$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656466303a3a2f34362d3438203d3e20323135393536.roa File: 326131343a373538303a656466303a3a2f34362d3438203d3e20323135393536.roa (raw, json) Hash identifier: OX+uoS1yp+rW3TsSQocPE/tAx5xbT/G4myRYz2g/VXI= Subject key identifier: 96:35:DF:67:B5:12:93:9E:7C:5F:91:AC:92:F7:C2:C1:02:12:20:E1 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 33A497A2BC0F2BF7E1C01A3B11F43EE9900D5EF0 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656466303a3a2f34362d3438203d3e20323135393536.roa Signing time: Sat 08 Mar 2025 03:15:59 +0000 ROA not before: Sat 08 Mar 2025 03:10:59 +0000 ROA not after: Sat 07 Mar 2026 03:15:59 +0000 asID: 215956 IP address blocks: 2a14:7580:edf0::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a4:97:a2:bc:0f:2b:f7:e1:c0:1a:3b:11:f4:3e:e9:90:0d:5e:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 8 03:10:59 2025 GMT Not After : Mar 7 03:15:59 2026 GMT Subject: CN=9635DF67B512939E7C5F91AC92F7C2C1021220E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:9d:c0:93:4c:3b:a5:b8:09:d3:ed:5f:a3:24: 10:41:f8:86:0c:bf:0f:9c:9e:e3:ba:f7:6b:bd:35: 4e:fb:63:fb:81:29:86:68:53:5e:da:ce:40:a3:ed: cb:27:20:3a:67:95:20:3c:69:05:1b:86:4b:e2:67: 0e:c6:ff:d9:54:f6:93:f4:58:47:b7:7a:e4:46:cf: c0:6f:fa:c8:29:5c:1c:53:5e:b1:5e:00:70:df:9a: 70:bc:8f:b8:94:df:e8:9f:44:d9:15:9b:58:16:eb: f0:b8:2c:58:b8:dd:21:ef:a4:e1:8d:5e:ad:a9:f6: b9:59:64:db:c5:57:d5:0e:4e:4e:74:da:09:74:f5: bd:e0:ab:ff:c9:5d:ed:25:a7:4d:14:11:6e:7b:a3: 7e:4d:94:75:1c:c6:0a:88:67:9e:27:e3:d3:1a:ca: dc:0a:57:30:ac:69:44:76:7a:c0:4a:2a:43:76:52: 1f:da:77:0e:b9:34:23:5e:93:77:04:77:a6:c2:87: 04:90:3d:a8:4e:19:8d:19:47:17:b7:e1:25:77:f9: 37:eb:0b:fa:d7:72:91:6c:fa:db:e0:3f:48:db:22: 04:8d:22:1f:8f:a3:d5:8c:71:36:5a:97:de:b4:f7: e1:da:99:70:64:39:77:9a:78:59:61:60:46:46:17: d9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:35:DF:67:B5:12:93:9E:7C:5F:91:AC:92:F7:C2:C1:02:12:20:E1 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656466303a3a2f34362d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:edf0::/46 Signature Algorithm: sha256WithRSAEncryption 7c:fa:c0:c0:06:8b:53:a6:70:67:81:06:de:5c:99:af:6f:20: 5d:a5:29:c1:e6:6c:73:29:f0:d8:92:a9:e0:ea:9b:60:8a:98: cf:c0:2f:cd:d5:fa:9d:39:07:d9:ca:e5:26:02:27:4e:68:f9: 6c:52:78:93:6f:ce:88:6f:27:dd:fa:e1:21:cd:14:6a:cd:c4: cf:26:db:94:ee:57:90:50:36:d7:40:a7:3d:52:ba:0c:30:54: 64:ed:17:3d:07:cd:a6:1a:78:88:52:b6:c4:70:eb:ea:10:ad: f8:62:5a:22:9d:dc:df:1f:3c:bd:10:db:9d:2c:26:97:f8:66: 30:ca:4a:6f:ac:25:11:bf:d2:14:76:6c:9c:0d:bb:a3:a1:44: c4:49:c5:3f:ae:9c:39:31:70:50:ba:5d:30:e5:73:bb:eb:ac: dd:7c:aa:55:8f:50:d9:08:7c:1b:9e:ba:a4:b7:ff:ab:c3:25: 87:a2:56:82:51:27:0e:3f:cd:b0:41:03:e6:12:27:eb:00:54: 48:92:46:d5:41:00:d2:98:83:a9:dd:9f:7c:58:56:24:81:5b: a6:0d:3d:0f:23:c9:2e:da:c2:eb:0d:9d:92:a6:32:ad:6d:8f: cb:fd:63:4e:79:b3:a8:27:15:b2:b7:27:18:82:6c:8b:9a:bc: 4b:58:b0:ae -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUM6SXorwPK/fhwBo7EfQ+6ZANXvAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDgwMzEwNTlaFw0yNjAzMDcwMzE1NTlaMDMxMTAvBgNV BAMTKDk2MzVERjY3QjUxMjkzOUU3QzVGOTFBQzkyRjdDMkMxMDIxMjIwRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5ncCTTDuluAnT7V+jJBBB+IYM vw+cnuO692u9NU77Y/uBKYZoU17azkCj7csnIDpnlSA8aQUbhkviZw7G/9lU9pP0 WEe3euRGz8Bv+sgpXBxTXrFeAHDfmnC8j7iU3+ifRNkVm1gW6/C4LFi43SHvpOGN Xq2p9rlZZNvFV9UOTk502gl09b3gq//JXe0lp00UEW57o35NlHUcxgqIZ54n49Ma ytwKVzCsaUR2esBKKkN2Uh/adw65NCNek3cEd6bChwSQPahOGY0ZRxe34SV3+Tfr C/rXcpFs+tvgP0jbIgSNIh+Po9WMcTZal9609+HamXBkOXeaeFlhYEZGF9kXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUljXfZ7USk558X5GskvfCwQISIOEwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQ2NjMwM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gO3wMA0GCSqGSIb3DQEBCwUAA4IBAQB8 +sDABotTpnBngQbeXJmvbyBdpSnB5mxzKfDYkqng6ptgipjPwC/N1fqdOQfZyuUm AidOaPlsUniTb86Ibyfd+uEhzRRqzcTPJtuU7leQUDbXQKc9UroMMFRk7Rc9B82m GniIUrbEcOvqEK34YloindzfHzy9ENudLCaX+GYwykpvrCURv9IUdmycDbujoUTE ScU/rpw5MXBQul0w5XO766zdfKpVj1DZCHwbnrqkt/+rwyWHolaCUScOP82wQQPm EifrAFRIkkbVQQDSmIOp3Z98WFYkgVumDT0PI8ku2sLrDZ2SpjKtbY/L/WNOebOo JxWytycYgmyLmrxLWLCu -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:36 2025 by rpki-client