$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383730333a3a2f34382d3438203d3e20323134353138.roa File: 326130613a363034343a383730333a3a2f34382d3438203d3e20323134353138.roa (raw, json) Hash identifier: X78kIHzCx8GwjAHLfghBDH3zgTlpD7RiwUqFd+uoabw= Subject key identifier: 91:6E:69:FA:E3:11:9C:6B:7D:C4:32:86:92:7F:A0:CD:E7:38:73:D9 Certificate issuer: /CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Certificate serial: 7C5749198D3BCD7E31997FB5EB94077E22570A64 Authority key identifier: 43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383730333a3a2f34382d3438203d3e20323134353138.roa Signing time: Wed 12 Feb 2025 09:21:09 +0000 ROA not before: Wed 12 Feb 2025 09:16:09 +0000 ROA not after: Wed 11 Feb 2026 09:21:09 +0000 asID: 214518 IP address blocks: 2a0a:6044:8703::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:57:49:19:8d:3b:cd:7e:31:99:7f:b5:eb:94:07:7e:22:57:0a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Validity Not Before: Feb 12 09:16:09 2025 GMT Not After : Feb 11 09:21:09 2026 GMT Subject: CN=916E69FAE3119C6B7DC43286927FA0CDE73873D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:44:e9:88:55:6e:ff:f9:26:f4:f3:28:4d:53: 0b:5b:23:24:a6:38:a1:f1:40:d1:32:48:d2:fa:e6: cc:fd:f5:d0:e5:20:fd:87:4f:32:b6:82:12:13:cb: 0b:43:69:e1:e5:93:56:cf:59:26:18:ab:8d:f8:44: 94:02:73:d2:dc:89:d6:e2:87:ea:42:db:44:f3:56: bc:2c:79:0c:1f:a3:d3:54:ef:47:8a:1e:c9:e4:b9: 98:b4:9e:c1:ce:4d:20:1e:91:2a:32:38:2a:b0:f9: 2e:bc:e8:ca:a4:4f:3e:c9:58:25:8e:01:86:bd:48: 11:84:f7:5a:cc:f8:f9:ca:84:d7:27:e2:8d:e9:50: 56:58:73:a3:03:39:0f:8a:6c:b1:75:f8:e3:af:cf: a3:b6:c5:5c:ce:bc:71:ed:d1:b8:71:57:08:ad:3f: d6:34:7f:27:f2:f4:60:38:79:52:28:91:fe:89:93: fd:56:27:99:86:5e:be:a5:1e:ce:6e:06:e4:a8:d1: 3f:82:b5:d9:ae:28:05:a2:85:43:d0:ab:be:4c:76: 51:c5:f5:61:e9:80:43:77:92:b7:21:c5:2f:9f:3d: 3f:42:14:5e:39:23:89:cf:03:ad:b5:0e:66:db:3a: 76:fb:1f:ed:40:77:15:14:b2:f3:5b:7e:04:55:67: 93:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6E:69:FA:E3:11:9C:6B:7D:C4:32:86:92:7F:A0:CD:E7:38:73:D9 X509v3 Authority Key Identifier: keyid:43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a383730333a3a2f34382d3438203d3e20323134353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8703::/48 Signature Algorithm: sha256WithRSAEncryption ba:fc:80:a3:54:1e:08:8e:3d:62:09:c7:b4:71:90:ac:57:9c: 4d:0a:6a:16:98:ac:fa:73:cd:cd:1e:dc:a5:58:02:bc:f2:a7: 23:02:69:37:78:08:a6:8e:10:6e:fc:63:6b:b3:82:df:4e:23: f0:34:5d:d5:9a:3a:28:f4:77:c8:4d:a2:1c:bb:20:f1:46:7b: ae:18:c2:69:a6:f8:bc:ef:6e:74:a0:6b:dc:14:82:75:4f:52: 4f:0e:f4:ef:cc:57:8c:f8:59:54:38:65:e5:b7:3e:75:d1:c8: 3c:56:80:d9:23:3e:00:f9:30:79:b0:60:a0:72:a8:69:2a:8b: 68:3d:9d:11:7d:43:3a:28:a0:96:7b:92:53:63:7f:f1:74:ee: e5:44:fa:ed:02:cc:f3:0c:f4:4e:f6:fa:97:7d:c2:fe:b4:a6: 67:dc:d0:29:57:d8:8e:61:23:27:37:fa:8c:d1:87:f9:e7:95: 86:41:7f:3e:33:34:87:10:ee:14:d8:a4:50:f5:16:c2:d3:31: f9:3d:e1:c2:f9:df:f2:0f:f2:47:72:51:74:a5:1f:55:13:20: b4:4f:b4:97:df:c3:c6:04:72:bc:df:f7:4e:52:82:34:0c:4e: fc:d9:69:3b:17:f7:02:de:3f:8f:96:f5:0f:64:8b:0b:24:32: d2:6e:6f:35 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfFdJGY07zX4xmX+165QHfiJXCmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYy NEVEMkJCQzAeFw0yNTAyMTIwOTE2MDlaFw0yNjAyMTEwOTIxMDlaMDMxMTAvBgNV BAMTKDkxNkU2OUZBRTMxMTlDNkI3REM0MzI4NjkyN0ZBMENERTczODczRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpROmIVW7/+Sb08yhNUwtbIySm OKHxQNEySNL65sz99dDlIP2HTzK2ghITywtDaeHlk1bPWSYYq434RJQCc9Lcidbi h+pC20TzVrwseQwfo9NU70eKHsnkuZi0nsHOTSAekSoyOCqw+S686MqkTz7JWCWO AYa9SBGE91rM+PnKhNcn4o3pUFZYc6MDOQ+KbLF1+OOvz6O2xVzOvHHt0bhxVwit P9Y0fyfy9GA4eVIokf6Jk/1WJ5mGXr6lHs5uBuSo0T+CtdmuKAWihUPQq75MdlHF 9WHpgEN3krchxS+fPT9CFF45I4nPA621DmbbOnb7H+1AdxUUsvNbfgRVZ5OLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUkW5p+uMRnGt9xDKGkn+gzec4c9kwHwYDVR0j BBgwFoAUQ4ivYpxwLdqI+muyqVXbjyTtK7wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzQvNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYyNEVEMkJCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy80Mzg4QUY2MjlDNzAyRERBODhGQTZCQjJB OTU1REI4RjI0RUQyQkJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4MzczMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzUzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRIcDMA0GCSqGSIb3DQEBCwUAA4IBAQC6 /ICjVB4Ijj1iCce0cZCsV5xNCmoWmKz6c83NHtylWAK88qcjAmk3eAimjhBu/GNr s4LfTiPwNF3Vmjoo9HfITaIcuyDxRnuuGMJppvi87250oGvcFIJ1T1JPDvTvzFeM +FlUOGXltz510cg8VoDZIz4A+TB5sGCgcqhpKotoPZ0RfUM6KKCWe5JTY3/xdO7l RPrtAszzDPRO9vqXfcL+tKZn3NApV9iOYSMnN/qM0Yf555WGQX8+MzSHEO4U2KRQ 9RbC0zH5PeHC+d/yD/JHclF0pR9VEyC0T7SX38PGBHK83/dOUoI0DE782Wk7F/cC 3j+PlvUPZIsLJDLSbm81 -----END CERTIFICATE-----Generated at Sun Apr 6 05:16:46 2025 by rpki-client