$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396661303a3a2f34342d3434203d3e20323133343330.roa File: 326131343a373538313a396661303a3a2f34342d3434203d3e20323133343330.roa (raw, json) Hash identifier: oAF6XMqIQIjZqny73zZ9bZTjumil+o5WHhatNbG2YqU= Subject key identifier: 1D:47:EE:51:E4:AA:20:99:6E:37:5B:9A:87:D9:ED:FD:1C:BD:7A:A5 Certificate issuer: /CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Certificate serial: 3D674A3C415434EC85E6776FB230201A257091F4 Authority key identifier: 15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396661303a3a2f34342d3434203d3e20323133343330.roa Signing time: Thu 15 May 2025 14:33:16 +0000 ROA not before: Thu 15 May 2025 14:28:16 +0000 ROA not after: Thu 14 May 2026 14:33:16 +0000 asID: 213430 IP address blocks: 2a14:7581:9fa0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:67:4a:3c:41:54:34:ec:85:e6:77:6f:b2:30:20:1a:25:70:91:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Validity Not Before: May 15 14:28:16 2025 GMT Not After : May 14 14:33:16 2026 GMT Subject: CN=1D47EE51E4AA20996E375B9A87D9EDFD1CBD7AA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:f3:f8:16:3f:21:aa:7a:b4:4e:30:84:90: 24:02:f3:ae:84:27:21:c7:72:08:46:d4:78:35:03: 8e:fe:b1:60:c4:6a:42:48:ca:29:8e:8b:f5:8f:e2: 58:d8:02:51:8d:d3:d5:6f:22:49:70:74:55:56:a0: 6f:f3:d0:a1:8e:d6:8c:39:86:0b:97:fd:34:b1:d2: b6:88:77:f3:08:ba:05:64:e9:81:d3:c1:d3:e8:a5: 0e:98:4b:d1:f0:a5:6d:ff:ea:d5:59:20:c1:56:22: 37:3a:9a:5a:39:ae:f0:77:75:66:65:ff:28:bd:99: c7:98:0b:7a:c6:c4:89:c9:e8:26:79:c1:bb:ad:47: 6a:b8:73:04:c4:e8:1b:97:f7:05:11:6f:22:36:52: c3:c4:44:e7:be:bd:87:5f:68:da:4c:5a:d7:1b:40: e8:e7:9a:ca:58:29:fb:42:c3:92:bf:59:4f:e0:06: 4a:0a:5b:61:33:51:f1:1d:8d:cb:b9:d3:a6:2c:13: 46:7e:a8:41:62:71:56:9a:c2:0d:1e:30:2a:4d:9c: 96:f1:06:8a:fd:7b:e4:88:76:e3:e0:24:ae:b9:1e: 01:b0:31:b0:d3:f2:ec:fc:63:71:97:9d:e2:9c:7b: 02:b0:70:c4:c3:8e:79:1c:dd:1c:f9:57:c0:e1:4e: 7a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:47:EE:51:E4:AA:20:99:6E:37:5B:9A:87:D9:ED:FD:1C:BD:7A:A5 X509v3 Authority Key Identifier: keyid:15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396661303a3a2f34342d3434203d3e20323133343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9fa0::/44 Signature Algorithm: sha256WithRSAEncryption 5b:bc:85:94:29:01:5e:9d:87:44:d3:23:c7:e0:4e:2c:a8:ee: 98:0f:2f:79:da:af:62:22:41:a6:9a:42:40:ac:6f:a2:5a:b7: 24:5d:56:ef:72:d2:7d:12:8a:14:4e:31:4d:51:63:2e:dc:86: 10:1c:5c:31:e8:67:dd:c0:8e:4d:fc:83:6a:22:8b:45:b7:34: 8c:28:f9:1c:dd:c5:db:d5:50:05:a3:9e:f3:2f:cb:ed:1c:38: c4:6b:2b:38:25:c2:24:80:11:c1:11:3d:0c:8d:9a:24:22:9d: 91:2e:38:c4:9b:8a:d5:39:98:5e:28:87:e4:fd:4a:b7:44:3a: 20:aa:9c:c5:38:f2:2b:cf:d1:8b:be:24:11:7a:4b:f9:af:63: 41:8f:df:fd:ea:8e:82:c9:ac:e1:88:d5:ad:67:49:ec:e7:4d: bf:36:6c:71:97:8f:9f:ef:79:57:dd:98:66:d9:30:3d:36:fd: 58:fc:a4:0d:1c:22:57:2f:6c:89:53:ff:74:8d:92:e4:c1:b0: df:48:16:58:31:2b:b2:25:71:d2:46:81:47:67:95:94:0f:6f: 26:35:d6:77:b4:37:5e:8e:51:96:50:71:05:cd:98:d4:24:0e: 37:de:18:12:46:77:e0:52:91:11:57:a5:db:b8:cc:c1:91:93: 66:e0:da:39 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUPWdKPEFUNOyF5ndvsjAgGiVwkfQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIx NTRENzZDNTAeFw0yNTA1MTUxNDI4MTZaFw0yNjA1MTQxNDMzMTZaMDMxMTAvBgNV BAMTKDFENDdFRTUxRTRBQTIwOTk2RTM3NUI5QTg3RDlFREZEMUNCRDdBQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJCfP4Fj8hqnq0TjCEkCQC866E JyHHcghG1Hg1A47+sWDEakJIyimOi/WP4ljYAlGN09VvIklwdFVWoG/z0KGO1ow5 hguX/TSx0raId/MIugVk6YHTwdPopQ6YS9HwpW3/6tVZIMFWIjc6mlo5rvB3dWZl /yi9mceYC3rGxInJ6CZ5wbutR2q4cwTE6BuX9wURbyI2UsPEROe+vYdfaNpMWtcb QOjnmspYKftCw5K/WU/gBkoKW2EzUfEdjcu506YsE0Z+qEFicVaawg0eMCpNnJbx Bor9e+SIduPgJK65HgGwMbDT8uz8Y3GXneKcewKwcMTDjnkc3Rz5V8DhTnq1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUHUfuUeSqIJluN1uah9nt/Ry9eqUwHwYDVR0j BBgwFoAUFbzXXgLghesIo9LyLIcpchVNdsUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjY3NDY5MDEtMjNkMy00MzAxLWIyOGQtOGIwOTgyYjA2 YzA4LzEvMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIxNTRENzZDNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xNUJDRDc1RTAyRTA4NUVCMDhBM0QyRjIy Qzg3Mjk3MjE1NEQ3NkM1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNjc0NjkwMS0yM2QzLTQzMDEtYjI4ZC04YjA5ODJiMDZjMDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjY2MTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTMzMzQzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ+gMA0GCSqGSIb3DQEBCwUAA4IBAQBb vIWUKQFenYdE0yPH4E4sqO6YDy952q9iIkGmmkJArG+iWrckXVbvctJ9EooUTjFN UWMu3IYQHFwx6GfdwI5N/INqIotFtzSMKPkc3cXb1VAFo57zL8vtHDjEays4JcIk gBHBET0MjZokIp2RLjjEm4rVOZheKIfk/Uq3RDogqpzFOPIrz9GLviQRekv5r2NB j9/96o6CyazhiNWtZ0ns502/Nmxxl4+f73lX3Zhm2TA9Nv1Y/KQNHCJXL2yJU/90 jZLkwbDfSBZYMSuyJXHSRoFHZ5WUD28mNdZ3tDdejlGWUHEFzZjUJA433hgSRnfg UpERV6XbuMzBkZNm4No5 -----END CERTIFICATE-----Generated at Fri Jun 6 22:47:08 2025 by rpki-client