$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa File: 326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa (raw, json) Hash identifier: j14pv+Fih0N85ic38d12TDY0uRhDLdNY7cvkmnI17jw= Subject key identifier: 7C:80:4E:39:D7:F5:BB:10:52:BF:0F:B1:A5:3C:0F:33:70:EE:D4:6D Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 12855A847E1DA58CD32959475834D4D3BA6CE024 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa Signing time: Wed 26 Feb 2025 12:52:12 +0000 ROA not before: Wed 26 Feb 2025 12:47:12 +0000 ROA not after: Wed 25 Feb 2026 12:52:12 +0000 asID: 215221 IP address blocks: 2a14:7581:4830::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:85:5a:84:7e:1d:a5:8c:d3:29:59:47:58:34:d4:d3:ba:6c:e0:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Feb 26 12:47:12 2025 GMT Not After : Feb 25 12:52:12 2026 GMT Subject: CN=7C804E39D7F5BB1052BF0FB1A53C0F3370EED46D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:08:0a:28:62:65:6f:52:5c:a7:c2:74:17:eb: 7e:b1:1b:4c:d4:ff:e9:1c:18:fc:9a:5a:df:69:7e: 1e:c9:5f:44:da:ce:b0:df:46:02:71:ce:62:9a:d6: ee:90:10:58:10:0d:bf:34:c0:e1:09:ee:34:55:1f: b1:74:31:f7:5b:01:32:65:34:f2:9e:05:27:aa:a5: 69:42:1a:a6:0a:65:61:70:47:97:a1:56:1b:f4:3a: f7:04:2f:e0:2a:0c:7a:2f:ca:df:6e:36:90:8f:91: 88:c0:2d:13:0d:49:13:44:2f:72:ba:9c:af:ae:4e: 1b:38:8a:ea:5b:f8:04:98:c8:0e:1f:9e:75:65:98: 63:f3:92:2e:4c:95:e3:17:fc:41:80:25:f9:08:c1: 44:f7:a8:03:26:14:9d:71:c9:35:3d:77:e1:51:5a: 30:9b:06:e7:5a:e0:36:dd:51:e6:4e:e7:c1:72:6a: 5f:3d:a1:d3:bb:59:b8:ee:62:27:97:c6:37:1b:04: 94:75:5f:2b:3d:23:91:e3:7f:24:d9:f0:df:f2:78: 5b:6f:69:83:db:c7:67:82:e9:b6:90:04:56:a0:4b: 15:f0:ba:a1:24:27:84:d7:4d:ed:77:5b:75:37:02: 61:b8:87:92:e5:2a:25:71:8f:99:c6:86:88:d9:02: 5b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:80:4E:39:D7:F5:BB:10:52:BF:0F:B1:A5:3C:0F:33:70:EE:D4:6D X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343833303a3a2f34342d3438203d3e20323135323231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4830::/44 Signature Algorithm: sha256WithRSAEncryption 62:39:83:ab:db:2a:4e:85:e2:3a:67:5f:16:25:03:10:4a:c6: 63:5b:7e:1d:27:c9:a5:da:17:22:e7:65:03:67:b4:27:74:80: f1:93:83:55:f0:77:b1:49:07:36:33:90:57:f2:d4:8f:9c:71: 9e:71:ad:be:7f:7d:b5:c9:e2:c3:4c:0a:22:98:84:14:3f:c4: 07:5c:fb:9e:3c:0a:a7:b9:24:76:62:d2:e6:4b:00:b3:03:11: 26:43:d6:d4:37:5e:21:6c:95:01:3e:52:db:37:0f:6d:29:93: c4:f4:a8:d2:69:08:c1:9c:bb:37:62:73:98:1f:de:c2:62:fe: 1d:4b:1a:be:2c:e5:69:cb:94:fc:7b:13:a7:ba:78:27:69:f0: 4f:32:37:96:4d:e0:90:fc:ad:bd:b5:75:99:fb:56:f7:15:b2: c5:a6:9d:71:f3:85:f3:65:45:47:14:70:08:f4:e7:a3:a6:66: 55:64:53:17:96:f9:14:da:46:a8:da:6c:cd:88:30:0b:e8:04: ea:99:b4:e7:c0:90:bd:5b:da:70:59:b8:91:85:76:db:66:e7: 7e:a8:ca:4d:f2:f6:a0:37:14:9b:d4:08:5e:2c:80:5c:cb:f7: df:53:39:e8:2c:92:6f:86:18:2e:be:c0:13:fd:d4:d9:6a:e5: 00:7c:52:5e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEoVahH4dpYzTKVlHWDTU07ps4CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNTAyMjYxMjQ3MTJaFw0yNjAyMjUxMjUyMTJaMDMxMTAvBgNV BAMTKDdDODA0RTM5RDdGNUJCMTA1MkJGMEZCMUE1M0MwRjMzNzBFRUQ0NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFCAooYmVvUlynwnQX636xG0zU /+kcGPyaWt9pfh7JX0TazrDfRgJxzmKa1u6QEFgQDb80wOEJ7jRVH7F0MfdbATJl NPKeBSeqpWlCGqYKZWFwR5ehVhv0OvcEL+AqDHovyt9uNpCPkYjALRMNSRNEL3K6 nK+uThs4iupb+ASYyA4fnnVlmGPzki5MleMX/EGAJfkIwUT3qAMmFJ1xyTU9d+FR WjCbBuda4DbdUeZO58Fyal89odO7WbjuYieXxjcbBJR1Xys9I5HjfyTZ8N/yeFtv aYPbx2eC6baQBFagSxXwuqEkJ4TXTe13W3U3AmG4h5LlKiVxj5nGhojZAlvnAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUfIBOOdf1uxBSvw+xpTwPM3Du1G0wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzMzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzIzMjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUgwMA0GCSqGSIb3DQEBCwUAA4IBAQBi OYOr2ypOheI6Z18WJQMQSsZjW34dJ8ml2hci52UDZ7QndIDxk4NV8HexSQc2M5BX 8tSPnHGeca2+f321yeLDTAoimIQUP8QHXPuePAqnuSR2YtLmSwCzAxEmQ9bUN14h bJUBPlLbNw9tKZPE9KjSaQjBnLs3YnOYH97CYv4dSxq+LOVpy5T8exOnungnafBP MjeWTeCQ/K29tXWZ+1b3FbLFpp1x84XzZUVHFHAI9OejpmZVZFMXlvkU2kao2mzN iDAL6ATqmbTnwJC9W9pwWbiRhXbbZud+qMpN8vagNxSb1AheLIBcy/ffUznoLJJv hhguvsAT/dTZauUAfFJe -----END CERTIFICATE-----Generated at Sat Apr 5 04:32:41 2025 by rpki-client