$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383530303a3a2f34302d3430203d3e20323134383039.roa File: 326130613a363034343a383530303a3a2f34302d3430203d3e20323134383039.roa (raw, json) Hash identifier: DIViRQ42D8a6zmXRGDITJIbQAy0ZAwqWkHiJUlX7JBk= Subject key identifier: 52:69:C1:DD:2A:C9:A7:A8:C6:0C:7F:38:65:55:54:01:55:68:91:31 Certificate issuer: /CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Certificate serial: 057B9E03905C228B823F7AF44EE34BE059AEA1C4 Authority key identifier: 43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383530303a3a2f34302d3430203d3e20323134383039.roa Signing time: Wed 12 Feb 2025 09:21:10 +0000 ROA not before: Wed 12 Feb 2025 09:16:10 +0000 ROA not after: Wed 11 Feb 2026 09:21:10 +0000 asID: 214809 IP address blocks: 2a0a:6044:8500::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:7b:9e:03:90:5c:22:8b:82:3f:7a:f4:4e:e3:4b:e0:59:ae:a1:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Validity Not Before: Feb 12 09:16:10 2025 GMT Not After : Feb 11 09:21:10 2026 GMT Subject: CN=5269C1DD2AC9A7A8C60C7F386555540155689131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:62:a0:8e:7f:66:e5:2d:5c:dd:da:73:69:cf: 6a:87:3b:b0:ec:69:ea:26:28:7d:aa:aa:12:3a:64: 91:50:fc:1e:36:31:cf:57:50:da:94:0c:13:11:85: 6d:08:84:51:ea:e7:71:1a:fc:78:df:5c:e0:f7:15: 32:85:ff:04:32:0d:79:a3:60:3c:82:c5:71:37:e1: 39:cc:8e:77:95:bb:2f:47:b5:07:b8:e7:9a:dc:b6: a0:7a:7b:f8:39:2c:1f:58:81:39:f4:90:2f:66:ba: c8:d6:23:36:ff:0a:33:41:dc:69:4f:51:98:0d:23: a0:fc:9b:01:f5:a4:6e:40:77:a9:48:0b:f6:c3:0a: e2:d8:8d:ec:bc:d0:15:46:2b:3f:c2:f0:a6:dd:68: a6:4d:ff:d7:30:e0:77:3a:5e:b6:a5:c9:55:da:62: b9:45:0a:99:8a:6a:af:8f:47:6f:c6:6c:d7:c1:66: 24:0d:9a:bc:c5:d5:6b:49:d5:a5:2d:0e:74:85:c4: 0a:fd:ec:61:db:0e:4f:e5:e5:ec:8e:8a:ad:ef:b5: 93:80:8a:c5:e3:7f:b1:c1:7a:56:e7:25:1f:b1:d0: 30:dc:8c:f2:01:75:bd:07:a5:67:4c:1d:b4:da:e3: ed:fd:b1:5e:94:c0:26:e6:60:d6:97:94:2f:ed:c1: 5d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:69:C1:DD:2A:C9:A7:A8:C6:0C:7F:38:65:55:54:01:55:68:91:31 X509v3 Authority Key Identifier: keyid:43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383530303a3a2f34302d3430203d3e20323134383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8500::/40 Signature Algorithm: sha256WithRSAEncryption 5c:6e:b8:10:6e:9b:be:a4:af:60:ab:a3:13:f2:7a:c1:7c:10: be:ae:22:08:08:a2:03:68:8e:bd:09:d6:17:33:e5:4c:4d:8f: f4:24:4e:3a:33:5e:9c:cf:c2:3e:11:33:ae:78:73:c7:86:73: a4:5a:87:5f:cc:ca:28:1b:cc:46:39:f8:b8:89:78:b3:61:8c: d2:8e:bb:b4:e9:e6:9a:12:2d:1d:22:46:e8:63:b9:df:45:64: c7:3a:c8:c2:0a:6a:45:06:3c:63:ff:fa:4d:92:38:64:dd:d1: f0:2c:61:c4:56:23:d7:0a:30:a3:a1:f8:8e:5c:64:8e:67:fe: 54:2b:ea:aa:b5:5c:6d:0c:21:52:7f:9d:9d:e5:45:00:14:f5: de:f5:7a:7d:a4:46:aa:09:ed:64:fd:41:cf:06:9c:96:ef:16: 0d:74:89:49:eb:b9:19:ae:12:f0:98:86:69:a9:2a:f9:a9:ab: 5b:76:fe:46:ba:25:68:7a:35:e5:74:bc:d3:08:fd:62:b3:e5: 93:4d:1c:1f:c8:14:b1:b6:9e:92:7a:c7:5b:be:0b:b8:d0:0d: 99:ce:5e:d0:a5:3f:98:6e:a7:9e:c4:57:d8:64:e4:2b:54:f8: 05:0f:6a:f9:8a:bc:0e:24:71:49:43:41:ff:63:00:7b:51:e7: b2:01:c5:10 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUBXueA5BcIouCP3r0TuNL4FmuocQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYy NEVEMkJCQzAeFw0yNTAyMTIwOTE2MTBaFw0yNjAyMTEwOTIxMTBaMDMxMTAvBgNV BAMTKDUyNjlDMUREMkFDOUE3QThDNjBDN0YzODY1NTU1NDAxNTU2ODkxMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvYqCOf2blLVzd2nNpz2qHO7Ds aeomKH2qqhI6ZJFQ/B42Mc9XUNqUDBMRhW0IhFHq53Ea/HjfXOD3FTKF/wQyDXmj YDyCxXE34TnMjneVuy9HtQe455rctqB6e/g5LB9YgTn0kC9musjWIzb/CjNB3GlP UZgNI6D8mwH1pG5Ad6lIC/bDCuLYjey80BVGKz/C8KbdaKZN/9cw4Hc6XralyVXa YrlFCpmKaq+PR2/GbNfBZiQNmrzF1WtJ1aUtDnSFxAr97GHbDk/l5eyOiq3vtZOA isXjf7HBelbnJR+x0DDcjPIBdb0HpWdMHbTa4+39sV6UwCbmYNaXlC/twV27AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUUmnB3SrJp6jGDH84ZVVUAVVokTEwHwYDVR0j BBgwFoAUQ4ivYpxwLdqI+muyqVXbjyTtK7wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzQvNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYyNEVEMkJCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy80Mzg4QUY2MjlDNzAyRERBODhGQTZCQjJB OTU1REI4RjI0RUQyQkJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4MzUzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM0MzgzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgRIUwDQYJKoZIhvcNAQELBQADggEBAFxu uBBum76kr2CroxPyesF8EL6uIggIogNojr0J1hcz5UxNj/QkTjozXpzPwj4RM654 c8eGc6Rah1/MyigbzEY5+LiJeLNhjNKOu7Tp5poSLR0iRuhjud9FZMc6yMIKakUG PGP/+k2SOGTd0fAsYcRWI9cKMKOh+I5cZI5n/lQr6qq1XG0MIVJ/nZ3lRQAU9d71 en2kRqoJ7WT9Qc8GnJbvFg10iUnruRmuEvCYhmmpKvmpq1t2/ka6JWh6NeV0vNMI /WKz5ZNNHB/IFLG2npJ6x1u+C7jQDZnOXtClP5hup57EV9hk5CtU+AUPavmKvA4k cUlDQf9jAHtR57IBxRA= -----END CERTIFICATE-----Generated at Sun Apr 6 06:08:02 2025 by rpki-client