$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530643a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530643a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: Yglg8daeU2hAxM3XItVdogeWekww8KWX8sDlBZCw59o= Subject key identifier: 43:09:56:6A:48:BA:B7:22:D8:2C:A3:3F:99:43:04:B7:6C:1E:01:05 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 3C0E57F416A450382C032D78230DA525ECEB6D3D Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530643a3a2f34382d3438203d3e20323135393536.roa Signing time: Fri 07 Mar 2025 23:46:30 +0000 ROA not before: Fri 07 Mar 2025 23:41:30 +0000 ROA not after: Fri 06 Mar 2026 23:46:30 +0000 asID: 215956 IP address blocks: 2a14:7580:ee0d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:0e:57:f4:16:a4:50:38:2c:03:2d:78:23:0d:a5:25:ec:eb:6d:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 7 23:41:30 2025 GMT Not After : Mar 6 23:46:30 2026 GMT Subject: CN=4309566A48BAB722D82CA33F994304B76C1E0105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ef:42:9f:98:3b:ad:0a:d6:9c:6b:23:9d:78: ff:30:67:bf:53:78:0b:2d:53:af:24:62:31:92:1b: 9f:35:84:15:15:94:f9:bd:72:20:c1:4c:e8:6d:b3: 8e:93:3e:ee:ff:35:9d:1b:73:3e:53:73:a2:15:b5: d8:1b:c7:01:45:8e:8d:8c:80:74:33:8e:ba:41:ec: 4f:1c:07:a6:64:88:8a:4e:06:e3:d4:c2:d5:d6:72: be:bc:70:21:61:d9:bc:e7:47:53:ea:bf:9f:12:28: 38:3a:8a:86:6d:e3:28:9f:e5:93:31:ef:fa:e7:6c: 9c:62:e9:0a:57:38:d3:28:3f:97:2f:1c:6d:fb:75: d8:a2:62:41:19:45:e7:54:39:b1:f5:05:9f:36:81: c0:76:e8:0f:79:ef:79:22:d7:f1:11:c2:9d:f1:67: 35:d8:d0:91:0d:bf:cb:7b:ab:0a:87:fa:97:ab:0d: cd:c7:d5:5c:09:47:5e:37:77:3e:05:05:57:e5:15: 73:28:08:d9:88:af:67:89:eb:3b:e8:a8:df:c6:49: b1:36:fe:23:bf:37:a4:fe:05:f5:81:2f:e5:ea:8b: fa:aa:fd:fb:54:28:c9:89:24:82:21:28:b4:cd:de: ab:0d:46:e8:f3:25:e3:27:66:09:59:fd:97:15:5e: fc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:09:56:6A:48:BA:B7:22:D8:2C:A3:3F:99:43:04:B7:6C:1E:01:05 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530643a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee0d::/48 Signature Algorithm: sha256WithRSAEncryption 5d:3f:9c:3d:e7:16:18:02:5b:2d:53:68:cd:23:1f:cc:24:6d: 7b:a1:77:10:0b:2d:62:05:6f:45:bd:2f:cc:2b:4f:ed:1d:d2: 36:af:73:8e:6a:88:29:22:9c:fb:35:d6:40:58:af:2b:6a:b7: 0e:ff:fa:b2:69:27:33:62:14:b0:1f:c6:10:16:10:3c:86:28: a9:3b:56:e0:05:cb:1c:6d:03:ad:13:9e:c2:33:54:6e:78:a0: 43:c0:3c:2c:3f:d1:2b:50:83:22:e9:1b:43:10:64:fa:52:d7: b3:92:31:f3:5f:62:38:2f:6c:d4:4e:f8:c8:a0:fd:53:5a:cc: ee:79:63:94:2c:e2:5c:e7:66:e6:c6:a7:31:74:78:33:7f:97: eb:84:1a:6d:06:d6:50:da:3c:53:0c:06:83:30:59:dc:3c:be: 83:36:c0:f3:ae:9b:2d:af:72:3e:ad:27:44:f1:4d:37:fa:22: 7d:91:7b:c8:32:c7:f2:68:50:48:3e:68:6b:0f:92:9c:5c:50: 4c:78:15:e1:9c:89:6b:6b:ac:fe:aa:bc:9a:ac:1b:98:a5:6f: 32:00:05:e3:6f:d4:e0:79:f0:d8:bd:90:4e:0c:55:a4:25:91: e3:ca:64:7e:00:a4:48:7d:52:a0:48:a3:96:be:fc:3f:3c:bc: 45:eb:20:37 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUPA5X9BakUDgsAy14Iw2lJezrbT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDcyMzQxMzBaFw0yNjAzMDYyMzQ2MzBaMDMxMTAvBgNV BAMTKDQzMDk1NjZBNDhCQUI3MjJEODJDQTMzRjk5NDMwNEI3NkMxRTAxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD370KfmDutCtacayOdeP8wZ79T eAstU68kYjGSG581hBUVlPm9ciDBTOhts46TPu7/NZ0bcz5Tc6IVtdgbxwFFjo2M gHQzjrpB7E8cB6ZkiIpOBuPUwtXWcr68cCFh2bznR1Pqv58SKDg6ioZt4yif5ZMx 7/rnbJxi6QpXONMoP5cvHG37ddiiYkEZRedUObH1BZ82gcB26A9573ki1/ERwp3x ZzXY0JENv8t7qwqH+perDc3H1VwJR143dz4FBVflFXMoCNmIr2eJ6zvoqN/GSbE2 /iO/N6T+BfWBL+Xqi/qq/ftUKMmJJIIhKLTN3qsNRujzJeMnZglZ/ZcVXvxxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUQwlWaki6tyLYLKM/mUMEt2weAQUwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4NMA0GCSqGSIb3DQEBCwUAA4IBAQBd P5w95xYYAlstU2jNIx/MJG17oXcQCy1iBW9FvS/MK0/tHdI2r3OOaogpIpz7NdZA WK8rarcO//qyaSczYhSwH8YQFhA8hiipO1bgBcscbQOtE57CM1RueKBDwDwsP9Er UIMi6RtDEGT6UtezkjHzX2I4L2zUTvjIoP1TWszueWOULOJc52bmxqcxdHgzf5fr hBptBtZQ2jxTDAaDMFncPL6DNsDzrpstr3I+rSdE8U03+iJ9kXvIMsfyaFBIPmhr D5KcXFBMeBXhnIlra6z+qryarBuYpW8yAAXjb9TgefDYvZBODFWkJZHjymR+AKRI fVKgSKOWvvw/PLxF6yA3 -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:23 2025 by rpki-client