$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635313a3a2f34382d3438203d3e20323039373130.roa File: 326131343a373538303a666635313a3a2f34382d3438203d3e20323039373130.roa (raw, json) Hash identifier: KcfiSDiqDvlLOqfaLqph9s6F4NvpySAcmNFiwDriyms= Subject key identifier: 20:F0:73:7D:3F:2B:B2:A0:37:FF:0E:E4:FD:DB:80:11:67:C7:BF:CF Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 62BA0D3AC63D7509607BB0F0B1E7F75AF8E0D58D Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635313a3a2f34382d3438203d3e20323039373130.roa Signing time: Sat 17 May 2025 15:21:58 +0000 ROA not before: Sat 17 May 2025 15:16:58 +0000 ROA not after: Sat 16 May 2026 15:21:58 +0000 asID: 209710 IP address blocks: 2a14:7580:ff51::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 06:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ba:0d:3a:c6:3d:75:09:60:7b:b0:f0:b1:e7:f7:5a:f8:e0:d5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: May 17 15:16:58 2025 GMT Not After : May 16 15:21:58 2026 GMT Subject: CN=20F0737D3F2BB2A037FF0EE4FDDB801167C7BFCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cd:9c:02:99:9d:df:15:a5:5f:b9:30:25:08: 01:46:9e:10:4e:4a:57:3a:d6:27:70:33:b3:98:76: a4:70:be:56:a3:a8:5b:b2:14:26:98:05:0e:29:49: 89:7e:4e:4f:16:d0:b5:02:4b:1c:b5:3d:b5:26:d9: 29:e8:3d:ea:ad:37:7c:1b:66:34:74:5b:a9:3d:f0: f7:be:35:83:f2:78:51:21:cb:ea:dd:a6:68:42:42: 0f:73:ac:df:8e:47:24:25:3e:a4:6d:cc:74:7e:ee: ca:8c:ef:8a:30:48:61:0b:60:56:f3:6a:71:d8:8e: 5d:b7:1a:66:ad:3e:98:02:35:dd:3d:db:33:30:80: 48:0b:50:d2:b0:71:fb:d6:e9:d0:2c:3c:89:b5:59: 67:95:eb:6a:31:76:e1:0f:d3:fe:de:96:ee:48:50: 6e:af:b3:a7:e3:34:0a:1c:ff:fb:3e:f6:62:2d:18: 89:b6:16:15:14:0e:18:ed:f9:f3:13:e5:5f:f8:17: 2a:9c:e3:04:41:ef:d7:5d:5d:ad:67:58:46:c0:b0: 33:ea:cf:92:88:9f:28:28:c3:32:91:a1:6b:0a:e9: 10:40:c3:58:70:28:82:9d:07:c6:db:2e:2e:4f:46: 97:99:e4:64:d9:ea:b2:0f:40:8a:fb:f2:f9:be:0a: 5d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F0:73:7D:3F:2B:B2:A0:37:FF:0E:E4:FD:DB:80:11:67:C7:BF:CF X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635313a3a2f34382d3438203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff51::/48 Signature Algorithm: sha256WithRSAEncryption 6b:fc:6c:1f:9b:72:39:74:cb:e6:8b:1f:0c:f7:b9:61:6f:97: fd:90:bc:0d:38:6d:8f:85:26:cd:0d:a2:48:12:8e:74:90:8b: 0b:93:5e:3b:fd:15:bc:23:5f:66:00:47:5c:b0:84:72:46:17: 03:af:13:81:e2:9a:b5:1b:c1:3e:12:5c:b1:77:d4:e6:87:d5: 4b:cc:25:30:70:9e:9e:a5:82:81:be:da:e4:46:dc:15:48:61: f6:c6:aa:57:7f:cb:64:b7:03:15:bd:b9:59:49:12:8b:18:d6: d3:7a:d2:ff:2a:c7:71:b2:7f:ae:68:0a:25:d0:26:00:54:dc: b4:10:48:14:06:54:3c:db:4d:97:c6:37:83:a7:1d:00:36:ae: da:3b:d9:7a:4d:aa:bc:85:5d:04:38:4e:6c:36:69:b7:4f:65: 77:0a:73:f4:ba:bf:fd:fc:09:ff:a9:30:c7:65:22:0b:a4:3f: 1d:eb:54:37:17:ca:3f:48:21:31:3b:8f:8f:aa:69:e7:2a:17: b1:43:36:71:ff:c1:bd:38:4b:1e:4c:0a:d2:84:22:9e:56:49: c9:86:86:6a:f7:60:ed:68:bd:20:5a:19:27:dc:c1:c9:86:e7: 97:4d:02:77:75:9a:ed:14:2f:2f:3b:84:3f:1e:3e:1d:a6:86: b6:f8:56:f8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYroNOsY9dQlge7Dwsef3Wvjg1Y0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNTA1MTcxNTE2NThaFw0yNjA1MTYxNTIxNThaMDMxMTAvBgNV BAMTKDIwRjA3MzdEM0YyQkIyQTAzN0ZGMEVFNEZEREI4MDExNjdDN0JGQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzZwCmZ3fFaVfuTAlCAFGnhBO Slc61idwM7OYdqRwvlajqFuyFCaYBQ4pSYl+Tk8W0LUCSxy1PbUm2SnoPeqtN3wb ZjR0W6k98Pe+NYPyeFEhy+rdpmhCQg9zrN+ORyQlPqRtzHR+7sqM74owSGELYFbz anHYjl23GmatPpgCNd092zMwgEgLUNKwcfvW6dAsPIm1WWeV62oxduEP0/7elu5I UG6vs6fjNAoc//s+9mItGIm2FhUUDhjt+fMT5V/4Fyqc4wRB79ddXa1nWEbAsDPq z5KInygowzKRoWsK6RBAw1hwKIKdB8bbLi5PRpeZ5GTZ6rIPQIr78vm+Cl0pAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIPBzfT8rsqA3/w7k/duAEWfHv88wHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzczMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9RMA0GCSqGSIb3DQEBCwUAA4IBAQBr /Gwfm3I5dMvmix8M97lhb5f9kLwNOG2PhSbNDaJIEo50kIsLk147/RW8I19mAEdc sIRyRhcDrxOB4pq1G8E+Elyxd9Tmh9VLzCUwcJ6epYKBvtrkRtwVSGH2xqpXf8tk twMVvblZSRKLGNbTetL/Ksdxsn+uaAol0CYAVNy0EEgUBlQ8202XxjeDpx0ANq7a O9l6Taq8hV0EOE5sNmm3T2V3CnP0ur/9/An/qTDHZSILpD8d61Q3F8o/SCExO4+P qmnnKhexQzZx/8G9OEseTArShCKeVknJhoZq92DtaL0gWhkn3MHJhueXTQJ3dZrt FC8vO4Q/Hj4dpoa2+Fb4 -----END CERTIFICATE-----Generated at Sat Jun 7 00:00:46 2025 by rpki-client