$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a353a3a2f34382d3438203d3e203236303036.roa File: 326130363a313238373a353a3a2f34382d3438203d3e203236303036.roa (raw, json) Hash identifier: epec3uw8M1QNqA9uXsJCI0b7PlJjYk15VpY2YlD1pmo= Subject key identifier: 99:2B:DC:AB:D2:81:9C:14:3E:45:A7:2F:B6:B8:2C:A5:95:36:49:27 Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 266CC23B8AA25B8C2EF19F5EAD6424ECBF09DE07 Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a353a3a2f34382d3438203d3e203236303036.roa Signing time: Thu 06 Feb 2025 16:59:22 +0000 ROA not before: Thu 06 Feb 2025 16:54:22 +0000 ROA not after: Thu 05 Feb 2026 16:59:22 +0000 asID: 26006 IP address blocks: 2a06:1287:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Feb 2025 08:51:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:6c:c2:3b:8a:a2:5b:8c:2e:f1:9f:5e:ad:64:24:ec:bf:09:de:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Feb 6 16:54:22 2025 GMT Not After : Feb 5 16:59:22 2026 GMT Subject: CN=992BDCABD2819C143E45A72FB6B82CA595364927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:15:c5:3f:3b:17:79:11:98:aa:20:c9:fa:c2: 04:d4:ff:0e:bd:c0:c9:ee:af:82:79:5f:c0:2e:8d: 3b:36:e5:ba:b8:19:25:6a:c1:4e:39:1e:57:a0:0c: 5f:29:d8:33:ce:93:0e:2b:d9:7e:e1:88:7d:44:7b: 32:4f:33:8b:7f:10:f9:1d:25:81:fd:05:13:ca:04: 16:18:69:8f:c3:07:0b:11:84:08:e0:a5:2d:4d:4c: 3e:e0:5f:ec:a6:99:07:e5:5c:c2:80:98:60:68:cd: 7a:3f:22:55:26:e0:42:9d:8a:52:3c:fa:35:3f:f1: f8:65:7a:72:65:d3:77:d1:0d:00:49:af:12:83:2b: 4b:cd:15:c7:20:b6:15:8d:93:0e:ef:c6:3e:56:f9: 61:1b:d2:37:1d:d3:f5:dc:aa:ec:b7:e3:24:6d:78: 86:a9:fc:71:8c:77:d6:55:a3:71:b5:c4:e5:17:51: 5a:c0:52:20:e9:5d:28:e6:67:17:4c:52:d6:8f:02: b1:4f:9e:d1:6a:0b:17:06:10:51:8b:3f:94:74:d5: 99:1a:85:6e:50:8a:6a:16:17:ef:3b:c1:a0:db:80: 82:94:de:f6:90:ba:f3:2e:2a:b3:34:e8:70:1e:de: fc:c3:03:d0:90:82:9d:df:fc:93:90:1d:23:2b:04: a0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:2B:DC:AB:D2:81:9C:14:3E:45:A7:2F:B6:B8:2C:A5:95:36:49:27 X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a353a3a2f34382d3438203d3e203236303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:5::/48 Signature Algorithm: sha256WithRSAEncryption 5f:26:d4:41:84:35:b5:95:a2:c5:84:3e:79:10:c4:f3:c8:0a: 42:7f:d5:c4:11:cc:60:4e:2f:4f:cb:c2:d1:10:c7:bd:00:86: 90:1e:bc:2f:9b:84:84:ff:e7:f8:5f:e0:c5:9b:ce:19:f9:43: d1:d5:97:53:71:d9:a8:22:2d:e0:8f:e0:cf:65:af:4f:7a:c7: da:4b:83:df:99:84:a6:19:67:1b:6f:62:22:05:f5:63:4a:83: 36:c5:84:d4:10:77:a9:a9:93:9f:04:45:4f:c9:74:b9:d7:07: f2:ad:61:a2:99:ac:4f:e0:bf:79:16:c8:14:71:7e:10:58:b1: da:eb:40:24:2e:ff:97:81:f8:ff:47:42:9f:20:18:c0:37:20: 24:49:4a:62:4e:1d:f3:2f:7f:c8:af:86:1b:55:a3:ce:6d:0d: 4f:9b:9c:a4:7d:d0:f7:55:26:e3:ef:6b:cb:82:f1:75:71:cc: 12:3c:5b:1d:55:17:d1:13:6b:5a:09:6a:ba:38:02:2c:93:e6: f6:f9:65:74:44:ce:84:1a:64:bc:e7:b2:96:d9:60:d1:af:ea: e5:8d:ce:ee:d2:b7:c1:7c:8b:0d:fd:42:6f:28:e6:56:91:13: 5f:60:25:48:90:19:9e:87:0e:c6:e1:43:7a:63:5b:85:c6:a7: ce:78:8b:52 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUJmzCO4qiW4wu8Z9erWQk7L8J3gcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNTAyMDYxNjU0MjJaFw0yNjAyMDUxNjU5MjJaMDMxMTAvBgNV BAMTKDk5MkJEQ0FCRDI4MTlDMTQzRTQ1QTcyRkI2QjgyQ0E1OTUzNjQ5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTFcU/Oxd5EZiqIMn6wgTU/w69 wMnur4J5X8AujTs25bq4GSVqwU45HlegDF8p2DPOkw4r2X7hiH1EezJPM4t/EPkd JYH9BRPKBBYYaY/DBwsRhAjgpS1NTD7gX+ymmQflXMKAmGBozXo/IlUm4EKdilI8 +jU/8fhlenJl03fRDQBJrxKDK0vNFccgthWNkw7vxj5W+WEb0jcd0/Xcquy34yRt eIap/HGMd9ZVo3G1xOUXUVrAUiDpXSjmZxdMUtaPArFPntFqCxcGEFGLP5R01Zka hW5QimoWF+87waDbgIKU3vaQuvMuKrM06HAe3vzDA9CQgp3f/JOQHSMrBKA5AgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUmSvcq9KBnBQ+RacvtrgspZU2SScwHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2EzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDMwMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqBhKHAAUwDQYJKoZIhvcNAQELBQADggEBAF8m1EGENbWVosWEPnkQxPPICkJ/ 1cQRzGBOL0/LwtEQx70AhpAevC+bhIT/5/hf4MWbzhn5Q9HVl1Nx2agiLeCP4M9l r096x9pLg9+ZhKYZZxtvYiIF9WNKgzbFhNQQd6mpk58ERU/JdLnXB/KtYaKZrE/g v3kWyBRxfhBYsdrrQCQu/5eB+P9HQp8gGMA3ICRJSmJOHfMvf8ivhhtVo85tDU+b nKR90PdVJuPva8uC8XVxzBI8Wx1VF9ETa1oJaro4AiyT5vb5ZXREzoQaZLznspbZ YNGv6uWNzu7St8F8iw39Qm8o5laRE19gJUiQGZ6HDsbhQ3pjW4XGp854i1I= -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:15 2025 by rpki-client