$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/326130373a353463313a343236313a3a2f34382d3438203d3e203436373636.roa File: 326130373a353463313a343236313a3a2f34382d3438203d3e203436373636.roa (raw, json) Hash identifier: /6TLbLr5yUGE6+8nz6p2on3lwleCpU2rYt4G5JE9rDk= Subject key identifier: B3:41:61:D6:41:E7:69:57:9D:7B:92:56:B3:BC:5A:D6:AE:C1:20:75 Certificate issuer: /CN=090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1 Certificate serial: 1B6597AE3B53720140B4F22F0717E682C6E3957F Authority key identifier: 09:0F:FD:E4:0B:60:29:CD:7F:E3:1A:6E:DB:46:7E:1A:53:84:B1:E1 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/326130373a353463313a343236313a3a2f34382d3438203d3e203436373636.roa Signing time: Fri 21 Mar 2025 00:10:07 +0000 ROA not before: Fri 21 Mar 2025 00:05:07 +0000 ROA not after: Fri 20 Mar 2026 00:10:07 +0000 asID: 46766 IP address blocks: 2a07:54c1:4261::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 07 Apr 2025 17:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:65:97:ae:3b:53:72:01:40:b4:f2:2f:07:17:e6:82:c6:e3:95:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1 Validity Not Before: Mar 21 00:05:07 2025 GMT Not After : Mar 20 00:10:07 2026 GMT Subject: CN=B34161D641E769579D7B9256B3BC5AD6AEC12075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cb:58:22:17:2a:0f:fc:82:49:a0:47:a7:92: e2:1b:7d:c7:05:84:7b:07:70:0f:58:9c:5f:5d:dc: a5:fe:e3:1a:41:ae:7d:45:a8:f4:95:3b:4a:25:a4: 6d:8b:45:61:fd:a4:b7:42:79:b5:95:95:7f:61:7f: ad:59:80:75:a6:ec:53:f9:e5:dc:87:e2:03:c9:65: 12:01:9b:91:09:af:18:24:4d:45:40:e2:ad:7a:f6: 01:46:8e:be:77:40:ec:9f:4b:49:54:0f:1d:da:e5: 3d:38:92:0f:9d:e6:05:bf:92:34:c7:58:8c:6d:6d: 22:ff:33:45:15:86:aa:a2:e8:45:02:a3:ff:f3:1c: 76:c7:8a:fe:a1:21:bb:13:f2:93:6b:5d:89:85:b9: f2:88:cf:31:39:c8:4e:3c:4a:9b:d7:70:c1:fa:a0: f1:48:f9:fa:91:06:a2:f1:94:36:4d:d1:d5:a4:7b: 44:db:1c:6e:50:ff:45:a6:b8:f9:53:93:83:bf:a2: f1:53:5a:5c:3c:06:e6:6c:05:99:64:db:60:48:4d: 80:89:c5:98:47:21:76:45:a1:78:3f:2d:d9:ea:6e: e8:fb:bf:95:c0:61:3f:c7:21:6d:61:1a:37:61:dd: 29:91:f6:ad:66:59:3f:82:95:ca:3b:2e:db:0a:10: 68:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:41:61:D6:41:E7:69:57:9D:7B:92:56:B3:BC:5A:D6:AE:C1:20:75 X509v3 Authority Key Identifier: keyid:09:0F:FD:E4:0B:60:29:CD:7F:E3:1A:6E:DB:46:7E:1A:53:84:B1:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/090FFDE40B6029CD7FE31A6EDB467E1A5384B1E1.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/5/326130373a353463313a343236313a3a2f34382d3438203d3e203436373636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:4261::/48 Signature Algorithm: sha256WithRSAEncryption 6b:48:de:d6:8a:66:a0:54:ec:ff:c6:67:5d:e4:55:60:24:29: 60:11:1f:66:7b:d9:a2:6a:a6:fe:f8:d7:17:c6:29:4e:2c:10: 21:66:a5:ab:ef:c9:ca:a5:f4:85:a6:68:45:64:4e:d2:c5:ed: 03:01:90:15:84:2c:b2:cc:e1:f7:ab:dc:b3:23:94:7f:2d:91: 47:dd:f2:a3:70:60:cb:3d:cd:1f:7d:df:ac:6e:65:f8:8c:7a: 05:30:d5:1b:09:85:4e:2d:1f:07:7a:5a:62:af:87:2e:94:2a: c4:c1:6a:1a:bc:d7:19:bf:b9:c6:5c:e1:3c:4f:2e:d6:32:d8: f8:ad:80:3c:67:b0:c9:d1:7e:87:3c:d9:8e:ab:76:2e:2e:11: a6:6a:4b:33:ce:48:04:e2:4b:f2:e6:8a:c3:8e:25:ca:70:a5: e1:9a:0a:95:40:13:d4:ee:f4:aa:55:e7:e2:3f:75:a3:a8:b9: e6:a1:18:e4:96:4e:cd:88:aa:ff:ce:f7:18:c3:5f:d5:98:fa: db:43:1c:c3:25:4b:4a:a6:52:6e:ef:4c:9c:44:ac:db:5d:f9: da:95:3b:ef:17:4c:63:ea:25:45:f4:ed:b3:cb:40:0c:b9:26: 51:2d:51:28:74:ba:cf:77:4f:6c:84:69:24:18:e1:68:f3:3d: b6:50:6a:a6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUG2WXrjtTcgFAtPIvBxfmgsbjlX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDkwRkZERTQwQjYwMjlDRDdGRTMxQTZFREI0NjdFMUE1 Mzg0QjFFMTAeFw0yNTAzMjEwMDA1MDdaFw0yNjAzMjAwMDEwMDdaMDMxMTAvBgNV BAMTKEIzNDE2MUQ2NDFFNzY5NTc5RDdCOTI1NkIzQkM1QUQ2QUVDMTIwNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgy1giFyoP/IJJoEenkuIbfccF hHsHcA9YnF9d3KX+4xpBrn1FqPSVO0olpG2LRWH9pLdCebWVlX9hf61ZgHWm7FP5 5dyH4gPJZRIBm5EJrxgkTUVA4q169gFGjr53QOyfS0lUDx3a5T04kg+d5gW/kjTH WIxtbSL/M0UVhqqi6EUCo//zHHbHiv6hIbsT8pNrXYmFufKIzzE5yE48SpvXcMH6 oPFI+fqRBqLxlDZN0dWke0TbHG5Q/0WmuPlTk4O/ovFTWlw8BuZsBZlk22BITYCJ xZhHIXZFoXg/Ldnqbuj7v5XAYT/HIW1hGjdh3SmR9q1mWT+Clco7LtsKEGgvAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUs0Fh1kHnaVede5JWs7xa1q7BIHUwHwYDVR0j BBgwFoAUCQ/95AtgKc1/4xpu20Z+GlOEseEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzUvMDkwRkZERTQwQjYwMjlDRDdGRTMxQTZFREI0NjdFMUE1Mzg0QjFFMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC8wOTBGRkRFNDBCNjAyOUNEN0ZFMzFBNkVE QjQ2N0UxQTUzODRCMUUxLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kZTdkNTVmNy1lZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvNS8zMjYxMzAz NzNhMzUzNDYzMzEzYTM0MzIzNjMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQz NjM3MzYzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoHVMFCYTANBgkqhkiG9w0BAQsFAAOCAQEAa0je 1opmoFTs/8ZnXeRVYCQpYBEfZnvZomqm/vjXF8YpTiwQIWalq+/JyqX0haZoRWRO 0sXtAwGQFYQssszh96vcsyOUfy2RR93yo3Bgyz3NH33frG5l+Ix6BTDVGwmFTi0f B3paYq+HLpQqxMFqGrzXGb+5xlzhPE8u1jLY+K2APGewydF+hzzZjqt2Li4RpmpL M85IBOJL8uaKw44lynCl4ZoKlUAT1O70qlXn4j91o6i55qEY5JZOzYiq/873GMNf 1Zj620McwyVLSqZSbu9MnESs21352pU77xdMY+olRfTts8tADLkmUS1RKHS6z3dP bIRpJBjhaPM9tlBqpg== -----END CERTIFICATE-----Generated at Mon Apr 7 05:46:08 2025 by rpki-client