$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa File: 326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa (raw, json) Hash identifier: GjvfeB16Dq44ljlvPcegJERTdmH8Ubv3C8M2ssZH0r4= Subject key identifier: 91:6B:10:3E:8D:DD:47:48:EF:49:15:96:B0:A9:70:58:6D:BD:B8:65 Certificate issuer: /CN=5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9 Certificate serial: 2049DB5ABCA93A93AF31B31DD1C7D62630391957 Authority key identifier: 5F:95:85:45:0A:7F:92:1A:B3:B8:45:D4:4D:7E:CF:55:EC:DD:F7:A9 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa Signing time: Mon 14 Apr 2025 21:24:12 +0000 ROA not before: Mon 14 Apr 2025 21:19:12 +0000 ROA not after: Mon 13 Apr 2026 21:24:12 +0000 asID: 213862 IP address blocks: 2a0b:4e07:1c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.crl rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 08:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:49:db:5a:bc:a9:3a:93:af:31:b3:1d:d1:c7:d6:26:30:39:19:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9 Validity Not Before: Apr 14 21:19:12 2025 GMT Not After : Apr 13 21:24:12 2026 GMT Subject: CN=916B103E8DDD4748EF491596B0A970586DBDB865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bf:19:19:ac:82:2d:48:d3:df:78:9a:71:1e: c5:38:31:aa:f2:3e:2d:c1:9d:7f:a0:8c:e3:ae:44: 0c:77:88:7b:64:ee:81:45:a4:d7:d7:3b:d6:46:a0: dc:b6:d8:b2:e0:05:d5:65:a4:1e:72:46:35:85:33: 3b:05:e8:6b:7b:63:7a:19:c7:6c:d0:1e:8a:95:9d: 68:e8:bf:22:a5:64:11:31:c4:ed:c0:99:43:44:5c: 58:aa:1f:cf:70:f1:dd:0a:39:d0:ed:2a:7f:51:06: 9b:87:4e:5a:b5:53:36:9c:ce:5d:c8:65:98:04:75: 40:66:df:9d:a2:02:1e:95:4e:45:44:00:2f:2f:7d: a5:e8:b4:8e:4f:df:12:03:6e:07:5b:23:2e:ce:9d: 77:71:93:f6:2e:2d:d0:d3:f3:c6:60:23:cb:bf:15: 81:38:fc:c3:43:6b:2d:91:e5:25:4c:f1:9d:76:3e: ab:35:f6:25:dd:c2:b1:0d:36:00:97:51:03:ab:72: 50:73:a0:76:03:e6:54:22:93:f2:e5:2b:03:b7:79: b1:22:cc:b5:e2:10:9a:29:3a:ae:29:48:aa:95:43: 1a:bf:10:7f:73:81:6a:19:e1:ab:b0:dc:2f:03:7e: 05:5a:86:ae:7b:72:43:82:a5:2b:48:e2:77:31:e3: 6e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6B:10:3E:8D:DD:47:48:EF:49:15:96:B0:A9:70:58:6D:BD:B8:65 X509v3 Authority Key Identifier: keyid:5F:95:85:45:0A:7F:92:1A:B3:B8:45:D4:4D:7E:CF:55:EC:DD:F7:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5F9585450A7F921AB3B845D44D7ECF55ECDDF7A9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/2/326130623a346530373a316330323a3a2f34382d3438203d3e20323133383632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:1c02::/48 Signature Algorithm: sha256WithRSAEncryption 96:15:0a:f8:8d:dc:37:fd:05:a1:46:52:93:13:88:8c:a1:89: 42:ae:94:b7:38:9f:c5:45:b6:2a:48:7b:4b:57:60:41:b1:de: 74:61:26:af:65:cf:88:07:4c:9f:ad:2a:b2:9a:3f:df:72:80: f5:66:c4:36:00:ff:62:92:75:2e:5d:71:a0:ef:bb:75:bc:a6: aa:a8:04:27:e0:82:cd:37:3a:4e:8f:07:34:e5:df:78:f7:be: 09:de:25:ff:eb:0e:1c:10:82:03:21:9e:83:dd:35:6e:9b:df: 78:36:c6:e1:31:77:85:db:ef:e5:98:b6:d4:45:28:d7:0b:f4: b2:b9:09:fc:b7:e8:8e:f2:75:23:15:5f:ff:e7:07:88:2e:ae: 22:1c:f7:13:7f:28:21:d4:48:54:e8:a3:c1:d5:4d:93:3b:52: 6d:0e:ac:ff:5a:d3:8e:0a:8a:36:56:35:d0:81:17:5a:46:c6: f5:3f:11:23:da:0f:f9:f4:cb:16:3c:84:bc:4c:58:ab:c2:70: a0:3c:ea:83:20:cc:c8:bb:7b:36:da:b0:9c:b0:fe:dc:71:3f: 98:e4:fa:fe:bf:72:4d:13:27:4c:a8:f5:50:ed:17:9e:51:b8: 23:62:50:dc:16:7d:34:92:24:93:d8:e9:f4:37:90:33:41:4f: 3c:0e:94:a9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUIEnbWrypOpOvMbMd0cfWJjA5GVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVF Q0RERjdBOTAeFw0yNTA0MTQyMTE5MTJaFw0yNjA0MTMyMTI0MTJaMDMxMTAvBgNV BAMTKDkxNkIxMDNFOERERDQ3NDhFRjQ5MTU5NkIwQTk3MDU4NkRCREI4NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDvxkZrIItSNPfeJpxHsU4Mary Pi3BnX+gjOOuRAx3iHtk7oFFpNfXO9ZGoNy22LLgBdVlpB5yRjWFMzsF6Gt7Y3oZ x2zQHoqVnWjovyKlZBExxO3AmUNEXFiqH89w8d0KOdDtKn9RBpuHTlq1Uzaczl3I ZZgEdUBm352iAh6VTkVEAC8vfaXotI5P3xIDbgdbIy7OnXdxk/YuLdDT88ZgI8u/ FYE4/MNDay2R5SVM8Z12Pqs19iXdwrENNgCXUQOrclBzoHYD5lQik/LlKwO3ebEi zLXiEJopOq4pSKqVQxq/EH9zgWoZ4auw3C8DfgVahq57ckOCpStI4ncx425NAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUkWsQPo3dR0jvSRWWsKlwWG29uGUwHwYDVR0j BBgwFoAUX5WFRQp/khqzuEXUTX7PVezd96kwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAtMGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFm OWFmLzIvNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVFQ0RERjdBOS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvNUY5NTg1NDUwQTdGOTIxQUIzQjg0NUQ0NEQ3RUNGNTVFQ0RE RjdBOS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAt MGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFmOWFmLzIvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMTYzMzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMzM4MzYzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgccAjANBgkqhkiG9w0BAQsFAAOCAQEAlhUK+I3cN/0FoUZS kxOIjKGJQq6UtzifxUW2Kkh7S1dgQbHedGEmr2XPiAdMn60qspo/33KA9WbENgD/ YpJ1Ll1xoO+7dbymqqgEJ+CCzTc6To8HNOXfePe+Cd4l/+sOHBCCAyGeg901bpvf eDbG4TF3hdvv5Zi21EUo1wv0srkJ/LfojvJ1IxVf/+cHiC6uIhz3E38oIdRIVOij wdVNkztSbQ6s/1rTjgqKNlY10IEXWkbG9T8RI9oP+fTLFjyEvExYq8JwoDzqgyDM yLt7NtqwnLD+3HE/mOT6/r9yTRMnTKj1UO0XnlG4I2JQ3BZ9NJIkk9jp9DeQM0FP PA6UqQ== -----END CERTIFICATE-----Generated at Tue Apr 29 00:35:55 2025 by rpki-client