$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130353a646663333a666130303a3a2f34302d3438203d3e20323134323233.roa File: 326130353a646663333a666130303a3a2f34302d3438203d3e20323134323233.roa (raw, json) Hash identifier: oKPTnGA8ROGdyprRDMYxIzuPZ9mnuxpmS6fG6+oAo+g= Subject key identifier: 82:29:DB:4F:64:FC:A9:0A:45:FC:46:31:9D:F2:E0:B9:5B:4F:3B:12 Certificate issuer: /CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Certificate serial: 4601791915D25B0AEF3F639FDBDA78886B4A7C36 Authority key identifier: ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130353a646663333a666130303a3a2f34302d3438203d3e20323134323233.roa Signing time: Sat 31 May 2025 00:25:15 +0000 ROA not before: Sat 31 May 2025 00:20:15 +0000 ROA not after: Sat 30 May 2026 00:25:15 +0000 asID: 214223 IP address blocks: 2a05:dfc3:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 04:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:01:79:19:15:d2:5b:0a:ef:3f:63:9f:db:da:78:88:6b:4a:7c:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED0B8AE03D6250D59EF8E7BE556D94EB49415429 Validity Not Before: May 31 00:20:15 2025 GMT Not After : May 30 00:25:15 2026 GMT Subject: CN=8229DB4F64FCA90A45FC46319DF2E0B95B4F3B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:0a:ce:22:57:19:1a:07:bb:f4:c0:37:ff: e3:5b:7b:33:71:7f:e9:b6:de:60:70:90:38:9f:aa: 18:34:f4:3a:36:fe:78:6c:2e:67:df:c5:50:04:c3: cb:a5:93:38:10:87:f5:b0:4a:c8:e7:34:8e:fc:ed: f8:b8:05:cb:1d:1e:c0:da:d8:b9:f7:c9:7f:5b:b4: a3:25:73:1a:a8:c2:89:74:d2:d0:55:54:f6:96:13: 73:63:34:0a:51:f1:72:5c:73:da:f9:9f:ec:d0:24: ff:ca:dc:cf:21:be:18:83:17:8b:5c:a3:12:53:5b: 4e:61:21:cf:59:fe:32:48:53:2e:4a:9f:d2:68:0b: a4:3f:28:75:8a:f6:24:b6:50:dd:96:5b:55:a7:35: ce:0f:7b:2c:b2:28:30:c1:37:08:66:26:3a:5d:26: a0:ee:a3:18:eb:ac:cd:86:12:de:09:8c:85:6a:1c: 42:85:d3:6b:05:cc:78:cd:5e:84:57:18:92:56:23: 69:bd:d0:8a:b1:1b:9c:da:2f:bb:71:7d:90:24:a2: 5b:1a:6b:55:0e:0f:ff:61:59:f2:51:e6:c1:42:5c: a1:b9:6a:f0:29:d8:37:5e:8d:f3:94:99:d6:b4:98: 7b:2b:b0:20:02:30:99:2a:a5:05:89:06:c8:67:c8: 57:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:29:DB:4F:64:FC:A9:0A:45:FC:46:31:9D:F2:E0:B9:5B:4F:3B:12 X509v3 Authority Key Identifier: keyid:ED:0B:8A:E0:3D:62:50:D5:9E:F8:E7:BE:55:6D:94:EB:49:41:54:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/ED0B8AE03D6250D59EF8E7BE556D94EB49415429.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2f0d4b4e-9f74-4df4-bf5e-0929096dbe04/3/326130353a646663333a666130303a3a2f34302d3438203d3e20323134323233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 7e:eb:05:8b:6f:d8:d3:33:9b:29:4b:25:df:8b:f6:e7:88:23: 70:f3:b1:eb:77:b9:3c:33:31:72:33:4e:82:9d:81:e7:b3:5e: f3:c2:bd:0f:4d:33:bb:3c:c9:41:82:5e:06:bc:cc:36:cf:b9: 38:9b:be:09:6c:56:b3:9e:be:cb:3b:ab:3e:16:86:f7:d3:1c: 69:19:eb:a8:87:99:45:e6:ec:45:58:5d:b5:04:d8:a2:63:5f: b8:c8:f3:2f:f7:0d:90:77:2e:b3:29:05:13:3c:9d:5e:7f:77: ba:85:53:26:b2:fb:3b:10:07:e1:70:e8:29:76:49:f3:fa:db: d4:89:68:7c:b2:06:80:ff:46:62:0a:61:64:c8:c3:d3:fb:07: 51:54:74:38:e6:46:e2:d8:fd:f9:14:06:65:00:23:48:65:57: 47:e6:29:fb:b9:c6:08:d8:82:6d:64:e4:ed:ed:4f:91:df:a4: 34:2c:82:c5:ad:4f:1b:cb:4d:5f:46:98:e4:37:59:5a:44:2b: 8d:d5:b6:8f:82:33:a2:24:c0:d6:2a:ee:37:29:42:52:7b:06: 8e:84:1b:6f:56:1a:bc:b2:a8:65:fb:d9:51:f0:78:9e:58:89: c9:93:9a:df:aa:c9:d8:07:69:a8:a7:fc:6f:80:36:5e:82:da: 33:e2:ac:ae -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIURgF5GRXSWwrvP2Of29p4iGtKfDYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0 OTQxNTQyOTAeFw0yNTA1MzEwMDIwMTVaFw0yNjA1MzAwMDI1MTVaMDMxMTAvBgNV BAMTKDgyMjlEQjRGNjRGQ0E5MEE0NUZDNDYzMTlERjJFMEI5NUI0RjNCMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx9wrOIlcZGge79MA3/+NbezNx f+m23mBwkDifqhg09Do2/nhsLmffxVAEw8ulkzgQh/WwSsjnNI787fi4BcsdHsDa 2Ln3yX9btKMlcxqowol00tBVVPaWE3NjNApR8XJcc9r5n+zQJP/K3M8hvhiDF4tc oxJTW05hIc9Z/jJIUy5Kn9JoC6Q/KHWK9iS2UN2WW1WnNc4PeyyyKDDBNwhmJjpd JqDuoxjrrM2GEt4JjIVqHEKF02sFzHjNXoRXGJJWI2m90IqxG5zaL7txfZAkolsa a1UOD/9hWfJR5sFCXKG5avAp2DdejfOUmda0mHsrsCACMJkqpQWJBshnyFerAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUginbT2T8qQpF/EYxnfLguVtPOxIwHwYDVR0j BBgwFoAU7QuK4D1iUNWe+Oe+VW2U60lBVCkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmYwZDRiNGUtOWY3NC00ZGY0LWJmNWUtMDkyOTA5NmRi ZTA0LzMvRUQwQjhBRTAzRDYyNTBENTlFRjhFN0JFNTU2RDk0RUI0OTQxNTQyOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy9FRDBCOEFFMDNENjI1MEQ1OUVGOEU3QkU1 NTZEOTRFQjQ5NDE1NDI5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yZjBkNGI0ZS05Zjc0LTRkZjQtYmY1ZS0wOTI5MDk2ZGJlMDQvMy8zMjYxMzAz NTNhNjQ2NjYzMzMzYTY2NjEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM0MzIzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfw/owDQYJKoZIhvcNAQELBQADggEBAH7r BYtv2NMzmylLJd+L9ueII3Dzset3uTwzMXIzToKdgeezXvPCvQ9NM7s8yUGCXga8 zDbPuTibvglsVrOevss7qz4WhvfTHGkZ66iHmUXm7EVYXbUE2KJjX7jI8y/3DZB3 LrMpBRM8nV5/d7qFUyay+zsQB+Fw6Cl2SfP629SJaHyyBoD/RmIKYWTIw9P7B1FU dDjmRuLY/fkUBmUAI0hlV0fmKfu5xgjYgm1k5O3tT5HfpDQsgsWtTxvLTV9GmOQ3 WVpEK43Vto+CM6IkwNYq7jcpQlJ7Bo6EG29WGryyqGX72VHweJ5YicmTmt+qydgH aain/G+ANl6C2jPirK4= -----END CERTIFICATE-----Generated at Sun Jun 15 18:43:48 2025 by rpki-client