$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463323a3a2f34372d3438203d3e20323135393536.roa File: 326131343a373538303a656463323a3a2f34372d3438203d3e20323135393536.roa (raw, json) Hash identifier: weXm8nO8TO7MXHOO3qaQurJDPDalcthS0p6HQKsPmdk= Subject key identifier: 2B:8D:A4:0D:B8:2E:4B:40:D7:AA:8A:0E:DF:BB:1F:08:DD:FF:75:B9 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 5520F9DC203EC1CB1D76454B7ADB6D6D83CAB5A5 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463323a3a2f34372d3438203d3e20323135393536.roa Signing time: Sat 08 Mar 2025 00:16:32 +0000 ROA not before: Sat 08 Mar 2025 00:11:32 +0000 ROA not after: Sat 07 Mar 2026 00:16:32 +0000 asID: 215956 IP address blocks: 2a14:7580:edc2::/47 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:20:f9:dc:20:3e:c1:cb:1d:76:45:4b:7a:db:6d:6d:83:ca:b5:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 8 00:11:32 2025 GMT Not After : Mar 7 00:16:32 2026 GMT Subject: CN=2B8DA40DB82E4B40D7AA8A0EDFBB1F08DDFF75B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:db:aa:b1:8f:16:a8:86:b5:8e:b1:ce:95:31: 18:7d:96:18:4a:6f:34:a9:81:f4:38:73:35:b7:a9: e6:02:dc:33:69:99:a1:a9:c7:9d:9b:c5:a3:fc:90: cd:05:f0:7a:ba:17:68:9e:17:1a:b1:59:cf:e1:16: b5:37:4f:5f:e0:1e:13:4a:50:52:03:ac:f5:f4:89: be:b3:86:63:52:82:70:ea:21:72:52:f8:40:c8:c4: e5:70:6f:f9:04:4b:7c:7b:d9:c6:39:ca:52:5a:f9: 17:51:b6:fa:f0:71:a1:5a:0a:28:f4:10:a6:90:57: ee:d0:d6:16:d4:d4:35:6b:54:55:8f:ed:c4:5a:bf: bd:75:f2:f6:5a:ff:88:ba:88:15:3b:8e:38:1b:72: 2c:0d:be:75:d5:ac:4a:ee:1e:9b:ad:15:1b:13:dc: 33:a4:f0:b6:b2:3e:f7:0f:a9:19:fb:35:59:b5:8a: 83:d0:a0:26:f2:ec:36:51:15:59:53:56:dc:aa:38: a2:e6:cc:27:26:67:c1:73:f4:bd:cf:3d:9a:0e:d6: 43:c1:09:5a:02:15:31:0d:77:32:e2:b9:f0:98:97: 0a:55:8a:47:90:e1:d4:76:91:f3:7f:2f:ec:59:66: a3:29:e1:c2:17:ec:d9:9d:19:eb:92:4c:7c:8e:93: 21:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:8D:A4:0D:B8:2E:4B:40:D7:AA:8A:0E:DF:BB:1F:08:DD:FF:75:B9 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463323a3a2f34372d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:edc2::/47 Signature Algorithm: sha256WithRSAEncryption 5a:21:ec:9e:06:7a:08:33:9b:fc:e7:17:ea:2e:2c:14:28:4e: d8:2d:75:fe:d5:82:09:0e:81:27:bb:7f:17:16:2c:d4:c8:7a: 21:5e:6c:36:dc:12:b9:83:3f:90:60:f6:c6:69:ac:e5:1a:c2: 76:fa:ba:7e:49:d0:1c:74:5e:f8:0c:a6:04:33:f2:13:90:c7: 41:62:99:5a:10:e8:79:d8:dc:5a:3b:90:e0:a2:ae:02:47:f8: cd:02:36:e3:ae:62:7e:7f:bd:7b:0d:97:b7:6a:74:8e:8f:45: 56:a1:99:0b:50:91:80:61:31:f6:eb:da:c2:62:f5:4c:d1:55: e9:0c:c4:d0:88:2e:cd:bf:18:27:4d:b2:3b:07:1a:2d:13:bd: a7:7b:61:dd:26:c0:77:1a:10:0b:0c:02:e9:45:f3:b8:cc:6f: d7:52:fe:70:a4:98:87:da:c6:19:73:11:d8:b9:74:a4:ec:37: 0f:d6:21:c4:bf:25:00:06:4a:24:c8:3b:00:10:db:9b:c2:16: bd:b9:d5:78:77:a2:39:79:96:80:0b:95:be:65:cd:18:e7:cf: 41:c6:4f:1e:e0:0c:c8:10:d3:aa:a5:19:3e:8c:bc:cf:af:e8: 9f:44:48:a7:8f:bc:25:0d:e3:83:39:de:50:2e:24:80:63:2b: eb:0b:10:a6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVSD53CA+wcsddkVLetttbYPKtaUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDgwMDExMzJaFw0yNjAzMDcwMDE2MzJaMDMxMTAvBgNV BAMTKDJCOERBNDBEQjgyRTRCNDBEN0FBOEEwRURGQkIxRjA4RERGRjc1QjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC26qxjxaohrWOsc6VMRh9lhhK bzSpgfQ4czW3qeYC3DNpmaGpx52bxaP8kM0F8Hq6F2ieFxqxWc/hFrU3T1/gHhNK UFIDrPX0ib6zhmNSgnDqIXJS+EDIxOVwb/kES3x72cY5ylJa+RdRtvrwcaFaCij0 EKaQV+7Q1hbU1DVrVFWP7cRav7118vZa/4i6iBU7jjgbciwNvnXVrEruHputFRsT 3DOk8LayPvcPqRn7NVm1ioPQoCby7DZRFVlTVtyqOKLmzCcmZ8Fz9L3PPZoO1kPB CVoCFTENdzLiufCYlwpVikeQ4dR2kfN/L+xZZqMp4cIX7NmdGeuSTHyOkyFxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUK42kDbguS0DXqooO37sfCN3/dbkwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQ2MzMyM2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcBKhR1gO3CMA0GCSqGSIb3DQEBCwUAA4IBAQBa IeyeBnoIM5v85xfqLiwUKE7YLXX+1YIJDoEnu38XFizUyHohXmw23BK5gz+QYPbG aazlGsJ2+rp+SdAcdF74DKYEM/ITkMdBYplaEOh52NxaO5Dgoq4CR/jNAjbjrmJ+ f717DZe3anSOj0VWoZkLUJGAYTH269rCYvVM0VXpDMTQiC7NvxgnTbI7BxotE72n e2HdJsB3GhALDALpRfO4zG/XUv5wpJiH2sYZcxHYuXSk7DcP1iHEvyUABkokyDsA ENubwha9udV4d6I5eZaAC5W+Zc0Y589Bxk8e4AzIENOqpRk+jLzPr+ifREinj7wl DeODOd5QLiSAYyvrCxCm -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:13 2025 by rpki-client