$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430343a3a2f34362d3438203d3e20323135393536.roa File: 326131343a373538303a656430343a3a2f34362d3438203d3e20323135393536.roa (raw, json) Hash identifier: bw9S1eMCnw29L7OTLArgKdi2e2OitODsDGRD23O0zyY= Subject key identifier: F7:BE:CC:A1:99:76:D9:ED:5A:E8:10:82:E9:CE:AC:9E:77:1F:B3:C2 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 707AB21988AD37B85622798A5F7460643ED26D81 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430343a3a2f34362d3438203d3e20323135393536.roa Signing time: Sun 02 Mar 2025 23:46:44 +0000 ROA not before: Sun 02 Mar 2025 23:41:44 +0000 ROA not after: Sun 01 Mar 2026 23:46:44 +0000 asID: 215956 IP address blocks: 2a14:7580:ed04::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:7a:b2:19:88:ad:37:b8:56:22:79:8a:5f:74:60:64:3e:d2:6d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 2 23:41:44 2025 GMT Not After : Mar 1 23:46:44 2026 GMT Subject: CN=F7BECCA19976D9ED5AE81082E9CEAC9E771FB3C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:71:0d:7e:af:42:b0:82:d8:4d:53:06:26:f4: d9:6a:57:d5:6d:47:df:81:98:4b:68:9b:b5:9d:66: b0:6f:5b:fa:df:de:91:5f:79:81:e1:b8:cd:db:9a: 4c:ef:36:44:90:54:60:3f:be:1e:70:71:f4:11:dc: f3:d8:bb:d3:ea:d6:c4:21:80:a7:7e:b3:7f:e5:79: 70:dd:c7:ea:77:4a:69:0c:a2:39:01:96:70:fd:e8: 37:ac:25:80:c1:9a:7b:e1:f7:df:ce:73:58:36:5d: 54:64:fc:30:9b:5b:8c:cd:ce:f0:19:01:9f:62:4d: f6:8a:db:be:5a:00:fe:8a:d7:9e:c4:51:b2:67:27: 4b:6d:f2:6c:49:79:ff:01:01:af:fb:63:7c:52:e2: 5b:b4:24:63:3d:6f:70:c8:11:65:ce:bb:78:82:5d: 52:62:e6:90:a8:c0:92:fd:36:5f:e7:f7:c9:e8:2c: 72:a7:ee:cc:a4:01:c4:a2:61:a1:1c:79:55:19:f6: d5:6a:3d:1d:3e:ff:d7:37:c9:1b:21:ea:d5:e4:e9: 50:c8:3c:b9:6a:4f:78:17:a0:79:d5:67:04:a7:78: a7:f5:5c:1c:4e:ce:64:19:4e:98:28:d9:16:0d:95: 12:56:43:83:fd:a8:35:87:e8:cc:c2:f1:85:cb:c4: 3c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BE:CC:A1:99:76:D9:ED:5A:E8:10:82:E9:CE:AC:9E:77:1F:B3:C2 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656430343a3a2f34362d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ed04::/46 Signature Algorithm: sha256WithRSAEncryption 19:dc:f6:5f:1e:e6:d4:69:6d:bd:3e:bc:56:0b:4f:51:5d:91: e8:09:58:20:9e:20:f2:7f:1c:1b:76:25:40:e2:64:da:87:f2: be:6b:cc:1f:db:df:72:6d:f1:b6:3d:d5:4e:c8:e9:7e:fe:42: ec:f6:68:78:8c:d7:c9:a3:cb:e3:d5:25:6e:d9:62:7c:d9:e8: f7:6b:0e:6c:00:86:98:d7:c3:b2:e8:81:f1:73:1c:6d:1a:e5: 54:d1:3b:5a:92:da:d2:e3:c9:6e:41:54:05:16:87:3d:f0:ce: 72:f4:fe:09:cd:39:13:2c:c4:38:4a:39:6b:18:97:c8:d1:aa: c2:01:05:17:cc:54:a5:03:0d:19:0d:42:bb:1e:b2:ed:cc:4b: 94:be:24:a2:c4:25:6e:c9:25:63:6d:27:c7:df:df:ec:b9:c7: 03:fd:66:36:2d:35:e3:b4:bc:33:7b:36:3c:cb:42:f1:25:bb: 5d:24:df:f8:d0:c4:6d:86:69:91:8d:c2:ac:1e:4c:e7:8d:4f: d5:3e:61:00:b5:9f:08:cd:7e:42:38:be:83:19:1b:76:ad:44: 0e:d3:6f:65:29:a3:83:9f:d8:1e:f3:6f:b5:2b:87:86:11:36: 48:41:3d:b9:51:19:a5:14:e7:9e:d0:51:9f:1a:27:39:e6:bf: 26:14:e4:2a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcHqyGYitN7hWInmKX3RgZD7SbYEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDIyMzQxNDRaFw0yNjAzMDEyMzQ2NDRaMDMxMTAvBgNV BAMTKEY3QkVDQ0ExOTk3NkQ5RUQ1QUU4MTA4MkU5Q0VBQzlFNzcxRkIzQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEcQ1+r0KwgthNUwYm9NlqV9Vt R9+BmEtom7WdZrBvW/rf3pFfeYHhuM3bmkzvNkSQVGA/vh5wcfQR3PPYu9Pq1sQh gKd+s3/leXDdx+p3SmkMojkBlnD96DesJYDBmnvh99/Oc1g2XVRk/DCbW4zNzvAZ AZ9iTfaK275aAP6K157EUbJnJ0tt8mxJef8BAa/7Y3xS4lu0JGM9b3DIEWXOu3iC XVJi5pCowJL9Nl/n98noLHKn7sykAcSiYaEceVUZ9tVqPR0+/9c3yRsh6tXk6VDI PLlqT3gXoHnVZwSneKf1XBxOzmQZTpgo2RYNlRJWQ4P9qDWH6MzC8YXLxDyTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU977MoZl22e1a6BCC6c6snncfs8IwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQzMDM0M2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gO0EMA0GCSqGSIb3DQEBCwUAA4IBAQAZ 3PZfHubUaW29PrxWC09RXZHoCVggniDyfxwbdiVA4mTah/K+a8wf299ybfG2PdVO yOl+/kLs9mh4jNfJo8vj1SVu2WJ82ej3aw5sAIaY18Oy6IHxcxxtGuVU0TtaktrS 48luQVQFFoc98M5y9P4JzTkTLMQ4SjlrGJfI0arCAQUXzFSlAw0ZDUK7HrLtzEuU viSixCVuySVjbSfH39/succD/WY2LTXjtLwzezY8y0LxJbtdJN/40MRthmmRjcKs HkznjU/VPmEAtZ8IzX5COL6DGRt2rUQO029lKaODn9ge82+1K4eGETZIQT25URml FOee0FGfGic55r8mFOQq -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:41 2025 by rpki-client