$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34302d3430203d3e203337393838.roa File: 326131343a373538313a643030303a3a2f34302d3430203d3e203337393838.roa (raw, json) Hash identifier: R4oy1L8+rEt1QdmoGVV7PiYt423B/xK5i6kPhc7W9aI= Subject key identifier: 74:6E:2C:C8:E1:36:CF:5C:2A:57:DE:A9:69:C8:47:3D:D9:7A:7F:D0 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: D8CB10361FAF9D5A99091013851108500164D9 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34302d3430203d3e203337393838.roa Signing time: Tue 27 May 2025 13:33:28 +0000 ROA not before: Tue 27 May 2025 13:28:28 +0000 ROA not after: Tue 26 May 2026 13:33:28 +0000 asID: 37988 IP address blocks: 2a14:7581:d000::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 01:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d8:cb:10:36:1f:af:9d:5a:99:09:10:13:85:11:08:50:01:64:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 27 13:28:28 2025 GMT Not After : May 26 13:33:28 2026 GMT Subject: CN=746E2CC8E136CF5C2A57DEA969C8473DD97A7FD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3b:a2:52:4c:3b:6b:99:00:d5:65:a1:ab:65: c7:c1:c1:3e:64:74:c2:72:d0:be:25:7b:e0:8b:4a: 55:1f:dd:57:4d:61:ec:1e:d0:2c:82:1d:3c:b4:45: 49:9b:97:b3:8f:cc:94:8b:21:be:49:cf:95:f0:cf: 0e:3a:6e:ad:cb:8f:62:7f:ea:9c:63:3e:23:b9:03: b8:1c:80:d0:38:50:67:79:2d:c0:30:2e:b8:f1:b6: d0:e1:05:4d:84:3e:72:30:d6:29:b5:8c:f8:ac:ce: 60:e3:98:26:96:72:35:65:de:89:50:49:04:bb:ed: 62:32:02:03:7e:34:1c:e2:73:48:ab:e7:d0:c5:6d: 8c:89:32:16:6f:da:8a:59:89:cb:a2:57:ef:86:71: e3:c2:6d:46:42:9d:8a:d1:d5:f8:a6:77:2f:ce:0c: f1:da:d5:cd:bb:1e:11:45:f2:ac:d5:c1:2e:d5:ac: b6:00:b0:c3:34:de:9a:6f:96:18:ea:91:da:58:f8: a2:2c:de:da:43:58:19:dd:b7:8e:8a:4a:64:e3:2a: a9:38:ee:32:19:f8:5f:31:89:f5:a8:b6:cf:68:1b: 9c:e7:b9:50:15:d6:80:fb:94:8c:87:5d:61:b0:34: fc:71:d1:06:67:83:0d:74:ff:eb:ea:b9:48:44:22: 18:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:6E:2C:C8:E1:36:CF:5C:2A:57:DE:A9:69:C8:47:3D:D9:7A:7F:D0 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34302d3430203d3e203337393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d000::/40 Signature Algorithm: sha256WithRSAEncryption 27:7b:f4:eb:23:d2:f0:df:85:96:7e:48:f3:d8:45:26:dc:77: 5d:b4:c3:89:e4:40:47:b1:ec:11:6e:30:cf:24:06:58:f4:7e: de:42:9b:c3:08:1a:07:59:cd:47:94:6b:79:a5:44:42:52:6c: ab:05:19:c9:42:e9:ee:58:63:ee:27:f8:1e:a6:86:64:e7:c4: 96:9c:30:3d:a9:2d:17:cb:3c:fc:e2:95:a6:2c:2f:29:40:cb: 17:6a:c4:60:0e:b2:fe:b9:5f:fa:c9:ce:74:57:06:6c:b0:dd: 99:82:1e:9a:b4:c1:45:fc:bd:4b:09:e9:ff:30:2a:3a:ca:81: bb:a6:67:86:92:60:2c:c5:76:eb:27:ba:36:f9:ae:4b:5a:6b: 64:9b:7b:bc:70:80:3c:83:fe:98:cd:14:6e:39:c9:63:67:d1: be:67:d4:ff:a3:f1:3c:42:b8:51:e9:d3:ef:12:1e:f8:9d:6c: a8:f8:c3:93:fa:9c:14:e1:5f:95:03:ea:1b:5c:9c:0c:b5:82: 68:b8:26:9a:5d:3e:95:94:c8:11:18:19:b1:ed:34:27:7b:6f: 2a:89:19:cf:e1:fd:7c:97:6c:69:6c:ab:46:12:6a:a8:e9:01: 5d:e4:0a:0c:8e:dd:fb:2c:a4:de:8c:98:ae:94:70:e8:52:45: a2:6d:3e:94 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUANjLEDYfr51amQkQE4URCFABZNkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjcxMzI4MjhaFw0yNjA1MjYxMzMzMjhaMDMxMTAvBgNV BAMTKDc0NkUyQ0M4RTEzNkNGNUMyQTU3REVBOTY5Qzg0NzNERDk3QTdGRDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcO6JSTDtrmQDVZaGrZcfBwT5k dMJy0L4le+CLSlUf3VdNYewe0CyCHTy0RUmbl7OPzJSLIb5Jz5Xwzw46bq3Lj2J/ 6pxjPiO5A7gcgNA4UGd5LcAwLrjxttDhBU2EPnIw1im1jPiszmDjmCaWcjVl3olQ SQS77WIyAgN+NBzic0ir59DFbYyJMhZv2opZicuiV++GcePCbUZCnYrR1fimdy/O DPHa1c27HhFF8qzVwS7VrLYAsMM03ppvlhjqkdpY+KIs3tpDWBndt46KSmTjKqk4 7jIZ+F8xifWots9oG5znuVAV1oD7lIyHXWGwNPxx0QZngw10/+vquUhEIhjrAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUdG4syOE2z1wqV96pachHPdl6f9AwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzMz NzM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHQMA0GCSqGSIb3DQEBCwUAA4IBAQAne/Tr I9Lw34WWfkjz2EUm3HddtMOJ5EBHsewRbjDPJAZY9H7eQpvDCBoHWc1HlGt5pURC UmyrBRnJQunuWGPuJ/gepoZk58SWnDA9qS0Xyzz84pWmLC8pQMsXasRgDrL+uV/6 yc50VwZssN2Zgh6atMFF/L1LCen/MCo6yoG7pmeGkmAsxXbrJ7o2+a5LWmtkm3u8 cIA8g/6YzRRuOcljZ9G+Z9T/o/E8QrhR6dPvEh74nWyo+MOT+pwU4V+VA+obXJwM tYJouCaaXT6VlMgRGBmx7TQne28qiRnP4f18l2xpbKtGEmqo6QFd5AoMjt37LKTe jJiulHDoUkWibT6U -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:40 2025 by rpki-client