$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa File: 326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa (raw, json) Hash identifier: KPVNDBydB4lEOCddQAWiNda/rm6IVb4G2i+sUeOhrYg= Subject key identifier: D6:1A:50:F4:20:07:66:D7:10:D7:F7:D9:99:7C:E3:E7:81:CE:01:84 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 0C4DBCFADCC94E9D0BA8194CAE983C50D9DB9849 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa Signing time: Thu 29 May 2025 17:33:29 +0000 ROA not before: Thu 29 May 2025 17:28:29 +0000 ROA not after: Thu 28 May 2026 17:33:29 +0000 asID: 53667 IP address blocks: 2a14:7581:d200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 12:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:4d:bc:fa:dc:c9:4e:9d:0b:a8:19:4c:ae:98:3c:50:d9:db:98:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 29 17:28:29 2025 GMT Not After : May 28 17:33:29 2026 GMT Subject: CN=D61A50F4200766D710D7F7D9997CE3E781CE0184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:4c:8b:3a:cd:60:91:dd:46:cf:08:1c:d7: 28:09:d8:90:89:ba:0e:ac:b5:72:fc:63:ea:3e:6f: e5:de:2d:89:e3:02:2c:0f:58:c2:47:94:71:e5:13: d1:6f:22:e6:ea:f6:f2:5a:51:84:f1:77:3f:19:2d: cd:7b:b6:17:0b:a9:9d:74:02:fd:a6:94:a6:98:cf: ba:89:1e:4c:60:93:f2:4c:34:54:52:db:c7:34:1e: 00:1e:22:4a:47:82:c6:00:9d:3d:56:6d:90:da:d9: 88:c4:bf:48:d6:3d:01:9f:a2:2e:7e:22:66:96:a9: e9:45:0b:bf:80:21:de:77:ec:4e:44:4a:ee:e9:a9: 19:0e:cf:44:4a:f8:a0:e8:cf:a3:d3:1f:3a:17:96: e3:25:47:37:4d:c8:02:89:ed:ec:fc:15:b2:14:b3: 17:e5:66:c9:04:c1:35:f2:c0:f5:cc:de:6c:0a:60: 36:b6:6e:a9:e2:f1:53:60:83:f9:7b:b8:01:44:6b: 46:a9:01:32:ac:23:1f:87:7c:03:54:b0:c1:a0:95: b7:c1:cf:7c:cc:75:58:7f:22:65:e8:e7:76:61:43: dc:f0:02:4b:fe:3e:46:d8:14:18:75:f0:ae:5b:d5: a8:0a:48:fe:33:a8:65:5f:54:ed:67:15:70:9b:30: ec:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1A:50:F4:20:07:66:D7:10:D7:F7:D9:99:7C:E3:E7:81:CE:01:84 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d200::/40 Signature Algorithm: sha256WithRSAEncryption 1b:fa:a3:de:a7:7d:ba:b4:3d:53:12:60:6b:8b:5c:15:0f:f0: 98:9d:88:0e:16:22:b7:2f:e2:09:dd:1d:01:95:88:69:45:51: e6:da:1c:d9:ee:3b:c3:9a:a0:60:85:fb:09:3e:8e:0f:cf:70: e7:f0:a0:61:73:f7:91:82:90:16:b4:2e:f0:3a:d3:fc:52:4d: 86:ff:14:b1:f4:8d:ac:d2:52:b5:22:d6:40:9e:bc:9d:78:07: 95:64:a2:04:18:c1:53:eb:22:30:fd:53:38:6f:8a:5f:e7:e9: 26:01:2d:6f:e6:e0:d4:07:bc:21:90:07:ce:be:c7:19:63:22: 29:b5:1a:03:d3:1c:95:7b:81:ea:c7:d2:24:0c:55:a0:39:4c: 1d:a3:76:7a:cf:d9:3e:a3:50:17:60:85:66:7e:14:36:6d:e7: 11:f2:96:aa:bd:f2:7a:81:5e:02:71:71:d9:b1:18:5e:c1:8c: df:b1:d8:1b:e7:ac:59:7e:bd:80:e5:3f:a6:6f:7f:02:6e:a4: 9d:3c:89:cf:69:1a:11:f4:d0:84:aa:a1:da:bb:a0:80:f6:ce: c0:97:4a:a9:57:47:f3:00:57:9a:ab:31:84:0f:be:d6:5d:f4: 4d:34:11:69:c0:55:5c:e6:f8:2e:93:72:8e:37:05:86:dd:40: 01:df:7b:ec -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUDE28+tzJTp0LqBlMrpg8UNnbmEkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjkxNzI4MjlaFw0yNjA1MjgxNzMzMjlaMDMxMTAvBgNV BAMTKEQ2MUE1MEY0MjAwNzY2RDcxMEQ3RjdEOTk5N0NFM0U3ODFDRTAxODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJhEyLOs1gkd1Gzwgc1ygJ2JCJ ug6stXL8Y+o+b+XeLYnjAiwPWMJHlHHlE9FvIubq9vJaUYTxdz8ZLc17thcLqZ10 Av2mlKaYz7qJHkxgk/JMNFRS28c0HgAeIkpHgsYAnT1WbZDa2YjEv0jWPQGfoi5+ ImaWqelFC7+AId537E5ESu7pqRkOz0RK+KDoz6PTHzoXluMlRzdNyAKJ7ez8FbIU sxflZskEwTXywPXM3mwKYDa2bqni8VNgg/l7uAFEa0apATKsIx+HfANUsMGglbfB z3zMdVh/ImXo53ZhQ9zwAkv+PkbYFBh18K5b1agKSP4zqGVfVO1nFXCbMOyjAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU1hpQ9CAHZtcQ1/fZmXzj54HOAYQwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzIzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUz MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHSMA0GCSqGSIb3DQEBCwUAA4IBAQAb+qPe p326tD1TEmBri1wVD/CYnYgOFiK3L+IJ3R0BlYhpRVHm2hzZ7jvDmqBghfsJPo4P z3Dn8KBhc/eRgpAWtC7wOtP8Uk2G/xSx9I2s0lK1ItZAnrydeAeVZKIEGMFT6yIw /VM4b4pf5+kmAS1v5uDUB7whkAfOvscZYyIptRoD0xyVe4Hqx9IkDFWgOUwdo3Z6 z9k+o1AXYIVmfhQ2becR8paqvfJ6gV4CcXHZsRhewYzfsdgb56xZfr2A5T+mb38C bqSdPInPaRoR9NCEqqHau6CA9s7Al0qpV0fzAFeaqzGED77WXfRNNBFpwFVc5vgu k3KONwWG3UAB33vs -----END CERTIFICATE-----Generated at Fri Jun 6 23:34:13 2025 by rpki-client