$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa File: 326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa (raw, json) Hash identifier: qaHIJSPkxJsqQxmrUEOF/0vyCpR/vYUBJ2KiKF+IkLk= Subject key identifier: A6:8B:AB:BB:16:92:F2:8B:EA:F3:2C:A5:45:A9:D7:FD:9B:4E:73:04 Certificate issuer: /CN=A816FDA8ADEC8085A8A348E698709DE583B219B5 Certificate serial: 17C1C672BC53B94836F5FCB3BEF6E8180A059ABB Authority key identifier: A8:16:FD:A8:AD:EC:80:85:A8:A3:48:E6:98:70:9D:E5:83:B2:19:B5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa Signing time: Thu 20 Feb 2025 21:39:29 +0000 ROA not before: Thu 20 Feb 2025 21:34:29 +0000 ROA not after: Thu 19 Feb 2026 21:39:29 +0000 asID: 216455 IP address blocks: 2a07:54c7:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 15:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c1:c6:72:bc:53:b9:48:36:f5:fc:b3:be:f6:e8:18:0a:05:9a:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A816FDA8ADEC8085A8A348E698709DE583B219B5 Validity Not Before: Feb 20 21:34:29 2025 GMT Not After : Feb 19 21:39:29 2026 GMT Subject: CN=A68BABBB1692F28BEAF32CA545A9D7FD9B4E7304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:5b:f1:02:86:96:42:42:46:e8:35:58:7c: c4:93:8c:a8:2e:b3:cf:2f:2c:65:a5:0e:cc:ea:a5: 7d:29:65:e4:65:16:39:d6:5e:a0:cb:9a:f1:2a:58: 4e:d9:93:cf:c5:08:42:d2:b0:4d:30:74:41:34:fd: ab:54:a3:be:fd:f0:86:41:52:0c:71:5c:67:41:0c: 9f:ce:8d:51:54:9c:9c:e0:78:06:57:d7:3c:8d:fd: b6:c7:68:6d:04:a7:ce:13:6e:cb:82:a2:11:21:43: 40:13:cf:77:7a:3b:9e:fc:ff:ce:2a:9f:b2:d8:7a: e5:d3:9f:af:0b:54:82:f3:6b:05:27:2c:97:3a:7f: 29:31:58:8c:23:7e:33:95:96:01:74:76:bc:73:0f: a1:ba:a9:65:d1:b9:c4:5f:07:31:08:6f:92:25:54: 7c:b6:e7:30:97:c2:31:c4:11:2a:6b:92:ca:7b:f5: 76:cb:98:72:38:57:f4:a6:96:e6:e0:ec:15:90:b0: fd:0f:17:3c:0f:46:2f:ff:42:2f:6e:9d:86:9d:42: 97:1a:67:21:b5:2a:cb:3f:17:e4:3c:94:55:6e:19: a9:f3:f7:60:99:a1:54:c0:71:b3:c4:82:ba:9b:db: 57:38:5d:5f:46:18:8e:4c:d5:81:36:50:fb:a2:2a: 9a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8B:AB:BB:16:92:F2:8B:EA:F3:2C:A5:45:A9:D7:FD:9B:4E:73:04 X509v3 Authority Key Identifier: keyid:A8:16:FD:A8:AD:EC:80:85:A8:A3:48:E6:98:70:9D:E5:83:B2:19:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A816FDA8ADEC8085A8A348E698709DE583B219B5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/0/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5000::/36 Signature Algorithm: sha256WithRSAEncryption 1f:53:74:b3:4e:a0:00:52:c4:ab:26:31:f5:a2:a2:b6:5a:f7: 96:07:ea:0e:45:e2:35:74:32:f9:4c:f5:8b:d3:7d:bd:9c:3f: 02:f0:8f:25:0b:0a:89:db:dc:6f:37:32:02:6e:d2:2a:13:f3: e7:42:ab:6e:48:59:39:a8:4c:f3:cd:04:9f:bf:b9:3a:f4:75: 39:3f:57:ba:67:34:78:fe:03:4b:3c:8d:21:9c:f5:2d:d6:5d: 95:71:ef:ab:99:65:f0:e9:e5:7f:e3:48:99:3d:e2:3a:0c:19: 3e:ec:79:b7:8d:af:8e:36:64:c9:33:f5:20:93:d7:2d:1c:34: 1d:26:04:8b:aa:a3:53:2a:63:01:7f:81:75:29:81:75:2a:ec: 66:f8:ef:68:93:40:b5:d8:e6:59:d8:e7:8c:0e:1e:a5:89:63: 57:8f:9d:f5:03:fc:18:99:12:ec:97:5e:fb:cf:34:4f:ed:76: b9:35:83:b6:3c:b5:d8:33:cf:42:6d:f1:9b:4e:13:88:6d:df: c1:8d:0f:16:4f:c2:c6:ef:f2:c6:6d:e8:bc:03:7a:78:3a:5c: 7c:03:ca:72:96:b1:cd:96:0d:7e:77:2a:83:83:5a:a4:95:52: 35:41:c4:97:a3:86:20:e1:75:14:76:de:f1:b0:18:3f:63:89: dc:1d:3e:01 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUF8HGcrxTuUg29fyzvvboGAoFmrswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTgxNkZEQThBREVDODA4NUE4QTM0OEU2OTg3MDlERTU4 M0IyMTlCNTAeFw0yNTAyMjAyMTM0MjlaFw0yNjAyMTkyMTM5MjlaMDMxMTAvBgNV BAMTKEE2OEJBQkJCMTY5MkYyOEJFQUYzMkNBNTQ1QTlEN0ZEOUI0RTczMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC21lvxAoaWQkJG6DVYfMSTjKgu s88vLGWlDszqpX0pZeRlFjnWXqDLmvEqWE7Zk8/FCELSsE0wdEE0/atUo7798IZB UgxxXGdBDJ/OjVFUnJzgeAZX1zyN/bbHaG0Ep84TbsuCohEhQ0ATz3d6O578/84q n7LYeuXTn68LVILzawUnLJc6fykxWIwjfjOVlgF0drxzD6G6qWXRucRfBzEIb5Il VHy25zCXwjHEESprksp79XbLmHI4V/Smlubg7BWQsP0PFzwPRi//Qi9unYadQpca ZyG1Kss/F+Q8lFVuGanz92CZoVTAcbPEgrqb21c4XV9GGI5M1YE2UPuiKprdAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUpouruxaS8ovq8yylRanX/ZtOcwQwHwYDVR0j BBgwFoAUqBb9qK3sgIWoo0jmmHCd5YOyGbUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzAvQTgxNkZEQThBREVDODA4NUE4QTM0OEU2OTg3MDlERTU4M0IyMTlCNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BODE2RkRBOEFERUM4MDg1QThBMzQ4RTY5 ODcwOURFNTgzQjIxOUI1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMC8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdUx1AwDQYJKoZIhvcNAQELBQADggEBAB9T dLNOoABSxKsmMfWiorZa95YH6g5F4jV0MvlM9YvTfb2cPwLwjyULConb3G83MgJu 0ioT8+dCq25IWTmoTPPNBJ+/uTr0dTk/V7pnNHj+A0s8jSGc9S3WXZVx76uZZfDp 5X/jSJk94joMGT7sebeNr442ZMkz9SCT1y0cNB0mBIuqo1MqYwF/gXUpgXUq7Gb4 72iTQLXY5lnY54wOHqWJY1ePnfUD/BiZEuyXXvvPNE/tdrk1g7Y8tdgzz0Jt8ZtO E4ht38GNDxZPwsbv8sZt6LwDeng6XHwDynKWsc2WDX53KoODWqSVUjVBxJejhiDh dRR23vGwGD9jidwdPgE= -----END CERTIFICATE-----Generated at Sat Apr 5 06:34:28 2025 by rpki-client