$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa File: 326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa (raw, json) Hash identifier: mgbh+id7sfJxNC8FBIA9w2AVClblyfoF7d8LLx0Ph9g= Subject key identifier: 52:24:F0:F5:4A:40:A2:98:16:9E:A0:1A:FD:C2:88:CC:15:9E:9F:89 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 2563343467E88D8520A453A485FE3E7720D830F0 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa Signing time: Thu 27 Feb 2025 15:52:12 +0000 ROA not before: Thu 27 Feb 2025 15:47:12 +0000 ROA not after: Thu 26 Feb 2026 15:52:12 +0000 asID: 215379 IP address blocks: 2a14:7581:4850::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:63:34:34:67:e8:8d:85:20:a4:53:a4:85:fe:3e:77:20:d8:30:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Feb 27 15:47:12 2025 GMT Not After : Feb 26 15:52:12 2026 GMT Subject: CN=5224F0F54A40A298169EA01AFDC288CC159E9F89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ff:da:bc:9e:4a:dc:dc:a8:8c:90:0f:7f:ef: 3c:05:84:f9:35:7e:7c:1c:b9:80:87:7d:c6:13:7e: 28:8a:28:d9:d1:aa:ab:18:0d:0d:69:30:8b:ee:46: 44:83:43:0a:a4:0c:cb:c4:5f:0f:d2:fb:f1:5e:12: 63:2c:49:e3:5c:a1:b4:fd:ab:e5:c3:85:1f:bc:5c: 2f:50:d7:01:09:8f:af:dc:d5:b8:20:6f:d9:4b:32: c6:b7:7e:7e:ab:95:71:ae:00:2b:93:28:67:68:60: 1c:77:43:86:5c:61:15:55:de:ee:89:09:c2:f5:d2: 81:9e:92:ce:24:5a:57:28:01:12:91:2a:5d:6e:e6: 99:3a:c9:82:74:2d:34:6d:5b:67:6c:f9:dd:51:c4: 1f:79:d7:62:5d:50:78:8d:7e:df:56:72:4c:b2:36: 56:ea:d0:50:aa:e7:dd:d0:55:4b:66:df:1c:97:57: 4b:4e:19:3f:cb:68:e8:f2:29:23:66:91:ca:13:74: ee:bc:0d:cb:13:48:99:1f:da:9a:02:88:54:90:73: b6:12:d3:36:f2:32:4d:9f:5c:55:18:20:76:89:9b: 75:75:63:8e:97:58:b6:b4:f4:18:ab:f0:29:84:a5: e1:63:7b:14:d0:96:c6:e4:6f:9c:1c:d1:b5:b7:83: 56:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:24:F0:F5:4A:40:A2:98:16:9E:A0:1A:FD:C2:88:CC:15:9E:9F:89 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835303a3a2f34342d3438203d3e20323135333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4850::/44 Signature Algorithm: sha256WithRSAEncryption 93:ad:13:4a:a0:4c:35:c4:04:ee:38:1a:c3:04:d3:e8:2f:d8: 77:30:f8:3a:88:98:b4:21:ca:c9:8e:e2:20:c6:dc:a8:3c:87: 74:73:c0:38:0e:e3:29:c1:c9:35:3b:99:81:49:30:1e:f8:d1: 79:9e:e6:9c:29:df:08:c6:61:48:14:92:2f:cb:13:29:a3:a5: b3:57:8d:49:47:1c:4a:57:ac:64:b8:fa:21:0a:9f:2d:47:c4: f6:7a:e9:68:c5:4a:2d:de:ff:08:ef:6d:63:c5:d2:69:e2:c9: 2e:71:4d:65:50:6d:5e:71:90:60:f1:e2:f1:7a:c8:ec:8a:75: d1:55:50:6d:a7:d1:1f:34:93:92:83:10:9c:99:55:90:d6:cb: ec:78:8b:96:52:30:fe:13:26:05:95:ed:76:c8:ac:6a:a4:07: 59:bd:03:a3:b0:42:29:2a:9f:bf:5c:b9:99:13:04:57:5b:c1: 48:84:f8:dc:ca:a3:81:f4:51:20:5d:d9:ef:b9:6a:e0:72:28: bd:bc:2e:1b:94:a9:6f:e5:be:19:15:7d:1f:79:73:4e:27:51: b5:a8:ab:8c:ed:49:71:8b:b4:7c:b3:e0:1b:ee:05:d9:26:c9: fc:c6:76:c4:e8:17:ec:57:2f:f2:9e:f3:1e:4a:d7:e3:0e:d6: 54:0b:0a:14 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJWM0NGfojYUgpFOkhf4+dyDYMPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNTAyMjcxNTQ3MTJaFw0yNjAyMjYxNTUyMTJaMDMxMTAvBgNV BAMTKDUyMjRGMEY1NEE0MEEyOTgxNjlFQTAxQUZEQzI4OENDMTU5RTlGODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC/9q8nkrc3KiMkA9/7zwFhPk1 fnwcuYCHfcYTfiiKKNnRqqsYDQ1pMIvuRkSDQwqkDMvEXw/S+/FeEmMsSeNcobT9 q+XDhR+8XC9Q1wEJj6/c1bggb9lLMsa3fn6rlXGuACuTKGdoYBx3Q4ZcYRVV3u6J CcL10oGeks4kWlcoARKRKl1u5pk6yYJ0LTRtW2ds+d1RxB9512JdUHiNft9Wckyy Nlbq0FCq593QVUtm3xyXV0tOGT/LaOjyKSNmkcoTdO68DcsTSJkf2poCiFSQc7YS 0zbyMk2fXFUYIHaJm3V1Y46XWLa09Bir8CmEpeFjexTQlsbkb5wc0bW3g1aLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUUiTw9UpAopgWnqAa/cKIzBWen4kwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUhQMA0GCSqGSIb3DQEBCwUAA4IBAQCT rRNKoEw1xATuOBrDBNPoL9h3MPg6iJi0IcrJjuIgxtyoPId0c8A4DuMpwck1O5mB STAe+NF5nuacKd8IxmFIFJIvyxMpo6WzV41JRxxKV6xkuPohCp8tR8T2euloxUot 3v8I721jxdJp4skucU1lUG1ecZBg8eLxesjsinXRVVBtp9EfNJOSgxCcmVWQ1svs eIuWUjD+EyYFle12yKxqpAdZvQOjsEIpKp+/XLmZEwRXW8FIhPjcyqOB9FEgXdnv uWrgcii9vC4blKlv5b4ZFX0feXNOJ1G1qKuM7Ulxi7R8s+Ab7gXZJsn8xnbE6Bfs Vy/ynvMeStfjDtZUCwoU -----END CERTIFICATE-----Generated at Sat Apr 5 06:32:01 2025 by rpki-client