$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa File: 326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa (raw, json) Hash identifier: Nppx6T7C9uSX4M2F35MaPm3kfPyEttoHWkeXfEOv3pc= Subject key identifier: 6A:27:92:C6:5D:22:18:EA:60:7C:8A:1A:92:F0:3D:35:21:9B:DC:0D Certificate issuer: /CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Certificate serial: 7F951EB43778936EF4863C451099DBC959AC3258 Authority key identifier: 15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa Signing time: Fri 07 Mar 2025 08:59:42 +0000 ROA not before: Fri 07 Mar 2025 08:54:42 +0000 ROA not after: Fri 06 Mar 2026 08:59:42 +0000 asID: 213430 IP address blocks: 2a14:7581:9fc0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 09:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:95:1e:b4:37:78:93:6e:f4:86:3c:45:10:99:db:c9:59:ac:32:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Validity Not Before: Mar 7 08:54:42 2025 GMT Not After : Mar 6 08:59:42 2026 GMT Subject: CN=6A2792C65D2218EA607C8A1A92F03D35219BDC0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:29:0d:37:43:f4:31:48:74:d7:40:60:fc:3b: 95:74:b6:f5:a4:7d:b5:0e:0a:7c:23:f7:0f:c4:f0: 52:ce:6e:52:76:f0:49:97:66:36:35:82:5a:db:50: 18:bc:81:29:45:2c:97:c7:f8:2f:27:65:98:0d:ce: d5:b6:9b:d1:e0:69:e1:ec:f1:a6:12:e1:f6:26:f0: e1:5e:b3:d6:57:c8:7e:73:c0:2a:b1:6f:59:83:99: 08:bc:85:4d:00:1b:a9:a1:f0:f1:49:f6:f2:d0:e9: 99:b7:35:a7:86:58:46:f6:68:c7:c5:03:30:9e:d7: 19:f0:0c:2f:fc:e8:08:31:95:3b:e6:f3:5d:1c:14: ba:e0:a8:2b:65:a2:b8:88:79:c3:2d:36:14:41:8a: 0b:22:ae:39:6b:4f:ba:c1:96:5b:bb:36:cb:4e:89: 58:dc:26:62:b5:9f:a2:c3:d4:5b:36:21:d7:90:1f: 58:36:00:ea:f0:15:65:3f:d4:1f:0f:37:b4:7a:85: 4d:25:5c:af:0e:60:1a:fc:9a:dd:33:c5:92:87:8e: bd:67:d2:4f:67:8d:ae:2e:0f:a4:dd:c6:b7:15:91: 94:cb:b4:48:c1:f0:9d:49:89:b2:a4:5c:c0:69:75: cf:f6:e5:19:cf:99:99:d2:a0:97:f0:21:46:89:13: 0b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:27:92:C6:5D:22:18:EA:60:7C:8A:1A:92:F0:3D:35:21:9B:DC:0D X509v3 Authority Key Identifier: keyid:15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9fc0::/44 Signature Algorithm: sha256WithRSAEncryption 66:8f:cc:a2:9c:0e:22:f3:c5:8e:a7:40:58:ef:3b:fd:93:a3: 99:a3:45:5f:ca:86:56:59:28:85:c5:fc:74:f0:a8:7d:a0:cd: 0a:00:0e:04:75:d9:e7:4a:20:31:14:e0:e9:8d:f7:6a:04:d7: f1:f4:3b:85:b3:c0:7c:b6:75:49:5b:70:cd:b7:88:13:42:77: 84:b1:01:5c:ef:4d:43:f4:00:d9:5f:83:c6:4b:84:62:fd:50: dd:8d:ff:49:c7:44:77:31:21:8a:d9:6e:5a:20:e9:53:1a:cd: 98:20:35:bb:6d:ac:88:f8:08:3c:c2:98:c7:88:35:7a:62:dc: a9:6c:be:33:e5:20:96:d7:06:04:21:ab:a8:72:cb:c2:e6:75: 42:d8:d1:70:06:82:61:9c:c7:f0:5e:e5:f5:73:31:b5:97:71: ef:93:37:be:44:14:d2:f5:44:47:3c:a1:47:54:05:f6:58:19: 7e:22:10:82:cf:5e:25:a8:df:8a:80:77:0c:c8:0b:8e:54:86: fc:b5:34:90:c1:44:34:40:e1:7e:4b:58:f1:1f:72:bb:b9:df: f3:33:d1:2d:63:21:5c:dd:9f:36:99:b9:ca:ac:24:da:a2:3b: 7d:a4:e7:ef:b0:24:d4:12:3b:60:01:58:a7:6a:0f:2f:36:a8: bb:08:d0:ed -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUf5UetDd4k270hjxFEJnbyVmsMlgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIx NTRENzZDNTAeFw0yNTAzMDcwODU0NDJaFw0yNjAzMDYwODU5NDJaMDMxMTAvBgNV BAMTKDZBMjc5MkM2NUQyMjE4RUE2MDdDOEExQTkyRjAzRDM1MjE5QkRDMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoKQ03Q/QxSHTXQGD8O5V0tvWk fbUOCnwj9w/E8FLOblJ28EmXZjY1glrbUBi8gSlFLJfH+C8nZZgNztW2m9HgaeHs 8aYS4fYm8OFes9ZXyH5zwCqxb1mDmQi8hU0AG6mh8PFJ9vLQ6Zm3NaeGWEb2aMfF AzCe1xnwDC/86AgxlTvm810cFLrgqCtloriIecMtNhRBigsirjlrT7rBllu7NstO iVjcJmK1n6LD1Fs2IdeQH1g2AOrwFWU/1B8PN7R6hU0lXK8OYBr8mt0zxZKHjr1n 0k9nja4uD6TdxrcVkZTLtEjB8J1JibKkXMBpdc/25RnPmZnSoJfwIUaJEws3AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUaieSxl0iGOpgfIoakvA9NSGb3A0wHwYDVR0j BBgwFoAUFbzXXgLghesIo9LyLIcpchVNdsUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjY3NDY5MDEtMjNkMy00MzAxLWIyOGQtOGIwOTgyYjA2 YzA4LzEvMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIxNTRENzZDNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xNUJDRDc1RTAyRTA4NUVCMDhBM0QyRjIy Qzg3Mjk3MjE1NEQ3NkM1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNjc0NjkwMS0yM2QzLTQzMDEtYjI4ZC04YjA5ODJiMDZjMDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjY2MzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTMzMzQzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ/AMA0GCSqGSIb3DQEBCwUAA4IBAQBm j8yinA4i88WOp0BY7zv9k6OZo0VfyoZWWSiFxfx08Kh9oM0KAA4EddnnSiAxFODp jfdqBNfx9DuFs8B8tnVJW3DNt4gTQneEsQFc701D9ADZX4PGS4Ri/VDdjf9Jx0R3 MSGK2W5aIOlTGs2YIDW7bayI+Ag8wpjHiDV6YtypbL4z5SCW1wYEIauocsvC5nVC 2NFwBoJhnMfwXuX1czG1l3Hvkze+RBTS9URHPKFHVAX2WBl+IhCCz14lqN+KgHcM yAuOVIb8tTSQwUQ0QOF+S1jxH3K7ud/zM9EtYyFc3Z82mbnKrCTaojt9pOfvsCTU EjtgAVinag8vNqi7CNDt -----END CERTIFICATE-----Generated at Sat Apr 5 21:19:31 2025 by rpki-client