$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663530303a3a2f34302d3438203d3e203437323732.roa File: 326130353a646663333a663530303a3a2f34302d3438203d3e203437323732.roa (raw, json) Hash identifier: 8KGgfD3QHNMcWaw8V6Za3I+vR7g3URfcNgHWuWyw2lw= Subject key identifier: 38:7B:C2:B8:34:E5:16:C5:A6:B1:95:44:03:88:EF:E0:92:C6:5F:14 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 26046ED038257DB38CFEA9F2107AD361BA7F9400 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663530303a3a2f34302d3438203d3e203437323732.roa Signing time: Mon 02 Jun 2025 06:51:22 +0000 ROA not before: Mon 02 Jun 2025 06:46:22 +0000 ROA not after: Mon 01 Jun 2026 06:51:22 +0000 asID: 47272 IP address blocks: 2a05:dfc3:f500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:04:6e:d0:38:25:7d:b3:8c:fe:a9:f2:10:7a:d3:61:ba:7f:94:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 2 06:46:22 2025 GMT Not After : Jun 1 06:51:22 2026 GMT Subject: CN=387BC2B834E516C5A6B195440388EFE092C65F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:56:61:ef:1f:9a:db:94:d4:9a:3e:82:7a:ce: b4:8a:ec:ff:c9:0f:d3:cf:ee:4c:3b:84:9a:46:5c: 58:69:34:19:32:69:b2:5c:9d:0d:80:d9:ff:9d:4a: fb:41:56:ad:bb:98:39:c7:92:56:85:6a:f8:b5:d5: 3b:aa:b1:69:60:3c:ee:7b:f3:f9:54:79:57:7b:40: 0f:f7:2e:4e:0d:fe:a4:bb:27:1e:81:78:51:d7:e5: 34:4a:1f:1d:7b:1a:f6:7d:cb:28:e7:c9:c7:d2:2e: fa:0b:46:40:20:00:6c:3f:65:32:7d:48:eb:e8:2a: bc:28:97:50:be:8f:8c:61:20:cd:6d:f3:1d:0a:2f: d8:63:ac:f8:44:b5:30:07:ba:51:96:53:1a:fe:83: d8:31:8d:05:01:f4:7e:13:f1:e0:91:1b:a3:cf:88: 83:b3:4e:47:26:7e:3a:b7:22:49:77:dc:8c:6b:a8: eb:14:4b:b9:b6:68:4d:59:63:7f:27:77:b1:93:6e: f3:30:e2:2a:9b:dd:6f:5b:f8:b8:11:92:a7:02:bb: d2:c3:57:70:90:b1:f3:fb:71:a8:17:f1:11:da:ff: 21:09:20:3a:c5:39:7a:06:05:9c:08:c8:87:f3:e5: 84:93:d2:40:61:7c:b3:cd:b8:88:e2:a9:61:28:17: 5b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7B:C2:B8:34:E5:16:C5:A6:B1:95:44:03:88:EF:E0:92:C6:5F:14 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663530303a3a2f34302d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f500::/40 Signature Algorithm: sha256WithRSAEncryption ae:15:82:ce:15:87:8f:b1:a7:a4:74:4f:90:52:ce:21:34:56: 2e:35:c4:d5:57:de:23:84:24:fd:3a:06:f9:95:c8:7c:98:1d: 01:90:5c:9c:05:e5:ea:6a:81:eb:45:63:a7:8f:d9:a8:98:3d: 83:53:15:f9:28:b9:d9:c9:43:3d:61:57:5b:1b:d2:f9:db:3a: 0c:b9:74:14:0e:ad:ae:e4:4f:b3:94:74:f2:cb:38:cc:fa:9b: a8:c1:42:5e:40:7d:67:1d:2e:54:24:98:06:27:25:ba:b0:1b: 84:a4:45:a2:4c:07:ab:b3:83:69:9a:09:f5:79:3c:b5:b5:a4: 0c:3a:53:51:4f:ce:87:1e:52:48:05:a7:60:77:95:6b:7f:be: bd:b1:c9:70:ae:bb:6d:a0:32:01:68:c2:7a:99:ee:65:5a:35: 72:b2:fe:b5:3d:26:0e:cb:4e:20:76:b8:a3:af:7d:db:e2:24: 70:dd:13:8b:89:54:e3:8e:2f:2d:92:34:50:ad:02:4d:6f:78: 6b:42:e1:d9:11:88:a6:08:64:73:bb:97:62:a9:20:25:5a:2e: c0:44:fc:8c:e9:c4:dd:2e:50:2a:5c:e2:45:75:51:b2:94:d4: 0a:a6:81:43:28:ec:a9:89:a8:9e:68:fb:25:23:e1:40:50:b0: f9:c2:54:9d -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUJgRu0DglfbOM/qnyEHrTYbp/lAAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MDIwNjQ2MjJaFw0yNjA2MDEwNjUxMjJaMDMxMTAvBgNV BAMTKDM4N0JDMkI4MzRFNTE2QzVBNkIxOTU0NDAzODhFRkUwOTJDNjVGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVmHvH5rblNSaPoJ6zrSK7P/J D9PP7kw7hJpGXFhpNBkyabJcnQ2A2f+dSvtBVq27mDnHklaFavi11TuqsWlgPO57 8/lUeVd7QA/3Lk4N/qS7Jx6BeFHX5TRKHx17GvZ9yyjnycfSLvoLRkAgAGw/ZTJ9 SOvoKrwol1C+j4xhIM1t8x0KL9hjrPhEtTAHulGWUxr+g9gxjQUB9H4T8eCRG6PP iIOzTkcmfjq3Ikl33IxrqOsUS7m2aE1ZY38nd7GTbvMw4iqb3W9b+LgRkqcCu9LD V3CQsfP7cagX8RHa/yEJIDrFOXoGBZwIyIfz5YST0kBhfLPNuIjiqWEoF1t/AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUOHvCuDTlFsWmsZVEA4jv4JLGXxQwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM1MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDM0MzczMjM3MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqBd/D9TANBgkqhkiG9w0BAQsFAAOCAQEArhWCzhWHj7GnpHRPkFLO ITRWLjXE1VfeI4Qk/ToG+ZXIfJgdAZBcnAXl6mqB60Vjp4/ZqJg9g1MV+Si52clD PWFXWxvS+ds6DLl0FA6truRPs5R08ss4zPqbqMFCXkB9Zx0uVCSYBiclurAbhKRF okwHq7ODaZoJ9Xk8tbWkDDpTUU/Ohx5SSAWnYHeVa3++vbHJcK67baAyAWjCepnu ZVo1crL+tT0mDstOIHa4o6992+IkcN0Ti4lU444vLZI0UK0CTW94a0Lh2RGIpghk c7uXYqkgJVouwET8jOnE3S5QKlziRXVRspTUCqaBQyjsqYmonmj7JSPhQFCw+cJU nQ== -----END CERTIFICATE-----Generated at Thu Jun 5 05:15:44 2025 by rpki-client