$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3438203d3e20323134373031.roa File: 326130623a346530373a363030303a3a2f34312d3438203d3e20323134373031.roa (raw, json) Hash identifier: 4kUbGyjkNaSVg+CdxZZIcLS92ZdRbZtwjsOz4Bjkgro= Subject key identifier: E7:D2:AA:36:68:0A:3D:85:8E:F3:46:65:40:19:BE:87:5C:1E:33:C9 Certificate issuer: /CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Certificate serial: 21B8F136A016B8872CBA6CD597D43A9BCAFD8C50 Authority key identifier: DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3438203d3e20323134373031.roa Signing time: Sat 12 Apr 2025 14:06:36 +0000 ROA not before: Sat 12 Apr 2025 14:01:36 +0000 ROA not after: Sat 11 Apr 2026 14:06:36 +0000 asID: 214701 IP address blocks: 2a0b:4e07:6000::/41 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 22 Apr 2025 16:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b8:f1:36:a0:16:b8:87:2c:ba:6c:d5:97:d4:3a:9b:ca:fd:8c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Validity Not Before: Apr 12 14:01:36 2025 GMT Not After : Apr 11 14:06:36 2026 GMT Subject: CN=E7D2AA36680A3D858EF346654019BE875C1E33C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:05:dd:47:4f:25:97:56:c8:a8:64:a4:9e:0a: 29:a8:db:24:93:8d:85:c2:b1:3d:3f:ca:39:de:aa: ba:a2:57:e5:51:d1:8c:58:b1:33:e0:a3:c6:6f:cc: 4c:56:bf:15:63:c3:eb:1d:d0:4e:af:04:3c:fc:3d: b3:2f:be:81:2c:5a:b9:21:03:df:08:c6:05:4f:e4: 82:ae:98:3c:d4:94:68:1b:62:8f:dc:91:54:74:7f: ed:bf:f3:51:f0:21:31:90:ba:1e:84:2f:fa:26:43: 21:52:0c:7a:e4:9c:2b:72:a3:7b:bc:60:fe:bc:58: 07:17:fb:8b:76:98:30:76:c6:87:ec:6e:d6:98:53: 37:2d:ae:bd:09:ae:44:b2:7e:75:c8:e9:e2:97:1e: af:ea:87:b4:d8:2a:4d:d2:85:93:c2:87:97:4f:cf: d8:b7:ca:e6:7f:cc:a4:93:36:e6:61:af:a6:6d:e3: 57:4a:91:53:54:cd:4e:22:ce:5f:d7:54:92:d8:7c: 01:38:16:60:df:a8:81:5f:94:ac:30:71:07:e1:5a: 6b:8f:6c:63:a3:4a:e3:d9:62:96:53:72:56:10:e4: a7:83:09:ec:c4:04:8e:ba:d7:6e:22:df:3e:89:cd: 9d:38:17:44:79:84:cc:e5:99:7c:13:89:ca:1d:c2: 85:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D2:AA:36:68:0A:3D:85:8E:F3:46:65:40:19:BE:87:5C:1E:33:C9 X509v3 Authority Key Identifier: keyid:DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3438203d3e20323134373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:6000::/41 Signature Algorithm: sha256WithRSAEncryption 20:95:73:fc:9e:8a:ad:58:02:18:84:b8:a3:ea:3b:33:85:ce: af:ab:d6:fc:af:eb:45:99:b5:ff:fc:80:d1:41:74:82:b5:43: 76:bf:40:b8:31:28:7e:60:9f:e9:bc:71:89:f2:8c:7a:63:a7: 0b:b1:a2:dc:ae:5f:80:67:bb:1d:04:6d:04:28:e0:5e:2c:94: 21:99:ee:23:53:28:d7:5d:a2:32:6b:fb:7a:20:0e:dd:e9:61: 0e:42:49:e5:08:48:b8:67:dc:b2:02:05:88:9a:f2:a5:12:8e: 80:1d:27:9c:76:35:93:ac:3f:a0:d6:05:a3:cb:59:15:ab:49: 7c:2a:e7:e0:67:06:7f:8d:ac:af:16:7c:18:b7:72:d3:21:b3: 76:60:85:15:1a:67:51:05:e2:06:72:80:18:e1:08:43:9e:28: 47:e0:b9:78:ed:04:60:a2:26:ed:1b:0a:53:72:70:e6:63:81: f6:88:fb:79:61:a2:6c:83:15:7a:ca:c0:30:76:26:0d:1d:ec: 98:4a:a8:b1:75:e9:5c:43:11:c6:1c:b2:8a:88:ed:65:4e:99: e6:bd:c8:6a:a3:5a:7c:1a:7e:19:b1:d9:78:a1:1b:62:5d:ad: 00:4f:d6:40:97:bb:7a:05:c1:d3:73:f5:fe:33:f9:c7:53:19: 9f:4d:71:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUIbjxNqAWuIcsumzVl9Q6m8r9jFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJG RERBNDExODAeFw0yNTA0MTIxNDAxMzZaFw0yNjA0MTExNDA2MzZaMDMxMTAvBgNV BAMTKEU3RDJBQTM2NjgwQTNEODU4RUYzNDY2NTQwMTlCRTg3NUMxRTMzQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoBd1HTyWXVsioZKSeCimo2yST jYXCsT0/yjneqrqiV+VR0YxYsTPgo8ZvzExWvxVjw+sd0E6vBDz8PbMvvoEsWrkh A98IxgVP5IKumDzUlGgbYo/ckVR0f+2/81HwITGQuh6EL/omQyFSDHrknCtyo3u8 YP68WAcX+4t2mDB2xofsbtaYUzctrr0JrkSyfnXI6eKXHq/qh7TYKk3ShZPCh5dP z9i3yuZ/zKSTNuZhr6Zt41dKkVNUzU4izl/XVJLYfAE4FmDfqIFflKwwcQfhWmuP bGOjSuPZYpZTclYQ5KeDCezEBI66124i3z6JzZ04F0R5hMzlmXwTicodwoUpAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU59KqNmgKPYWO80ZlQBm+h1weM8kwHwYDVR0j BBgwFoAU3cJa0vGkiSR3E+45scA+ov3aQRgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmVhZDJkY2YtZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5 YzUwLzMvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERBNDExOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERB NDExOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmVhZDJkY2Yt ZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5YzUwLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzNjMwMzAzMDNhM2EyZjM0MzEyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzAzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHByoLTgdgADANBgkqhkiG9w0BAQsFAAOCAQEAIJVz/J6KrVgCGIS4 o+o7M4XOr6vW/K/rRZm1//yA0UF0grVDdr9AuDEofmCf6bxxifKMemOnC7Gi3K5f gGe7HQRtBCjgXiyUIZnuI1Mo112iMmv7eiAO3elhDkJJ5QhIuGfcsgIFiJrypRKO gB0nnHY1k6w/oNYFo8tZFatJfCrn4GcGf42srxZ8GLdy0yGzdmCFFRpnUQXiBnKA GOEIQ54oR+C5eO0EYKIm7RsKU3Jw5mOB9oj7eWGibIMVesrAMHYmDR3smEqosXXp XEMRxhyyiojtZU6Z5r3IaqNafBp+GbHZeKEbYl2tAE/WQJe7egXB03P1/jP5x1MZ n01xGw== -----END CERTIFICATE-----Generated at Tue Apr 22 01:04:40 2025 by rpki-client