$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530613a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530613a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: +SA63M4t2p5PSAK68qo4IVJ7i06uxXDj7zto4yxokOI= Subject key identifier: D6:08:63:54:E4:FB:F9:14:6E:F2:74:D1:92:CF:6A:DD:FC:7C:6E:E3 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 7DE34A7BEB12F3269A124CC073B7787F2A91E8FB Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530613a3a2f34382d3438203d3e20323135393536.roa Signing time: Fri 07 Mar 2025 23:45:33 +0000 ROA not before: Fri 07 Mar 2025 23:40:33 +0000 ROA not after: Fri 06 Mar 2026 23:45:33 +0000 asID: 215956 IP address blocks: 2a14:7580:ee0a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 09 Apr 2025 08:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e3:4a:7b:eb:12:f3:26:9a:12:4c:c0:73:b7:78:7f:2a:91:e8:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 7 23:40:33 2025 GMT Not After : Mar 6 23:45:33 2026 GMT Subject: CN=D6086354E4FBF9146EF274D192CF6ADDFC7C6EE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:46:c7:89:d3:09:d3:56:e1:d3:ec:17:4b:61: 2f:de:7f:25:44:63:97:10:ae:89:22:e9:4a:d3:82: 36:f4:d0:cf:e0:29:12:61:ef:31:19:af:0a:2b:0d: c0:6d:e4:6e:dd:58:a4:0f:0d:dc:23:92:b8:a7:19: c0:9c:89:93:94:e0:c4:73:8e:1c:80:1f:3b:83:44: 43:dd:b5:da:f6:73:42:f1:55:4e:04:73:20:67:7a: 40:c7:9e:1c:21:cf:8c:46:40:b8:85:27:c1:4f:ae: a2:c5:a7:4e:a6:b6:b5:9e:47:3c:76:e4:52:f2:f1: 97:79:08:f2:4b:14:6e:45:b4:e3:a1:5e:20:41:a4: 8b:cd:15:09:9d:fe:f2:71:5a:71:db:a1:9e:de:d3: 2d:f4:8b:a7:9a:eb:ad:a7:72:9a:24:e6:1c:de:fe: 78:42:72:8d:f8:a9:08:44:8f:7f:38:19:36:3c:2a: 7d:84:7c:b7:0d:f7:c9:f7:03:40:00:5a:10:32:1c: 6d:63:ea:63:2a:56:b0:93:e4:02:fb:75:a2:a8:9c: 10:33:44:79:cd:8f:70:3b:d5:a5:dd:d2:ee:7c:38: 58:70:ed:bc:72:2d:df:e3:06:96:07:83:b6:77:1a: 25:60:0a:8f:42:4d:f8:ac:40:26:bc:98:ed:b4:97: 03:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:08:63:54:E4:FB:F9:14:6E:F2:74:D1:92:CF:6A:DD:FC:7C:6E:E3 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530613a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee0a::/48 Signature Algorithm: sha256WithRSAEncryption 2c:01:21:9b:f7:05:ca:cb:df:53:fd:34:e4:57:fd:7b:3e:c0: 9a:99:5e:48:47:09:d5:8f:35:00:62:10:64:34:76:21:54:00: df:11:95:e0:4c:d7:89:f6:07:fa:bc:c4:ff:22:e6:ad:b8:65: 3e:af:39:86:53:0f:1a:8b:66:2b:11:fe:2f:36:51:12:0a:d0: cb:de:9e:95:8b:ab:cb:73:c2:11:86:4c:36:db:ca:30:7d:fe: 49:c1:ff:f6:89:a6:d0:c1:8e:a3:e5:fa:79:09:b3:dd:21:16: 90:29:85:c1:18:65:f2:15:52:e0:70:c4:68:3e:f7:ac:81:40: 60:6f:57:e4:f4:9e:23:af:25:a1:42:e6:aa:35:fd:97:08:a2: 0b:c2:f2:3e:77:1e:58:47:b2:65:1c:8f:0b:f6:4f:93:cb:01: fa:55:10:6e:19:35:86:33:e8:06:dd:77:5f:f9:84:7c:ce:e9: 98:79:35:29:ad:0d:4f:95:ab:11:1b:62:3a:c7:eb:d6:c2:41: 2b:e9:87:8a:c4:ff:5a:37:1d:73:6d:46:88:e3:88:11:c9:14: 13:98:5f:70:ad:75:1b:f6:d8:e0:ca:12:03:1e:6b:60:b5:e5: 51:90:50:c6:34:f7:ff:fd:d9:02:98:80:3d:a3:19:b1:41:e6: 06:eb:b1:eb -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfeNKe+sS8yaaEkzAc7d4fyqR6PswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDcyMzQwMzNaFw0yNjAzMDYyMzQ1MzNaMDMxMTAvBgNV BAMTKEQ2MDg2MzU0RTRGQkY5MTQ2RUYyNzREMTkyQ0Y2QURERkM3QzZFRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtRseJ0wnTVuHT7BdLYS/efyVE Y5cQroki6UrTgjb00M/gKRJh7zEZrworDcBt5G7dWKQPDdwjkrinGcCciZOU4MRz jhyAHzuDREPdtdr2c0LxVU4EcyBnekDHnhwhz4xGQLiFJ8FPrqLFp06mtrWeRzx2 5FLy8Zd5CPJLFG5FtOOhXiBBpIvNFQmd/vJxWnHboZ7e0y30i6ea662ncpok5hze /nhCco34qQhEj384GTY8Kn2EfLcN98n3A0AAWhAyHG1j6mMqVrCT5AL7daKonBAz RHnNj3A71aXd0u58OFhw7bxyLd/jBpYHg7Z3GiVgCo9CTfisQCa8mO20lwMxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU1ghjVOT7+RRu8nTRks9q3fx8buMwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4KMA0GCSqGSIb3DQEBCwUAA4IBAQAs ASGb9wXKy99T/TTkV/17PsCamV5IRwnVjzUAYhBkNHYhVADfEZXgTNeJ9gf6vMT/ IuatuGU+rzmGUw8ai2YrEf4vNlESCtDL3p6Vi6vLc8IRhkw228owff5Jwf/2iabQ wY6j5fp5CbPdIRaQKYXBGGXyFVLgcMRoPvesgUBgb1fk9J4jryWhQuaqNf2XCKIL wvI+dx5YR7JlHI8L9k+TywH6VRBuGTWGM+gG3Xdf+YR8zumYeTUprQ1PlasRG2I6 x+vWwkEr6YeKxP9aNx1zbUaI44gRyRQTmF9wrXUb9tjgyhIDHmtgteVRkFDGNPf/ /dkCmIA9oxmxQeYG67Hr -----END CERTIFICATE-----Generated at Tue Apr 8 14:34:22 2025 by rpki-client