$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363064303a3a2f34342d3438203d3e20323134373031.roa File: 326130623a346530373a363064303a3a2f34342d3438203d3e20323134373031.roa (raw, json) Hash identifier: uV2TLwh180zk/DItScOuiwKDHaU99Mhyx8m59bwZFmA= Subject key identifier: 2C:C4:16:9B:90:80:68:E5:4C:0D:DB:F0:6B:7E:A8:F9:72:28:92:D1 Certificate issuer: /CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Certificate serial: 7F95EADBDDD125BD6E53ACBF276E47C9C35926EA Authority key identifier: DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363064303a3a2f34342d3438203d3e20323134373031.roa Signing time: Sat 12 Apr 2025 14:06:36 +0000 ROA not before: Sat 12 Apr 2025 14:01:36 +0000 ROA not after: Sat 11 Apr 2026 14:06:36 +0000 asID: 214701 IP address blocks: 2a0b:4e07:60d0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 12:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:95:ea:db:dd:d1:25:bd:6e:53:ac:bf:27:6e:47:c9:c3:59:26:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Validity Not Before: Apr 12 14:01:36 2025 GMT Not After : Apr 11 14:06:36 2026 GMT Subject: CN=2CC4169B908068E54C0DDBF06B7EA8F9722892D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:40:55:a6:5e:ae:1a:78:31:b6:29:eb:ec:19: da:ee:a7:b2:d0:5d:e3:c2:85:fd:6e:a7:3a:8f:f8: 29:af:f9:c2:0d:91:a2:e3:8d:06:82:12:5d:a4:f2: 9b:fe:1c:d2:2b:4d:e9:8a:ae:4f:2e:b1:ec:03:03: d9:7f:91:cb:3b:2f:0e:3e:97:79:49:83:c9:26:3e: 6d:92:f4:8d:d8:e8:04:f4:5a:92:70:b1:62:0d:af: 5c:4c:58:27:84:a4:4b:37:cc:25:85:d8:d1:20:9f: d2:b4:09:09:7f:43:83:13:11:d5:10:b4:a2:47:77: 1b:fc:29:4b:8d:77:f8:16:6c:20:99:b1:8d:12:89: 3a:26:b7:f5:ad:c6:17:0e:65:c1:08:61:69:ed:67: 60:43:f3:57:b4:d5:f0:18:04:70:61:93:d8:f4:7b: 59:f1:23:b0:66:8f:cd:7b:7c:9e:9f:c8:19:e2:e2: 6c:d0:e9:70:6c:68:2e:64:2d:cd:b4:8c:9e:ad:c4: 64:02:14:09:90:d9:d6:fd:25:0a:34:b3:79:1a:19: 46:ed:03:8e:46:fb:61:41:a4:69:c8:03:de:52:62: 7d:cf:35:22:1d:f5:e5:bb:6d:1c:55:99:f5:45:20: df:96:bf:87:e0:08:bd:8c:6a:31:d1:4b:32:37:3b: a3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C4:16:9B:90:80:68:E5:4C:0D:DB:F0:6B:7E:A8:F9:72:28:92:D1 X509v3 Authority Key Identifier: keyid:DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363064303a3a2f34342d3438203d3e20323134373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:60d0::/44 Signature Algorithm: sha256WithRSAEncryption 47:55:92:56:65:ea:73:a7:94:8c:04:95:a8:d0:b3:52:0f:fd: ab:f5:d4:bd:95:2f:d2:09:13:c8:16:9a:ba:57:83:43:ff:34: 36:06:82:d7:c0:80:77:b5:5d:51:0b:47:f9:24:73:15:b9:f6: b0:78:2c:b2:4d:c1:34:c1:13:6f:57:0a:57:2f:d8:83:d8:dd: 55:63:f9:58:c4:5c:b6:60:9e:2f:39:5d:65:09:33:9c:c3:66: c7:8c:b8:e0:44:32:66:a3:ce:85:59:f2:6f:ca:64:d1:30:9a: 20:0e:96:0d:49:c1:86:fc:24:f7:50:81:11:69:7f:70:c6:fb: f9:39:7d:7b:bd:58:eb:cf:58:cf:b1:68:1f:2a:cf:6d:d9:70: 65:29:72:b7:b6:c3:37:8d:16:6e:f7:8e:94:0d:ba:68:bb:97: 55:d8:ae:bd:fe:50:20:cf:2d:bf:5a:47:c4:45:82:82:aa:b2: fd:f5:46:d2:4a:1f:61:dc:7f:c0:24:08:16:6b:3b:b6:0d:1f: 00:32:d5:67:1c:74:2c:18:57:bf:3f:b2:23:25:ab:e4:5f:48: 78:95:cb:85:38:9b:48:88:34:d9:7e:7f:01:e6:be:a6:1d:da: 78:1a:88:b3:c8:58:59:10:ba:82:e1:3f:a1:7f:bb:23:0e:a5: 74:b0:a0:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUf5Xq293RJb1uU6y/J25HycNZJuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJG RERBNDExODAeFw0yNTA0MTIxNDAxMzZaFw0yNjA0MTExNDA2MzZaMDMxMTAvBgNV BAMTKDJDQzQxNjlCOTA4MDY4RTU0QzBEREJGMDZCN0VBOEY5NzIyODkyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8QFWmXq4aeDG2KevsGdrup7LQ XePChf1upzqP+Cmv+cINkaLjjQaCEl2k8pv+HNIrTemKrk8usewDA9l/kcs7Lw4+ l3lJg8kmPm2S9I3Y6AT0WpJwsWINr1xMWCeEpEs3zCWF2NEgn9K0CQl/Q4MTEdUQ tKJHdxv8KUuNd/gWbCCZsY0SiTomt/WtxhcOZcEIYWntZ2BD81e01fAYBHBhk9j0 e1nxI7Bmj817fJ6fyBni4mzQ6XBsaC5kLc20jJ6txGQCFAmQ2db9JQo0s3kaGUbt A45G+2FBpGnIA95SYn3PNSId9eW7bRxVmfVFIN+Wv4fgCL2MajHRSzI3O6NpAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQULMQWm5CAaOVMDdvwa36o+XIoktEwHwYDVR0j BBgwFoAU3cJa0vGkiSR3E+45scA+ov3aQRgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmVhZDJkY2YtZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5 YzUwLzMvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERBNDExOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERB NDExOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmVhZDJkY2Yt ZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5YzUwLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzNjMwNjQzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzAzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoLTgdg0DANBgkqhkiG9w0BAQsFAAOCAQEAR1WSVmXqc6eUjASV qNCzUg/9q/XUvZUv0gkTyBaauleDQ/80NgaC18CAd7VdUQtH+SRzFbn2sHgssk3B NMETb1cKVy/Yg9jdVWP5WMRctmCeLzldZQkznMNmx4y44EQyZqPOhVnyb8pk0TCa IA6WDUnBhvwk91CBEWl/cMb7+Tl9e71Y689Yz7FoHyrPbdlwZSlyt7bDN40WbveO lA26aLuXVdiuvf5QIM8tv1pHxEWCgqqy/fVG0kofYdx/wCQIFms7tg0fADLVZxx0 LBhXvz+yIyWr5F9IeJXLhTibSIg02X5/Aea+ph3aeBqIs8hYWRC6guE/oX+7Iw6l dLCg8w== -----END CERTIFICATE-----Generated at Tue Apr 29 04:44:20 2025 by rpki-client