$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa File: 3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa (raw, json) Hash identifier: 3ipGYMDZ54FZdaI4eg46OMa/ZV0a0Q3rHUY9RUekrv8= Subject key identifier: F3:19:DE:4F:92:57:D5:04:2F:DD:FE:76:AD:11:4B:73:87:4E:DB:24 Certificate issuer: /CN=47E9555355C6B007AACD5D45BF41E3383E991641 Certificate serial: 025AAA03F2B52EBF23A52C01394BF8B9A34143AA Authority key identifier: 47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41 Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa Signing time: Fri 21 Mar 2025 00:10:07 +0000 ROA not before: Fri 21 Mar 2025 00:05:07 +0000 ROA not after: Fri 20 Mar 2026 00:10:07 +0000 asID: 199518 IP address blocks: 198.180.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.mft rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 07:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:5a:aa:03:f2:b5:2e:bf:23:a5:2c:01:39:4b:f8:b9:a3:41:43:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47E9555355C6B007AACD5D45BF41E3383E991641 Validity Not Before: Mar 21 00:05:07 2025 GMT Not After : Mar 20 00:10:07 2026 GMT Subject: CN=F319DE4F9257D5042FDDFE76AD114B73874EDB24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a7:f1:62:94:7d:57:b6:3e:79:92:c9:40:76: 86:37:60:b8:15:7e:65:2b:b5:30:75:29:38:23:1b: 95:65:3a:cb:14:3a:f0:c1:d2:57:e8:ad:05:62:e7: 81:04:30:eb:5e:52:76:80:b0:c1:01:1b:7b:db:6f: dc:8a:9b:2a:4b:c4:73:2a:57:a2:19:1e:50:2f:75: 98:43:32:7a:7f:27:de:4e:c1:ae:66:38:4a:07:e7: 93:49:3a:7a:82:58:d1:0b:81:e1:da:56:1d:2b:23: 16:b1:a9:ce:f7:90:67:c3:39:64:60:f8:fa:86:5d: 50:f8:44:f6:8c:1a:fc:c9:cd:2c:fa:9c:a7:fa:f8: 8b:8f:d7:3d:55:0b:e1:18:67:a3:c9:05:a9:f3:24: e6:4e:1a:58:a8:27:d1:9e:e4:78:52:ec:c5:f8:3b: 58:03:13:44:07:ac:81:8e:3b:75:28:16:32:09:67: 81:be:60:e4:a9:1a:2f:f6:c1:b2:92:58:e6:76:27: dd:51:1c:f2:16:c7:cd:97:2d:34:6d:29:b4:2f:5b: a4:6d:b1:b9:7f:fc:2d:03:ac:de:c6:c7:d5:bf:3e: c3:db:53:c6:fc:6c:f1:6d:0c:f7:35:84:44:8a:ee: e5:ba:13:70:4c:e6:66:47:c2:f7:c0:5c:a0:d2:9b: a7:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:19:DE:4F:92:57:D5:04:2F:DD:FE:76:AD:11:4B:73:87:4E:DB:24 X509v3 Authority Key Identifier: keyid:47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.crl Authority Information Access: CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.180.151.0/24 Signature Algorithm: sha256WithRSAEncryption 62:10:5f:a3:79:56:3c:1d:61:6f:de:4f:a2:d4:f8:fa:da:44: 06:87:b0:0d:f1:02:cf:c3:6c:fa:d5:f8:2c:bf:94:0b:eb:17: 7a:5e:71:f1:22:46:70:47:e0:d8:c5:41:51:29:05:88:a3:f9: 33:10:63:1e:a8:a0:a6:e9:36:e1:23:b4:40:1e:fd:bd:d1:a1: de:16:32:15:5b:85:37:f2:72:c5:c8:9f:82:08:34:14:d6:f4: 43:03:a8:2b:2f:d7:5d:cd:97:99:18:df:4f:9a:2c:aa:08:93: e4:62:64:a4:fe:cd:b9:0f:16:94:fb:75:6e:c7:e8:6a:41:0e: 23:9a:5c:0e:17:9b:d1:a8:d9:74:ca:62:14:5e:4d:cf:76:ad: 5a:17:d4:d4:7a:c1:e8:18:d5:ab:a1:fb:e7:1c:71:e6:f8:ba: e6:c1:9b:dd:ef:13:16:06:f2:eb:6b:d3:2b:81:90:05:52:90: ec:f4:a0:5e:e6:0f:69:7c:d8:69:2f:f3:3e:e4:f5:c4:b7:a2: 8e:38:e9:66:cf:3e:49:0a:93:4a:61:18:d0:3f:7e:ef:40:d1: 91:dc:db:80:5f:d3:d9:ef:7b:f7:8d:3a:c2:cc:42:92:38:b1: c1:ab:23:bc:ed:74:11:dc:0d:83:08:bf:b1:13:d8:20:58:b3: 13:22:20:71 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUAlqqA/K1Lr8jpSwBOUv4uaNBQ6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdFOTU1NTM1NUM2QjAwN0FBQ0Q1RDQ1QkY0MUUzMzgz RTk5MTY0MTAeFw0yNTAzMjEwMDA1MDdaFw0yNjAzMjAwMDEwMDdaMDMxMTAvBgNV BAMTKEYzMTlERTRGOTI1N0Q1MDQyRkRERkU3NkFEMTE0QjczODc0RURCMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4p/FilH1Xtj55kslAdoY3YLgV fmUrtTB1KTgjG5VlOssUOvDB0lforQVi54EEMOteUnaAsMEBG3vbb9yKmypLxHMq V6IZHlAvdZhDMnp/J95Owa5mOEoH55NJOnqCWNELgeHaVh0rIxaxqc73kGfDOWRg +PqGXVD4RPaMGvzJzSz6nKf6+IuP1z1VC+EYZ6PJBanzJOZOGlioJ9Ge5HhS7MX4 O1gDE0QHrIGOO3UoFjIJZ4G+YOSpGi/2wbKSWOZ2J91RHPIWx82XLTRtKbQvW6Rt sbl//C0DrN7Gx9W/PsPbU8b8bPFtDPc1hESK7uW6E3BM5mZHwvfAXKDSm6erAgMB AAGjggI4MIICNDAdBgNVHQ4EFgQU8xneT5JX1QQv3f52rRFLc4dO2yQwHwYDVR0j BBgwFoAUR+lVU1XGsAeqzV1Fv0HjOD6ZFkEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzQvNDdFOTU1NTM1NUM2QjAwN0FBQ0Q1RDQ1QkY0MUUzMzgzRTk5MTY0MS5j cmwwWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUFBzAChj9yc3luYzovL2NhLnJnLm5l dC9ycGtpL1JHbmV0LU9VL1ItbFZVMVhHc0FlcXpWMUZ2MEhqT0Q2WkZrRS5jZXIw gbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5jOi8vcnN5bmMu cGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1 LWJhZDctYjQyODE4Y2Y1MGU4LzQvMzEzOTM4MmUzMTM4MzAyZTMxMzUzMTJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzkzOTM1MzEzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMa0lzAN BgkqhkiG9w0BAQsFAAOCAQEAYhBfo3lWPB1hb95PotT4+tpEBoewDfECz8Ns+tX4 LL+UC+sXel5x8SJGcEfg2MVBUSkFiKP5MxBjHqigpuk24SO0QB79vdGh3hYyFVuF N/Jyxcifggg0FNb0QwOoKy/XXc2XmRjfT5osqgiT5GJkpP7NuQ8WlPt1bsfoakEO I5pcDheb0ajZdMpiFF5Nz3atWhfU1HrB6BjVq6H75xxx5vi65sGb3e8TFgby62vT K4GQBVKQ7PSgXuYPaXzYaS/zPuT1xLeijjjpZs8+SQqTSmEY0D9+70DRkdzbgF/T 2e979406wsxCkjixwasjvO10EdwNgwi/sRPYIFizEyIgcQ== -----END CERTIFICATE-----Generated at Sun Apr 6 03:31:18 2025 by rpki-client