$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530363a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530363a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: DADECdZALi0f7ONgD1nprji2pqSTaZzjrgXbBlogfFU= Subject key identifier: 46:26:4F:DF:0E:D3:11:55:A9:69:AD:B8:C1:7D:9B:8F:DB:FC:12:12 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 5D5FE8C87662ED9E57238A1120227A2238ADBDEA Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530363a3a2f34382d3438203d3e20323135393536.roa Signing time: Mon 03 Mar 2025 00:07:46 +0000 ROA not before: Mon 03 Mar 2025 00:02:46 +0000 ROA not after: Mon 02 Mar 2026 00:07:46 +0000 asID: 215956 IP address blocks: 2a14:7580:ee06::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:5f:e8:c8:76:62:ed:9e:57:23:8a:11:20:22:7a:22:38:ad:bd:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 3 00:02:46 2025 GMT Not After : Mar 2 00:07:46 2026 GMT Subject: CN=46264FDF0ED31155A969ADB8C17D9B8FDBFC1212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:18:55:18:f6:2c:06:f6:58:8e:98:8b:3e:f9: 7e:40:79:69:d2:70:c7:83:91:e5:28:64:42:4a:8f: f1:e7:90:45:b1:5b:2f:6a:19:6a:d3:bb:26:0a:ea: c1:85:50:c4:8f:67:48:e6:80:5d:01:22:d2:86:fe: 7e:b0:f0:24:fc:f7:60:54:cc:f5:c8:d6:9d:e2:fa: 88:06:56:1c:fe:89:11:e5:ee:79:01:04:58:30:53: c7:1d:f0:de:f6:97:5e:f7:54:17:14:33:2f:77:7f: d5:c7:9f:fd:0a:2d:5a:3f:94:53:df:66:6f:b7:2c: 2b:25:73:39:08:28:30:39:33:d6:e5:86:a4:27:10: 7a:d0:7d:db:3a:d9:3d:2d:a9:80:5e:3c:e6:df:84: 78:c9:71:b5:fd:cc:2e:6c:20:b1:3a:dc:81:b7:5e: ed:bf:24:29:61:a4:f2:e0:84:ee:97:8a:25:f6:de: 65:9c:d9:fe:13:5e:2e:d5:42:12:96:ab:58:58:b2: 23:5d:41:87:07:88:bb:c0:10:65:72:9e:92:7c:df: b2:3d:94:74:66:04:34:c9:dc:ce:b7:51:37:2b:4c: 59:32:1d:94:27:52:85:a6:14:a0:10:64:46:f3:1c: 42:bf:4f:36:bf:30:84:5d:07:b9:f2:83:8f:42:52: 34:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:26:4F:DF:0E:D3:11:55:A9:69:AD:B8:C1:7D:9B:8F:DB:FC:12:12 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530363a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee06::/48 Signature Algorithm: sha256WithRSAEncryption 8f:65:e7:de:f0:08:4f:3b:7d:8b:30:41:19:79:d7:67:65:5b: e6:56:8f:26:fc:e1:ba:4d:bf:54:19:ad:07:e3:2a:e4:6a:ce: bb:5d:49:42:c5:22:41:9c:d8:93:1f:3b:80:99:b3:17:2c:7c: 1b:a9:eb:8c:3a:42:47:8b:45:5a:34:32:b0:29:68:5a:7e:4c: e3:42:e0:ff:54:0a:7b:80:8c:24:d2:cd:ac:a1:60:e2:cb:b1: 0f:3b:01:61:e7:91:d4:f9:99:bf:b4:6a:b7:b2:d4:df:3e:6f: d4:4e:f2:4c:94:20:5b:c6:1f:db:60:38:4e:c4:ee:c2:e3:cc: 75:6b:a8:8e:d9:c1:9d:78:9b:de:71:24:d8:b0:c4:c3:c3:19: 64:e7:13:c2:e0:18:81:7f:91:9d:3b:19:7f:16:21:48:1e:cd: 3a:d1:ab:76:61:2f:b7:12:cd:3b:fc:32:24:3a:29:22:5c:f4: e7:bd:29:33:74:2c:2e:f5:20:29:bc:c2:af:91:d7:f0:c5:7d: b0:29:05:48:d1:2b:d2:52:f4:b0:85:1e:08:96:ee:02:63:be: 96:da:19:b4:39:d2:8a:80:dc:49:ea:29:5b:95:20:a6:7b:45: 99:19:3c:3d:ea:6a:68:28:57:68:d6:47:d4:ed:48:13:7e:5e: 2e:d8:ad:49 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXV/oyHZi7Z5XI4oRICJ6IjitveowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDMwMDAyNDZaFw0yNjAzMDIwMDA3NDZaMDMxMTAvBgNV BAMTKDQ2MjY0RkRGMEVEMzExNTVBOTY5QURCOEMxN0Q5QjhGREJGQzEyMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQGFUY9iwG9liOmIs++X5AeWnS cMeDkeUoZEJKj/HnkEWxWy9qGWrTuyYK6sGFUMSPZ0jmgF0BItKG/n6w8CT892BU zPXI1p3i+ogGVhz+iRHl7nkBBFgwU8cd8N72l173VBcUMy93f9XHn/0KLVo/lFPf Zm+3LCslczkIKDA5M9blhqQnEHrQfds62T0tqYBePObfhHjJcbX9zC5sILE63IG3 Xu2/JClhpPLghO6XiiX23mWc2f4TXi7VQhKWq1hYsiNdQYcHiLvAEGVynpJ837I9 lHRmBDTJ3M63UTcrTFkyHZQnUoWmFKAQZEbzHEK/Tza/MIRdB7nyg49CUjQhAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURiZP3w7TEVWpaa24wX2bj9v8EhIwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4GMA0GCSqGSIb3DQEBCwUAA4IBAQCP Zefe8AhPO32LMEEZeddnZVvmVo8m/OG6Tb9UGa0H4yrkas67XUlCxSJBnNiTHzuA mbMXLHwbqeuMOkJHi0VaNDKwKWhafkzjQuD/VAp7gIwk0s2soWDiy7EPOwFh55HU +Zm/tGq3stTfPm/UTvJMlCBbxh/bYDhOxO7C48x1a6iO2cGdeJvecSTYsMTDwxlk 5xPC4BiBf5GdOxl/FiFIHs060at2YS+3Es07/DIkOikiXPTnvSkzdCwu9SApvMKv kdfwxX2wKQVI0SvSUvSwhR4Ilu4CY76W2hm0OdKKgNxJ6ilblSCme0WZGTw96mpo KFdo1kfU7UgTfl4u2K1J -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:59 2025 by rpki-client