$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a363430383a3a2f34382d3438203d3e20323134323233.roa File: 326130613a363034343a363430383a3a2f34382d3438203d3e20323134323233.roa (raw, json) Hash identifier: qtaVVllap8QfA9Nfp3H+glqc4pf+903yRwgdMDsmuxs= Subject key identifier: 44:F6:E0:6E:DB:C2:F2:0C:D3:6C:29:08:CD:42:C0:CC:57:33:35:96 Certificate issuer: /CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Certificate serial: 0743E326FFFC9E8B5177672968DD2AFDC50A2AE5 Authority key identifier: ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a363430383a3a2f34382d3438203d3e20323134323233.roa Signing time: Sun 06 Apr 2025 18:52:53 +0000 ROA not before: Sun 06 Apr 2025 18:47:53 +0000 ROA not after: Sun 05 Apr 2026 18:52:53 +0000 asID: 214223 IP address blocks: 2a0a:6044:6408::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 21:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:43:e3:26:ff:fc:9e:8b:51:77:67:29:68:dd:2a:fd:c5:0a:2a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Validity Not Before: Apr 6 18:47:53 2025 GMT Not After : Apr 5 18:52:53 2026 GMT Subject: CN=44F6E06EDBC2F20CD36C2908CD42C0CC57333596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d8:fe:3d:ea:b0:88:7a:7b:7a:e5:87:c8:be: 23:f1:91:53:b1:c8:dc:71:c0:6b:7d:d7:77:8c:a3: da:33:74:40:59:10:7b:bd:05:e3:bf:f7:f0:ce:51: 60:08:81:af:0f:8e:82:e6:96:8d:c3:75:2d:aa:2b: b4:cc:df:ba:1c:d6:29:2d:f5:07:71:c9:69:d6:ff: bb:5c:2b:1f:3c:92:54:a6:ff:e0:89:d1:73:ee:c5: 52:fe:e4:5f:92:b1:00:0f:39:cf:b4:4e:c7:0a:f8: 37:82:ff:00:cd:02:77:89:72:9a:9b:f8:30:0f:fc: 7d:f0:4d:6f:53:ea:82:ab:ba:e7:ab:4c:57:3e:7f: a9:8b:21:e2:db:c7:f9:6f:1b:7f:1c:7c:85:b2:88: 2e:61:5c:71:d3:15:81:a2:64:9f:48:2d:91:ba:4a: bf:f9:bd:17:d3:f7:a8:46:64:4d:05:10:3b:4d:96: 93:a6:b7:c8:b0:97:fe:0b:aa:7e:01:cd:31:3f:e1: 2c:eb:33:b2:5f:97:9c:cd:58:6d:cb:17:23:4e:51: e6:fb:eb:fe:99:6b:fb:05:93:d8:49:73:36:9d:50: 7a:f7:e9:40:de:c6:15:e7:1e:64:4b:88:a4:83:92: f6:0e:c9:90:ea:d0:c2:9e:81:c9:14:19:13:dc:bb: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:F6:E0:6E:DB:C2:F2:0C:D3:6C:29:08:CD:42:C0:CC:57:33:35:96 X509v3 Authority Key Identifier: keyid:ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130613a363034343a363430383a3a2f34382d3438203d3e20323134323233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6408::/48 Signature Algorithm: sha256WithRSAEncryption 84:b8:2c:52:f9:21:44:d0:7f:c4:98:fd:f9:e8:9e:8f:8c:21: 02:26:79:74:02:40:a7:c1:31:8f:01:68:e2:b3:d3:c3:69:05: ea:3a:b5:f4:93:88:de:29:09:93:13:15:cd:5b:c2:e4:52:a6: cb:1d:7c:f5:5e:40:c1:05:3f:e4:18:ae:d1:4a:b9:10:56:4e: b4:10:43:fa:1d:de:3c:89:00:39:a1:d0:b3:94:ff:a1:64:70: 2c:69:a0:b3:33:97:89:86:a1:48:29:ad:46:76:42:ba:0a:cf: 66:1f:89:f0:d3:07:26:65:ac:00:30:d4:0f:84:ba:b7:5a:0d: 4f:4d:61:c2:01:11:11:68:fa:4d:16:72:6d:3e:04:52:30:98: 7b:19:1e:29:cc:a8:ba:3d:47:1a:a9:89:7f:c7:19:b8:18:26: 1a:8a:7c:95:d6:4d:3d:de:18:b5:6a:cf:4a:51:e1:b1:cd:c8: a4:03:92:0d:93:21:e1:f3:d0:65:ed:2a:fb:0a:8b:ae:2c:27: 2e:07:f9:7e:d4:a0:c7:8c:1f:f9:7e:32:54:22:b4:e9:61:e9: 6c:f7:9d:c8:aa:6f:df:17:22:ad:d0:40:b1:f0:fb:ea:71:b9: 01:7d:af:e2:06:ef:7c:dc:25:33:4c:9f:72:60:18:38:49:8f: 78:af:fd:27 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUB0PjJv/8notRd2cpaN0q/cUKKuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0 OTQxNTQyOTAeFw0yNTA0MDYxODQ3NTNaFw0yNjA0MDUxODUyNTNaMDMxMTAvBgNV BAMTKDQ0RjZFMDZFREJDMkYyMENEMzZDMjkwOENENDJDMENDNTczMzM1OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC72P496rCIent65YfIviPxkVOx yNxxwGt913eMo9ozdEBZEHu9BeO/9/DOUWAIga8PjoLmlo3DdS2qK7TM37oc1ikt 9QdxyWnW/7tcKx88klSm/+CJ0XPuxVL+5F+SsQAPOc+0TscK+DeC/wDNAneJcpqb +DAP/H3wTW9T6oKruuerTFc+f6mLIeLbx/lvG38cfIWyiC5hXHHTFYGiZJ9ILZG6 Sr/5vRfT96hGZE0FEDtNlpOmt8iwl/4Lqn4BzTE/4SzrM7Jfl5zNWG3LFyNOUeb7 6/6Za/sFk9hJczadUHr36UDexhXnHmRLiKSDkvYOyZDq0MKegckUGRPcu77/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURPbgbtvC8gzTbCkIzULAzFczNZYwHwYDVR0j BBgwFoAU7QuK4D1iUNWe+Oe+VW2U60lBVCkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmYwZDRiNGUtOWY3NC00ZGY0LWJmNWUtMDkyOTA5NmRi ZTA0LzMvRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0OTQxNTQyOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy9FRDBCOEFFMDNENjI1MEQ1OUVGOEU3QkU1 NTZEOTRFQjQ5NDE1NDI5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yZjBkNGI0ZS05Zjc0LTRkZjQtYmY1ZS0wOTI5MDk2ZGJlMDQvMy8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM2MzQzMDM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzIzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRGQIMA0GCSqGSIb3DQEBCwUAA4IBAQCE uCxS+SFE0H/EmP356J6PjCECJnl0AkCnwTGPAWjis9PDaQXqOrX0k4jeKQmTExXN W8LkUqbLHXz1XkDBBT/kGK7RSrkQVk60EEP6Hd48iQA5odCzlP+hZHAsaaCzM5eJ hqFIKa1GdkK6Cs9mH4nw0wcmZawAMNQPhLq3Wg1PTWHCARERaPpNFnJtPgRSMJh7 GR4pzKi6PUcaqYl/xxm4GCYainyV1k093hi1as9KUeGxzcikA5INkyHh89Bl7Sr7 CouuLCcuB/l+1KDHjB/5fjJUIrTpYels953Iqm/fFyKt0ECx8PvqcbkBfa/iBu98 3CUzTJ9yYBg4SY94r/0n -----END CERTIFICATE-----Generated at Fri Jun 6 15:12:22 2025 by rpki-client