$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa File: 326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa (raw, json) Hash identifier: 3FEpMGqSslsyBx/ibWdzUhoap+STdHDa50g6PVOdZds= Subject key identifier: C3:23:C4:C3:D5:55:67:09:DC:15:54:95:16:5F:10:71:19:7E:10:DC Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959 Certificate serial: 0BB044D13F4742C90881753B07B0B9DAF32A286A Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa Signing time: Wed 16 Apr 2025 19:34:02 +0000 ROA not before: Wed 16 Apr 2025 19:29:02 +0000 ROA not after: Wed 15 Apr 2026 19:34:02 +0000 asID: 214915 IP address blocks: 2a06:1283:d000::/38 maxlen: 38 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 12:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:b0:44:d1:3f:47:42:c9:08:81:75:3b:07:b0:b9:da:f3:2a:28:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959 Validity Not Before: Apr 16 19:29:02 2025 GMT Not After : Apr 15 19:34:02 2026 GMT Subject: CN=C323C4C3D5556709DC155495165F1071197E10DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:fa:2a:ab:7b:08:68:a2:4a:72:1e:ed:8f: ac:7d:1e:6d:13:16:37:76:a5:07:f9:20:21:50:b3: 38:e5:52:ce:87:2e:b3:15:5a:4d:27:10:0f:3f:41: 43:b3:5d:eb:a2:81:2d:04:85:ba:2a:46:6a:91:3c: 69:cf:fd:55:19:07:1d:44:9e:9f:17:2b:d9:4e:c3: 07:b5:c4:67:08:3b:c8:05:15:66:2c:1c:fb:0b:17: f1:ce:7d:11:1c:87:a1:30:00:8d:1a:9a:cd:61:5f: 3c:c7:48:cd:a4:5a:f5:a6:73:b1:7a:0d:35:a2:fe: 96:d2:98:60:53:cf:5a:41:1c:55:10:fe:32:c0:cf: 30:51:5d:d8:42:bf:90:25:56:c0:28:66:70:88:f2: 6a:39:df:8f:40:97:6f:dc:e3:1b:e8:18:c0:74:b5: 7e:b2:da:26:82:c9:a5:a9:19:4f:46:48:85:0d:c9: 12:a9:3c:0d:f1:e8:f0:09:bf:ce:40:57:37:9f:c8: 8c:04:a3:75:6c:ce:6c:14:f6:33:ad:2e:b6:b2:0a: 74:27:4e:a9:fb:58:95:8c:3d:ae:bc:83:b2:4a:28: 46:89:4c:19:9d:04:7e:f3:e2:67:6a:f2:fc:3b:eb: a4:53:40:9e:1a:03:86:fa:c9:9f:40:1b:88:b0:52: 6a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:23:C4:C3:D5:55:67:09:DC:15:54:95:16:5F:10:71:19:7E:10:DC X509v3 Authority Key Identifier: keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:d000::/38 Signature Algorithm: sha256WithRSAEncryption 97:f7:ab:ca:c2:99:60:74:00:53:9c:cd:68:71:18:fc:92:56: 97:d7:7c:5c:6e:75:54:1f:3e:b8:b8:f3:49:90:08:fd:dc:cd: 95:21:ce:2a:7b:bb:66:f7:ed:70:32:34:5f:bf:3d:81:8c:74: f1:12:d0:04:2f:d2:16:7a:53:d5:a1:42:02:50:04:c5:39:6f: 53:98:2e:40:79:e3:43:5f:e0:f2:89:8b:47:76:a9:82:ac:8a: 9d:7c:f4:02:60:a2:d0:63:9a:57:fc:4e:41:af:a9:5a:ad:b2: 50:24:03:89:6f:ac:10:33:3b:b9:26:95:b3:b2:a6:b1:c1:2e: 80:40:2b:cb:ad:75:c8:ea:3c:78:e7:41:72:5d:b4:f3:4f:47: 43:a5:6e:37:50:b2:e5:ef:72:eb:0e:71:81:f9:74:3f:b5:6b: 3c:f3:d4:48:b7:97:d0:e9:79:4a:fd:ca:ae:46:18:35:e5:02: a5:2c:8a:32:91:09:f3:bd:e1:2f:5e:93:b3:78:c9:86:19:59: 5b:fd:6d:f7:1e:e5:6f:c9:5d:fd:97:3e:dd:8a:aa:95:c3:90: 88:1a:23:81:f5:0d:a4:fc:f9:97:3a:ff:4b:d3:58:c0:b0:34: ca:25:8e:4e:34:01:f2:90:03:79:29:1d:65:ec:66:ed:c0:e0: cb:e6:66:9d -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUC7BE0T9HQskIgXU7B7C52vMqKGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0 RjE5MDk1OTAeFw0yNTA0MTYxOTI5MDJaFw0yNjA0MTUxOTM0MDJaMDMxMTAvBgNV BAMTKEMzMjNDNEMzRDU1NTY3MDlEQzE1NTQ5NTE2NUYxMDcxMTk3RTEwREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvQPoqq3sIaKJKch7tj6x9Hm0T Fjd2pQf5ICFQszjlUs6HLrMVWk0nEA8/QUOzXeuigS0EhboqRmqRPGnP/VUZBx1E np8XK9lOwwe1xGcIO8gFFWYsHPsLF/HOfREch6EwAI0ams1hXzzHSM2kWvWmc7F6 DTWi/pbSmGBTz1pBHFUQ/jLAzzBRXdhCv5AlVsAoZnCI8mo5349Al2/c4xvoGMB0 tX6y2iaCyaWpGU9GSIUNyRKpPA3x6PAJv85AVzefyIwEo3VszmwU9jOtLrayCnQn Tqn7WJWMPa68g7JKKEaJTBmdBH7z4mdq8vw766RTQJ4aA4b6yZ9AG4iwUmp5AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUwyPEw9VVZwncFVSVFl8QcRl+ENwwHwYDVR0j BBgwFoAUIFlb260Jx9YEICMFhU0d8U8ZCVkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzEvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5MDk1OS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvMjA1OTVCREJBRDA5QzdENjA0MjAyMzA1ODU0RDFERjE0RjE5 MDk1OS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzEvMzI2MTMwMzYzYTMxMzIzODMz M2E2NDMwMzAzMDNhM2EyZjMzMzgyZDMzMzgyMDNkM2UyMDMyMzEzNDM5MzEzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAioGEoPQMA0GCSqGSIb3DQEBCwUAA4IBAQCX96vKwplgdABTnM1o cRj8klaX13xcbnVUHz64uPNJkAj93M2VIc4qe7tm9+1wMjRfvz2BjHTxEtAEL9IW elPVoUICUATFOW9TmC5AeeNDX+DyiYtHdqmCrIqdfPQCYKLQY5pX/E5Br6larbJQ JAOJb6wQMzu5JpWzsqaxwS6AQCvLrXXI6jx450FyXbTzT0dDpW43ULLl73LrDnGB +XQ/tWs889RIt5fQ6XlK/cquRhg15QKlLIoykQnzveEvXpOzeMmGGVlb/W33HuVv yV39lz7diqqVw5CIGiOB9Q2k/PmXOv9L01jAsDTKJY5ONAHykAN5KR1l7GbtwODL 5mad -----END CERTIFICATE-----Generated at Mon Apr 28 23:13:51 2025 by rpki-client