5a:7d:bd:15:74:29:ab:6d:bc:bb:ec:44:de:0d:f3: f5:e6:ab:8f:94:1a:fd:3e:b7:01:e8:bf:ab:47:e6:ef:02:4c: a9:6e:a8:d5:94:80:3a:26:17:3f:e9:e0:0d:87:fe:a6:94:7a: dd:92:69:1c:ff:68:07:08:8b:5c:b9:d7:88:b9:b1:06:ac:e6: f8:ab:e2:c3:e0:73:eb:c6:57:d9:98:f4:77:6e:3f:b8:6d:6d: 5e:f0:e7:04:61:3a:2c:8f:20:09:87:e1:a9:5a:a6:7f:a2:46: c0:6b:8e:62:4b:80:d6:e2:7a:f8:ee:3f:d1:b8:f0:85:d5:41: de:3d:53:ed:61:7c:c4:ff:a8:e6:82:a0:35:05:ea:98:eb:3e: e1:c0:c1:15:29:d8:b2:de:7f:3d:13:09:7f:a3:1f:c6:7b:0d: 0f:c4:90:cf -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUEcUEFWziJqNWs3i6N8GctuXPxfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3 MzY0NTE0MjAeFw0yNTAxMjQwNDI2MjBaFw0yNjAxMjMwNDMxMjBaMDMxMTAvBgNV BAMTKEZFMUM5RTBCRURBQTdFNUE0MEJDNDE2NkIxNkUwMkE3RDFFRjIyQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Zj8wfPBKmc3w15hvQBkzV9AJ LR+exoF1uWO04cKEdmvEE5QQfMbbxwvXk9CHD/qLos93hveGgaXURKIpnUuZb9jK ZigsBoyAe54xXJWMERrc6o12hU1CFAkrczZyDLOwwqcI3dXgfxWc21sA07aXJ8m+ pUvd6xFPsTbXSwRZwTHS4zCtZ1raYCYzJwXHI0I6yyiDJapGvNjmRNHyBCaBs9/J RdBYD1GeGr/zn/zkCjEdviYcezwecamHg+ox6U6VfR+y58kUa+mOl0NEnzmy0arz ytHXicLbYOvniabzhw/e+9TKDN6eNZarka4CQXRUty8cdaIog5nrTWwDtlqBAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQU/hyeC+2qflpAvEFmsW4Cp9HvIrowHwYDVR0j BBgwFoAU2SJ5MKPgJc0+6RBZ9X78dXNkUUIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzQvRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3MzY0NTE0Mi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDkyMjc5MzBBM0UwMjVDRDNFRTkxMDU5RjU3RUZDNzU3MzY0 NTE0Mi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjJjZjhiYTct Y2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdlOTUwLzQvMzI2MTMwNjIzYTM5NjUzNDM0 M2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIzMTM0MzQzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgueRAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAYi3zQaGxJZ0r4xtdRy+H32aU3hyqu r2sj5Eo77ev/JeQJYNjrXZ3F6cBHrEKq+vmDM4uuqV/bboN32n+Z/TsPH4XpdlKo qX/QG77pPjRNcY1ciHJfRCyT+ksNsiFafb0VdCmrbby77ETeDfP15quPlBr9PrcB 6L+rR+bvAkypbqjVlIA6Jhc/6eANh/6mlHrdkmkc/2gHCItcudeIubEGrOb4q+LD 4HPrxlfZmPR3bj+4bW1e8OcEYTosjyAJh+GpWqZ/okbAa45iS4DW4nr47j/RuPCF 1UHePVPtYXzE/6jmgqA1BeqY6z7hwMEVKdiy3n89Ewl/ox/Gew0PxJDP -----END CERTIFICATE-----Generated at Wed Feb 5 22:55:33 2025 by rpki-client