$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa File: 326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa (raw, json) Hash identifier: /p3XIXAwmgRDqk/MpUnnmCFnaCoN5spxmwT1xU2FNhc= Subject key identifier: 52:AE:06:5F:4F:24:55:23:DA:EE:05:28:2C:F0:AC:95:F7:9E:A9:BF Certificate issuer: /CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Certificate serial: 22B477F1D0D43654BFD1CB6F79E169B50BDBAFF3 Authority key identifier: 15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa Signing time: Fri 07 Mar 2025 09:00:13 +0000 ROA not before: Fri 07 Mar 2025 08:55:13 +0000 ROA not after: Fri 06 Mar 2026 09:00:13 +0000 asID: 213430 IP address blocks: 2a14:7581:9fb0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 09:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:b4:77:f1:d0:d4:36:54:bf:d1:cb:6f:79:e1:69:b5:0b:db:af:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Validity Not Before: Mar 7 08:55:13 2025 GMT Not After : Mar 6 09:00:13 2026 GMT Subject: CN=52AE065F4F245523DAEE05282CF0AC95F79EA9BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:58:fa:62:02:14:94:ce:90:7b:d1:e2:01:3b: 91:8f:94:d8:09:d6:48:05:14:ef:8f:4b:96:21:36: 1f:0d:2a:51:49:9a:40:c6:f0:c5:69:6d:59:f4:33: b0:bc:a9:45:47:16:8a:81:ba:fd:f0:38:31:7b:e3: eb:09:6e:d8:2b:cd:4f:5a:47:91:24:c8:79:28:ee: 27:7f:b9:55:48:0f:5b:94:6e:1a:bb:56:c4:76:30: 75:f8:46:dd:27:a4:82:0b:78:e4:ce:f0:52:57:9f: 0d:80:d8:09:86:23:80:59:60:39:26:e2:60:3f:f2: ac:f7:92:f8:65:4f:ba:2e:eb:cb:da:11:bf:67:6d: 86:b5:a5:6a:70:c1:16:36:a7:91:2f:93:25:4d:05: eb:4d:df:30:58:d2:85:c4:74:94:e0:07:aa:71:c5: c8:15:71:99:f2:a0:16:54:c3:a2:3d:b4:a1:30:d1: a5:76:d2:67:d7:53:ed:68:57:e4:93:5e:15:97:67: 6c:a5:3e:55:b5:30:85:8c:37:68:bf:0f:83:6b:d2: 8d:34:7b:f6:bc:42:77:93:37:3e:f5:f7:14:0b:92: bb:48:b9:c9:08:3f:98:4a:7c:4c:67:1d:a9:9f:c6: 87:ee:1a:62:a1:55:ff:2b:35:8c:f7:88:c6:98:4e: 1d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AE:06:5F:4F:24:55:23:DA:EE:05:28:2C:F0:AC:95:F7:9E:A9:BF X509v3 Authority Key Identifier: keyid:15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396662303a3a2f34342d3434203d3e20323133343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9fb0::/44 Signature Algorithm: sha256WithRSAEncryption 62:d8:3d:24:8e:b5:ef:92:bd:bc:1d:c4:15:b1:76:b1:a5:4f: af:b1:d1:cf:29:58:bb:4d:18:d9:ed:1f:29:f8:be:07:3e:15: 6e:b0:9e:2c:7c:86:a8:a9:f6:f7:7f:f5:5c:07:7b:cd:51:b3: cb:f2:62:2d:56:71:75:aa:29:a8:55:ad:b7:1b:f1:1c:51:46: 76:df:36:3d:5d:1c:55:b1:26:a3:63:a9:a6:4c:4d:09:c9:bc: 32:dd:97:f6:57:a0:b3:b1:6c:f5:1f:3e:8d:34:4b:d5:02:04: f1:de:8e:c5:17:0f:35:96:4b:11:e5:3d:86:11:49:15:4f:b8: 8d:65:1e:f9:38:4d:cc:9d:6e:ff:8e:c9:73:88:39:0d:0a:1c: 97:39:0d:25:1c:41:9c:5a:27:01:00:1e:02:2c:16:2c:1f:59: c7:cf:1a:20:f7:ce:db:00:e5:4b:e0:ed:15:af:a8:e8:10:8e: 08:4a:e4:67:4c:b3:9f:36:9a:79:0f:a7:f8:47:59:50:b8:9e: 9f:27:e2:20:90:31:07:d9:13:b4:b7:66:51:d1:da:7c:40:8b: 80:b5:90:7d:22:e5:37:a4:b1:3c:1d:8a:81:18:87:09:26:cd: 15:99:bb:d0:d9:86:a0:ee:ea:80:f9:5d:5f:c1:51:42:95:12: 64:16:1a:15 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIrR38dDUNlS/0ctveeFptQvbr/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIx NTRENzZDNTAeFw0yNTAzMDcwODU1MTNaFw0yNjAzMDYwOTAwMTNaMDMxMTAvBgNV BAMTKDUyQUUwNjVGNEYyNDU1MjNEQUVFMDUyODJDRjBBQzk1Rjc5RUE5QkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRWPpiAhSUzpB70eIBO5GPlNgJ 1kgFFO+PS5YhNh8NKlFJmkDG8MVpbVn0M7C8qUVHFoqBuv3wODF74+sJbtgrzU9a R5EkyHko7id/uVVID1uUbhq7VsR2MHX4Rt0npIILeOTO8FJXnw2A2AmGI4BZYDkm 4mA/8qz3kvhlT7ou68vaEb9nbYa1pWpwwRY2p5EvkyVNBetN3zBY0oXEdJTgB6px xcgVcZnyoBZUw6I9tKEw0aV20mfXU+1oV+STXhWXZ2ylPlW1MIWMN2i/D4Nr0o00 e/a8QneTNz719xQLkrtIuckIP5hKfExnHamfxofuGmKhVf8rNYz3iMaYTh1HAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUUq4GX08kVSPa7gUoLPCslfeeqb8wHwYDVR0j BBgwFoAUFbzXXgLghesIo9LyLIcpchVNdsUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjY3NDY5MDEtMjNkMy00MzAxLWIyOGQtOGIwOTgyYjA2 YzA4LzEvMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIxNTRENzZDNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xNUJDRDc1RTAyRTA4NUVCMDhBM0QyRjIy Qzg3Mjk3MjE1NEQ3NkM1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNjc0NjkwMS0yM2QzLTQzMDEtYjI4ZC04YjA5ODJiMDZjMDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjY2MjMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTMzMzQzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ+wMA0GCSqGSIb3DQEBCwUAA4IBAQBi 2D0kjrXvkr28HcQVsXaxpU+vsdHPKVi7TRjZ7R8p+L4HPhVusJ4sfIaoqfb3f/Vc B3vNUbPL8mItVnF1qimoVa23G/EcUUZ23zY9XRxVsSajY6mmTE0Jybwy3Zf2V6Cz sWz1Hz6NNEvVAgTx3o7FFw81lksR5T2GEUkVT7iNZR75OE3MnW7/jslziDkNChyX OQ0lHEGcWicBAB4CLBYsH1nHzxog987bAOVL4O0Vr6joEI4ISuRnTLOfNpp5D6f4 R1lQuJ6fJ+IgkDEH2RO0t2ZR0dp8QIuAtZB9IuU3pLE8HYqBGIcJJs0VmbvQ2Yag 7uqA+V1fwVFClRJkFhoV -----END CERTIFICATE-----Generated at Sat Apr 5 21:19:02 2025 by rpki-client