$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa File: 326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa (raw, json) Hash identifier: DvQHKT6M+fkiG6o9KW4wBm0yNbqCXWjg78L/cu4BiJ0= Subject key identifier: FE:5B:49:7E:D0:71:29:BD:B3:E7:5B:25:9A:4C:D9:64:D8:83:97:E8 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 5AF9D5629DA3CC3CB788AD903A9CB22BD8E304C6 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa Signing time: Tue 27 May 2025 14:33:28 +0000 ROA not before: Tue 27 May 2025 14:28:28 +0000 ROA not after: Tue 26 May 2026 14:33:28 +0000 asID: 37988 IP address blocks: 2a14:7581:d000::/41 maxlen: 41 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 01:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:f9:d5:62:9d:a3:cc:3c:b7:88:ad:90:3a:9c:b2:2b:d8:e3:04:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 27 14:28:28 2025 GMT Not After : May 26 14:33:28 2026 GMT Subject: CN=FE5B497ED07129BDB3E75B259A4CD964D88397E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:10:25:2d:6b:67:34:c7:ab:2a:f6:7a:4f: 45:68:00:81:60:b3:2f:2d:cd:52:7a:02:80:8b:db: 11:45:fa:40:55:12:26:e2:c1:6b:95:75:dc:b1:53: 58:7b:ae:eb:8c:ed:73:f6:9e:b9:24:72:c4:6c:24: 49:65:b0:2d:27:87:4f:36:1e:2b:c4:21:42:72:d5: 47:1f:04:02:eb:00:12:43:8b:f4:e9:da:17:dd:c2: 56:73:ec:0b:5c:7c:19:e7:ab:83:a2:b2:b1:bc:8f: 07:44:1b:e0:4a:67:0b:39:59:b9:15:de:40:bf:20: c9:ba:15:24:85:6d:33:00:87:a2:8a:a7:ed:aa:c4: ae:3f:25:8d:e9:77:b9:42:ce:b0:8c:5f:28:9a:22: bb:11:70:7e:09:3f:3d:06:ff:04:10:66:52:00:2c: 20:2b:fa:38:03:ff:4a:c0:f4:fb:60:34:87:b9:18: b6:ad:68:3e:3f:6a:ae:42:e6:14:f2:42:aa:c5:ad: ca:45:15:29:9a:b6:b8:03:12:78:d5:bb:56:97:e6: a3:c4:c7:52:01:ed:df:d7:ab:78:b9:6f:2b:af:a1: d1:a9:55:9e:82:13:49:58:c2:51:d4:02:59:97:a7: f0:55:cb:ce:99:bd:f5:1f:ee:d4:77:95:42:98:8e: 38:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5B:49:7E:D0:71:29:BD:B3:E7:5B:25:9A:4C:D9:64:D8:83:97:E8 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d000::/41 Signature Algorithm: sha256WithRSAEncryption 63:80:1b:af:13:9d:5d:3d:fa:ea:49:bd:54:3f:7c:24:fb:56: fb:b5:5f:4b:8c:0a:02:30:1b:38:ff:d4:4c:2d:5a:a9:f9:c9: 24:bf:91:33:81:cb:56:be:2e:75:21:75:4b:22:02:ca:bb:e1: e1:09:0b:ca:0b:4e:be:c4:75:36:f5:36:65:de:1b:43:96:cd: c9:54:ea:e8:6d:39:7a:a6:7d:2f:58:60:23:59:7f:19:57:5a: 4f:f4:4b:cb:bc:ad:da:11:b4:d0:bd:b2:cf:d2:3c:2c:40:2e: 41:6d:88:48:9e:b1:79:73:28:c9:17:13:60:5d:fc:32:7c:38: 2e:d1:03:73:d6:67:23:b0:5a:5e:1e:d4:31:ae:be:f6:3d:78: 7e:99:ce:43:47:95:46:a4:fd:82:0d:aa:68:b1:43:59:32:f8: 04:14:78:32:74:ec:a9:98:6e:0e:72:e7:18:39:75:62:46:3a: 2e:d3:70:51:09:82:a3:c7:fe:4f:08:96:87:da:d0:dd:0c:c2: d3:f7:69:22:20:55:fc:31:3e:d6:cb:f9:e0:03:e6:e5:ba:8c: e4:bf:b3:96:da:87:46:5e:c1:04:ac:ee:b7:c6:ec:b5:44:66: 81:0b:c2:3e:52:90:8b:60:66:e1:70:a1:65:e6:3d:1e:0b:b3: 1f:a5:d0:96 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUWvnVYp2jzDy3iK2QOpyyK9jjBMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjcxNDI4MjhaFw0yNjA1MjYxNDMzMjhaMDMxMTAvBgNV BAMTKEZFNUI0OTdFRDA3MTI5QkRCM0U3NUIyNTlBNENEOTY0RDg4Mzk3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8hAlLWtnNMerKvZ6T0VoAIFg sy8tzVJ6AoCL2xFF+kBVEibiwWuVddyxU1h7ruuM7XP2nrkkcsRsJEllsC0nh082 HivEIUJy1UcfBALrABJDi/Tp2hfdwlZz7AtcfBnnq4OisrG8jwdEG+BKZws5WbkV 3kC/IMm6FSSFbTMAh6KKp+2qxK4/JY3pd7lCzrCMXyiaIrsRcH4JPz0G/wQQZlIA LCAr+jgD/0rA9PtgNIe5GLataD4/aq5C5hTyQqrFrcpFFSmatrgDEnjVu1aX5qPE x1IB7d/Xq3i5byuvodGpVZ6CE0lYwlHUAlmXp/BVy86ZvfUf7tR3lUKYjjitAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU/ltJftBxKb2z51slmkzZZNiDl+gwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDMwM2EzYTJmMzQzMTJkMzQzMTIwM2QzZTIwMzMz NzM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHByoUdYHQADANBgkqhkiG9w0BAQsFAAOCAQEAY4Ab rxOdXT366km9VD98JPtW+7VfS4wKAjAbOP/UTC1aqfnJJL+RM4HLVr4udSF1SyIC yrvh4QkLygtOvsR1NvU2Zd4bQ5bNyVTq6G05eqZ9L1hgI1l/GVdaT/RLy7yt2hG0 0L2yz9I8LEAuQW2ISJ6xeXMoyRcTYF38Mnw4LtEDc9ZnI7BaXh7UMa6+9j14fpnO Q0eVRqT9gg2qaLFDWTL4BBR4MnTsqZhuDnLnGDl1YkY6LtNwUQmCo8f+TwiWh9rQ 3QzC0/dpIiBV/DE+1sv54APm5bqM5L+zltqHRl7BBKzut8bstURmgQvCPlKQi2Bm 4XChZeY9HguzH6XQlg== -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:15 2025 by rpki-client