$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa File: 326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa (raw, json) Hash identifier: e+p8+Sw9X8S3Ty3gF9pg+LdvDbV5qMXAYBBthQD4LPE= Subject key identifier: DC:4F:D3:3B:A8:38:BF:55:4F:5D:09:D4:F0:B6:C5:41:81:E6:EE:32 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 1D4F27C9CEA9A85B2C35A953DE193CAB7B4D7CA6 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa Signing time: Tue 27 May 2025 14:33:28 +0000 ROA not before: Tue 27 May 2025 14:28:28 +0000 ROA not after: Tue 26 May 2026 14:33:28 +0000 asID: 53667 IP address blocks: 2a14:7581:d100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 12:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:4f:27:c9:ce:a9:a8:5b:2c:35:a9:53:de:19:3c:ab:7b:4d:7c:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 27 14:28:28 2025 GMT Not After : May 26 14:33:28 2026 GMT Subject: CN=DC4FD33BA838BF554F5D09D4F0B6C54181E6EE32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:0d:21:75:3f:1c:03:5e:26:c5:c7:3a:c0:d0: 29:60:1e:9d:c0:42:c4:db:b5:87:8c:8b:b2:48:b5: bd:ca:2d:a7:05:4e:03:12:cc:ca:f6:51:3c:04:76: 76:af:e2:f6:10:b0:8e:63:a2:54:51:8e:88:da:53: 47:2c:8e:23:8c:d0:64:bd:8c:e0:b5:78:02:94:8d: 31:6c:3b:c8:a6:c8:53:50:57:54:0a:9d:8e:50:e7: 09:b8:99:8f:50:6f:ca:0a:db:fc:0e:08:34:58:fa: 61:c2:a7:26:94:5b:5f:56:1e:07:a2:21:8c:12:ed: b0:ad:73:aa:b9:22:bf:5d:3a:d1:f8:3a:a9:7a:20: 2b:c9:f8:cf:27:4a:b0:8a:ed:bc:61:71:61:92:81: b2:9d:43:ba:c0:37:01:cc:54:e8:06:02:c0:d8:7e: 8f:fe:f3:3f:f9:e5:cd:83:46:f3:6e:51:04:e3:73: 19:b0:99:32:1d:d0:92:21:ac:65:4c:a9:74:af:b5: 55:da:9a:5d:c1:18:7e:bb:01:15:24:0c:de:7e:50: de:20:af:82:94:5c:ab:d7:d7:05:7b:23:00:17:76: 93:56:96:2b:40:26:19:96:74:23:72:81:e8:99:c9: 9c:b1:4f:82:53:ba:7e:f6:36:21:86:e6:39:ce:e1: ba:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4F:D3:3B:A8:38:BF:55:4F:5D:09:D4:F0:B6:C5:41:81:E6:EE:32 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3438203d3e203533363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d100::/40 Signature Algorithm: sha256WithRSAEncryption 08:0a:c6:46:75:25:c9:70:23:49:22:5c:e1:d4:49:30:6b:cd: da:d4:99:32:bf:28:75:3a:e9:bc:3c:7b:be:65:cc:26:fd:53: 85:a2:d2:d9:14:43:d0:d8:cb:f8:96:b7:da:da:85:7b:32:ef: f3:a9:e5:1a:3c:fe:97:fb:65:3a:90:35:c1:6b:e5:03:b9:a3: 91:0a:f2:df:8a:f0:85:34:eb:bb:cd:03:30:5e:42:73:e5:84: e3:87:11:11:45:06:a1:4f:57:a2:30:6b:bc:ec:0b:8f:fb:e0: 74:f2:a0:d2:cd:ca:38:99:88:d2:14:bd:2c:be:bd:fd:80:53: f6:42:4a:5e:0e:ea:53:81:7c:2b:3a:3a:41:52:41:6d:c9:ed: ce:eb:35:66:3b:86:04:26:7c:d4:60:7a:70:ff:ec:28:3f:8c: 0d:06:18:f6:b1:c2:91:fd:11:54:b6:2e:66:1c:2a:03:c2:d4: 13:4f:45:9b:b7:0b:e2:f1:ab:fc:88:e6:69:53:90:6e:bb:e6: a1:2d:2c:1b:34:47:7d:f8:a2:fc:12:29:8f:44:1f:80:12:9c: c1:64:48:bf:d2:94:23:df:f4:d0:30:13:20:13:5c:8c:35:fe: 63:01:61:02:90:1b:31:25:e2:65:17:bd:d4:63:5f:89:23:93: e6:be:3b:98 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUHU8nyc6pqFssNalT3hk8q3tNfKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjcxNDI4MjhaFw0yNjA1MjYxNDMzMjhaMDMxMTAvBgNV BAMTKERDNEZEMzNCQTgzOEJGNTU0RjVEMDlENEYwQjZDNTQxODFFNkVFMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnDSF1PxwDXibFxzrA0ClgHp3A QsTbtYeMi7JItb3KLacFTgMSzMr2UTwEdnav4vYQsI5jolRRjojaU0csjiOM0GS9 jOC1eAKUjTFsO8imyFNQV1QKnY5Q5wm4mY9Qb8oK2/wOCDRY+mHCpyaUW19WHgei IYwS7bCtc6q5Ir9dOtH4Oql6ICvJ+M8nSrCK7bxhcWGSgbKdQ7rANwHMVOgGAsDY fo/+8z/55c2DRvNuUQTjcxmwmTId0JIhrGVMqXSvtVXaml3BGH67ARUkDN5+UN4g r4KUXKvX1wV7IwAXdpNWlitAJhmWdCNygeiZyZyxT4JTun72NiGG5jnO4bqbAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU3E/TO6g4v1VPXQnU8LbFQYHm7jIwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzUz MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHRMA0GCSqGSIb3DQEBCwUAA4IBAQAICsZG dSXJcCNJIlzh1Ekwa83a1Jkyvyh1Oum8PHu+Zcwm/VOFotLZFEPQ2Mv4lrfa2oV7 Mu/zqeUaPP6X+2U6kDXBa+UDuaORCvLfivCFNOu7zQMwXkJz5YTjhxERRQahT1ei MGu87AuP++B08qDSzco4mYjSFL0svr39gFP2QkpeDupTgXwrOjpBUkFtye3O6zVm O4YEJnzUYHpw/+woP4wNBhj2scKR/RFUti5mHCoDwtQTT0Wbtwvi8av8iOZpU5Bu u+ahLSwbNEd9+KL8EimPRB+AEpzBZEi/0pQj3/TQMBMgE1yMNf5jAWECkBsxJeJl F73UY1+JI5PmvjuY -----END CERTIFICATE-----Generated at Fri Jun 6 23:25:50 2025 by rpki-client