$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa File: 326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa (raw, json) Hash identifier: FjsYrEo0wEgNS89VaZKiwt5EudZo4T5v9dS11TtDpgA= Subject key identifier: FB:15:E9:03:B4:77:FF:70:0F:E5:46:47:DD:16:10:33:FD:28:D5:48 Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 0BA2EF9DBF0A7FFFAD3FA17DD3A3C8DB56DE6325 Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa Signing time: Tue 21 Jan 2025 18:05:44 +0000 ROA not before: Tue 21 Jan 2025 18:00:44 +0000 ROA not after: Tue 20 Jan 2026 18:05:44 +0000 asID: 0 IP address blocks: 2a06:1287:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 13 Apr 2025 15:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a2:ef:9d:bf:0a:7f:ff:ad:3f:a1:7d:d3:a3:c8:db:56:de:63:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Jan 21 18:00:44 2025 GMT Not After : Jan 20 18:05:44 2026 GMT Subject: CN=FB15E903B477FF700FE54647DD161033FD28D548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:4f:96:27:b6:16:8a:b3:99:d4:22:50:63: 9b:f4:b7:8e:94:70:6c:1a:fc:4f:cf:0d:1b:b0:b6: b1:4b:40:75:a0:3c:2b:85:0f:d6:19:af:2f:7e:d3: 39:e3:02:ac:11:ee:b8:86:17:f5:62:ef:3d:fe:c2: 5d:e1:67:b6:01:90:59:60:f4:07:86:9d:b8:2c:b4: 13:3b:72:3a:e2:c6:a7:b1:f7:65:0d:7d:e1:05:a5: b4:32:39:ad:4f:3f:06:5d:d7:24:93:83:97:b2:0b: d3:72:b2:19:f0:3a:ac:87:ea:7b:9d:e0:e5:96:4c: c6:f4:60:b2:85:01:42:b6:ad:39:05:97:54:90:c5: a2:a9:af:c7:55:d8:b8:cd:3d:88:0a:17:cb:4f:8d: f4:78:5d:2a:24:01:a6:29:b9:f2:37:33:c9:b0:81: 0f:54:de:7c:52:1d:4d:c8:b2:b6:6d:2f:e3:76:09: 9f:3c:d1:04:60:37:b4:2b:dd:19:4f:90:5e:64:bf: 1e:e2:5a:ad:eb:25:71:52:bf:dc:e5:84:a9:9c:40: c2:8b:cb:c7:5f:8d:de:8c:52:5c:0c:73:c6:1d:7b: a1:e8:7d:3d:63:b5:a9:b8:c9:a5:40:15:d8:32:60: db:53:57:41:1f:dc:75:43:a3:cb:5b:ef:9c:27:01: 6b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:15:E9:03:B4:77:FF:70:0F:E5:46:47:DD:16:10:33:FD:28:D5:48 X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a613030303a3a2f33362d3336203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:a000::/36 Signature Algorithm: sha256WithRSAEncryption 22:5c:47:fd:29:8d:d4:5c:3b:2c:2c:77:f2:b6:a2:e4:a1:21: 96:22:88:6c:57:29:11:2a:a0:dc:aa:19:64:31:ef:0a:42:9c: 1e:af:57:ca:9f:bd:e7:2d:8c:d9:9a:4c:40:36:a6:10:e6:1f: ae:b2:ea:a2:82:db:30:1a:2b:ab:91:ad:f2:12:0d:26:19:4c: f4:31:95:e9:9e:62:3d:02:3c:d3:cc:9a:95:13:c4:ab:b5:c0: 75:7b:73:cf:45:8b:99:a9:f4:f3:ee:17:46:94:27:b8:fe:62: 6c:51:78:6c:3d:09:3c:1d:25:ed:33:c6:63:a8:9b:9f:65:69: 0d:e3:55:5c:c7:ee:02:4a:dd:ef:20:06:e4:5d:8c:db:02:67: 58:a0:66:62:bd:09:95:9d:bc:8c:0a:be:f4:ba:54:fc:c8:4d: b0:fc:d2:4b:e7:38:92:ff:3b:b9:c3:68:f9:7a:a9:83:70:0a: 35:4d:bd:32:bd:0b:4f:e5:a0:ec:07:30:75:0c:de:3c:0c:d7: 94:8e:6a:16:35:65:0b:5e:3e:56:51:46:3a:f0:5b:90:db:82: af:04:db:b5:5a:dc:4e:5c:8d:41:ad:c5:19:77:54:1f:c0:fb: c2:bf:b1:04:d3:f6:26:db:e4:59:dc:2a:e5:a3:24:8f:4e:77: bf:0c:7f:bf -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUC6Lvnb8Kf/+tP6F906PI21beYyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNTAxMjExODAwNDRaFw0yNjAxMjAxODA1NDRaMDMxMTAvBgNV BAMTKEZCMTVFOTAzQjQ3N0ZGNzAwRkU1NDY0N0REMTYxMDMzRkQyOEQ1NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8s0+WJ7YWirOZ1CJQY5v0t46U cGwa/E/PDRuwtrFLQHWgPCuFD9YZry9+0znjAqwR7riGF/Vi7z3+wl3hZ7YBkFlg 9AeGnbgstBM7cjrixqex92UNfeEFpbQyOa1PPwZd1ySTg5eyC9NyshnwOqyH6nud 4OWWTMb0YLKFAUK2rTkFl1SQxaKpr8dV2LjNPYgKF8tPjfR4XSokAaYpufI3M8mw gQ9U3nxSHU3IsrZtL+N2CZ880QRgN7Qr3RlPkF5kvx7iWq3rJXFSv9zlhKmcQMKL y8dfjd6MUlwMc8Yde6HofT1jtam4yaVAFdgyYNtTV0Ef3HVDo8tb75wnAWshAgMB AAGjggJvMIICazAdBgNVHQ4EFgQU+xXpA7R3/3AP5UZH3RYQM/0o1UgwHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2E2MTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYE KgYSh6AwDQYJKoZIhvcNAQELBQADggEBACJcR/0pjdRcOywsd/K2ouShIZYiiGxX KREqoNyqGWQx7wpCnB6vV8qfvectjNmaTEA2phDmH66y6qKC2zAaK6uRrfISDSYZ TPQxlemeYj0CPNPMmpUTxKu1wHV7c89Fi5mp9PPuF0aUJ7j+YmxReGw9CTwdJe0z xmOom59laQ3jVVzH7gJK3e8gBuRdjNsCZ1igZmK9CZWdvIwKvvS6VPzITbD80kvn OJL/O7nDaPl6qYNwCjVNvTK9C0/loOwHMHUM3jwM15SOahY1ZQtePlZRRjrwW5Db gq8E27Va3E5cjUGtxRl3VB/A+8K/sQTT9ibb5FncKuWjJI9Od78Mf78= -----END CERTIFICATE-----Generated at Sun Apr 13 02:50:41 2025 by rpki-client