$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa File: 326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa (raw, json) Hash identifier: wCQx6AVbdx3+Kj+Us2aAmoxx84TC0UWyCZ76TDOkAHY= Subject key identifier: 6E:0F:A6:BA:48:6A:F8:00:2C:41:7A:42:FA:45:52:08:33:2F:75:5D Certificate issuer: /CN=5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9 Certificate serial: 0B81F0D8703AB6398DA56165600E9FBAEA57AC3D Authority key identifier: 5F:95:85:45:0A:7F:92:1A:B3:B8:45:D4:4D:7E:CF:55:EC:DD:F7:A9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa Signing time: Mon 14 Apr 2025 21:24:12 +0000 ROA not before: Mon 14 Apr 2025 21:19:12 +0000 ROA not after: Mon 13 Apr 2026 21:24:12 +0000 asID: 151704 IP address blocks: 2a0b:4e07:1c00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.crl rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 03:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:81:f0:d8:70:3a:b6:39:8d:a5:61:65:60:0e:9f:ba:ea:57:ac:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9 Validity Not Before: Apr 14 21:19:12 2025 GMT Not After : Apr 13 21:24:12 2026 GMT Subject: CN=6E0FA6BA486AF8002C417A42FA455208332F755D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:67:82:67:cc:ef:a5:61:47:df:b0:0d:f5:48: 50:49:c7:8e:dc:9d:ae:06:59:ff:c4:0a:7a:bb:1d: 13:4b:31:bb:33:79:19:b0:61:29:7d:fa:09:80:44: 86:42:01:8c:fe:09:e7:8b:26:f7:99:0b:09:a6:99: 97:63:7d:67:65:a7:5a:3d:7a:de:f6:ea:01:41:6f: 76:ca:0c:ec:5a:3c:e5:b5:ad:62:58:68:96:bc:ea: e1:aa:4c:80:6e:52:90:42:38:66:65:bb:c1:a7:63: 2c:17:2e:eb:b4:a5:7a:42:0c:56:da:09:55:23:b3: a6:eb:14:51:34:14:f8:97:79:f9:af:1c:14:09:1e: 2a:8b:6d:63:03:b1:de:35:41:25:1b:1d:d9:14:d6: b4:93:46:de:d0:8e:20:ef:a2:22:dc:a9:e3:7d:f0: 4e:ec:f7:d1:95:ed:95:07:37:6c:fb:80:c8:b2:87: f8:61:4d:95:87:a3:37:9d:e1:0d:09:dd:88:21:95: d7:34:cd:cb:d9:d2:e1:3b:f3:64:3b:4d:25:3e:2e: 18:51:54:48:0a:d2:3c:85:ab:cb:67:91:b7:de:b8: a5:cb:55:b5:00:fd:39:95:32:da:17:71:a6:19:30: f7:23:9f:d3:a6:bf:a2:cf:a1:32:58:0b:e9:c4:ca: 36:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0F:A6:BA:48:6A:F8:00:2C:41:7A:42:FA:45:52:08:33:2F:75:5D X509v3 Authority Key Identifier: keyid:5F:95:85:45:0A:7F:92:1A:B3:B8:45:D4:4D:7E:CF:55:EC:DD:F7:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330303a3a2f34382d3438203d3e20313531373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:1c00::/48 Signature Algorithm: sha256WithRSAEncryption 2c:31:06:c1:12:9f:b2:8b:1a:42:d1:86:ca:4d:ff:5b:f9:a4: 9e:a6:95:fc:de:7f:8e:d8:63:c2:de:0f:44:23:28:f3:4c:23: 90:d8:9e:b4:2c:cf:0d:c2:d4:43:61:ec:e8:ad:93:c1:0a:4b: 56:2a:df:07:0d:ad:9e:02:b7:75:1e:48:2b:19:8c:5b:ea:9c: 0f:53:5e:fa:5f:e9:7c:86:f2:da:e9:18:e0:4c:15:a2:2c:82: c1:79:b2:f3:b9:de:55:b1:e8:e3:51:48:28:99:e7:0e:42:72: 22:ba:29:70:0a:f9:2d:50:5e:0c:b1:2e:67:99:f2:6c:b6:b2: 1e:70:78:38:fe:91:3d:0f:0c:4f:6d:91:3b:b8:6d:6d:5a:f8: d7:26:0d:33:9e:51:b7:f2:06:7c:f7:82:25:8b:8c:a2:9f:32: 13:ae:ca:50:e6:51:28:fe:05:a5:4d:61:6c:60:74:c7:3a:b1: 0a:0a:0c:1f:82:8d:97:2f:b9:98:bc:90:d2:7d:3f:75:f6:19: 05:f4:31:62:74:4b:f5:2b:ed:fa:02:8f:6f:6b:4c:39:28:1a: 77:89:aa:e3:89:23:07:02:51:fd:f8:dd:96:e5:e2:63:4e:6a: 46:4f:6f:62:92:f5:fb:fb:8f:1f:57:44:c6:14:d5:fd:4f:03: 1e:67:44:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUC4Hw2HA6tjmNpWFlYA6fuupXrD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVF Q0RERjdBOTAeFw0yNTA0MTQyMTE5MTJaFw0yNjA0MTMyMTI0MTJaMDMxMTAvBgNV BAMTKDZFMEZBNkJBNDg2QUY4MDAyQzQxN0E0MkZBNDU1MjA4MzMyRjc1NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Z4JnzO+lYUffsA31SFBJx47c na4GWf/ECnq7HRNLMbszeRmwYSl9+gmARIZCAYz+CeeLJveZCwmmmZdjfWdlp1o9 et726gFBb3bKDOxaPOW1rWJYaJa86uGqTIBuUpBCOGZlu8GnYywXLuu0pXpCDFba CVUjs6brFFE0FPiXefmvHBQJHiqLbWMDsd41QSUbHdkU1rSTRt7QjiDvoiLcqeN9 8E7s99GV7ZUHN2z7gMiyh/hhTZWHozed4Q0J3Yghldc0zcvZ0uE782Q7TSU+LhhR VEgK0jyFq8tnkbfeuKXLVbUA/TmVMtoXcaYZMPcjn9Omv6LPoTJYC+nEyjYdAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUbg+mukhq+AAsQXpC+kVSCDMvdV0wHwYDVR0j BBgwFoAUX5WFRQp/khqzuEXUTX7PVezd96kwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAtMGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFm OWFmLzIvNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVFQ0RERjdBOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVFQ0RE RjdBOS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAt MGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFmOWFmLzIvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMTYzMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM3MzAzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgccADANBgkqhkiG9w0BAQsFAAOCAQEALDEGwRKfsosaQtGG yk3/W/mknqaV/N5/jthjwt4PRCMo80wjkNietCzPDcLUQ2Hs6K2TwQpLVirfBw2t ngK3dR5IKxmMW+qcD1Ne+l/pfIby2ukY4EwVoiyCwXmy87neVbHo41FIKJnnDkJy IropcAr5LVBeDLEuZ5nybLayHnB4OP6RPQ8MT22RO7htbVr41yYNM55Rt/IGfPeC JYuMop8yE67KUOZRKP4FpU1hbGB0xzqxCgoMH4KNly+5mLyQ0n0/dfYZBfQxYnRL 9Svt+gKPb2tMOSgad4mq44kjBwJR/fjdluXiY05qRk9vYpL1+/uPH1dExhTV/U8D HmdE8w== -----END CERTIFICATE-----Generated at Sat Apr 26 21:05:42 2025 by rpki-client