$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635333a3a2f34382d3438203d3e20323039373130.roa File: 326131343a373538303a666635333a3a2f34382d3438203d3e20323039373130.roa (raw, json) Hash identifier: UpFVw7x1NBf/Uix4G0zJEj+QV4riL3tEIjso5GywhOU= Subject key identifier: 97:62:1E:D6:27:90:72:5D:F0:43:69:11:7A:38:3B:34:5D:1F:4E:F7 Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 67831224535E7B31E63CD94A2706402D2BC2B185 Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635333a3a2f34382d3438203d3e20323039373130.roa Signing time: Sat 17 May 2025 15:20:00 +0000 ROA not before: Sat 17 May 2025 15:15:00 +0000 ROA not after: Sat 16 May 2026 15:20:00 +0000 asID: 209710 IP address blocks: 2a14:7580:ff53::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 17:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:83:12:24:53:5e:7b:31:e6:3c:d9:4a:27:06:40:2d:2b:c2:b1:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: May 17 15:15:00 2025 GMT Not After : May 16 15:20:00 2026 GMT Subject: CN=97621ED62790725DF04369117A383B345D1F4EF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:85:ff:49:a5:13:8a:47:8a:8a:d5:68:a0:07: 6e:c2:30:84:b1:66:8c:44:e4:64:75:90:e8:8a:c3: 8d:d2:c5:cd:49:1b:ed:2e:9e:bb:96:4d:c7:a9:b5: be:83:77:9b:99:9d:50:81:1b:17:03:0d:a5:3b:81: 6e:76:3f:af:8a:b4:e3:6e:8a:fa:6a:a7:14:3f:84: d4:b9:e5:2c:55:20:93:a5:c7:dc:d6:3f:54:01:fa: 28:24:5f:10:30:2e:b6:09:69:a8:97:61:ff:a8:f6: c8:79:88:3c:83:7a:ea:f8:5b:62:a2:df:7e:38:80: cf:c2:7d:bb:0f:6e:fe:84:ff:a1:ea:f5:96:5f:01: 14:54:3b:a7:d6:40:fd:0f:e3:0c:a9:38:42:56:3c: 07:9b:36:ec:d7:8c:1a:7a:fd:24:1b:a7:40:4e:4e: 37:2e:7a:3b:c9:65:90:dd:94:f0:76:de:45:b8:60: 84:75:37:a9:41:3e:77:87:3b:73:15:e6:ed:4c:34: 1d:52:dd:6e:08:4a:75:99:f8:35:48:16:a6:85:19: f1:ee:52:b0:e2:e6:6f:5f:17:26:43:8a:cb:dd:2a: a1:30:58:9a:37:2a:16:65:bb:e3:71:a2:8c:5f:aa: 6b:01:6b:a2:06:ab:46:c8:7c:fd:d8:84:58:5c:33: 13:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:62:1E:D6:27:90:72:5D:F0:43:69:11:7A:38:3B:34:5D:1F:4E:F7 X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635333a3a2f34382d3438203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff53::/48 Signature Algorithm: sha256WithRSAEncryption 70:fe:a9:f2:23:c5:54:68:35:fa:42:0c:28:3b:7f:3a:e2:c8: 20:3d:60:e5:b6:1f:1d:3d:36:27:1f:67:9c:ec:07:f7:08:5a: 11:41:52:6f:b2:98:1b:b1:1c:56:37:6f:02:3f:39:19:c2:3b: 42:fb:64:0b:d0:d2:b1:7e:77:4a:98:55:6f:39:bb:0c:31:6a: 48:1d:78:09:9e:d0:76:89:3e:5f:89:61:8e:f6:d7:7d:6c:68: 08:ed:2a:11:eb:ba:16:ac:af:11:20:9b:21:e9:bf:9b:6a:6e: 5c:75:25:fb:a2:44:3e:d8:3f:8a:1e:2b:e2:cd:5b:a0:b2:8c: 15:15:82:3e:f2:5a:b2:4a:26:44:da:11:70:5f:1d:16:e0:89: d0:54:e6:fe:16:aa:db:f1:32:cf:1c:a0:da:c4:79:e9:0f:5c: 44:70:01:46:45:2e:92:88:48:0b:6f:a3:07:93:66:a5:a2:6a: 8f:4f:ca:ce:40:d8:8a:ca:f9:77:6e:32:31:91:2e:f8:26:b9: 5b:3f:7d:37:ff:6c:87:c3:86:c1:d5:48:ad:58:7a:7a:b6:1b: 65:b7:11:ca:13:f9:df:3b:68:49:a9:92:0d:d6:4b:e1:98:d5: 54:5f:ef:e8:39:8f:9e:9d:ff:21:f1:c3:2f:9c:a1:08:ff:0a: 0b:c6:67:f1 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZ4MSJFNeezHmPNlKJwZALSvCsYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNTA1MTcxNTE1MDBaFw0yNjA1MTYxNTIwMDBaMDMxMTAvBgNV BAMTKDk3NjIxRUQ2Mjc5MDcyNURGMDQzNjkxMTdBMzgzQjM0NUQxRjRFRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOhf9JpROKR4qK1WigB27CMISx ZoxE5GR1kOiKw43Sxc1JG+0unruWTceptb6Dd5uZnVCBGxcDDaU7gW52P6+KtONu ivpqpxQ/hNS55SxVIJOlx9zWP1QB+igkXxAwLrYJaaiXYf+o9sh5iDyDeur4W2Ki 3344gM/CfbsPbv6E/6Hq9ZZfARRUO6fWQP0P4wypOEJWPAebNuzXjBp6/SQbp0BO TjcuejvJZZDdlPB23kW4YIR1N6lBPneHO3MV5u1MNB1S3W4ISnWZ+DVIFqaFGfHu UrDi5m9fFyZDisvdKqEwWJo3KhZlu+NxooxfqmsBa6IGq0bIfP3YhFhcMxOvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUl2Ie1ieQcl3wQ2kRejg7NF0fTvcwHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNTMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzczMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9TMA0GCSqGSIb3DQEBCwUAA4IBAQBw /qnyI8VUaDX6QgwoO3864sggPWDlth8dPTYnH2ec7Af3CFoRQVJvspgbsRxWN28C PzkZwjtC+2QL0NKxfndKmFVvObsMMWpIHXgJntB2iT5fiWGO9td9bGgI7SoR67oW rK8RIJsh6b+bam5cdSX7okQ+2D+KHivizVugsowVFYI+8lqySiZE2hFwXx0W4InQ VOb+Fqrb8TLPHKDaxHnpD1xEcAFGRS6SiEgLb6MHk2alomqPT8rOQNiKyvl3bjIx kS74JrlbP303/2yHw4bB1UitWHp6thtltxHKE/nfO2hJqZIN1kvhmNVUX+/oOY+e nf8h8cMvnKEI/woLxmfx -----END CERTIFICATE-----Generated at Sat Jun 7 07:47:09 2025 by rpki-client