$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa File: 326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa (raw, json) Hash identifier: MUq020p8NbAnolAB9zdSK3Cpj1AnGomUMMut2k1LbJE= Subject key identifier: D4:D2:FE:E7:B5:D1:5B:C0:9E:B4:F1:74:66:36:1F:F9:26:E0:A0:CF Certificate issuer: /CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Certificate serial: 63DB577B0DC8D40F4DA5A0308A9D0E5686F6FDDD Authority key identifier: 15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa Signing time: Thu 15 May 2025 14:33:40 +0000 ROA not before: Thu 15 May 2025 14:28:40 +0000 ROA not after: Thu 14 May 2026 14:33:40 +0000 asID: 213430 IP address blocks: 2a14:7581:9fc0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:db:57:7b:0d:c8:d4:0f:4d:a5:a0:30:8a:9d:0e:56:86:f6:fd:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15BCD75E02E085EB08A3D2F22C872972154D76C5 Validity Not Before: May 15 14:28:40 2025 GMT Not After : May 14 14:33:40 2026 GMT Subject: CN=D4D2FEE7B5D15BC09EB4F17466361FF926E0A0CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dd:ce:d0:2e:8d:79:81:d4:70:cf:da:63:c9: 9d:18:49:14:cb:ee:69:51:ca:6d:4a:c2:7a:cf:e9: f8:4e:e7:36:ca:62:73:f1:07:5d:ee:09:09:28:71: 9f:67:52:e8:09:be:d8:48:1d:36:ed:4f:f5:94:11: 8f:b1:b2:c8:77:1c:48:0f:80:1f:ee:5a:c7:1e:0f: 23:0e:e6:52:b9:ac:39:eb:e8:49:22:8c:27:df:90: 9b:17:8f:c9:82:b8:e4:8a:ee:ed:c2:f4:7e:d7:32: eb:d0:a6:ab:69:56:d7:83:44:60:f6:35:81:f0:ba: 66:41:ba:83:23:56:7a:66:3f:b1:a8:09:b3:ef:a9: df:d2:ee:ab:e8:44:1a:69:db:c9:f5:cf:f5:d8:f5: 03:15:6c:d4:a7:e7:98:cd:00:e5:da:f1:e4:1e:d7: 3e:9c:31:50:63:69:b8:ee:54:e2:ac:02:6a:0f:8d: 4c:dc:b3:bd:a1:82:fc:51:d6:5f:b3:ff:fc:d7:d9: 54:eb:c0:39:ed:30:d4:13:47:94:be:49:de:f0:44: e7:dd:c4:02:c2:e6:17:b2:f5:6b:22:dc:60:dd:2b: d7:13:df:62:c4:1d:54:3e:71:39:bd:73:fd:15:90: 66:07:bc:a6:55:4a:32:54:3c:c3:d7:51:f4:20:06: 5e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D2:FE:E7:B5:D1:5B:C0:9E:B4:F1:74:66:36:1F:F9:26:E0:A0:CF X509v3 Authority Key Identifier: keyid:15:BC:D7:5E:02:E0:85:EB:08:A3:D2:F2:2C:87:29:72:15:4D:76:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/15BCD75E02E085EB08A3D2F22C872972154D76C5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/15BCD75E02E085EB08A3D2F22C872972154D76C5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b6746901-23d3-4301-b28d-8b0982b06c08/1/326131343a373538313a396663303a3a2f34342d3434203d3e20323133343330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9fc0::/44 Signature Algorithm: sha256WithRSAEncryption 34:4e:21:e4:ec:b0:c5:4f:34:f6:a3:e7:d6:aa:bb:06:85:85: 45:59:59:db:ef:67:4f:23:6f:eb:20:58:6c:8d:e7:36:f7:f9: 48:f6:96:6a:40:ba:06:0d:23:a9:e8:00:f9:c4:ad:f1:26:dc: 66:5a:af:3a:53:cd:e7:e8:75:16:3b:0a:72:6b:bf:77:b9:aa: 79:4d:ee:ec:a2:b7:55:cb:0c:7d:c2:48:23:e8:fa:cf:46:e2: 81:64:30:0b:7d:b7:9a:fb:6e:ac:fc:7c:02:db:47:e4:2e:41: d0:f6:f6:46:ef:4f:5c:6b:02:f2:5a:a0:28:c6:4b:0e:14:48: 5a:6c:50:1a:9c:0a:3e:f3:fa:07:81:ac:6d:a4:ae:fd:94:a0: ec:58:58:65:1f:91:0e:c5:93:16:ea:06:97:6b:25:b8:bb:fe: 5d:06:de:70:98:aa:c6:63:98:06:26:5c:55:af:47:5c:7f:c0: 91:01:d0:00:81:a3:7c:ff:16:5a:f8:74:51:8f:e6:96:29:af: b6:b0:cd:c2:22:fa:df:5d:db:be:5a:49:31:a1:bb:a6:35:b9: f8:23:75:99:17:6f:94:7f:8f:81:55:49:97:2e:db:25:35:a8: a5:f1:3d:51:06:a8:5e:d7:aa:2b:66:e6:25:df:08:fd:9e:6a: 78:47:7f:e3 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUY9tXew3I1A9NpaAwip0OVob2/d0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIx NTRENzZDNTAeFw0yNTA1MTUxNDI4NDBaFw0yNjA1MTQxNDMzNDBaMDMxMTAvBgNV BAMTKEQ0RDJGRUU3QjVEMTVCQzA5RUI0RjE3NDY2MzYxRkY5MjZFMEEwQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf3c7QLo15gdRwz9pjyZ0YSRTL 7mlRym1KwnrP6fhO5zbKYnPxB13uCQkocZ9nUugJvthIHTbtT/WUEY+xssh3HEgP gB/uWsceDyMO5lK5rDnr6EkijCffkJsXj8mCuOSK7u3C9H7XMuvQpqtpVteDRGD2 NYHwumZBuoMjVnpmP7GoCbPvqd/S7qvoRBpp28n1z/XY9QMVbNSn55jNAOXa8eQe 1z6cMVBjabjuVOKsAmoPjUzcs72hgvxR1l+z//zX2VTrwDntMNQTR5S+Sd7wROfd xALC5hey9Wsi3GDdK9cT32LEHVQ+cTm9c/0VkGYHvKZVSjJUPMPXUfQgBl7pAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU1NL+57XRW8CetPF0ZjYf+SbgoM8wHwYDVR0j BBgwFoAUFbzXXgLghesIo9LyLIcpchVNdsUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjY3NDY5MDEtMjNkMy00MzAxLWIyOGQtOGIwOTgyYjA2 YzA4LzEvMTVCQ0Q3NUUwMkUwODVFQjA4QTNEMkYyMkM4NzI5NzIxNTRENzZDNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xNUJDRDc1RTAyRTA4NUVCMDhBM0QyRjIy Qzg3Mjk3MjE1NEQ3NkM1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNjc0NjkwMS0yM2QzLTQzMDEtYjI4ZC04YjA5ODJiMDZjMDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjY2MzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTMzMzQzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ/AMA0GCSqGSIb3DQEBCwUAA4IBAQA0 TiHk7LDFTzT2o+fWqrsGhYVFWVnb72dPI2/rIFhsjec29/lI9pZqQLoGDSOp6AD5 xK3xJtxmWq86U83n6HUWOwpya793uap5Te7sordVywx9wkgj6PrPRuKBZDALfbea +26s/HwC20fkLkHQ9vZG709cawLyWqAoxksOFEhabFAanAo+8/oHgaxtpK79lKDs WFhlH5EOxZMW6gaXayW4u/5dBt5wmKrGY5gGJlxVr0dcf8CRAdAAgaN8/xZa+HRR j+aWKa+2sM3CIvrfXdu+WkkxobumNbn4I3WZF2+Uf4+BVUmXLtslNail8T1RBqhe 16orZuYl3wj9nmp4R3/j -----END CERTIFICATE-----Generated at Fri Jun 6 22:48:42 2025 by rpki-client