$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa File: 326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa (raw, json) Hash identifier: M0+yHEN3VX8K+aVDmpusml/7Hx8dbBnadNDMaFbGOzQ= Subject key identifier: 68:8F:A3:E9:C9:1C:2F:28:02:AA:13:B6:2E:25:77:A6:7E:5A:84:81 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 4A8165C17E3A2D31166A92A067B7253945961101 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa Signing time: Tue 27 May 2025 14:33:28 +0000 ROA not before: Tue 27 May 2025 14:28:28 +0000 ROA not after: Tue 26 May 2026 14:33:28 +0000 asID: 53667 IP address blocks: 2a14:7581:d100::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 12:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:81:65:c1:7e:3a:2d:31:16:6a:92:a0:67:b7:25:39:45:96:11:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 27 14:28:28 2025 GMT Not After : May 26 14:33:28 2026 GMT Subject: CN=688FA3E9C91C2F2802AA13B62E2577A67E5A8481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e1:7a:f6:16:04:ae:e8:52:25:82:a0:a7:03: 1b:cd:94:38:57:b4:b1:c7:5c:b6:51:d2:db:03:28: d1:3e:fe:3e:c7:30:4c:2a:82:9c:ba:57:d4:0b:d5: 4d:0f:27:71:97:a6:47:35:5d:d3:ab:f8:f1:79:31: b2:31:80:fe:3d:fe:1d:b9:a4:4e:1c:93:ba:44:4c: d1:63:f8:47:bb:4e:1b:18:b2:dd:4c:fd:c0:1d:73: de:b4:06:cb:5e:b1:4d:86:f7:8f:c4:63:51:00:2e: 02:82:a5:3e:24:f9:9b:be:19:94:a7:cc:21:c6:37: f5:dc:66:f3:1b:b9:1d:24:07:52:58:4f:7a:2a:52: 54:dd:be:89:42:fd:ac:68:8d:42:b7:cb:82:a7:8b: ef:36:dd:06:ec:93:48:ca:18:cc:e1:c6:5f:b1:e8: a1:a6:4b:ce:4c:f4:2b:a4:df:22:81:ea:c4:9e:64: d0:3e:ff:a4:4c:0c:42:13:7d:9b:d5:fa:ef:94:5d: 80:9c:44:7e:cc:28:da:19:07:24:05:fd:5f:ac:a3: cb:59:85:d4:3e:0c:e0:f4:a0:c8:66:25:84:e8:04: 07:55:b5:31:c9:97:ac:84:bb:e6:95:9d:61:3f:ca: 05:4c:61:00:de:4d:cd:1b:05:a0:cb:a4:76:9e:bc: 00:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8F:A3:E9:C9:1C:2F:28:02:AA:13:B6:2E:25:77:A6:7E:5A:84:81 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d100::/40 Signature Algorithm: sha256WithRSAEncryption 28:ca:40:97:a5:99:01:0a:70:88:9e:76:74:d2:6f:e3:f3:41: 39:6a:5f:f7:88:5b:9b:f6:9a:ae:a5:4d:e4:0f:30:6a:b1:f8: 8c:c1:32:fe:70:c0:7d:e5:a0:3c:55:69:3d:ab:16:8c:b7:06: 65:df:81:35:4f:55:d6:48:36:65:b1:99:68:52:a6:24:e2:1a: f0:d5:5c:e3:2d:e8:fc:9a:87:ff:80:b8:78:fd:ec:be:5a:23: 11:bc:7e:0c:9d:30:58:ac:36:48:53:af:90:ad:c5:0c:fe:2b: 28:88:19:b1:5a:87:3f:f0:ae:4e:6d:ef:12:16:1f:f8:ae:48: f4:60:e2:c8:4c:30:86:ed:86:bd:2c:fe:7e:78:ec:0c:c7:43: 7d:9e:a0:ba:c5:5a:c8:bd:5b:f9:46:bb:1f:a3:d9:ff:c4:c5: 2f:aa:aa:f4:b5:da:fa:9b:43:9d:0f:25:0b:07:85:51:c6:0c: d7:a8:9a:62:47:f6:73:99:be:e6:de:7d:f1:fa:f7:27:81:84: 01:ca:fa:6d:e8:ed:80:a0:a8:44:7b:66:ae:c0:0f:47:00:94: 44:39:7a:0b:8d:cf:34:a3:c0:82:c5:24:28:89:3d:6d:d3:59: bd:f0:24:5a:f9:3d:da:a3:29:0a:49:48:9f:d7:51:fc:db:24: 66:b0:b3:71 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUSoFlwX46LTEWapKgZ7clOUWWEQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjcxNDI4MjhaFw0yNjA1MjYxNDMzMjhaMDMxMTAvBgNV BAMTKDY4OEZBM0U5QzkxQzJGMjgwMkFBMTNCNjJFMjU3N0E2N0U1QTg0ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk4Xr2FgSu6FIlgqCnAxvNlDhX tLHHXLZR0tsDKNE+/j7HMEwqgpy6V9QL1U0PJ3GXpkc1XdOr+PF5MbIxgP49/h25 pE4ck7pETNFj+Ee7ThsYst1M/cAdc960BstesU2G94/EY1EALgKCpT4k+Zu+GZSn zCHGN/XcZvMbuR0kB1JYT3oqUlTdvolC/axojUK3y4Kni+823Qbsk0jKGMzhxl+x 6KGmS85M9Cuk3yKB6sSeZNA+/6RMDEITfZvV+u+UXYCcRH7MKNoZByQF/V+so8tZ hdQ+DOD0oMhmJYToBAdVtTHJl6yEu+aVnWE/ygVMYQDeTc0bBaDLpHaevAAXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUaI+j6ckcLygCqhO2LiV3pn5ahIEwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzEzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUz MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHRMA0GCSqGSIb3DQEBCwUAA4IBAQAoykCX pZkBCnCInnZ00m/j80E5al/3iFub9pqupU3kDzBqsfiMwTL+cMB95aA8VWk9qxaM twZl34E1T1XWSDZlsZloUqYk4hrw1VzjLej8mof/gLh4/ey+WiMRvH4MnTBYrDZI U6+QrcUM/isoiBmxWoc/8K5Obe8SFh/4rkj0YOLITDCG7Ya9LP5+eOwMx0N9nqC6 xVrIvVv5Rrsfo9n/xMUvqqr0tdr6m0OdDyULB4VRxgzXqJpiR/Zzmb7m3n3x+vcn gYQByvpt6O2AoKhEe2auwA9HAJREOXoLjc80o8CCxSQoiT1t01m98CRa+T3aoykK SUif11H82yRmsLNx -----END CERTIFICATE-----Generated at Fri Jun 6 23:27:44 2025 by rpki-client