$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666633a3a2f34382d3438203d3e203331383938.roa File: 326130613a363034343a386666633a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: 4Gi+kIIUqV5pUjirmODz+ut3Qk0c/1o7NqIqNMEHsSc= Subject key identifier: 92:7F:91:38:6D:AD:E9:62:BB:56:48:23:0A:F9:F0:B8:3D:1D:63:F7 Certificate issuer: /CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Certificate serial: 6DFCAD7C5F625D2734AFF54639E9B3A1977FF3BA Authority key identifier: 43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666633a3a2f34382d3438203d3e203331383938.roa Signing time: Fri 11 Apr 2025 01:21:11 +0000 ROA not before: Fri 11 Apr 2025 01:16:11 +0000 ROA not after: Fri 10 Apr 2026 01:21:11 +0000 asID: 31898 IP address blocks: 2a0a:6044:8ffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.mft rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 26 Apr 2025 23:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fc:ad:7c:5f:62:5d:27:34:af:f5:46:39:e9:b3:a1:97:7f:f3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC Validity Not Before: Apr 11 01:16:11 2025 GMT Not After : Apr 10 01:21:11 2026 GMT Subject: CN=927F91386DADE962BB5648230AF9F0B83D1D63F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:af:ac:21:b0:eb:61:63:99:b0:54:20:bf:4c: 44:9b:34:f6:df:eb:c2:a0:02:09:69:90:c5:22:58: e3:09:14:77:94:09:d7:b0:16:0e:e2:c8:8d:fe:d3: cd:03:14:ad:2c:7f:30:f9:2f:70:0d:d0:da:2a:d7: 5e:62:b6:b7:9c:2d:db:24:96:a7:a0:25:52:01:6c: cd:ee:6e:de:80:91:31:9d:34:ce:a0:a1:a2:6b:68: 50:48:38:75:6d:98:85:8a:82:4e:93:e0:a0:8f:20: fd:f5:64:74:9b:80:b2:7f:1f:bc:20:3c:b9:1b:3d: bb:b3:15:95:aa:fe:14:04:56:e7:9e:43:b1:4c:b4: 75:e0:fa:e9:f6:af:fb:d1:b7:c5:8a:06:71:31:12: c5:77:01:15:5f:b7:f5:b8:20:b7:69:c6:5d:9d:a8: 6d:2f:98:64:58:b8:27:84:3f:24:a7:54:47:eb:19: 84:8e:ed:c7:ea:55:0c:ee:33:a5:16:51:8e:a8:53: 37:7e:b6:f7:46:ff:64:ca:e7:58:12:20:3a:f1:14: 0d:57:df:74:34:75:a5:07:80:75:74:b5:7b:a2:7d: 20:e8:b2:d8:be:f5:61:40:39:a9:e8:ce:4c:51:6e: 90:f7:46:c4:50:72:76:0b:22:fe:d2:1f:62:d7:30: 44:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:7F:91:38:6D:AD:E9:62:BB:56:48:23:0A:F9:F0:B8:3D:1D:63:F7 X509v3 Authority Key Identifier: keyid:43:88:AF:62:9C:70:2D:DA:88:FA:6B:B2:A9:55:DB:8F:24:ED:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/4388AF629C702DDA88FA6BB2A955DB8F24ED2BBC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/4/326130613a363034343a386666633a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8ffc::/48 Signature Algorithm: sha256WithRSAEncryption 95:9b:8b:e0:a8:a7:ef:b4:81:e3:b2:9b:e6:fe:b0:34:4b:c4: a2:2b:c3:dd:73:45:a3:ff:63:78:f6:bb:00:dc:bd:4d:4d:30: 9e:f2:45:4e:15:41:19:66:a4:2d:6e:af:8c:3e:85:58:f0:e0: 2a:62:3a:b6:0d:60:d6:db:b9:93:2a:1f:0f:83:dc:da:0c:01: e8:6e:d3:3c:6f:93:32:f6:15:db:79:34:74:be:e6:91:f3:ba: 0a:91:3a:25:12:8d:a4:90:6c:9f:2c:90:74:66:85:a3:f5:0b: 8b:48:64:ec:22:a6:0d:f0:eb:cd:26:af:75:b6:45:58:72:0b: dc:d7:68:a3:f8:c3:79:a5:03:c8:b6:e2:b7:1b:cc:20:90:d1: 00:9e:0d:97:c3:c7:dd:30:87:37:9a:eb:15:6c:07:66:6e:a9: 03:68:5d:ba:7c:f7:6d:c9:b3:fc:69:6b:6a:bc:c0:77:c5:68: 19:64:03:7e:80:95:48:78:36:80:4e:f1:88:e9:c7:e2:39:9b: 08:61:20:d2:46:46:e1:6b:b5:fe:5f:24:14:46:5d:29:5d:1d: 54:a3:52:8d:e4:1e:6e:ac:01:f0:53:65:ee:d7:5a:c4:93:1b: 12:f4:9d:60:c4:26:ef:37:08:ae:01:40:93:fa:ef:20:4e:25: fd:cd:d2:c1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUbfytfF9iXSc0r/VGOemzoZd/87owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYy NEVEMkJCQzAeFw0yNTA0MTEwMTE2MTFaFw0yNjA0MTAwMTIxMTFaMDMxMTAvBgNV BAMTKDkyN0Y5MTM4NkRBREU5NjJCQjU2NDgyMzBBRjlGMEI4M0QxRDYzRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7r6whsOthY5mwVCC/TESbNPbf 68KgAglpkMUiWOMJFHeUCdewFg7iyI3+080DFK0sfzD5L3AN0Noq115itrecLdsk lqegJVIBbM3ubt6AkTGdNM6goaJraFBIOHVtmIWKgk6T4KCPIP31ZHSbgLJ/H7wg PLkbPbuzFZWq/hQEVueeQ7FMtHXg+un2r/vRt8WKBnExEsV3ARVft/W4ILdpxl2d qG0vmGRYuCeEPySnVEfrGYSO7cfqVQzuM6UWUY6oUzd+tvdG/2TK51gSIDrxFA1X 33Q0daUHgHV0tXuifSDosti+9WFAOanozkxRbpD3RsRQcnYLIv7SH2LXMEQPAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUkn+ROG2t6WK7VkgjCvnwuD0dY/cwHwYDVR0j BBgwFoAUQ4ivYpxwLdqI+muyqVXbjyTtK7wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzQvNDM4OEFGNjI5QzcwMkREQTg4RkE2QkIyQTk1NURCOEYyNEVEMkJCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mNzk0ODczOC0zMjU1LTQ5 ZjktOWI2Yy05YzlmMzg5ODk5NWQvMy80Mzg4QUY2MjlDNzAyRERBODhGQTZCQjJB OTU1REI4RjI0RUQyQkJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvNC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4NjY2NjYzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzMz MTM4MzkzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoKYESP/DANBgkqhkiG9w0BAQsFAAOCAQEAlZuL 4Kin77SB47Kb5v6wNEvEoivD3XNFo/9jePa7ANy9TU0wnvJFThVBGWakLW6vjD6F WPDgKmI6tg1g1tu5kyofD4Pc2gwB6G7TPG+TMvYV23k0dL7mkfO6CpE6JRKNpJBs nyyQdGaFo/ULi0hk7CKmDfDrzSavdbZFWHIL3Ndoo/jDeaUDyLbitxvMIJDRAJ4N l8PH3TCHN5rrFWwHZm6pA2hdunz3bcmz/GlrarzAd8VoGWQDfoCVSHg2gE7xiOnH 4jmbCGEg0kZG4Wu1/l8kFEZdKV0dVKNSjeQebqwB8FNl7tdaxJMbEvSdYMQm7zcI rgFAk/rvIE4l/c3SwQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:47 2025 by rpki-client