$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230303a3a2f34302d3438203d3e20323131303636.roa File: 326130363a313238333a386230303a3a2f34302d3438203d3e20323131303636.roa (raw, json) Hash identifier: HcR8I97oYThFv0VpxMGU5cj9rhive5rP2rR8SXDiybY= Subject key identifier: 70:D3:32:8F:65:C1:1E:65:B6:81:7E:09:1D:FF:76:ED:99:DB:81:AA Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 4D8D21E62C1576823D32767F828DBCC9180D4709 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230303a3a2f34302d3438203d3e20323131303636.roa Signing time: Sun 30 Mar 2025 11:23:11 +0000 ROA not before: Sun 30 Mar 2025 11:18:11 +0000 ROA not after: Sun 29 Mar 2026 11:23:11 +0000 asID: 211066 IP address blocks: 2a06:1283:8b00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 23:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:8d:21:e6:2c:15:76:82:3d:32:76:7f:82:8d:bc:c9:18:0d:47:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Mar 30 11:18:11 2025 GMT Not After : Mar 29 11:23:11 2026 GMT Subject: CN=70D3328F65C11E65B6817E091DFF76ED99DB81AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3f:6a:06:a2:ab:a2:fc:ea:b1:89:68:10:e3: 78:28:07:54:27:61:0c:32:35:9f:58:56:42:6f:2e: 05:43:cb:60:89:05:1e:71:5c:8f:0b:cb:1c:15:ea: 40:0b:90:79:ba:be:88:45:a7:65:ad:b6:dd:78:63: 7b:6e:aa:6a:15:89:f3:24:90:67:0e:9a:18:b4:0d: c0:3f:32:a2:5b:2f:67:d5:a4:08:6e:5d:9b:f5:61: 6e:53:22:38:22:f6:a6:9d:18:79:c4:5b:e2:1b:4c: ec:43:3d:5a:7d:fc:32:36:f2:12:7a:4c:99:1a:72: 63:d6:00:b6:93:0a:36:85:86:13:1a:c2:27:7f:11: b7:f4:b1:6c:77:99:f8:bc:ff:d9:33:f2:f3:1e:b8: ea:5f:cb:78:71:3b:04:b7:73:41:2a:05:6d:44:79: e6:17:46:b1:51:44:2e:89:b9:a7:08:3b:2f:2e:9c: 98:6a:ec:31:4b:a6:df:52:a3:5f:14:f9:93:08:c8: ba:c5:8c:48:2c:d4:6e:7b:cc:ea:e5:35:17:a1:4e: 10:f8:2c:12:84:f2:52:93:7c:89:66:34:a4:18:9f: a5:09:1d:80:30:1d:ac:a4:1e:36:46:aa:39:0c:7a: c3:0f:27:25:f2:08:70:7f:ac:b5:74:a5:8d:10:30: 9f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D3:32:8F:65:C1:1E:65:B6:81:7E:09:1D:FF:76:ED:99:DB:81:AA X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a386230303a3a2f34302d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8b00::/40 Signature Algorithm: sha256WithRSAEncryption 38:42:3d:88:36:e2:f8:57:95:36:86:57:be:e2:77:98:70:14: 70:01:5a:af:0d:30:0e:5b:41:22:0d:79:ee:99:03:46:f7:8d: fa:22:46:34:ea:fe:1a:3f:a5:98:b6:39:c3:90:6f:40:b7:c4: 6f:06:3a:58:07:62:63:d3:f6:37:59:6b:ec:f1:a8:8c:ff:8a: 73:5b:b6:93:00:4d:44:82:88:db:5b:45:2f:5d:6d:be:b0:09: 2a:26:96:40:8b:15:48:3f:65:55:00:6d:8e:3d:74:fd:34:c0: 70:b2:f2:5b:5d:68:1d:08:38:60:59:df:69:59:72:8f:a4:33: de:79:bb:18:b4:b3:45:dd:29:58:a0:9b:78:a2:d3:7c:d0:a6: fd:d6:22:9f:9c:37:2e:5c:dd:e6:97:2e:ce:e8:35:32:05:10: 41:ea:d8:a9:24:ba:d5:0a:0b:2b:37:03:33:8b:17:7b:4d:dc: 59:74:29:9f:20:3a:68:a0:f6:39:04:91:f1:66:bd:5a:44:77: 1c:b4:f9:dc:b0:41:e2:80:83:c1:25:d3:00:2e:03:cd:9c:72: 8e:b1:db:db:a9:94:e1:ea:3a:fd:50:50:07:30:f6:3e:72:d5: 4d:03:bd:f9:1d:0b:9d:20:66:a3:9d:da:af:dc:ef:d4:24:51: 30:8b:f5:93 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUTY0h5iwVdoI9MnZ/go28yRgNRwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTAzMzAxMTE4MTFaFw0yNjAzMjkxMTIzMTFaMDMxMTAvBgNV BAMTKDcwRDMzMjhGNjVDMTFFNjVCNjgxN0UwOTFERkY3NkVEOTlEQjgxQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjP2oGoqui/OqxiWgQ43goB1Qn YQwyNZ9YVkJvLgVDy2CJBR5xXI8LyxwV6kALkHm6vohFp2Wttt14Y3tuqmoVifMk kGcOmhi0DcA/MqJbL2fVpAhuXZv1YW5TIjgi9qadGHnEW+IbTOxDPVp9/DI28hJ6 TJkacmPWALaTCjaFhhMawid/Ebf0sWx3mfi8/9kz8vMeuOpfy3hxOwS3c0EqBW1E eeYXRrFRRC6JuacIOy8unJhq7DFLpt9So18U+ZMIyLrFjEgs1G57zOrlNRehThD4 LBKE8lKTfIlmNKQYn6UJHYAwHaykHjZGqjkMesMPJyXyCHB/rLV0pY0QMJ/TAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUcNMyj2XBHmW2gX4JHf927ZnbgaowHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4NjIzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMxMzAzNjM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgYSg4swDQYJKoZIhvcNAQELBQADggEBADhC PYg24vhXlTaGV77id5hwFHABWq8NMA5bQSINee6ZA0b3jfoiRjTq/ho/pZi2OcOQ b0C3xG8GOlgHYmPT9jdZa+zxqIz/inNbtpMATUSCiNtbRS9dbb6wCSomlkCLFUg/ ZVUAbY49dP00wHCy8ltdaB0IOGBZ32lZco+kM955uxi0s0XdKVigm3ii03zQpv3W Ip+cNy5c3eaXLs7oNTIFEEHq2KkkutUKCys3AzOLF3tN3Fl0KZ8gOmig9jkEkfFm vVpEdxy0+dywQeKAg8El0wAuA82cco6x29uplOHqOv1QUAcw9j5y1U0DvfkdC50g ZqOd2q/c79QkUTCL9ZM= -----END CERTIFICATE-----Generated at Sat Apr 5 07:34:03 2025 by rpki-client