$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530633a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530633a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: 8Ho4a/h5k6HD70wRgTpnAhcqVaHGnLwaDUMIf/W6wmk= Subject key identifier: EB:90:AF:25:EF:CB:95:FB:B4:CE:39:D6:9A:B2:B6:5F:EF:ED:E9:05 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 7F46ACB18E9A804994802918B0C37B34D165856C Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530633a3a2f34382d3438203d3e20323135393536.roa Signing time: Fri 07 Mar 2025 23:46:13 +0000 ROA not before: Fri 07 Mar 2025 23:41:13 +0000 ROA not after: Fri 06 Mar 2026 23:46:13 +0000 asID: 215956 IP address blocks: 2a14:7580:ee0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:46:ac:b1:8e:9a:80:49:94:80:29:18:b0:c3:7b:34:d1:65:85:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 7 23:41:13 2025 GMT Not After : Mar 6 23:46:13 2026 GMT Subject: CN=EB90AF25EFCB95FBB4CE39D69AB2B65FEFEDE905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a0:b2:32:b0:a5:62:3f:fe:67:de:53:a8:5d: 9d:cd:2e:bc:23:85:e5:a3:6a:20:cf:8a:4b:a0:79: 54:b0:25:7d:18:dc:26:f3:77:ea:be:54:29:17:fd: 64:0d:49:15:9a:2f:fa:e0:4c:ac:2b:d8:d8:44:2b: 5e:7a:f2:e2:b3:d3:d0:e8:4c:0a:5b:3b:68:69:6b: 57:17:96:42:d8:85:30:77:9f:a4:df:df:31:46:01: 48:e3:12:f7:f3:db:37:bd:e8:c4:3f:e2:ce:ba:78: 76:32:33:39:ae:1b:1d:83:77:c0:82:18:30:68:ca: 71:82:53:a0:c9:1e:c5:6b:5c:e1:17:43:43:2e:08: c9:46:e9:5d:b1:54:e6:8c:12:cf:45:7c:81:6f:fe: bf:18:c9:e1:83:d7:51:62:a6:46:20:ac:cf:62:ab: bf:73:fa:04:44:34:22:b4:16:2c:c3:f4:b1:67:9b: 4c:7f:73:e5:57:90:fa:fa:69:e7:21:41:61:8e:5c: 95:94:36:60:3d:5d:e2:b0:27:35:34:49:62:e5:d9: c0:b6:c9:82:89:15:63:8a:f9:db:b3:aa:d5:e2:ed: 27:88:3c:e6:76:72:76:e7:21:6d:73:6b:e5:a9:f1: 54:54:8e:db:ae:d8:4f:a5:a1:2c:f6:93:ba:19:47: 7b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:90:AF:25:EF:CB:95:FB:B4:CE:39:D6:9A:B2:B6:5F:EF:ED:E9:05 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530633a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee0c::/48 Signature Algorithm: sha256WithRSAEncryption 65:97:88:66:82:9c:ee:95:ed:f4:0a:ae:f3:49:0f:f6:6a:75: 14:3a:0c:71:45:a0:78:af:78:d1:5e:9b:1d:d8:66:86:79:a1: ad:65:b3:f5:01:3f:48:11:08:fa:c3:ff:75:95:3d:3c:12:0f: 12:8b:1f:9b:c9:a3:7a:cf:46:b9:0b:c6:c1:f3:30:4a:93:19: e8:57:05:54:32:4d:e9:a6:d5:41:f0:11:cb:88:ca:e6:f0:de: c6:c0:bf:e9:34:c1:05:a3:9c:60:3a:60:25:9d:0d:b5:67:54: ae:e9:0a:f1:58:0f:7d:0d:c8:38:fb:f6:71:d8:83:9d:cf:e3: 0e:55:24:ef:cc:47:03:9e:b2:a0:82:a7:0a:a9:a7:b5:63:51: 5f:01:e6:30:02:bd:e9:60:c7:27:d9:e6:0d:ea:6d:84:95:32: 80:3c:9e:db:3b:1e:62:ea:db:ab:b3:3a:89:49:30:fe:89:c8: f7:cc:47:60:ca:17:77:64:57:0b:13:8b:70:ed:44:94:66:f2: 28:11:05:f7:ba:e3:84:9c:56:b6:14:ca:75:2a:42:23:ac:c9: 0a:f5:53:07:53:65:44:7b:47:68:0e:e6:c3:66:f6:a1:84:9c: 38:5e:aa:f7:5e:00:34:c8:cc:6d:f4:b8:df:74:d6:f9:ca:76: ab:75:c7:8b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUf0assY6agEmUgCkYsMN7NNFlhWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDcyMzQxMTNaFw0yNjAzMDYyMzQ2MTNaMDMxMTAvBgNV BAMTKEVCOTBBRjI1RUZDQjk1RkJCNENFMzlENjlBQjJCNjVGRUZFREU5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDoLIysKViP/5n3lOoXZ3NLrwj heWjaiDPikugeVSwJX0Y3Cbzd+q+VCkX/WQNSRWaL/rgTKwr2NhEK1568uKz09Do TApbO2hpa1cXlkLYhTB3n6Tf3zFGAUjjEvfz2ze96MQ/4s66eHYyMzmuGx2Dd8CC GDBoynGCU6DJHsVrXOEXQ0MuCMlG6V2xVOaMEs9FfIFv/r8YyeGD11FipkYgrM9i q79z+gRENCK0FizD9LFnm0x/c+VXkPr6aechQWGOXJWUNmA9XeKwJzU0SWLl2cC2 yYKJFWOK+duzqtXi7SeIPOZ2cnbnIW1za+Wp8VRUjtuu2E+loSz2k7oZR3uXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU65CvJe/Llfu0zjnWmrK2X+/t6QUwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4MMA0GCSqGSIb3DQEBCwUAA4IBAQBl l4hmgpzule30Cq7zSQ/2anUUOgxxRaB4r3jRXpsd2GaGeaGtZbP1AT9IEQj6w/91 lT08Eg8Six+byaN6z0a5C8bB8zBKkxnoVwVUMk3pptVB8BHLiMrm8N7GwL/pNMEF o5xgOmAlnQ21Z1Su6QrxWA99Dcg4+/Zx2IOdz+MOVSTvzEcDnrKggqcKqae1Y1Ff AeYwAr3pYMcn2eYN6m2ElTKAPJ7bOx5i6turszqJSTD+icj3zEdgyhd3ZFcLE4tw 7USUZvIoEQX3uuOEnFa2FMp1KkIjrMkK9VMHU2VEe0doDubDZvahhJw4Xqr3XgA0 yMxt9LjfdNb5ynardceL -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:33 2025 by rpki-client