$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666653a3a2f34382d3438203d3e2038303735.roa File: 326130613a363034343a386666653a3a2f34382d3438203d3e2038303735.roa (raw, json) Hash identifier: BEjJ0mCyxM+M2001Ah7G9U0Oou9u2J4fEBtY9+LLOoo= Subject key identifier: 9E:01:C0:B4:F7:57:1A:B3:10:9F:C3:9A:44:CD:93:72:96:24:75:9B Certificate issuer: /CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Certificate serial: 58C51293EF3290D8A1DED3B19D3894EC4254A05F Authority key identifier: 43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666653a3a2f34382d3438203d3e2038303735.roa Signing time: Wed 12 Feb 2025 09:21:11 +0000 ROA not before: Wed 12 Feb 2025 09:16:11 +0000 ROA not after: Wed 11 Feb 2026 09:21:11 +0000 asID: 8075 IP address blocks: 2a0a:6044:8ffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 06:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:c5:12:93:ef:32:90:d8:a1:de:d3:b1:9d:38:94:ec:42:54:a0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Validity Not Before: Feb 12 09:16:11 2025 GMT Not After : Feb 11 09:21:11 2026 GMT Subject: CN=9E01C0B4F7571AB3109FC39A44CD93729624759B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:65:56:75:77:4c:84:09:0e:be:b4:b8:c6:f5: 55:85:67:10:de:b7:a6:dd:a9:b8:4b:9f:e0:9c:25: 1c:86:5f:c1:df:28:8e:7f:92:97:65:da:43:df:72: 3c:12:70:e6:ef:94:dd:bc:be:ca:a6:e0:e1:42:ad: 2b:ea:b8:a3:3e:3d:8c:15:43:ff:50:bf:aa:49:27: d7:ea:1d:55:f0:29:c5:fc:2e:fb:d2:a3:a8:2c:f5: bf:66:08:be:12:65:1e:11:f5:ec:b5:6d:c9:38:6a: 6b:2c:a2:90:1c:14:9e:c0:69:6e:14:89:60:77:d8: 89:df:e7:7d:35:3d:a6:67:96:dd:63:a8:f5:fc:f4: 93:9c:56:f5:c7:be:75:7e:65:70:59:81:7c:32:ae: ac:7a:6f:43:6a:3e:c5:4b:02:b2:a0:43:9e:59:a4: f5:4b:8b:e7:b5:7a:6c:b0:4c:06:82:fa:9e:7a:b7: 97:d4:51:d9:4d:fe:92:82:5c:b2:b1:de:56:b1:08: 36:d5:77:eb:09:aa:aa:8a:85:00:fd:ee:8f:b4:02: b8:cc:50:b8:ba:2e:06:85:fe:44:33:95:7c:93:f4: 4f:14:b0:09:55:c0:27:27:14:f7:15:12:40:a1:1b: 85:b1:79:3b:76:de:b7:7a:17:38:c6:ad:1c:6e:71: b6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:01:C0:B4:F7:57:1A:B3:10:9F:C3:9A:44:CD:93:72:96:24:75:9B X509v3 Authority Key Identifier: keyid:43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666653a3a2f34382d3438203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8ffe::/48 Signature Algorithm: sha256WithRSAEncryption 05:c2:fc:cc:07:90:e0:2a:3c:10:6f:61:a0:b4:f5:8c:60:ff: 13:ee:0c:3c:18:07:54:0a:e7:ef:1f:46:75:b3:58:05:e5:13: 85:a3:cf:be:e0:f8:46:d5:d5:fb:da:1a:b9:ba:03:5f:fe:3c: 7b:da:78:53:91:53:79:3b:e4:0a:91:20:a0:71:05:bc:8e:be: f1:07:42:5f:ec:18:49:7d:ba:a0:3a:54:6c:01:81:18:55:19: c9:f8:df:88:58:ce:fe:e8:48:2b:55:9f:7f:9a:98:6e:83:70: 58:ad:07:37:3c:2d:53:54:82:4b:fb:3e:55:aa:9a:c5:bf:71: 65:f9:4b:b9:81:16:08:db:88:15:7a:ea:45:d3:e6:93:ba:27: 56:d9:e2:f3:54:72:c9:4b:6e:82:4d:ed:09:41:36:56:de:5b: 5e:ae:20:ee:b3:4b:0e:01:a4:ec:6a:e9:42:a5:4d:d1:21:40: 40:50:b5:63:40:37:82:d8:db:3b:00:70:4b:99:27:a8:d9:20: b5:a7:d4:9b:46:1f:34:ad:95:04:b5:d5:65:a8:ad:2c:39:38: d9:82:c4:5d:b4:ff:48:af:69:6e:1b:fe:60:13:3e:f8:e6:69: 0e:1f:a9:17:98:92:de:27:9e:70:29:05:37:55:2a:8d:ba:22: ee:5c:28:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUWMUSk+8ykNih3tOxnTiU7EJUoF8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYy NEVEMkJCQzAeFw0yNTAyMTIwOTE2MTFaFw0yNjAyMTEwOTIxMTFaMDMxMTAvBgNV BAMTKDlFMDFDMEI0Rjc1NzFBQjMxMDlGQzM5QTQ0Q0Q5MzcyOTYyNDc1OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjZVZ1d0yECQ6+tLjG9VWFZxDe t6bdqbhLn+CcJRyGX8HfKI5/kpdl2kPfcjwScObvlN28vsqm4OFCrSvquKM+PYwV Q/9Qv6pJJ9fqHVXwKcX8LvvSo6gs9b9mCL4SZR4R9ey1bck4amssopAcFJ7AaW4U iWB32Inf5301PaZnlt1jqPX89JOcVvXHvnV+ZXBZgXwyrqx6b0NqPsVLArKgQ55Z pPVLi+e1emywTAaC+p56t5fUUdlN/pKCXLKx3laxCDbVd+sJqqqKhQD97o+0ArjM ULi6LgaF/kQzlXyT9E8UsAlVwCcnFPcVEkChG4WxeTt23rd6FzjGrRxucbbXAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUngHAtPdXGrMQn8OaRM2TcpYkdZswHwYDVR0j BBgwFoAUQ4ivYpxwLdqI+muyqVXbjyTtK7wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzQvNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYyNEVEMkJCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy80Mzg4QUY2MjlDNzAyRERBODhGQTZCQjJB OTU1REI4RjI0RUQyQkJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4NjY2NjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzgz MDM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqCmBEj/4wDQYJKoZIhvcNAQELBQADggEBAAXC/MwH kOAqPBBvYaC09Yxg/xPuDDwYB1QK5+8fRnWzWAXlE4Wjz77g+EbV1fvaGrm6A1/+ PHvaeFORU3k75AqRIKBxBbyOvvEHQl/sGEl9uqA6VGwBgRhVGcn434hYzv7oSCtV n3+amG6DcFitBzc8LVNUgkv7PlWqmsW/cWX5S7mBFgjbiBV66kXT5pO6J1bZ4vNU cslLboJN7QlBNlbeW16uIO6zSw4BpOxq6UKlTdEhQEBQtWNAN4LY2zsAcEuZJ6jZ ILWn1JtGHzStlQS11WWorSw5ONmCxF20/0ivaW4b/mATPvjmaQ4fqReYkt4nnnAp BTdVKo26Iu5cKAY= -----END CERTIFICATE-----Generated at Fri Apr 4 20:13:49 2025 by rpki-client