$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa File: 326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa (raw, json) Hash identifier: yUvus43IfO0AT/ck5bMQHbMTgP3EN2v06hq4szCBm40= Subject key identifier: D3:28:E0:4A:00:74:77:36:76:F1:BB:76:9F:F7:B1:AC:15:74:38:B5 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 495F2683AA7690E76D6003D8EC199C5FBA6B28FA Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa Signing time: Thu 29 May 2025 15:42:29 +0000 ROA not before: Thu 29 May 2025 15:37:29 +0000 ROA not after: Thu 28 May 2026 15:42:29 +0000 asID: 396050 IP address blocks: 2a14:7581:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 04:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5f:26:83:aa:76:90:e7:6d:60:03:d8:ec:19:9c:5f:ba:6b:28:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: May 29 15:37:29 2025 GMT Not After : May 28 15:42:29 2026 GMT Subject: CN=D328E04A0074773676F1BB769FF7B1AC157438B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:00:7c:d4:db:6f:a8:ed:66:23:d0:3a:14:af: 2f:4c:de:fb:ce:d4:43:31:98:7e:5b:94:36:3b:6a: b4:f2:31:ed:d2:c9:21:09:9d:a5:80:1f:d0:bc:c1: 66:53:e3:2a:33:58:49:96:a4:02:f4:36:d6:2e:f1: 7c:63:5f:2f:d3:2a:fb:3e:73:db:4b:1d:70:1c:09: 60:d9:1e:8d:38:75:1b:88:5f:0f:bf:88:af:35:61: 75:2e:a5:61:72:45:3f:fa:ff:1e:67:de:06:b0:0d: d7:c5:30:32:46:65:d2:a3:fd:80:ca:fc:be:9a:42: 1f:01:13:8e:75:d2:87:ae:bb:cd:a2:22:bc:b9:9e: 78:5c:c2:ff:03:89:41:59:a3:99:88:1b:e2:a7:59: c2:37:7e:17:7b:1e:c0:3b:92:e0:b4:08:1b:1f:2b: 1d:e5:d4:7c:7e:dc:6b:20:ea:0a:6e:8a:49:d7:b9: 9b:b4:f3:84:1f:3a:57:60:a4:c6:70:bd:33:fa:9c: d5:4d:7b:0e:5c:f5:3f:3c:40:8b:8a:54:03:3c:78: 0b:a8:44:1b:2a:db:35:c8:e7:0f:7d:8e:81:70:3f: 5a:aa:ff:a4:de:52:de:32:60:49:f9:38:b3:7a:1b: 8c:6a:a7:b1:f5:05:9a:d7:37:b5:7c:66:f4:fd:c2: 4b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:28:E0:4A:00:74:77:36:76:F1:BB:76:9F:F7:B1:AC:15:74:38:B5 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/40 Signature Algorithm: sha256WithRSAEncryption 1a:ae:3e:70:2e:71:d8:a5:17:9f:9b:85:a1:a3:6e:79:49:04: da:6d:d3:a2:53:20:80:22:be:34:22:4f:cd:fb:07:50:4a:3f: b5:54:66:2d:b4:4d:ac:6a:a7:eb:b4:0d:2f:bf:84:d9:e9:e0: 93:e5:75:be:5d:0e:ef:46:da:8e:52:78:95:51:cf:62:64:0b: 0b:1a:91:37:32:79:13:26:7e:09:30:78:2b:44:44:c2:63:ed: 91:35:15:0f:fc:aa:db:47:e5:f8:48:aa:20:d6:88:70:7b:53: 15:0f:c2:0d:fb:e3:0e:73:29:a2:a1:cf:e0:ff:e3:dc:a8:e1: 61:f7:39:7b:87:7f:6a:4f:c6:de:ac:18:f5:b7:b2:64:94:d6: be:c7:9a:30:ed:d2:a7:1f:17:08:6f:92:e7:5e:9d:22:ba:e4: 12:ad:3b:2d:fa:61:b7:23:b4:17:93:d9:60:cd:d4:bf:25:96: 4c:19:2a:25:a2:c2:9e:06:32:2b:eb:f0:a1:75:c2:4a:9b:18: c1:56:b1:89:24:9b:50:23:ca:c6:aa:a9:73:f7:cd:ed:41:3c: ff:53:bc:27:50:00:4a:c6:51:2a:8c:37:39:8f:58:11:f3:e8: 7f:c7:0d:63:15:17:85:af:22:45:f0:af:27:df:c7:70:73:2d: 73:32:8d:45 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUSV8mg6p2kOdtYAPY7BmcX7prKPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNTA1MjkxNTM3MjlaFw0yNjA1MjgxNTQyMjlaMDMxMTAvBgNV BAMTKEQzMjhFMDRBMDA3NDc3MzY3NkYxQkI3NjlGRjdCMUFDMTU3NDM4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtAHzU22+o7WYj0DoUry9M3vvO 1EMxmH5blDY7arTyMe3SySEJnaWAH9C8wWZT4yozWEmWpAL0NtYu8XxjXy/TKvs+ c9tLHXAcCWDZHo04dRuIXw+/iK81YXUupWFyRT/6/x5n3gawDdfFMDJGZdKj/YDK /L6aQh8BE4510oeuu82iIry5nnhcwv8DiUFZo5mIG+KnWcI3fhd7HsA7kuC0CBsf Kx3l1Hx+3Gsg6gpuiknXuZu084QfOldgpMZwvTP6nNVNew5c9T88QIuKVAM8eAuo RBsq2zXI5w99joFwP1qq/6TeUt4yYEn5OLN6G4xqp7H1BZrXN7V8ZvT9wksVAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU0yjgSgB0dzZ28bt2n/exrBV0OLUwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzMz OTM2MzAzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSAwDQYJKoZIhvcNAQELBQADggEBABqu PnAucdilF5+bhaGjbnlJBNpt06JTIIAivjQiT837B1BKP7VUZi20Taxqp+u0DS+/ hNnp4JPldb5dDu9G2o5SeJVRz2JkCwsakTcyeRMmfgkweCtERMJj7ZE1FQ/8qttH 5fhIqiDWiHB7UxUPwg374w5zKaKhz+D/49yo4WH3OXuHf2pPxt6sGPW3smSU1r7H mjDt0qcfFwhvkudenSK65BKtOy36YbcjtBeT2WDN1L8llkwZKiWiwp4GMivr8KF1 wkqbGMFWsYkkm1AjysaqqXP3ze1BPP9TvCdQAErGUSqMNzmPWBHz6H/HDWMVF4Wv IkXwryffx3BzLXMyjUU= -----END CERTIFICATE-----Generated at Sun Jun 15 19:08:52 2025 by rpki-client