$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530653a3a2f34382d3438203d3e20323135393536.roa File: 326131343a373538303a656530653a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: t1I1YGclSpS6Mc1lFLIUUNxsXHlp5Dw9WA27iG8gymY= Subject key identifier: 1E:83:19:17:21:3B:53:58:10:99:92:FA:55:D1:A9:64:6F:BD:97:39 Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 2EB29A01385AB00A9456575C27D07BA9A09FFA9F Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530653a3a2f34382d3438203d3e20323135393536.roa Signing time: Fri 07 Mar 2025 23:46:51 +0000 ROA not before: Fri 07 Mar 2025 23:41:51 +0000 ROA not after: Fri 06 Mar 2026 23:46:51 +0000 asID: 215956 IP address blocks: 2a14:7580:ee0e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 14:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b2:9a:01:38:5a:b0:0a:94:56:57:5c:27:d0:7b:a9:a0:9f:fa:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: Mar 7 23:41:51 2025 GMT Not After : Mar 6 23:46:51 2026 GMT Subject: CN=1E831917213B5358109992FA55D1A9646FBD9739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:27:38:d4:ee:78:db:40:08:3b:94:08:7f:8c: 79:89:39:53:fd:03:26:57:33:90:93:96:ee:66:a1: d8:cc:03:c2:20:7a:2f:4e:0d:3b:2f:1d:3e:38:33: 5f:4f:55:53:10:59:1f:8b:d2:97:24:f2:ec:10:77: 54:77:16:20:4f:c9:ef:b3:37:f3:42:9b:03:72:f3: 86:a9:4b:c3:37:5d:76:4d:b4:61:18:dc:a6:2e:02: 9a:b0:fd:33:d0:6b:ea:af:0a:a8:87:3c:34:21:52: a3:13:52:80:ef:e8:c3:a9:1c:d8:01:e7:9f:42:45: 63:f5:ec:57:e1:a5:a6:48:48:5a:9c:15:dc:1d:88: ed:a8:74:1e:32:3e:21:ea:ce:a6:a9:b2:5a:b6:28: 34:c3:3b:3f:c2:10:37:ee:1b:c0:e0:1f:de:02:e0: be:01:a4:9a:2c:50:ee:3a:6f:b1:87:26:a4:66:0f: 88:1c:66:0f:07:da:a5:4c:42:83:d8:da:29:6b:59: a6:67:61:5c:91:73:00:52:18:30:8a:33:6e:8f:0a: 56:82:24:b8:3b:28:a3:b6:af:8c:08:fc:95:99:5c: f6:e2:bb:ef:7e:0a:32:44:5f:7a:3b:ed:af:12:75: d6:d3:d1:50:a8:f0:11:e5:98:d6:63:e8:8d:a9:80: 17:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:83:19:17:21:3B:53:58:10:99:92:FA:55:D1:A9:64:6F:BD:97:39 X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656530653a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ee0e::/48 Signature Algorithm: sha256WithRSAEncryption 79:1e:c4:fa:4c:db:36:3c:59:59:5a:f2:fa:cd:ec:fa:0f:a4: 5c:c7:22:ea:d7:32:fa:0c:35:1a:0d:a3:9b:33:ee:24:30:ab: 96:70:fa:c2:dd:a3:db:a0:5b:52:15:e8:99:8f:10:97:61:9f: 5f:c3:ad:ab:95:2a:fb:08:eb:ab:bf:f0:3f:a0:6c:1a:78:7d: 66:1e:57:8c:ff:08:54:bd:3a:35:9d:4a:17:5a:e5:12:ae:2e: f6:f0:7b:7b:0e:49:dc:3c:fb:85:26:72:56:96:13:af:7a:bd: d1:64:68:d2:32:ad:91:78:32:29:5f:0e:a6:50:00:91:9d:31: 0f:76:9f:00:14:4f:6b:4f:89:2a:0b:e2:78:2e:82:88:2e:33: 33:a7:ef:3c:43:64:af:a2:52:40:12:34:c4:12:aa:6d:6a:05: 1d:a0:99:7b:09:c7:cd:74:79:93:06:d9:d9:40:ea:22:20:b9: 69:3a:ef:75:d8:4d:fe:82:bc:b8:8c:3e:39:63:1e:94:79:6f: 63:d0:58:54:c4:f0:b8:53:20:de:f1:42:34:1e:73:90:97:f6: c0:04:3a:a0:da:e1:9f:31:2a:22:bb:ba:dd:1b:13:97:3a:82: b5:8a:30:1b:ae:dc:c2:fa:38:28:cc:9c:ad:8a:ae:08:d0:51: e1:b1:76:4a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULrKaAThasAqUVldcJ9B7qaCf+p8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNTAzMDcyMzQxNTFaFw0yNjAzMDYyMzQ2NTFaMDMxMTAvBgNV BAMTKDFFODMxOTE3MjEzQjUzNTgxMDk5OTJGQTU1RDFBOTY0NkZCRDk3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqJzjU7njbQAg7lAh/jHmJOVP9 AyZXM5CTlu5modjMA8Igei9ODTsvHT44M19PVVMQWR+L0pck8uwQd1R3FiBPye+z N/NCmwNy84apS8M3XXZNtGEY3KYuApqw/TPQa+qvCqiHPDQhUqMTUoDv6MOpHNgB 559CRWP17FfhpaZISFqcFdwdiO2odB4yPiHqzqapslq2KDTDOz/CEDfuG8DgH94C 4L4BpJosUO46b7GHJqRmD4gcZg8H2qVMQoPY2ilrWaZnYVyRcwBSGDCKM26PClaC JLg7KKO2r4wI/JWZXPbiu+9+CjJEX3o77a8SddbT0VCo8BHlmNZj6I2pgBcrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUHoMZFyE7U1gQmZL6VdGpZG+9lzkwHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjUzMDY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gO4OMA0GCSqGSIb3DQEBCwUAA4IBAQB5 HsT6TNs2PFlZWvL6zez6D6RcxyLq1zL6DDUaDaObM+4kMKuWcPrC3aPboFtSFeiZ jxCXYZ9fw62rlSr7COurv/A/oGwaeH1mHleM/whUvTo1nUoXWuUSri728Ht7Dknc PPuFJnJWlhOver3RZGjSMq2ReDIpXw6mUACRnTEPdp8AFE9rT4kqC+J4LoKILjMz p+88Q2SvolJAEjTEEqptagUdoJl7CcfNdHmTBtnZQOoiILlpOu912E3+gry4jD45 Yx6UeW9j0FhUxPC4UyDe8UI0HnOQl/bABDqg2uGfMSoiu7rdGxOXOoK1ijAbrtzC +jgozJytiq4I0FHhsXZK -----END CERTIFICATE-----Generated at Sat Apr 5 06:24:05 2025 by rpki-client