$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656435303a3a2f34372d3438203d3e20323135393536.roa File: 326131343a373538303a656435303a3a2f34372d3438203d3e20323135393536.roa (raw, json) Hash identifier: Cs5v+EHMVs1uB3jH8D/T4zhbWWfpstLcChPc3QvIDNE= Subject key identifier: EB:17:2C:E2:69:24:77:A8:97:C4:2F:AF:A4:9D:43:38:8A:64:56:A5 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 58409E2558E2AA01854E9C9F07A8D56F9FDB377E Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656435303a3a2f34372d3438203d3e20323135393536.roa Signing time: Sat 08 Mar 2025 00:13:36 +0000 ROA not before: Sat 08 Mar 2025 00:08:36 +0000 ROA not after: Sat 07 Mar 2026 00:13:36 +0000 asID: 215956 IP address blocks: 2a14:7580:ed50::/47 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:40:9e:25:58:e2:aa:01:85:4e:9c:9f:07:a8:d5:6f:9f:db:37:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 8 00:08:36 2025 GMT Not After : Mar 7 00:13:36 2026 GMT Subject: CN=EB172CE2692477A897C42FAFA49D43388A6456A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c4:de:54:c2:5f:33:3c:6d:19:75:24:4d:02: 17:1a:c4:3c:e3:9c:d8:6e:bd:2b:7b:ae:e5:9c:63: ff:aa:f1:ab:79:b1:30:3c:5a:e8:96:58:0b:d1:f6: 66:8e:91:4b:7d:29:9e:79:1c:90:5c:c8:fe:54:9f: e8:e1:62:d5:3e:d5:ff:72:13:5e:a2:68:82:a3:55: 95:72:ce:7d:73:42:78:e4:09:0f:71:36:71:b5:77: b5:4b:71:f2:44:c7:a6:8b:b4:04:72:90:86:07:0e: 6c:65:69:19:4d:aa:c8:73:96:e4:1f:53:c0:4c:54: 71:36:5d:67:1e:1d:47:58:87:22:dc:6c:7c:a7:cf: bd:91:dd:ea:f3:61:79:4c:cc:5c:58:bb:d8:ec:9a: 90:37:3d:9e:54:be:06:24:8f:50:0a:ee:45:c3:0c: 07:41:e7:b9:8c:19:2d:fe:bb:06:65:07:54:a8:de: 3a:f8:3c:50:58:77:51:fa:e1:32:53:10:11:46:c4: 0a:ec:f3:cc:54:d4:cb:94:13:62:32:c9:1b:56:46: 8a:51:27:68:31:f4:ae:b4:80:9e:72:2b:cd:47:9a: fe:77:a9:67:7b:9b:2f:a8:59:bd:db:86:00:53:c9: 7f:d6:30:6c:64:6c:14:0c:2e:29:11:c0:0b:48:e1: 40:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:17:2C:E2:69:24:77:A8:97:C4:2F:AF:A4:9D:43:38:8A:64:56:A5 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656435303a3a2f34372d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ed50::/47 Signature Algorithm: sha256WithRSAEncryption 56:7b:0d:e4:7f:f5:09:2b:75:02:1a:32:ce:67:b8:e9:3b:d1: 29:0f:98:7e:35:6e:0c:6d:15:0b:50:e6:43:9b:1e:db:29:00: 69:ed:68:b0:6f:fc:fc:f1:cc:16:2b:f6:66:e0:74:15:07:4a: fc:e1:fe:df:09:5d:34:d8:d2:7c:e2:e4:89:14:87:61:26:c8: 4f:f8:cd:87:fa:bc:a8:61:01:52:b3:ce:9e:26:1a:40:d1:5b: de:12:6f:bd:2c:8e:fc:fa:ba:b4:46:b5:18:4d:78:6e:d6:95: a7:4a:4f:ce:2d:49:f4:d9:9f:15:61:68:7f:b5:f8:03:49:4c: d0:bd:0a:2c:57:36:e6:81:47:57:18:65:97:36:e8:62:ee:16: 16:d1:02:35:97:f1:98:c0:0f:ac:c6:39:e3:1d:c6:36:16:08: e0:ad:c3:78:10:2f:c0:24:b4:5e:76:3e:4e:e3:09:88:c2:65: d1:1c:7a:cd:01:45:0d:f7:83:d6:36:e9:48:50:3c:db:50:82: ce:18:05:55:aa:45:f6:6a:42:b9:bd:d5:f0:01:e6:29:76:92: 86:a1:09:c6:1d:07:bd:d1:e9:61:b3:3b:69:b7:d3:87:e5:54: 6c:c7:15:d0:3b:44:44:65:63:c8:e5:13:34:4f:8c:b7:5e:cb: 34:7a:08:0c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUWECeJVjiqgGFTpyfB6jVb5/bN34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDgwMDA4MzZaFw0yNjAzMDcwMDEzMzZaMDMxMTAvBgNV BAMTKEVCMTcyQ0UyNjkyNDc3QTg5N0M0MkZBRkE0OUQ0MzM4OEE2NDU2QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxxN5Uwl8zPG0ZdSRNAhcaxDzj nNhuvSt7ruWcY/+q8at5sTA8WuiWWAvR9maOkUt9KZ55HJBcyP5Un+jhYtU+1f9y E16iaIKjVZVyzn1zQnjkCQ9xNnG1d7VLcfJEx6aLtARykIYHDmxlaRlNqshzluQf U8BMVHE2XWceHUdYhyLcbHynz72R3erzYXlMzFxYu9jsmpA3PZ5UvgYkj1AK7kXD DAdB57mMGS3+uwZlB1So3jr4PFBYd1H64TJTEBFGxArs88xU1MuUE2IyyRtWRopR J2gx9K60gJ5yK81Hmv53qWd7my+oWb3bhgBTyX/WMGxkbBQMLikRwAtI4UBTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU6xcs4mkkd6iXxC+vpJ1DOIpkVqUwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQzNTMwM2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcBKhR1gO1QMA0GCSqGSIb3DQEBCwUAA4IBAQBW ew3kf/UJK3UCGjLOZ7jpO9EpD5h+NW4MbRULUOZDmx7bKQBp7Wiwb/z88cwWK/Zm 4HQVB0r84f7fCV002NJ84uSJFIdhJshP+M2H+ryoYQFSs86eJhpA0VveEm+9LI78 +rq0RrUYTXhu1pWnSk/OLUn02Z8VYWh/tfgDSUzQvQosVzbmgUdXGGWXNuhi7hYW 0QI1l/GYwA+sxjnjHcY2FgjgrcN4EC/AJLRedj5O4wmIwmXRHHrNAUUN94PWNulI UDzbUILOGAVVqkX2akK5vdXwAeYpdpKGoQnGHQe90elhsztpt9OH5VRsxxXQO0RE ZWPI5RM0T4y3Xss0eggM -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:19 2025 by rpki-client