$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3732313a3a2f34382d3438203d3e20313938303235.roa File: 326131343a373538303a3732313a3a2f34382d3438203d3e20313938303235.roa (raw, json) Hash identifier: F0yheovlhp7K4XimVlJIY2XY5LQ9rO6Lio/g2Fp5WxY= Subject key identifier: EA:F0:52:86:B1:B0:2A:89:F7:2B:12:53:21:81:5A:77:C2:68:10:FB Certificate issuer: /CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Certificate serial: 7F5115A60CF91B672BA40528B5A8A90951EF9C20 Authority key identifier: 1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3732313a3a2f34382d3438203d3e20313938303235.roa Signing time: Sat 14 Jun 2025 05:14:11 +0000 ROA not before: Sat 14 Jun 2025 05:09:11 +0000 ROA not after: Sat 13 Jun 2026 05:14:11 +0000 asID: 198025 IP address blocks: 2a14:7580:721::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 11:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:51:15:a6:0c:f9:1b:67:2b:a4:05:28:b5:a8:a9:09:51:ef:9c:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1B8048531CFED25DEDE4EF93CBEEBD37A0053C79 Validity Not Before: Jun 14 05:09:11 2025 GMT Not After : Jun 13 05:14:11 2026 GMT Subject: CN=EAF05286B1B02A89F72B125321815A77C26810FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:3a:60:a9:8d:3e:d6:9d:c8:8f:8e:75:c0:08: 8a:dd:e0:fd:f1:eb:45:2c:0c:e4:30:63:81:2c:29: 2e:44:24:a5:e0:73:68:32:e6:63:9f:f3:d2:14:56: 83:e4:56:ba:cf:7c:e6:46:26:39:47:ef:dc:c6:6c: cb:f9:72:e5:f8:17:95:e0:ab:49:f2:e6:38:1e:20: 8b:d2:52:86:98:5b:6f:83:11:65:b3:35:4b:2e:37: b3:3a:e4:c1:48:18:80:da:69:c3:bc:a4:ad:45:db: 01:b2:7e:e8:f1:38:03:97:37:30:ba:f4:f5:53:6f: a9:1e:17:88:fe:a1:74:cf:3b:08:55:fd:00:26:1b: fe:28:05:70:22:d7:51:5f:47:1c:4a:23:5d:22:0b: cf:54:e6:77:67:34:4e:34:5c:34:3c:78:dd:64:33: b1:0f:72:09:28:f2:63:3e:84:17:27:0b:c4:e5:e9: bc:23:27:47:62:95:91:1f:58:fd:64:ab:7b:fb:ca: db:2c:2e:a2:74:1a:b1:fc:48:f1:ec:00:23:00:19: cc:cf:17:c8:26:02:b8:75:07:30:f3:fb:a6:7d:e2: 74:ea:12:4b:61:82:82:0c:bf:87:44:fc:5f:19:98: 25:a2:f6:71:9a:e7:d1:58:ae:96:55:aa:a9:b4:10: f8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F0:52:86:B1:B0:2A:89:F7:2B:12:53:21:81:5A:77:C2:68:10:FB X509v3 Authority Key Identifier: keyid:1B:80:48:53:1C:FE:D2:5D:ED:E4:EF:93:CB:EE:BD:37:A0:05:3C:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1B8048531CFED25DEDE4EF93CBEEBD37A0053C79.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c6fd4ea1-a266-4dea-b48a-15da35452109/2/326131343a373538303a3732313a3a2f34382d3438203d3e20313938303235.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:721::/48 Signature Algorithm: sha256WithRSAEncryption 25:2e:5b:bb:2b:0f:d6:04:7d:78:38:d1:2c:ee:72:c5:d3:0a: 8a:00:49:dd:13:ce:33:54:e4:60:1b:b2:3a:6d:82:d1:f9:f8: 69:27:3b:a5:e5:8f:4f:7b:9b:3a:a4:0d:92:15:93:42:c3:a2: bf:30:31:6a:ce:b1:87:93:b9:ae:16:e2:a3:ab:1d:e5:72:3d: be:43:49:8c:04:0c:b2:f1:b6:44:f7:94:f6:33:50:fd:87:1f: 47:4d:84:8e:30:71:a0:ae:06:a1:60:ec:af:c3:e2:4a:05:da: 53:66:1f:50:e7:c1:eb:a6:2d:2b:25:a2:05:fb:a7:0d:84:a0: 55:bd:53:a5:a8:29:3a:6b:c0:03:9a:6e:8b:1f:6f:70:69:18: 17:67:64:d5:40:29:5f:c6:72:5b:11:7e:ab:8b:00:7a:4f:93: f0:ec:78:15:3a:d4:d1:a6:a9:23:53:9c:14:e0:c9:cc:92:0b: c4:6e:53:27:14:f4:67:53:a5:ae:00:01:77:7d:80:b9:98:be: 51:64:7a:1e:e2:df:d9:8f:4f:7d:81:20:72:a3:3f:8d:40:91: b8:9a:2c:a1:83:c9:35:b9:07:d9:70:14:1d:1b:4f:bd:4b:b0: 35:2f:39:75:b9:c6:5f:89:74:6c:85:a9:7b:30:07:6b:73:13: 40:e3:51:eb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUf1EVpgz5G2crpAUotaipCVHvnCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdB MDA1M0M3OTAeFw0yNTA2MTQwNTA5MTFaFw0yNjA2MTMwNTE0MTFaMDMxMTAvBgNV BAMTKEVBRjA1Mjg2QjFCMDJBODlGNzJCMTI1MzIxODE1QTc3QzI2ODEwRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlOmCpjT7WnciPjnXACIrd4P3x 60UsDOQwY4EsKS5EJKXgc2gy5mOf89IUVoPkVrrPfOZGJjlH79zGbMv5cuX4F5Xg q0ny5jgeIIvSUoaYW2+DEWWzNUsuN7M65MFIGIDaacO8pK1F2wGyfujxOAOXNzC6 9PVTb6keF4j+oXTPOwhV/QAmG/4oBXAi11FfRxxKI10iC89U5ndnNE40XDQ8eN1k M7EPcgko8mM+hBcnC8Tl6bwjJ0dilZEfWP1kq3v7ytssLqJ0GrH8SPHsACMAGczP F8gmArh1BzDz+6Z94nTqEkthgoIMv4dE/F8ZmCWi9nGa59FYrpZVqqm0EPj1AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU6vBShrGwKon3KxJTIYFad8JoEPswHwYDVR0j BBgwFoAUG4BIUxz+0l3t5O+Ty+69N6AFPHkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzZmZDRlYTEtYTI2Ni00ZGVhLWI0OGEtMTVkYTM1NDUy MTA5LzIvMUI4MDQ4NTMxQ0ZFRDI1REVERTRFRjkzQ0JFRUJEMzdBMDA1M0M3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xQjgwNDg1MzFDRkVEMjVERURFNEVGOTND QkVFQkQzN0EwMDUzQzc5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jNmZkNGVhMS1hMjY2LTRkZWEtYjQ4YS0xNWRhMzU0NTIxMDkvMi8zMjYxMzEz NDNhMzczNTM4MzAzYTM3MzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzkz ODMwMzIzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYAHITANBgkqhkiG9w0BAQsFAAOCAQEAJS5b uysP1gR9eDjRLO5yxdMKigBJ3RPOM1TkYBuyOm2C0fn4aSc7peWPT3ubOqQNkhWT QsOivzAxas6xh5O5rhbio6sd5XI9vkNJjAQMsvG2RPeU9jNQ/YcfR02EjjBxoK4G oWDsr8PiSgXaU2YfUOfB66YtKyWiBfunDYSgVb1TpagpOmvAA5puix9vcGkYF2dk 1UApX8ZyWxF+q4sAek+T8Ox4FTrU0aapI1OcFODJzJILxG5TJxT0Z1OlrgABd32A uZi+UWR6HuLf2Y9PfYEgcqM/jUCRuJosoYPJNbkH2XAUHRtPvUuwNS85dbnGX4l0 bIWpezAHa3MTQONR6w== -----END CERTIFICATE-----Generated at Sun Jun 15 19:05:55 2025 by rpki-client