$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e20323131303636.roa File: 326130363a313238333a386130303a3a2f34302d3438203d3e20323131303636.roa (raw, json) Hash identifier: /Rv6Qyd4oJNesSRg3hY6FH8XM9bnDURMSVi/jtj0pWA= Subject key identifier: 34:37:DC:12:D1:B0:81:B2:4A:95:D5:E9:F2:C1:17:67:EF:CD:8B:9B Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 662547D86DD20A809FDB9DEAC825F1D4BE3C39AB Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e20323131303636.roa Signing time: Sun 30 Mar 2025 11:22:53 +0000 ROA not before: Sun 30 Mar 2025 11:17:53 +0000 ROA not after: Sun 29 Mar 2026 11:22:53 +0000 asID: 211066 IP address blocks: 2a06:1283:8a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 23:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:25:47:d8:6d:d2:0a:80:9f:db:9d:ea:c8:25:f1:d4:be:3c:39:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Mar 30 11:17:53 2025 GMT Not After : Mar 29 11:22:53 2026 GMT Subject: CN=3437DC12D1B081B24A95D5E9F2C11767EFCD8B9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7a:bf:71:cd:8c:08:fb:6a:8d:6f:b8:2f:d5: 18:5b:fb:57:02:c9:89:04:3d:97:d0:bf:e3:8e:a0: 42:02:e6:b1:34:49:af:ba:7c:1d:4a:ca:70:09:6a: 88:aa:0e:08:5b:b8:4d:d4:57:1a:35:d1:17:93:22: fd:70:a1:17:66:a2:f6:37:13:cf:b1:65:a5:70:8a: c1:00:be:17:2d:e4:e8:c7:b5:b4:c3:a6:69:d2:65: 14:eb:15:90:9b:7a:29:00:a6:ba:70:f4:96:78:26: b3:37:7e:07:c1:1f:29:ed:eb:3c:46:fc:e7:b4:bc: dd:10:22:49:aa:c4:c6:ae:54:30:bd:59:51:3d:0a: be:8d:87:83:5b:e4:61:ea:e0:fb:37:18:59:79:f1: 26:f7:27:04:18:e8:94:7d:70:25:2e:89:01:67:2c: 3a:48:70:b2:aa:bd:14:d7:03:6b:4e:e9:77:a0:b8: d9:9a:aa:06:c7:2d:e5:be:7e:e4:79:62:c2:a7:4f: 39:31:79:96:56:9d:0d:50:6a:68:fd:9d:0a:4b:10: 14:c4:94:6a:91:ec:a5:48:50:87:4c:99:37:41:03: 9f:a0:9b:93:12:40:4a:8b:cb:c3:60:45:4b:b5:e0: 9e:f8:d7:37:90:27:04:cd:5f:44:41:74:59:08:fc: 50:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:37:DC:12:D1:B0:81:B2:4A:95:D5:E9:F2:C1:17:67:EF:CD:8B:9B X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8a00::/40 Signature Algorithm: sha256WithRSAEncryption 36:e3:d5:b7:53:93:5d:2b:df:d6:a4:05:c1:b5:31:0b:1f:75: c5:6f:d5:f1:12:1e:35:d7:32:ac:cd:71:77:3d:91:7e:3e:55: 84:7d:84:9c:58:96:c7:de:44:9c:a6:42:fa:97:ce:b2:49:f2: d0:d3:c5:5b:c6:07:bb:c0:85:2c:55:d9:2c:eb:35:95:2f:1b: 0c:38:fb:04:ff:b5:da:39:61:62:41:2a:a3:05:e4:93:8d:37: 4a:7e:6f:9b:44:ad:df:34:ed:e1:1c:dd:6b:70:0f:d3:d5:ff: 2f:53:0b:08:e5:4b:98:83:87:c7:37:56:9f:a8:2a:54:3b:96: 1d:09:88:d8:56:3a:d7:d8:4f:9a:91:01:c9:5b:e7:99:d5:b6: 96:9b:2a:00:66:4e:78:f6:fe:1b:0e:da:a3:df:4f:a3:c5:1f: 23:c6:36:b7:3b:da:a5:6b:55:4b:e6:cb:c0:bf:5d:7f:ea:09: 67:a1:87:88:01:db:5a:c1:91:bf:25:34:ad:9f:11:49:34:eb: 93:f5:c8:8c:43:b0:72:5a:85:29:40:84:83:31:71:ed:75:c3: b9:72:a6:de:ae:73:9c:df:b3:fe:d8:55:32:36:e4:24:00:a2: e7:b3:28:35:02:89:8a:e1:80:bb:4e:25:dc:44:5a:b9:79:1f: 32:37:8d:1f -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUZiVH2G3SCoCf253qyCXx1L48OaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTAzMzAxMTE3NTNaFw0yNjAzMjkxMTIyNTNaMDMxMTAvBgNV BAMTKDM0MzdEQzEyRDFCMDgxQjI0QTk1RDVFOUYyQzExNzY3RUZDRDhCOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXer9xzYwI+2qNb7gv1Rhb+1cC yYkEPZfQv+OOoEIC5rE0Sa+6fB1KynAJaoiqDghbuE3UVxo10ReTIv1woRdmovY3 E8+xZaVwisEAvhct5OjHtbTDpmnSZRTrFZCbeikAprpw9JZ4JrM3fgfBHynt6zxG /Oe0vN0QIkmqxMauVDC9WVE9Cr6Nh4Nb5GHq4Ps3GFl58Sb3JwQY6JR9cCUuiQFn LDpIcLKqvRTXA2tO6XeguNmaqgbHLeW+fuR5YsKnTzkxeZZWnQ1Qamj9nQpLEBTE lGqR7KVIUIdMmTdBA5+gm5MSQEqLy8NgRUu14J741zeQJwTNX0RBdFkI/FBdAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUNDfcEtGwgbJKldXp8sEXZ+/Ni5swHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMxMzAzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgYSg4owDQYJKoZIhvcNAQELBQADggEBADbj 1bdTk10r39akBcG1MQsfdcVv1fESHjXXMqzNcXc9kX4+VYR9hJxYlsfeRJymQvqX zrJJ8tDTxVvGB7vAhSxV2SzrNZUvGww4+wT/tdo5YWJBKqMF5JONN0p+b5tErd80 7eEc3WtwD9PV/y9TCwjlS5iDh8c3Vp+oKlQ7lh0JiNhWOtfYT5qRAclb55nVtpab KgBmTnj2/hsO2qPfT6PFHyPGNrc72qVrVUvmy8C/XX/qCWehh4gB21rBkb8lNK2f EUk065P1yIxDsHJahSlAhIMxce11w7lypt6uc5zfs/7YVTI25CQAouezKDUCiYrh gLtOJdxEWrl5HzI3jR8= -----END CERTIFICATE-----Generated at Sat Apr 5 07:31:29 2025 by rpki-client