$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa File: 326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa (raw, json) Hash identifier: XxS9zprV7IX1JjrBQQ+JptkD2bW89WKl615fH9J1hzc= Subject key identifier: AA:B9:DA:54:DA:41:F4:F8:98:20:79:5F:CF:FC:F7:2C:A2:7A:56:56 Certificate issuer: /CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Certificate serial: 7DE7CC9AD0A67E3820F4FC12FE8FCFFADE1D545C Authority key identifier: D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa Signing time: Fri 11 Apr 2025 06:49:37 +0000 ROA not before: Fri 11 Apr 2025 06:44:37 +0000 ROA not after: Fri 10 Apr 2026 06:49:37 +0000 asID: 203843 IP address blocks: 2a14:7580:901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 28 Apr 2025 05:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e7:cc:9a:d0:a6:7e:38:20:f4:fc:12:fe:8f:cf:fa:de:1d:54:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Validity Not Before: Apr 11 06:44:37 2025 GMT Not After : Apr 10 06:49:37 2026 GMT Subject: CN=AAB9DA54DA41F4F89820795FCFFCF72CA27A5656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9a:28:14:c1:b6:28:41:6d:38:bc:1f:a1:93: b5:95:9b:c3:3f:ab:4a:57:78:70:94:1a:10:19:60: 32:b7:cd:a9:35:9c:89:06:ec:58:de:b4:28:f4:db: 82:1f:aa:b8:3a:14:05:e4:d0:1c:37:91:a7:e7:db: 0b:2f:0e:87:82:26:52:8e:70:2e:38:d8:cb:1a:1f: 96:bb:f5:d8:5b:1a:f1:af:0f:f6:a8:79:9c:b1:8c: a7:4d:a4:29:fa:1b:28:57:ea:b6:e1:5c:cc:52:ed: 20:d4:b7:7f:c7:3d:0c:50:8b:a4:4c:dd:5d:7d:d5: af:b0:17:84:b9:69:37:95:3f:85:e6:16:7b:96:64: a1:e9:56:b8:2f:66:84:14:15:3c:a6:75:64:13:41: 57:7e:86:74:8d:4b:d1:76:0e:3a:63:db:a5:fa:b9: 8c:63:93:75:e2:0e:74:b5:9b:8e:31:d5:e2:38:9c: 45:ba:2b:fc:83:84:5f:fd:8d:28:50:97:19:65:4d: f6:86:2b:ee:7a:4d:ad:03:7b:fd:db:33:d3:3c:8f: 98:6d:2a:7d:42:1f:e9:85:94:02:d5:f8:fe:dc:8e: 60:82:e8:8f:2d:ef:2b:bd:de:48:d2:b3:5f:08:f7: 46:d1:d2:de:71:13:5c:70:6b:32:3f:9c:58:9a:01: 8c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B9:DA:54:DA:41:F4:F8:98:20:79:5F:CF:FC:F7:2C:A2:7A:56:56 X509v3 Authority Key Identifier: keyid:D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:901::/48 Signature Algorithm: sha256WithRSAEncryption 2c:2d:9b:0b:41:00:31:9e:3d:22:c6:ab:ee:64:a7:70:28:15: d1:02:c3:e5:82:6e:ea:27:aa:3d:f9:c4:2f:cb:8f:cc:cb:70: 54:fb:16:81:05:ac:6f:4f:d7:75:74:75:2e:af:75:84:f9:7c: ed:2c:46:c3:1a:63:9b:ab:ef:a0:26:d3:2e:3f:cd:c1:e9:fd: dc:f7:98:c2:70:24:a5:37:71:fa:7a:78:1d:0a:98:e2:a2:d0: a7:32:77:b5:1a:2f:41:69:bc:e9:37:b6:a5:14:d3:f9:9d:53: 02:fd:09:44:d6:37:8f:10:c6:db:6c:5d:d8:70:6a:d5:bf:2a: 7c:26:a4:c9:25:10:26:1a:7f:35:7d:a2:ba:14:53:d5:41:54: 3c:84:a0:ff:27:5e:6d:9d:b2:81:0c:9a:75:10:ee:4a:eb:a2: 3e:4d:2d:7a:9d:b6:d7:ef:24:f5:bc:d5:5c:81:b0:76:7f:e5: f2:1a:74:f4:02:b5:52:df:59:97:d5:cb:5d:17:33:6e:34:d3: 59:bf:c4:23:2f:7c:af:d2:0d:40:05:0c:04:99:1c:e7:8f:d9: 39:b4:da:f0:c3:30:fa:d2:4e:1a:cd:f6:bd:7a:44:0f:64:b9: e1:f4:f0:43:22:bd:64:49:5d:09:07:db:18:ec:6d:f8:4a:5b: 15:22:7a:d7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUfefMmtCmfjgg9PwS/o/P+t4dVFwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRB MEJBOEQ0QTAeFw0yNTA0MTEwNjQ0MzdaFw0yNjA0MTAwNjQ5MzdaMDMxMTAvBgNV BAMTKEFBQjlEQTU0REE0MUY0Rjg5ODIwNzk1RkNGRkNGNzJDQTI3QTU2NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCumigUwbYoQW04vB+hk7WVm8M/ q0pXeHCUGhAZYDK3zak1nIkG7FjetCj024Ifqrg6FAXk0Bw3kafn2wsvDoeCJlKO cC442MsaH5a79dhbGvGvD/aoeZyxjKdNpCn6GyhX6rbhXMxS7SDUt3/HPQxQi6RM 3V191a+wF4S5aTeVP4XmFnuWZKHpVrgvZoQUFTymdWQTQVd+hnSNS9F2Djpj26X6 uYxjk3XiDnS1m44x1eI4nEW6K/yDhF/9jShQlxllTfaGK+56Ta0De/3bM9M8j5ht Kn1CH+mFlALV+P7cjmCC6I8t7yu93kjSs18I90bR0t5xE1xwazI/nFiaAYxrAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUqrnaVNpB9PiYIHlfz/z3LKJ6VlYwHwYDVR0j BBgwFoAU1hWry6UBVWSt6bRz1k8eNKC6jUowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTNmNjg1NjEtMGE3NC00Y2NhLWJmOGYtMTJmYWFhZmM4 ZWI4LzMvRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRBMEJBOEQ0QS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9ENjE1QUJDQkE1MDE1NTY0QURFOUI0NzNE NjRGMUUzNEEwQkE4RDRBLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xM2Y2ODU2MS0wYTc0LTRjY2EtYmY4Zi0xMmZhYWFmYzhlYjgvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz MzM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYAJATANBgkqhkiG9w0BAQsFAAOCAQEALC2b C0EAMZ49Isar7mSncCgV0QLD5YJu6ieqPfnEL8uPzMtwVPsWgQWsb0/XdXR1Lq91 hPl87SxGwxpjm6vvoCbTLj/Nwen93PeYwnAkpTdx+np4HQqY4qLQpzJ3tRovQWm8 6Te2pRTT+Z1TAv0JRNY3jxDG22xd2HBq1b8qfCakySUQJhp/NX2iuhRT1UFUPISg /ydebZ2ygQyadRDuSuuiPk0tep221+8k9bzVXIGwdn/l8hp09AK1Ut9Zl9XLXRcz bjTTWb/EIy98r9INQAUMBJkc54/ZObTa8MMw+tJOGs32vXpED2S54fTwQyK9ZEld CQfbGOxt+EpbFSJ61w== -----END CERTIFICATE-----Generated at Sun Apr 27 20:58:18 2025 by rpki-client