$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3734303a3a2f34342d3434203d3e20313337393038.roa File: 326131343a373538303a3734303a3a2f34342d3434203d3e20313337393038.roa (raw, json) Hash identifier: 2XHTj/cfAPJdVFHVIH4P55LBG+fLJn82CtSAwFgxMbs= Subject key identifier: 1A:9B:9C:07:CB:40:89:37:6A:26:26:5E:2B:DC:7D:CA:47:50:44:85 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 02ACA350BE4F9356D017E36A3AEE0F9FABCC2297 Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3734303a3a2f34342d3434203d3e20313337393038.roa Signing time: Fri 16 May 2025 17:00:26 +0000 ROA not before: Fri 16 May 2025 16:55:26 +0000 ROA not after: Fri 15 May 2026 17:00:26 +0000 asID: 137908 IP address blocks: 2a14:7580:740::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 17:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ac:a3:50:be:4f:93:56:d0:17:e3:6a:3a:ee:0f:9f:ab:cc:22:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: May 16 16:55:26 2025 GMT Not After : May 15 17:00:26 2026 GMT Subject: CN=1A9B9C07CB4089376A26265E2BDC7DCA47504485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f6:0a:95:86:c6:4a:d9:f9:1c:9f:56:1c:87: 8b:47:09:00:ee:7d:51:2b:57:13:bd:31:0c:1e:65: d7:71:9c:0d:08:2d:b2:b0:8f:ab:e0:93:0a:58:fd: 42:c4:ed:80:9a:42:f0:3d:aa:09:73:3a:40:39:fe: c0:56:0c:42:df:12:53:1f:96:3b:a5:7c:bc:90:30: ac:95:14:68:f1:83:d8:48:b3:ef:2c:12:b6:f0:b4: b3:9e:8c:a4:8c:81:31:74:35:2d:bb:08:1e:47:b7: c2:cd:33:a0:9e:ed:d7:99:3d:ab:58:18:c7:88:42: 44:a6:90:31:da:d1:35:07:0e:9c:ad:16:9d:9a:48: b7:07:da:ec:62:49:82:89:18:f6:b4:87:e9:3c:aa: 4a:89:c9:c4:77:0b:1b:c7:2b:6d:ba:92:32:d0:5d: a1:8a:ee:c4:ba:e2:3c:27:8a:60:c9:dc:17:b3:37: df:d0:fc:c1:d3:b8:ce:03:cb:3f:81:ab:1b:27:ee: 9a:77:c6:ef:ab:5d:4d:cb:fc:ba:3b:e5:89:7f:73: 29:3f:ce:e1:1d:49:63:18:f4:c7:5c:5b:85:aa:3b: cf:76:43:a3:b3:a7:27:f8:04:e6:29:44:62:ff:32: ca:52:f3:68:96:88:6a:fb:64:62:5d:78:d1:13:ed: f1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9B:9C:07:CB:40:89:37:6A:26:26:5E:2B:DC:7D:CA:47:50:44:85 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3734303a3a2f34342d3434203d3e20313337393038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:740::/44 Signature Algorithm: sha256WithRSAEncryption 46:75:50:74:ac:c3:9b:71:2f:5f:c4:64:4e:f5:b8:1c:ef:db: 16:88:f6:a7:5d:7d:f2:51:3a:13:02:6d:b5:78:95:3e:31:fb: cd:dc:3a:d6:8a:01:92:10:9c:8e:5b:a7:47:5a:b9:d3:e5:37: 4f:9c:22:6f:cf:cd:94:e7:2f:67:29:5b:0c:b7:67:36:39:44: 16:6b:5f:5b:a8:63:3d:a0:97:e6:46:9d:22:86:77:6f:93:86: 89:a2:8f:3d:4c:a8:c8:4d:76:16:89:90:40:ff:60:0c:ab:be: e2:55:21:43:e1:cc:94:d3:2a:3e:b3:2c:f5:d3:07:36:2b:45: 00:2f:11:35:89:2d:e1:16:57:0c:e5:40:9c:1a:26:1a:32:54: e5:40:c4:1f:b3:69:bb:1b:89:33:35:f5:b5:80:bb:dd:e7:2e: a5:68:98:07:cb:a4:8e:cd:b1:33:c6:49:39:f8:e0:22:b3:00: 84:cb:1e:55:60:40:e7:5f:c5:89:98:be:10:0a:c3:46:8f:a7: 50:67:10:5a:9a:1e:41:62:bd:94:7b:3b:7f:84:12:c3:73:5b: 12:ce:3b:29:75:03:36:0d:87:94:ce:60:ae:0d:fe:d8:7b:c4: 92:75:61:c7:92:aa:71:e4:7d:17:41:d6:1f:13:f5:f0:dc:10: 97:3a:f3:5d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUAqyjUL5Pk1bQF+NqOu4Pn6vMIpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA1MTYxNjU1MjZaFw0yNjA1MTUxNzAwMjZaMDMxMTAvBgNV BAMTKDFBOUI5QzA3Q0I0MDg5Mzc2QTI2MjY1RTJCREM3RENBNDc1MDQ0ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCL9gqVhsZK2fkcn1Ych4tHCQDu fVErVxO9MQweZddxnA0ILbKwj6vgkwpY/ULE7YCaQvA9qglzOkA5/sBWDELfElMf ljulfLyQMKyVFGjxg9hIs+8sErbwtLOejKSMgTF0NS27CB5Ht8LNM6Ce7deZPatY GMeIQkSmkDHa0TUHDpytFp2aSLcH2uxiSYKJGPa0h+k8qkqJycR3CxvHK226kjLQ XaGK7sS64jwnimDJ3BezN9/Q/MHTuM4Dyz+Bqxsn7pp3xu+rXU3L/Lo75Yl/cyk/ zuEdSWMY9MdcW4WqO892Q6Ozpyf4BOYpRGL/MspS82iWiGr7ZGJdeNET7fHbAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUGpucB8tAiTdqJiZeK9x9ykdQRIUwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzQzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzMz NzM5MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYAHQDANBgkqhkiG9w0BAQsFAAOCAQEARnVQ dKzDm3EvX8RkTvW4HO/bFoj2p1198lE6EwJttXiVPjH7zdw61ooBkhCcjlunR1q5 0+U3T5wib8/NlOcvZylbDLdnNjlEFmtfW6hjPaCX5kadIoZ3b5OGiaKPPUyoyE12 FomQQP9gDKu+4lUhQ+HMlNMqPrMs9dMHNitFAC8RNYkt4RZXDOVAnBomGjJU5UDE H7NpuxuJMzX1tYC73ecupWiYB8ukjs2xM8ZJOfjgIrMAhMseVWBA51/FiZi+EArD Ro+nUGcQWpoeQWK9lHs7f4QSw3NbEs47KXUDNg2HlM5grg3+2HvEknVhx5KqceR9 F0HWHxP18NwQlzrzXQ== -----END CERTIFICATE-----Generated at Sun Jun 8 02:42:49 2025 by rpki-client