$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e203437323732.roa File: 326130353a646663323a3a2f33322d3332203d3e203437323732.roa (raw, json) Hash identifier: Ubg8A9x/SXkk1nCEF2VlUkpMbHD7V3CR6UBln3TFsYs= Subject key identifier: 7C:6A:58:1D:0F:D5:67:72:FD:15:43:CD:99:67:58:0C:35:30:12:B5 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 09BBA346B74378BCC7ADF78880E19D1BCE3816ED Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:12:36 +0000 ROA not before: Fri 07 Feb 2025 19:07:36 +0000 ROA not after: Fri 06 Feb 2026 19:12:36 +0000 asID: 47272 IP address blocks: 2a05:dfc2::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:bb:a3:46:b7:43:78:bc:c7:ad:f7:88:80:e1:9d:1b:ce:38:16:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:07:36 2025 GMT Not After : Feb 6 19:12:36 2026 GMT Subject: CN=7C6A581D0FD56772FD1543CD9967580C353012B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:87:c5:51:38:b1:1a:ee:e8:af:eb:9f:72:91: 17:77:df:1c:5b:54:0d:f5:11:7b:6b:58:fb:6f:78: 52:e1:74:b4:01:ca:80:22:8e:d0:58:dd:90:7c:14: be:76:a9:d8:da:8b:33:9f:e9:cc:21:fe:4e:4b:5b: 5a:84:84:a2:ad:e9:66:ea:94:72:10:e6:b5:e7:7e: 87:4e:10:bb:eb:bb:39:59:2e:b8:e0:6a:b2:b4:24: 0e:b8:d2:3a:b8:6c:13:fa:35:6e:3f:47:af:94:e8: d0:5c:71:90:65:ab:92:48:dc:61:a7:e4:2e:3e:65: f1:5a:a1:de:62:1c:87:ff:3f:0e:c5:51:08:43:a6: 91:8d:52:fa:b6:9e:8b:b3:59:96:06:48:30:f8:f5: ed:da:cf:a7:6f:9c:68:11:4d:fa:22:44:46:12:ef: 06:a6:64:38:43:be:9d:68:bd:37:ad:a8:59:5a:f0: 94:cf:28:8a:b6:1c:e7:8e:b1:66:40:14:1b:4b:4d: c2:69:12:5b:31:2d:88:68:68:b7:19:95:3c:8f:57: 5a:24:c9:02:56:4b:f2:9a:ad:8a:86:24:69:8a:b6: 1a:58:5a:8f:d8:c6:0d:3d:61:24:28:1f:28:bc:61: 69:18:e2:9f:7e:e8:23:38:8e:ca:61:6c:3d:57:db: fb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:6A:58:1D:0F:D5:67:72:FD:15:43:CD:99:67:58:0C:35:30:12:B5 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 Signature Algorithm: sha256WithRSAEncryption b0:e2:4a:2a:93:42:2b:89:bd:27:2d:96:35:82:4c:d3:c9:7d: 83:47:b5:08:cf:b1:e9:38:66:bd:2c:c3:8d:89:7e:d5:58:d8: 8c:69:0f:42:ed:e2:59:c4:37:84:4e:81:2d:85:c9:5e:da:99: 6f:cf:ea:b3:bc:d9:c0:4f:b0:c4:c5:10:83:ad:bf:3b:71:c8: 14:72:ab:b8:87:1d:ae:8d:dd:2b:91:f2:4e:b8:24:f6:a3:9f: fd:97:3c:6b:6a:52:26:31:0b:83:40:06:27:da:83:c1:fa:fa: 8e:a6:6b:16:40:14:64:e1:9b:c4:d1:38:ed:6f:e5:db:60:e3: 03:0e:1b:e6:f1:7e:84:f2:07:ca:d2:3a:c5:0d:fa:24:ce:d0: 23:af:4b:cd:31:ab:8e:67:f0:90:40:92:a7:11:20:22:12:14: 26:21:a5:d3:1b:87:ea:9e:bc:2d:40:14:8d:39:1d:f4:38:bf: 44:cb:48:42:ae:4e:87:0e:ea:75:24:de:4c:e8:9e:58:70:72: e2:b5:02:20:ab:4a:79:12:63:51:19:0f:35:4b:80:35:e2:05: 65:de:99:97:60:6e:6a:87:6c:77:f3:9d:e7:69:0c:22:da:c2: b4:b2:80:e3:ae:ec:20:0a:ed:24:68:db:f2:09:83:c2:b5:1a: 9b:86:b9:6c -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUCbujRrdDeLzHrfeIgOGdG844Fu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA3MzZaFw0yNjAyMDYxOTEyMzZaMDMxMTAvBgNV BAMTKDdDNkE1ODFEMEZENTY3NzJGRDE1NDNDRDk5Njc1ODBDMzUzMDEyQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUh8VROLEa7uiv659ykRd33xxb VA31EXtrWPtveFLhdLQByoAijtBY3ZB8FL52qdjaizOf6cwh/k5LW1qEhKKt6Wbq lHIQ5rXnfodOELvruzlZLrjgarK0JA640jq4bBP6NW4/R6+U6NBccZBlq5JI3GGn 5C4+ZfFaod5iHIf/Pw7FUQhDppGNUvq2nouzWZYGSDD49e3az6dvnGgRTfoiREYS 7wamZDhDvp1ovTetqFla8JTPKIq2HOeOsWZAFBtLTcJpElsxLYhoaLcZlTyPV1ok yQJWS/KarYqGJGmKthpYWo/Yxg09YSQoHyi8YWkY4p9+6CM4jsphbD1X2/vZAgMB AAGjggJsMIICaDAdBgNVHQ4EFgQUfGpYHQ/VZ3L9FUPNmWdYDDUwErUwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMy M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzQzNzMyMzczMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoF 38IwDQYJKoZIhvcNAQELBQADggEBALDiSiqTQiuJvSctljWCTNPJfYNHtQjPsek4 Zr0sw42JftVY2IxpD0Lt4lnEN4ROgS2FyV7amW/P6rO82cBPsMTFEIOtvztxyBRy q7iHHa6N3SuR8k64JPajn/2XPGtqUiYxC4NABifag8H6+o6maxZAFGThm8TROO1v 5dtg4wMOG+bxfoTyB8rSOsUN+iTO0COvS80xq45n8JBAkqcRICISFCYhpdMbh+qe vC1AFI05HfQ4v0TLSEKuTocO6nUk3kzonlhwcuK1AiCrSnkSY1EZDzVLgDXiBWXe mZdgbmqHbHfznedpDCLawrSygOOu7CAK7SRo2/IJg8K1GpuGuWw= -----END CERTIFICATE-----Generated at Thu Apr 3 07:11:07 2025 by rpki-client