$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e203538323132.roa File: 326130363a313238333a386130303a3a2f34302d3438203d3e203538323132.roa (raw, json) Hash identifier: YZpotsKD9ZB83zCyNpO+v7EKpdTTUoxfnp0qcrS+xCQ= Subject key identifier: E7:58:62:62:6C:4D:6F:61:FD:8F:C7:63:5B:EE:EA:6F:07:91:EE:79 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 66E52F7E703B70D24DE8D37E7032A8F0D121D8F6 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e203538323132.roa Signing time: Thu 13 Feb 2025 21:51:21 +0000 ROA not before: Thu 13 Feb 2025 21:46:21 +0000 ROA not after: Thu 12 Feb 2026 21:51:21 +0000 asID: 58212 IP address blocks: 2a06:1283:8a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 13 Mar 2025 17:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:e5:2f:7e:70:3b:70:d2:4d:e8:d3:7e:70:32:a8:f0:d1:21:d8:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Feb 13 21:46:21 2025 GMT Not After : Feb 12 21:51:21 2026 GMT Subject: CN=E75862626C4D6F61FD8FC7635BEEEA6F0791EE79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:02:4c:26:ba:8e:56:3a:9e:df:3b:5c:97:72: b5:83:1a:e0:b3:3d:b9:47:2f:ff:e3:44:59:16:9c: 42:b8:10:a0:4c:c1:fa:b4:d2:1f:67:13:6b:15:96: 86:31:03:87:38:58:73:4b:b2:ce:df:62:31:2d:db: a0:94:2d:e6:e8:15:fb:b7:da:a5:5c:49:2b:1c:58: a2:7c:26:28:14:97:21:ff:19:45:1c:68:f2:26:30: ef:0d:94:1b:2a:75:88:7b:33:c5:ba:d4:88:8f:69: af:9e:5d:3a:88:62:9b:88:c7:d9:c3:05:30:90:4d: d8:3f:88:64:23:66:c1:60:dd:6d:6c:56:0c:55:7f: a1:6c:d0:13:a5:a2:1b:23:09:47:a2:11:df:de:91: 9b:1b:ea:dc:6d:78:cb:ac:67:7b:26:55:2f:1d:57: 99:50:4b:cb:1c:b3:ea:b2:bf:2f:25:95:21:bd:ee: 12:41:34:9c:90:81:61:15:d4:a2:fa:1d:17:c5:e0: 25:f0:cd:dc:73:b8:cf:c8:8d:30:a1:66:d6:f6:e8: 24:6e:1e:c8:e4:fe:8b:c6:ec:1f:6a:bd:83:70:50: 76:fa:b9:e2:8f:5b:f0:97:fe:15:a6:a0:05:2a:d7: 09:74:12:37:02:ee:d3:9c:53:94:17:93:9e:64:06: 3f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:58:62:62:6C:4D:6F:61:FD:8F:C7:63:5B:EE:EA:6F:07:91:EE:79 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386130303a3a2f34302d3438203d3e203538323132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8a00::/40 Signature Algorithm: sha256WithRSAEncryption 7c:19:df:44:d0:3a:28:1a:52:ad:2d:f7:6a:a3:7b:2f:31:6a: bf:a4:dd:5a:8a:09:0c:15:30:63:9c:d2:de:28:ea:aa:43:61: a4:3f:33:16:33:67:76:df:31:30:b3:bb:68:9a:70:c4:ba:78: d4:6f:82:95:68:72:a7:73:fa:81:f2:cf:ed:91:9e:de:c8:18: 2d:99:47:cc:5f:ac:d9:66:15:91:1a:1e:15:2f:89:5f:c8:b3: 0e:05:ee:b9:42:57:96:d6:71:a4:ed:5d:83:b2:d2:2e:35:ae: 99:44:c4:f3:46:49:d8:29:18:e3:22:1a:30:c8:67:7f:b7:08: 23:89:a9:f5:23:da:e3:00:c9:98:a8:73:08:54:3d:a7:5c:8d: b4:14:b5:4e:64:ce:93:a9:79:d5:d8:11:e3:41:af:8b:09:45: 66:80:96:fb:da:ab:16:35:47:bb:69:e3:3f:45:aa:45:ce:f5: d8:74:26:87:86:88:db:de:84:8b:a6:3a:c4:61:93:f6:05:f1: bf:51:da:fc:f6:57:ad:15:1d:75:23:44:82:7d:83:35:99:be: d8:b9:58:0d:7b:4e:c7:f1:38:23:71:bc:19:5e:eb:70:df:2f: be:24:c9:72:0e:07:bb:4d:12:70:f3:d1:ea:a7:fc:ed:e2:2e: a8:2b:c1:58 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUZuUvfnA7cNJN6NN+cDKo8NEh2PYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTAyMTMyMTQ2MjFaFw0yNjAyMTIyMTUxMjFaMDMxMTAvBgNV BAMTKEU3NTg2MjYyNkM0RDZGNjFGRDhGQzc2MzVCRUVFQTZGMDc5MUVFNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnAkwmuo5WOp7fO1yXcrWDGuCz PblHL//jRFkWnEK4EKBMwfq00h9nE2sVloYxA4c4WHNLss7fYjEt26CULeboFfu3 2qVcSSscWKJ8JigUlyH/GUUcaPImMO8NlBsqdYh7M8W61IiPaa+eXTqIYpuIx9nD BTCQTdg/iGQjZsFg3W1sVgxVf6Fs0BOlohsjCUeiEd/ekZsb6txteMusZ3smVS8d V5lQS8scs+qyvy8llSG97hJBNJyQgWEV1KL6HRfF4CXwzdxzuM/IjTChZtb26CRu Hsjk/ovG7B9qvYNwUHb6ueKPW/CX/hWmoAUq1wl0EjcC7tOcU5QXk55kBj8hAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU51hiYmxNb2H9j8djW+7qbweR7nkwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzUz ODMyMzEzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoGEoOKMA0GCSqGSIb3DQEBCwUAA4IBAQB8Gd9E 0DooGlKtLfdqo3svMWq/pN1aigkMFTBjnNLeKOqqQ2GkPzMWM2d23zEws7tomnDE unjUb4KVaHKnc/qB8s/tkZ7eyBgtmUfMX6zZZhWRGh4VL4lfyLMOBe65QleW1nGk 7V2DstIuNa6ZRMTzRknYKRjjIhowyGd/twgjian1I9rjAMmYqHMIVD2nXI20FLVO ZM6TqXnV2BHjQa+LCUVmgJb72qsWNUe7aeM/RapFzvXYdCaHhojb3oSLpjrEYZP2 BfG/Udr89letFR11I0SCfYM1mb7YuVgNe07H8TgjcbwZXutw3y++JMlyDge7TRJw 89Hqp/zt4i6oK8FY -----END CERTIFICATE-----Generated at Thu Mar 13 07:13:42 2025 by rpki-client