$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20343031333836.roa File: 326131343a373538313a323030303a3a2f34302d3438203d3e20343031333836.roa (raw, json) Hash identifier: pi4F6jgMqqwUP1FTiOnfocpEw1DljOaDr1vx1pIBms8= Subject key identifier: 8E:E8:4A:78:98:CA:43:C6:62:9A:F5:1E:2F:56:7C:A3:27:E5:BA:EE Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 2F7FC7F288E8CB64CC2725FB96E638AB0FE892D2 Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20343031333836.roa Signing time: Thu 29 May 2025 15:41:42 +0000 ROA not before: Thu 29 May 2025 15:36:42 +0000 ROA not after: Thu 28 May 2026 15:41:42 +0000 asID: 401386 IP address blocks: 2a14:7581:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 08:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:7f:c7:f2:88:e8:cb:64:cc:27:25:fb:96:e6:38:ab:0f:e8:92:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: May 29 15:36:42 2025 GMT Not After : May 28 15:41:42 2026 GMT Subject: CN=8EE84A7898CA43C6629AF51E2F567CA327E5BAEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:27:c1:f1:9a:1f:0e:8d:bc:74:c3:55:bf:9a: 5e:84:83:4a:b9:4a:ac:79:80:da:f4:5d:e4:38:13: ae:b4:7c:45:7b:03:b3:c6:83:3e:74:e4:03:c2:09: cd:9c:fc:79:d3:b7:e2:00:79:7b:c8:81:6c:06:83: 6f:63:80:ed:eb:d3:50:cc:6e:d4:b6:c2:71:e1:84: de:6b:b3:0a:79:a1:b9:63:ff:65:1f:63:7a:bf:40: e9:b3:06:3c:da:08:d7:28:24:63:8e:74:ce:49:d0: 46:85:cd:39:12:a1:23:26:9c:30:fe:68:5c:e8:17: 05:66:d0:dc:6d:3d:76:47:6c:4b:56:7a:ba:ae:79: 5b:e6:eb:36:31:21:0a:57:b3:3f:ec:78:f3:f5:0f: 9f:7a:67:ff:25:1c:46:a9:9a:4a:ba:ad:7e:33:27: 72:60:7b:41:bc:14:82:7a:a6:a6:1c:e5:4d:dd:93: 79:09:d2:7e:d2:f4:b8:79:73:6c:bd:e2:fa:31:20: 7f:de:72:89:4d:50:e4:44:8d:2e:05:a8:65:f6:8a: ef:ab:c6:23:4f:5e:64:c3:e2:16:34:d2:9f:fd:92: 9f:64:a9:06:e0:c6:40:c1:cc:b2:16:bf:17:f4:b6: 4c:0a:21:bc:83:17:fb:ae:cd:8e:24:10:29:fd:e8: 65:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E8:4A:78:98:CA:43:C6:62:9A:F5:1E:2F:56:7C:A3:27:E5:BA:EE X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/40 Signature Algorithm: sha256WithRSAEncryption 84:1b:93:eb:06:7c:3e:68:b0:56:11:c2:55:fe:1e:22:49:f3: be:84:7a:8b:59:a7:01:32:25:48:02:ad:60:f6:0e:f1:99:3b: 40:8b:b6:4f:8c:9f:bc:a1:4b:01:c8:88:04:72:f6:34:47:92: ca:34:13:3c:db:0e:12:4c:9e:be:40:a3:79:33:78:cb:9c:4f: ab:24:e2:39:5e:59:7c:b8:5a:39:ed:ff:54:c5:0f:87:8d:6b: fd:4e:e2:0b:bc:bc:07:77:a8:86:63:cf:25:ff:38:2a:9c:62: 12:50:11:01:70:1d:7e:2f:8a:80:59:5f:8c:d6:8b:6c:d9:57: db:69:b1:1e:c8:78:6b:c4:31:cf:06:59:79:80:db:77:5c:1a: 76:7f:ac:37:5c:26:7e:34:c3:f4:70:53:a2:70:44:15:92:04: 0b:c7:87:66:3f:df:14:c3:b4:d0:16:c6:71:5a:a8:16:7f:3e: 19:23:af:32:b8:7c:4a:1d:7a:68:b0:66:96:a5:79:33:bc:a5: ce:27:86:3b:cb:bd:ac:10:9b:1e:1e:62:c8:9c:2a:63:6f:7a: c7:b1:ba:ea:48:7f:29:f4:45:4e:3a:9a:a0:b8:ec:37:e7:8d: 06:e4:89:c8:29:cd:bc:69:c2:ed:d5:fb:72:77:f1:f9:45:56: b5:ba:da:41 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUL3/H8ojoy2TMJyX7luY4qw/oktIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA1MjkxNTM2NDJaFw0yNjA1MjgxNTQxNDJaMDMxMTAvBgNV BAMTKDhFRTg0QTc4OThDQTQzQzY2MjlBRjUxRTJGNTY3Q0EzMjdFNUJBRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpJ8Hxmh8Ojbx0w1W/ml6Eg0q5 Sqx5gNr0XeQ4E660fEV7A7PGgz505APCCc2c/HnTt+IAeXvIgWwGg29jgO3r01DM btS2wnHhhN5rswp5oblj/2UfY3q/QOmzBjzaCNcoJGOOdM5J0EaFzTkSoSMmnDD+ aFzoFwVm0NxtPXZHbEtWerqueVvm6zYxIQpXsz/sePP1D596Z/8lHEapmkq6rX4z J3Jge0G8FIJ6pqYc5U3dk3kJ0n7S9Lh5c2y94voxIH/ecolNUOREjS4FqGX2iu+r xiNPXmTD4hY00p/9kp9kqQbgxkDBzLIWvxf0tkwKIbyDF/uuzY4kECn96GUlAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUjuhKeJjKQ8ZimvUeL1Z8oyfluu4wHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzQz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSAwDQYJKoZIhvcNAQELBQADggEBAIQb k+sGfD5osFYRwlX+HiJJ876EeotZpwEyJUgCrWD2DvGZO0CLtk+Mn7yhSwHIiARy 9jRHkso0EzzbDhJMnr5Ao3kzeMucT6sk4jleWXy4Wjnt/1TFD4eNa/1O4gu8vAd3 qIZjzyX/OCqcYhJQEQFwHX4vioBZX4zWi2zZV9tpsR7IeGvEMc8GWXmA23dcGnZ/ rDdcJn40w/RwU6JwRBWSBAvHh2Y/3xTDtNAWxnFaqBZ/PhkjrzK4fEodemiwZpal eTO8pc4nhjvLvawQmx4eYsicKmNvesexuupIfyn0RU46mqC47DfnjQbkicgpzbxp wu3V+3J38flFVrW62kE= -----END CERTIFICATE-----Generated at Fri Jun 6 23:02:20 2025 by rpki-client