$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa File: 326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa (raw, json) Hash identifier: 9phDdz/jhh9vxdEc5WXHXIl+cdnJzAyh/6SdvyVejiI= Subject key identifier: 0B:03:C9:16:83:4A:01:0E:35:3A:11:65:08:D3:A3:B6:C1:F4:A9:54 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 435AB7F5B476ADB1698C88B7E5CA8563AB583C23 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa Signing time: Wed 28 May 2025 01:33:29 +0000 ROA not before: Wed 28 May 2025 01:28:29 +0000 ROA not after: Wed 27 May 2026 01:33:29 +0000 asID: 7545 IP address blocks: 2a14:7581:d300::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 01:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:5a:b7:f5:b4:76:ad:b1:69:8c:88:b7:e5:ca:85:63:ab:58:3c:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: May 28 01:28:29 2025 GMT Not After : May 27 01:33:29 2026 GMT Subject: CN=0B03C916834A010E353A116508D3A3B6C1F4A954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:bf:98:e5:4f:8c:39:31:d5:99:0a:c4:fa:aa: 1e:46:98:af:12:67:90:23:0c:a2:03:37:94:f6:02: d6:be:11:eb:9b:c3:22:fa:29:b0:c2:fd:4a:8f:a6: e2:4c:a2:7f:5c:98:48:c3:53:c6:71:26:2e:a1:d9: 6f:49:7d:77:b9:83:2b:31:18:28:9e:ab:91:fc:9d: 38:83:61:4c:53:33:65:d1:44:bc:4d:ae:c8:bd:cd: 26:21:5e:43:83:16:9a:49:18:dd:dd:55:9e:03:2b: ca:92:b2:0f:79:00:ef:8e:d1:41:50:d1:15:0f:1c: 86:b6:1a:9b:e3:a5:49:32:49:8f:8f:da:cf:c6:02: 63:4b:a4:c6:a5:ac:7f:69:e0:a6:cd:d6:6a:9e:62: c6:d0:49:11:a8:18:99:de:ce:66:7d:49:c5:9c:8b: 6c:19:57:e2:60:fd:fd:6e:61:5e:a8:7b:b1:ff:d2: 56:46:0f:20:29:1d:2a:8c:38:ec:10:a2:b5:ee:6a: ce:ab:ae:82:9b:80:3a:ec:c3:c9:05:6d:f9:a0:b4: 38:1a:64:08:11:7b:b0:da:8f:0f:4a:21:25:b0:f6: 3f:5f:08:f8:08:2b:d9:90:22:da:0f:8b:b8:32:c5: e5:ae:73:1d:e8:f0:49:9d:d6:69:f5:47:fe:74:20: c9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:03:C9:16:83:4A:01:0E:35:3A:11:65:08:D3:A3:B6:C1:F4:A9:54 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d300::/40 Signature Algorithm: sha256WithRSAEncryption 38:a0:6e:a0:bf:b9:38:fc:18:c1:ba:fe:69:37:c0:7e:8b:ce: 4c:f5:41:ab:81:ab:02:07:44:2f:0b:c7:08:10:d2:26:30:6f: 26:99:cc:93:6e:5c:b2:ad:7d:e7:06:a6:d8:7a:03:35:71:02: 0d:1b:93:2f:c8:1e:22:25:09:6a:f8:de:9f:a6:0a:a7:27:3f: a5:a5:f1:10:2e:41:5d:d3:e6:5b:83:3a:d8:bf:51:df:06:a7: 23:62:50:c9:a2:f0:c8:05:3e:cd:46:bd:43:46:5e:65:03:86: 5a:00:57:70:b4:78:ea:f4:1b:10:48:90:13:2b:ab:80:f0:fc: 1b:2d:d7:14:d1:59:df:9e:b7:43:06:e3:32:c2:be:f7:42:5f: 0f:13:64:9f:49:d8:3d:d6:6d:39:12:83:c5:e8:a4:c0:e0:0d: 8c:cb:33:df:f3:be:fe:21:0d:3e:c6:d8:fa:bf:5d:22:d5:ee: f4:55:70:51:54:3c:cd:a1:25:27:60:8a:18:d2:08:6d:7b:df: 51:7f:87:be:c0:d7:44:9d:e5:be:fe:bb:44:d4:9a:a4:23:02: 42:55:31:1c:13:c2:ca:c3:18:da:fa:0b:e0:34:de:f6:e0:51: 51:d9:27:e9:6e:f7:ef:9d:9b:b9:4d:98:a6:c1:f5:bd:15:b7: 6f:26:82:61 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIUQ1q39bR2rbFpjIi35cqFY6tYPCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNTA1MjgwMTI4MjlaFw0yNjA1MjcwMTMzMjlaMDMxMTAvBgNV BAMTKDBCMDNDOTE2ODM0QTAxMEUzNTNBMTE2NTA4RDNBM0I2QzFGNEE5NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUv5jlT4w5MdWZCsT6qh5GmK8S Z5AjDKIDN5T2Ata+EeubwyL6KbDC/UqPpuJMon9cmEjDU8ZxJi6h2W9JfXe5gysx GCieq5H8nTiDYUxTM2XRRLxNrsi9zSYhXkODFppJGN3dVZ4DK8qSsg95AO+O0UFQ 0RUPHIa2GpvjpUkySY+P2s/GAmNLpMalrH9p4KbN1mqeYsbQSRGoGJnezmZ9ScWc i2wZV+Jg/f1uYV6oe7H/0lZGDyApHSqMOOwQorXuas6rroKbgDrsw8kFbfmgtDga ZAgRe7Dajw9KISWw9j9fCPgIK9mQItoPi7gyxeWucx3o8Emd1mn1R/50IMklAgMB AAGjggKAMIICfDAdBgNVHQ4EFgQUCwPJFoNKAQ41OhFlCNOjtsH0qVQwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzMzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzcz NTM0MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgAqFHWB0zANBgkqhkiG9w0BAQsFAAOCAQEAOKBuoL+5 OPwYwbr+aTfAfovOTPVBq4GrAgdELwvHCBDSJjBvJpnMk25csq195wam2HoDNXEC DRuTL8geIiUJavjen6YKpyc/paXxEC5BXdPmW4M62L9R3wanI2JQyaLwyAU+zUa9 Q0ZeZQOGWgBXcLR46vQbEEiQEyurgPD8Gy3XFNFZ3563QwbjMsK+90JfDxNkn0nY PdZtORKDxeikwOANjMsz3/O+/iENPsbY+r9dItXu9FVwUVQ8zaElJ2CKGNIIbXvf UX+HvsDXRJ3lvv67RNSapCMCQlUxHBPCysMY2voL4DTe9uBRUdkn6W73752buU2Y psH1vRW3byaCYQ== -----END CERTIFICATE-----Generated at Thu Jun 5 18:15:23 2025 by rpki-client