$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323136333234.roa File: 326131343a373538313a323030303a3a2f34302d3438203d3e20323136333234.roa (raw, json) Hash identifier: bje5aLLUqgAL8DyPjKPS1MwDhANSqShDo64yB6sarZo= Subject key identifier: CE:26:FA:53:D0:CA:0A:C9:CF:F0:48:4A:73:59:70:CA:7F:8F:89:9A Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 6F9491EFB5AE47F1CE08300E40196E38AB1EBB9A Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323136333234.roa Signing time: Thu 29 May 2025 15:42:03 +0000 ROA not before: Thu 29 May 2025 15:37:03 +0000 ROA not after: Thu 28 May 2026 15:42:03 +0000 asID: 216324 IP address blocks: 2a14:7581:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 20:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:94:91:ef:b5:ae:47:f1:ce:08:30:0e:40:19:6e:38:ab:1e:bb:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: May 29 15:37:03 2025 GMT Not After : May 28 15:42:03 2026 GMT Subject: CN=CE26FA53D0CA0AC9CFF0484A735970CA7F8F899A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5f:76:ff:8c:ab:29:47:42:3b:c4:f3:e7:88: 87:59:84:cd:85:87:99:90:1a:c2:d0:1b:e8:d4:02: d3:f4:c5:0d:ea:32:65:43:23:26:27:65:8e:45:a0: e1:52:bf:9f:77:dd:91:25:b4:98:5d:26:5c:f5:c4: cb:9f:30:74:a9:05:93:ef:0a:51:f4:74:99:79:4a: ea:a8:d5:96:75:eb:69:37:d7:a9:ac:06:29:b8:96: 22:6b:a4:02:4a:d0:0d:35:96:9a:5a:62:cb:b0:ed: 70:de:6a:de:8e:bc:60:15:bb:aa:74:ee:a6:53:43: 70:6d:94:25:80:c8:47:c6:d1:24:ab:b4:27:b1:3d: 12:12:f1:a7:0c:35:2d:e1:a7:41:c4:db:f1:fe:0b: 07:22:03:9a:08:61:7a:b3:89:58:aa:1a:33:f7:de: f2:0b:7a:44:7a:6d:3e:ff:98:0e:ee:83:f3:26:46: 4e:1b:2d:2c:08:f2:f4:e7:9c:17:8c:22:19:66:c0: 07:46:a8:54:cb:f9:95:d4:cd:24:0b:93:d3:8d:61: dc:67:f3:d9:67:ef:2a:b9:db:ea:4e:e1:99:47:7a: 04:ce:f4:61:eb:39:90:9e:8f:48:a8:55:0c:e4:b5: 07:4a:c9:10:bf:2f:f1:b4:c2:9c:9f:a6:1d:cd:16: 18:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:26:FA:53:D0:CA:0A:C9:CF:F0:48:4A:73:59:70:CA:7F:8F:89:9A X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/40 Signature Algorithm: sha256WithRSAEncryption 70:be:e7:b2:36:e5:26:d0:38:c5:65:98:67:8f:77:d6:29:ca: 1e:5a:55:40:89:e8:0b:69:74:0d:e0:8d:1a:b3:70:33:6f:93: a2:dd:98:9f:98:ce:46:cc:8a:ba:24:6c:33:a7:45:63:e5:74: c8:3e:73:13:6f:97:06:7c:98:ba:e5:c0:bd:07:ba:11:0d:c7: c8:48:b9:e1:78:f3:4c:50:d2:4d:1f:66:a8:8c:0a:49:57:c2: 31:42:af:8e:ec:3a:4e:61:78:bd:e0:b9:f6:3c:45:95:86:af: 64:86:b4:cc:24:96:02:dc:04:43:7f:f9:ae:d4:82:42:0f:ef: 55:6a:18:7c:d5:96:4e:05:86:4e:23:7f:ac:5c:f0:8c:f0:80: 4f:87:36:41:a4:0f:0e:0b:1d:68:c8:ce:5e:6c:ab:a4:f1:42: f6:de:fa:e1:f6:3d:be:6b:cb:bf:f5:9f:b0:79:a9:d3:18:dd: 6f:d8:73:87:d9:c7:31:e2:5f:a9:99:fb:16:c6:ae:c0:75:0d: a6:f4:31:cf:4a:64:58:ea:ff:40:fb:df:5e:25:e5:9b:d1:75: cd:63:b6:04:e2:66:5a:f0:fe:53:8a:df:00:55:ba:c5:b0:3b: 5f:83:52:23:f1:30:06:59:36:6a:9b:0c:b8:94:d9:d1:bf:05: 86:b6:b9:57 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUb5SR77WuR/HOCDAOQBluOKseu5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA1MjkxNTM3MDNaFw0yNjA1MjgxNTQyMDNaMDMxMTAvBgNV BAMTKENFMjZGQTUzRDBDQTBBQzlDRkYwNDg0QTczNTk3MENBN0Y4Rjg5OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjX3b/jKspR0I7xPPniIdZhM2F h5mQGsLQG+jUAtP0xQ3qMmVDIyYnZY5FoOFSv5933ZEltJhdJlz1xMufMHSpBZPv ClH0dJl5Suqo1ZZ162k316msBim4liJrpAJK0A01lppaYsuw7XDeat6OvGAVu6p0 7qZTQ3BtlCWAyEfG0SSrtCexPRIS8acMNS3hp0HE2/H+CwciA5oIYXqziViqGjP3 3vILekR6bT7/mA7ug/MmRk4bLSwI8vTnnBeMIhlmwAdGqFTL+ZXUzSQLk9ONYdxn 89ln7yq52+pO4ZlHegTO9GHrOZCej0ioVQzktQdKyRC/L/G0wpyfph3NFhhhAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUzib6U9DKCsnP8EhKc1lwyn+PiZowHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM2MzMzMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSAwDQYJKoZIhvcNAQELBQADggEBAHC+ 57I25SbQOMVlmGePd9Ypyh5aVUCJ6AtpdA3gjRqzcDNvk6LdmJ+YzkbMirokbDOn RWPldMg+cxNvlwZ8mLrlwL0HuhENx8hIueF480xQ0k0fZqiMCklXwjFCr47sOk5h eL3gufY8RZWGr2SGtMwklgLcBEN/+a7UgkIP71VqGHzVlk4Fhk4jf6xc8IzwgE+H NkGkDw4LHWjIzl5sq6TxQvbe+uH2Pb5ry7/1n7B5qdMY3W/Yc4fZxzHiX6mZ+xbG rsB1Dab0Mc9KZFjq/0D7314l5ZvRdc1jtgTiZlrw/lOK3wBVusWwO1+DUiPxMAZZ NmqbDLiU2dG/BYa2uVc= -----END CERTIFICATE-----Generated at Fri Jun 6 12:09:02 2025 by rpki-client