$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3737303a3a2f34342d3434203d3e20323133383931.roa File: 326131343a373538303a3737303a3a2f34342d3434203d3e20323133383931.roa (raw, json) Hash identifier: Y5ilvBbE12qO1Ud5YZb+YMRUcGap41Si5541sY2pw8w= Subject key identifier: E4:8B:74:31:B3:A0:CB:CD:89:65:98:27:19:D1:5E:63:DE:EE:50:50 Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 323DC3D1DBA3540E21A133CF86CE36D0FF1C0B8F Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3737303a3a2f34342d3434203d3e20323133383931.roa Signing time: Fri 16 May 2025 17:00:13 +0000 ROA not before: Fri 16 May 2025 16:55:13 +0000 ROA not after: Fri 15 May 2026 17:00:13 +0000 asID: 213891 IP address blocks: 2a14:7580:770::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 05:47:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:3d:c3:d1:db:a3:54:0e:21:a1:33:cf:86:ce:36:d0:ff:1c:0b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: May 16 16:55:13 2025 GMT Not After : May 15 17:00:13 2026 GMT Subject: CN=E48B7431B3A0CBCD8965982719D15E63DEEE5050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:31:20:2a:2e:47:aa:5d:d4:e2:5a:ff:ce: 1e:8d:37:24:3b:d1:96:ec:24:41:44:c2:be:b5:28: 77:af:82:05:a6:f4:de:1d:0e:b2:92:54:16:18:45: b5:12:ea:cc:5f:02:f1:5d:a0:4e:3c:3a:f1:a4:2b: b9:ef:6a:1b:8c:bd:1d:cb:45:4d:7d:70:01:24:f0: 76:07:ef:32:1b:b3:08:97:3a:52:46:7c:15:2a:04: b9:ee:95:a5:e4:56:3b:fc:17:ea:2c:0c:0d:95:63: d5:88:25:ca:35:be:7a:55:81:3b:b1:29:4d:24:a2: 31:f5:bf:02:3a:a2:b8:55:f7:56:d8:1a:c2:11:bb: 27:52:0e:72:72:2c:16:49:26:92:26:43:0a:1c:ec: ea:0f:c7:8b:27:c5:5b:6d:86:70:1d:85:08:75:e5: 91:b6:f2:99:1b:26:d6:18:6c:bf:25:01:2a:da:f6: 47:cc:08:79:6d:8f:4b:6c:c1:2c:e8:40:1b:6d:cc: a7:0f:fa:68:24:db:d7:4d:96:8f:d2:5e:54:27:36: f5:ba:56:4a:f9:1f:2d:66:98:5a:df:16:8b:f1:e5: a3:52:6f:57:2a:e5:be:f2:40:2d:af:18:64:cc:77: 93:09:31:b0:b5:5f:a4:70:cc:71:eb:71:2b:29:60: fd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8B:74:31:B3:A0:CB:CD:89:65:98:27:19:D1:5E:63:DE:EE:50:50 X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3737303a3a2f34342d3434203d3e20323133383931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:770::/44 Signature Algorithm: sha256WithRSAEncryption 7c:13:51:d9:2d:28:f1:bc:e1:25:99:04:b2:52:ff:43:24:61: 07:c1:11:a6:73:0b:23:0f:c3:f0:b6:6a:4c:5b:66:e8:1a:c3: 60:c5:8c:08:81:fa:f5:08:b3:97:73:13:25:02:a0:4d:47:e2: e5:aa:de:da:95:f4:2d:b8:99:bc:2f:a7:88:23:23:cd:b7:b3: c6:bf:18:f8:24:fe:f2:16:02:b9:a4:43:07:c0:3b:56:3d:54: 33:9f:42:b3:42:4c:98:e3:63:a2:bf:41:7b:10:6b:2d:6e:70: 92:6a:13:13:36:4b:e6:4e:4c:02:b4:cb:58:a0:a8:82:f9:bc: a9:83:34:35:7d:8e:6b:e6:99:83:a8:30:6c:cc:8e:83:59:57: 80:fb:80:37:10:4a:00:a1:77:bd:5d:1b:e6:77:e9:52:8d:fe: cd:42:17:27:f5:7a:f1:ad:fb:3a:6d:29:44:03:b7:ee:c1:90: 3d:6b:d5:77:17:c9:46:4b:13:9e:f6:41:8f:a6:4f:57:3d:4a: 79:6e:a9:13:37:cd:8e:1d:ec:64:1d:3d:93:38:b3:22:d0:2a: 56:5b:43:d2:3d:f0:e1:23:ad:96:d8:42:25:c7:21:58:7f:0d: 3b:5c:d0:f8:d9:6c:71:e7:54:ec:9d:0d:e6:1d:a7:48:91:f4: 8b:f1:1a:0f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUMj3D0dujVA4hoTPPhs420P8cC48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA1MTYxNjU1MTNaFw0yNjA1MTUxNzAwMTNaMDMxMTAvBgNV BAMTKEU0OEI3NDMxQjNBMENCQ0Q4OTY1OTgyNzE5RDE1RTYzREVFRTUwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtDEgKi5Hql3U4lr/zh6NNyQ7 0ZbsJEFEwr61KHevggWm9N4dDrKSVBYYRbUS6sxfAvFdoE48OvGkK7nvahuMvR3L RU19cAEk8HYH7zIbswiXOlJGfBUqBLnulaXkVjv8F+osDA2VY9WIJco1vnpVgTux KU0kojH1vwI6orhV91bYGsIRuydSDnJyLBZJJpImQwoc7OoPx4snxVtthnAdhQh1 5ZG28pkbJtYYbL8lASra9kfMCHltj0tswSzoQBttzKcP+mgk29dNlo/SXlQnNvW6 Vkr5Hy1mmFrfFovx5aNSb1cq5b7yQC2vGGTMd5MJMbC1X6RwzHHrcSspYP3/AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU5It0MbOgy82JZZgnGdFeY97uUFAwHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzczMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEz MzM4MzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYAHcDANBgkqhkiG9w0BAQsFAAOCAQEAfBNR 2S0o8bzhJZkEslL/QyRhB8ERpnMLIw/D8LZqTFtm6BrDYMWMCIH69Qizl3MTJQKg TUfi5are2pX0LbiZvC+niCMjzbezxr8Y+CT+8hYCuaRDB8A7Vj1UM59Cs0JMmONj or9BexBrLW5wkmoTEzZL5k5MArTLWKCogvm8qYM0NX2Oa+aZg6gwbMyOg1lXgPuA NxBKAKF3vV0b5nfpUo3+zUIXJ/V68a37Om0pRAO37sGQPWvVdxfJRksTnvZBj6ZP Vz1KeW6pEzfNjh3sZB09kzizItAqVltD0j3w4SOtlthCJcchWH8NO1zQ+NlscedU 7J0N5h2nSJH0i/EaDw== -----END CERTIFICATE-----Generated at Fri Jun 6 23:04:00 2025 by rpki-client