$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa File: 326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa (raw, json) Hash identifier: isp+v1bbWY3zX+eoFLAf4eK3r9/zMrMmocZ2PNCW2Rw= Subject key identifier: 59:1E:38:69:8C:3E:BA:6A:44:5B:9D:DA:62:60:71:63:20:EA:A2:6D Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 178626D6675D42173920611F80FB9A8B87200DB6 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa Signing time: Sat 01 Mar 2025 21:23:46 +0000 ROA not before: Sat 01 Mar 2025 21:18:46 +0000 ROA not after: Sat 28 Feb 2026 21:23:46 +0000 asID: 135659 IP address blocks: 2a14:7581:4940::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:86:26:d6:67:5d:42:17:39:20:61:1f:80:fb:9a:8b:87:20:0d:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Mar 1 21:18:46 2025 GMT Not After : Feb 28 21:23:46 2026 GMT Subject: CN=591E38698C3EBA6A445B9DDA6260716320EAA26D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:66:48:84:3d:99:60:ee:5c:2f:31:ad:58: b3:b9:d5:4c:21:35:80:90:d5:05:a6:a5:57:27:6d: 10:b8:9d:32:5d:d2:63:5f:39:d5:73:b5:36:97:88: 83:6c:f4:3c:e2:30:21:89:75:af:ae:b6:68:c5:02: 93:55:e2:9c:ed:43:7d:ff:22:cc:37:55:fc:ab:7e: 4a:1b:ad:c6:df:41:04:0f:e0:47:d7:8b:52:6c:6a: 8b:58:ac:1a:a8:67:35:2e:c7:7f:33:dc:1f:50:ea: 96:b9:9c:0b:8e:4a:f2:c2:e7:d8:2a:66:5d:83:5d: 10:f5:0b:7a:1a:27:df:d7:5d:a0:b9:b7:ad:59:e3: fb:3f:87:87:e7:a7:25:64:9b:a8:b9:b8:8d:4e:fd: b4:b4:79:bc:28:57:2d:24:c9:23:27:ba:c9:5c:2a: ce:d9:14:f0:51:73:83:84:51:34:54:30:bf:53:0c: 43:a2:6d:ce:33:aa:73:06:c9:91:ae:a6:d6:dd:b2: 17:9a:66:fc:ee:a4:f8:96:ea:c0:8b:03:51:82:5e: 3b:18:1e:7a:a9:d6:ca:63:07:84:e1:2a:62:a1:e6: c8:96:d2:5e:c4:c2:a1:2d:1c:74:6b:28:07:a4:2d: b4:85:7b:a5:33:16:56:18:f1:66:cc:79:7b:3a:7e: cc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1E:38:69:8C:3E:BA:6A:44:5B:9D:DA:62:60:71:63:20:EA:A2:6D X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343934303a3a2f34342d3438203d3e20313335363539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4940::/44 Signature Algorithm: sha256WithRSAEncryption a9:ba:27:e8:54:60:7d:57:60:85:75:dd:8f:2b:67:14:7b:49: 90:87:a4:fd:aa:31:a5:c9:c2:8f:f5:e9:23:b7:cd:0b:5f:a5: 4c:85:52:fd:49:27:f5:d2:91:35:ec:c2:4a:7e:c6:ac:90:7e: 1f:fc:13:34:f4:ee:e3:7e:1d:0a:bc:30:02:33:ae:ae:56:b9: eb:74:e6:d9:b2:15:92:95:57:30:fc:94:d1:68:46:ec:22:f6: e5:18:98:7d:88:24:ce:07:e9:c3:df:a6:23:97:d9:7f:f1:70: 10:1c:d0:13:d8:db:3e:b0:39:44:b0:20:95:ea:65:ad:d9:8b: 10:61:fd:9c:e3:d7:8a:56:93:b4:80:17:9a:77:f8:4d:cd:34: 84:26:7d:d3:08:f7:a6:b7:d1:6d:2a:39:4e:5b:c3:c0:25:92: be:d9:27:6e:63:08:96:3b:da:bd:f3:17:1d:f9:62:b6:62:13: 1c:da:f8:2f:e0:ca:a6:a2:4e:af:7f:9d:bc:cf:d8:52:15:55: d9:ed:9c:d7:fe:73:20:20:20:2b:06:10:51:7f:69:86:43:30: 81:d7:be:2f:78:da:ea:02:d3:93:0b:cf:ae:5f:2e:a6:b1:38: 25:07:08:c2:25:36:7e:91:a5:2c:d1:78:7e:44:3c:c2:cc:38: 3b:50:d7:03 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUF4Ym1mddQhc5IGEfgPuai4cgDbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNTAzMDEyMTE4NDZaFw0yNjAyMjgyMTIzNDZaMDMxMTAvBgNV BAMTKDU5MUUzODY5OEMzRUJBNkE0NDVCOUREQTYyNjA3MTYzMjBFQUEyNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5omZIhD2ZYO5cLzGtWLO51Uwh NYCQ1QWmpVcnbRC4nTJd0mNfOdVztTaXiINs9DziMCGJda+utmjFApNV4pztQ33/ Isw3VfyrfkobrcbfQQQP4EfXi1JsaotYrBqoZzUux38z3B9Q6pa5nAuOSvLC59gq Zl2DXRD1C3oaJ9/XXaC5t61Z4/s/h4fnpyVkm6i5uI1O/bS0ebwoVy0kySMnuslc Ks7ZFPBRc4OEUTRUML9TDEOibc4zqnMGyZGuptbdsheaZvzupPiW6sCLA1GCXjsY Hnqp1spjB4ThKmKh5siW0l7EwqEtHHRrKAekLbSFe6UzFlYY8WbMeXs6fszTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUWR44aYw+umpEW53aYmBxYyDqom0wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzkzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz MzM1MzYzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUlAMA0GCSqGSIb3DQEBCwUAA4IBAQCp uifoVGB9V2CFdd2PK2cUe0mQh6T9qjGlycKP9ekjt80LX6VMhVL9SSf10pE17MJK fsaskH4f/BM09O7jfh0KvDACM66uVrnrdObZshWSlVcw/JTRaEbsIvblGJh9iCTO B+nD36Yjl9l/8XAQHNAT2Ns+sDlEsCCV6mWt2YsQYf2c49eKVpO0gBead/hNzTSE Jn3TCPemt9FtKjlOW8PAJZK+2SduYwiWO9q98xcd+WK2YhMc2vgv4Mqmok6vf528 z9hSFVXZ7ZzX/nMgICArBhBRf2mGQzCB174veNrqAtOTC8+uXy6msTglBwjCJTZ+ kaUs0Xh+RDzCzDg7UNcD -----END CERTIFICATE-----Generated at Sat Apr 5 04:39:09 2025 by rpki-client