$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463363a3a2f34372d3438203d3e20323135393536.roa File: 326131343a373538303a656463363a3a2f34372d3438203d3e20323135393536.roa (raw, json) Hash identifier: JSDpVii8cPD9PH2htYFwGmiTRIE/E6Wxu1gOrcqOqVg= Subject key identifier: 7B:D4:95:20:D0:1D:38:75:28:A0:DC:30:09:AE:26:2F:81:8E:A2:06 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 7403D03BCBF855E19AD6FB811A66CA80DC9CCE2A Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463363a3a2f34372d3438203d3e20323135393536.roa Signing time: Sun 01 Jun 2025 22:09:55 +0000 ROA not before: Sun 01 Jun 2025 22:04:55 +0000 ROA not after: Sun 31 May 2026 22:09:55 +0000 asID: 215956 IP address blocks: 2a14:7580:edc6::/47 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 11:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:03:d0:3b:cb:f8:55:e1:9a:d6:fb:81:1a:66:ca:80:dc:9c:ce:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Jun 1 22:04:55 2025 GMT Not After : May 31 22:09:55 2026 GMT Subject: CN=7BD49520D01D387528A0DC3009AE262F818EA206 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:40:09:da:33:4c:0a:3e:b8:c0:75:71:f3: 2a:81:cf:bf:a0:5d:66:0d:41:47:32:4d:c3:c9:ea: cf:7e:0e:bb:d5:2b:c5:2d:aa:b3:a4:85:99:1a:fc: 6c:cc:0d:5d:0b:e0:71:d4:33:45:ea:89:25:c9:83: c9:f0:f8:0f:4f:51:73:d9:c1:eb:4b:78:d9:c7:dd: 52:00:82:6b:37:c0:a1:d0:33:b6:2c:a2:4c:55:fa: 88:f3:a2:7e:9d:ab:24:bf:9f:b3:4f:76:b6:58:df: 1d:16:76:d1:08:fa:41:69:81:8b:d1:e3:ce:a2:7d: 1c:88:20:7e:b5:01:6e:bb:84:17:db:7e:00:7f:e1: da:8b:cb:1b:8e:cf:c9:6a:77:0d:e9:a8:09:17:09: 02:55:a3:c8:2c:70:68:6e:99:3c:dd:28:c0:80:74: 94:31:ee:78:0f:7c:82:3d:cc:93:48:46:79:3f:25: 0c:8d:1b:78:85:9f:24:ae:42:1b:22:4d:10:8a:2d: 56:e5:05:c2:6e:f4:c4:d6:14:7a:fc:b5:bd:63:ec: a7:ae:e0:1a:0a:83:66:92:3c:82:cf:c4:53:61:c0: d8:fc:50:39:b7:a5:52:5f:72:56:24:dd:ec:00:d6: 43:86:de:89:5c:ff:47:2e:68:35:df:98:28:c1:52: 48:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D4:95:20:D0:1D:38:75:28:A0:DC:30:09:AE:26:2F:81:8E:A2:06 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656463363a3a2f34372d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:edc6::/47 Signature Algorithm: sha256WithRSAEncryption 43:6a:ac:a3:d6:ff:a6:8c:d9:f6:bd:d5:68:25:95:f7:41:30: f6:a7:1b:40:16:ab:27:10:4b:b4:30:3f:4b:6b:08:e4:ae:32: fa:93:1f:73:38:b2:e1:10:70:67:33:63:20:b2:9a:cc:c7:11: 8c:e4:03:a4:c5:1f:79:16:5d:aa:0a:3d:63:5f:a4:ad:e9:5e: 1a:42:6c:a8:71:a2:74:af:24:56:e5:98:1c:ac:71:76:70:47: 31:a4:8c:77:95:a3:d7:c5:7e:68:3e:3a:cb:ee:c6:e4:c1:17: 50:fe:bc:6f:92:e8:a2:bd:99:e7:3a:7c:22:64:f5:91:86:fe: 26:a8:a3:a1:cb:d4:5b:5e:67:8a:4e:2c:e4:26:e9:56:e7:1b: 5e:1b:c4:10:b3:f0:5c:94:1f:b8:18:85:c2:ea:37:44:3a:bd: 7b:4a:14:10:5c:ba:a9:37:15:39:3a:7d:30:aa:ee:ab:a1:f9: d5:41:2c:d9:0c:f8:c4:a1:fc:44:9b:06:f4:71:1a:83:e0:6e: 7b:7b:d9:fb:cd:67:1b:ba:b7:dc:2e:05:84:77:10:a1:e7:5a: 7f:b0:1b:d6:1d:05:8f:f9:0c:b5:00:eb:49:27:90:ce:f4:fb: d9:76:0d:de:2d:29:b8:d4:7b:7a:41:09:5a:70:75:41:76:8b: 69:04:7a:b4 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUdAPQO8v4VeGa1vuBGmbKgNycziowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTA2MDEyMjA0NTVaFw0yNjA1MzEyMjA5NTVaMDMxMTAvBgNV BAMTKDdCRDQ5NTIwRDAxRDM4NzUyOEEwREMzMDA5QUUyNjJGODE4RUEyMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4eEAJ2jNMCj64wHVx8yqBz7+g XWYNQUcyTcPJ6s9+DrvVK8UtqrOkhZka/GzMDV0L4HHUM0XqiSXJg8nw+A9PUXPZ wetLeNnH3VIAgms3wKHQM7YsokxV+ojzon6dqyS/n7NPdrZY3x0WdtEI+kFpgYvR 486ifRyIIH61AW67hBfbfgB/4dqLyxuOz8lqdw3pqAkXCQJVo8gscGhumTzdKMCA dJQx7ngPfII9zJNIRnk/JQyNG3iFnySuQhsiTRCKLVblBcJu9MTWFHr8tb1j7Keu 4BoKg2aSPILPxFNhwNj8UDm3pVJfclYk3ewA1kOG3olc/0cuaDXfmCjBUkhJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUe9SVINAdOHUooNwwCa4mL4GOogYwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQ2MzM2M2EzYTJmMzQzNzJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcBKhR1gO3GMA0GCSqGSIb3DQEBCwUAA4IBAQBD aqyj1v+mjNn2vdVoJZX3QTD2pxtAFqsnEEu0MD9LawjkrjL6kx9zOLLhEHBnM2Mg sprMxxGM5AOkxR95Fl2qCj1jX6St6V4aQmyocaJ0ryRW5ZgcrHF2cEcxpIx3laPX xX5oPjrL7sbkwRdQ/rxvkuiivZnnOnwiZPWRhv4mqKOhy9RbXmeKTizkJulW5xte G8QQs/BclB+4GIXC6jdEOr17ShQQXLqpNxU5On0wqu6rofnVQSzZDPjEofxEmwb0 cRqD4G57e9n7zWcburfcLgWEdxCh51p/sBvWHQWP+Qy1AOtJJ5DO9PvZdg3eLSm4 1Ht6QQlacHVBdotpBHq0 -----END CERTIFICATE-----Generated at Sat Jun 7 22:23:15 2025 by rpki-client