$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430303a3a2f34362d3438203d3e20323135393536.roa File: 326131343a373538303a656430303a3a2f34362d3438203d3e20323135393536.roa (raw, json) Hash identifier: wwVj8rYahKvRa2bjr5SEejJS2mzXRm6g0mjeKu/juV8= Subject key identifier: 3D:AB:B0:A7:55:31:B9:AA:11:8A:F0:18:1F:F7:7D:12:3B:38:F8:20 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 15FF7CB2B6F3F1BEB0C25632B8082FA886031FD4 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430303a3a2f34362d3438203d3e20323135393536.roa Signing time: Sat 22 Feb 2025 21:23:11 +0000 ROA not before: Sat 22 Feb 2025 21:18:11 +0000 ROA not after: Sat 21 Feb 2026 21:23:11 +0000 asID: 215956 IP address blocks: 2a14:7580:ed00::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ff:7c:b2:b6:f3:f1:be:b0:c2:56:32:b8:08:2f:a8:86:03:1f:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Feb 22 21:18:11 2025 GMT Not After : Feb 21 21:23:11 2026 GMT Subject: CN=3DABB0A75531B9AA118AF0181FF77D123B38F820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:22:39:a3:e0:7e:37:70:65:7f:be:da:0a:90: e3:b4:27:82:36:33:cb:37:25:08:79:3b:ad:3c:d2: d7:d3:d7:48:f4:e5:17:fe:c9:51:35:9b:be:66:21: 39:96:c4:5e:37:b7:f7:60:c1:de:62:ce:72:aa:8a: 3c:6d:3a:ae:a9:30:85:7e:20:42:a6:f1:08:6d:31: ee:44:30:b0:b5:5d:9b:df:75:6b:3e:64:ac:b1:a0: 19:c7:6e:6f:2f:f8:54:86:a3:1f:78:d2:c7:a4:d7: 07:78:71:47:0d:50:af:b7:b8:c0:6b:fa:1c:cd:16: 6f:d9:2f:d0:04:bf:f3:d9:e8:ae:4f:cc:ce:3a:fa: 89:ff:c1:38:bb:66:eb:8b:0c:10:06:3d:89:d0:9e: 82:77:27:d3:f1:0d:f5:8f:5c:bc:ce:18:84:68:dd: 6b:44:0b:72:75:b7:a7:4f:8a:81:99:39:7e:d0:d2: 4d:7e:44:51:a9:9a:93:83:93:11:92:c8:a8:9d:bc: fe:0f:9e:d0:83:92:e7:56:82:77:35:08:ac:c8:de: f4:92:f9:de:6b:81:74:67:65:70:cd:57:67:22:f7: ad:e6:9d:a3:7d:1b:16:ab:ce:54:5c:25:bb:8f:18: 44:22:81:e7:80:6f:b3:cd:7b:34:cd:16:0a:1c:5f: b2:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:AB:B0:A7:55:31:B9:AA:11:8A:F0:18:1F:F7:7D:12:3B:38:F8:20 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430303a3a2f34362d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ed00::/46 Signature Algorithm: sha256WithRSAEncryption 24:9b:38:4d:13:9e:bf:3b:ee:21:28:fb:d7:05:0a:cb:36:b1: 67:82:ef:16:78:bc:8c:27:d3:12:fd:02:f7:19:a9:21:26:94: 95:02:a8:d1:21:aa:f7:29:be:55:26:5b:67:91:8d:29:d2:53: ec:e1:01:15:d1:55:c5:b4:6d:8b:15:16:43:50:0c:e2:cd:8e: 1a:a1:c0:bb:8c:7b:a0:76:b8:ea:e7:3a:1f:d6:63:48:1d:75: b8:8d:fc:99:a9:93:ff:b8:ce:bb:c9:78:c8:8d:fa:11:d2:f1: d4:96:97:63:ca:78:d1:b2:d6:0f:95:29:ae:6e:81:cd:da:8c: dc:f5:62:e9:62:67:20:47:9a:40:61:88:54:80:18:57:13:b7: ae:5e:94:59:2d:c4:ef:c3:20:72:dc:b2:41:90:e6:e8:c0:8d: 52:f8:4d:18:cf:c5:e7:eb:dc:63:65:4b:66:83:70:69:d4:ea: ae:87:2d:c8:32:04:e1:fc:89:14:23:99:e9:81:f5:3a:3a:4a: 0d:42:2f:72:7a:b3:38:ec:f2:af:bf:c3:af:9c:7b:c3:7c:8b: a6:f6:e8:05:33:c7:45:62:e5:69:b2:08:14:12:e1:03:a3:39: 52:92:0c:86:e8:cd:e2:e7:5d:93:23:35:0a:c9:95:8c:a5:18: b4:ac:3b:c2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFf98srbz8b6wwlYyuAgvqIYDH9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAyMjIyMTE4MTFaFw0yNjAyMjEyMTIzMTFaMDMxMTAvBgNV BAMTKDNEQUJCMEE3NTUzMUI5QUExMThBRjAxODFGRjc3RDEyM0IzOEY4MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Ijmj4H43cGV/vtoKkOO0J4I2 M8s3JQh5O6080tfT10j05Rf+yVE1m75mITmWxF43t/dgwd5iznKqijxtOq6pMIV+ IEKm8QhtMe5EMLC1XZvfdWs+ZKyxoBnHbm8v+FSGox940sek1wd4cUcNUK+3uMBr +hzNFm/ZL9AEv/PZ6K5PzM46+on/wTi7ZuuLDBAGPYnQnoJ3J9PxDfWPXLzOGIRo 3WtEC3J1t6dPioGZOX7Q0k1+RFGpmpODkxGSyKidvP4PntCDkudWgnc1CKzI3vSS +d5rgXRnZXDNV2ci963mnaN9GxarzlRcJbuPGEQigeeAb7PNezTNFgocX7LdAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUPauwp1UxuaoRivAYH/d9Ejs4+CAwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQzMDMwM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gO0AMA0GCSqGSIb3DQEBCwUAA4IBAQAk mzhNE56/O+4hKPvXBQrLNrFngu8WeLyMJ9MS/QL3GakhJpSVAqjRIar3Kb5VJltn kY0p0lPs4QEV0VXFtG2LFRZDUAzizY4aocC7jHugdrjq5zof1mNIHXW4jfyZqZP/ uM67yXjIjfoR0vHUlpdjynjRstYPlSmuboHN2ozc9WLpYmcgR5pAYYhUgBhXE7eu XpRZLcTvwyBy3LJBkObowI1S+E0Yz8Xn69xjZUtmg3Bp1Oquhy3IMgTh/IkUI5np gfU6OkoNQi9yerM47PKvv8OvnHvDfIum9ugFM8dFYuVpsggUEuEDozlSkgyG6M3i 512TIzUKyZWMpRi0rDvC -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:14 2025 by rpki-client