$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656436303a3a2f34372d3438203d3e20323135393536.roa File: 326131343a373538303a656436303a3a2f34372d3438203d3e20323135393536.roa (raw, json) Hash identifier: +zrkRc4SP6XK6z0xpBXHsDy1K0yT8abi4wuY0JsuQJk= Subject key identifier: 95:43:94:29:F6:9A:71:41:DE:4C:E2:96:9E:15:1C:79:56:AE:B7:DA Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 26726D7AA0B5E5CAB62F187C671795D5EEA2243F Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656436303a3a2f34372d3438203d3e20323135393536.roa Signing time: Sat 08 Mar 2025 00:10:54 +0000 ROA not before: Sat 08 Mar 2025 00:05:54 +0000 ROA not after: Sat 07 Mar 2026 00:10:54 +0000 asID: 215956 IP address blocks: 2a14:7580:ed60::/47 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:72:6d:7a:a0:b5:e5:ca:b6:2f:18:7c:67:17:95:d5:ee:a2:24:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 8 00:05:54 2025 GMT Not After : Mar 7 00:10:54 2026 GMT Subject: CN=95439429F69A7141DE4CE2969E151C7956AEB7DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:f9:6a:f8:f0:63:c1:4f:ea:51:62:ab:a0: b0:cb:96:0b:5e:c6:5d:a9:54:7f:2b:45:53:cc:5d: b0:18:dc:7c:42:5b:14:f8:47:06:65:8c:61:b2:fb: 86:e4:8a:0c:42:c2:6e:0f:1a:af:5d:3f:7b:5a:92: 16:78:d7:c7:fc:25:71:a7:36:53:0b:ba:64:ea:53: cc:c8:c5:8f:48:b6:32:ef:c6:2e:57:e7:20:22:3f: d6:9b:96:65:ef:ab:8b:49:9f:7a:66:ad:4f:93:82: 75:d4:30:4d:3e:6c:3a:fc:7a:32:29:0b:19:08:50: c1:a3:5f:b5:b8:19:0f:06:67:63:93:2e:12:e1:1a: d7:1d:d6:86:6f:76:72:6f:24:5c:8a:94:8c:b9:19: 25:c1:8c:e8:a5:69:2b:21:7d:85:a1:91:e0:08:b1: 7f:c3:08:ef:66:38:a5:36:51:67:54:be:c0:43:d1: 4d:c2:0e:c7:2d:fd:18:c5:cb:e3:e8:89:3d:39:1e: 15:4f:21:e2:e9:16:bd:9d:ef:03:c2:8e:2a:e5:6f: 94:35:29:0d:ac:e7:46:95:d8:f0:4c:a3:ae:90:3a: f3:46:d6:b1:e1:07:89:ec:97:4e:d1:2b:7e:ca:ac: 10:9c:9b:87:c5:1a:dc:f6:28:92:95:22:d9:25:26: f3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:43:94:29:F6:9A:71:41:DE:4C:E2:96:9E:15:1C:79:56:AE:B7:DA X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656436303a3a2f34372d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ed60::/47 Signature Algorithm: sha256WithRSAEncryption 82:21:90:6c:7c:db:a8:60:37:88:aa:48:24:97:7c:d6:2a:53: 43:85:41:03:f1:90:51:f0:81:16:53:76:50:1a:aa:7b:d8:7d: 9c:06:e6:c8:74:2f:86:b5:8b:a4:4e:3a:91:d9:b7:ce:fa:6f: 8c:b5:ba:62:6c:77:c4:cf:be:86:db:a6:8a:12:91:81:80:82: 83:99:6c:05:42:dc:bb:4f:ae:94:a3:13:7c:9e:41:84:8a:36: ff:19:f3:72:7b:a0:22:16:76:e9:fe:73:00:7f:ea:b6:5e:75: 8f:4e:be:ee:ed:dc:5e:93:c3:94:a3:b9:e1:c2:32:dc:c7:82: f4:01:c4:71:e5:ca:3f:dd:33:40:32:a1:d4:b2:b7:1c:1f:d0: d7:bb:6c:e4:16:69:d5:93:f0:98:77:f8:05:5f:c3:74:b5:71: c3:72:54:c3:ca:a2:73:3a:0b:f6:d9:7f:47:e9:0a:9a:31:43: b1:f9:57:5b:c1:b7:96:6d:b8:a3:8f:db:c0:36:5e:28:88:a3: ac:7a:76:86:9c:2f:e9:8c:9a:f4:2c:d3:ae:cd:2c:2f:c9:49: 96:a2:c0:d5:b5:73:ec:94:1d:a8:a2:67:7c:d6:06:c9:82:2c: eb:35:4a:64:2d:4b:1f:44:5b:0c:b7:63:89:0f:a3:f0:e6:c6: 77:7f:64:c7 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJnJteqC15cq2Lxh8ZxeV1e6iJD8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDgwMDA1NTRaFw0yNjAzMDcwMDEwNTRaMDMxMTAvBgNV BAMTKDk1NDM5NDI5RjY5QTcxNDFERTRDRTI5NjlFMTUxQzc5NTZBRUI3REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7yflq+PBjwU/qUWKroLDLlgte xl2pVH8rRVPMXbAY3HxCWxT4RwZljGGy+4bkigxCwm4PGq9dP3takhZ418f8JXGn NlMLumTqU8zIxY9ItjLvxi5X5yAiP9ablmXvq4tJn3pmrU+TgnXUME0+bDr8ejIp CxkIUMGjX7W4GQ8GZ2OTLhLhGtcd1oZvdnJvJFyKlIy5GSXBjOilaSshfYWhkeAI sX/DCO9mOKU2UWdUvsBD0U3CDsct/RjFy+PoiT05HhVPIeLpFr2d7wPCjirlb5Q1 KQ2s50aV2PBMo66QOvNG1rHhB4nsl07RK37KrBCcm4fFGtz2KJKVItklJvPzAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUlUOUKfaacUHeTOKWnhUceVaut9owHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQzNjMwM2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcBKhR1gO1gMA0GCSqGSIb3DQEBCwUAA4IBAQCC IZBsfNuoYDeIqkgkl3zWKlNDhUED8ZBR8IEWU3ZQGqp72H2cBubIdC+GtYukTjqR 2bfO+m+MtbpibHfEz76G26aKEpGBgIKDmWwFQty7T66UoxN8nkGEijb/GfNye6Ai Fnbp/nMAf+q2XnWPTr7u7dxek8OUo7nhwjLcx4L0AcRx5co/3TNAMqHUsrccH9DX u2zkFmnVk/CYd/gFX8N0tXHDclTDyqJzOgv22X9H6QqaMUOx+VdbwbeWbbijj9vA Nl4oiKOsenaGnC/pjJr0LNOuzSwvyUmWosDVtXPslB2oomd81gbJgizrNUpkLUsf RFsMt2OJD6Pw5sZ3f2TH -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:43 2025 by rpki-client