$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663730303a3a2f34302d3438203d3e20313333353034.roa File: 326130353a646663333a663730303a3a2f34302d3438203d3e20313333353034.roa (raw, json) Hash identifier: gAyhAmmliGD3SbJvh89EzqC9ksfZA2ZNn0Mr++XjUCI= Subject key identifier: 8C:FF:31:9F:6D:42:32:BC:09:E0:AC:80:9B:CF:3E:67:02:11:E1:FF Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 6C0531ED59EA74E1D59703C5713AAFCF876DF5C3 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663730303a3a2f34302d3438203d3e20313333353034.roa Signing time: Sun 25 May 2025 14:29:33 +0000 ROA not before: Sun 25 May 2025 14:24:33 +0000 ROA not after: Sun 24 May 2026 14:29:33 +0000 asID: 133504 IP address blocks: 2a05:dfc3:f700::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:05:31:ed:59:ea:74:e1:d5:97:03:c5:71:3a:af:cf:87:6d:f5:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 25 14:24:33 2025 GMT Not After : May 24 14:29:33 2026 GMT Subject: CN=8CFF319F6D4232BC09E0AC809BCF3E670211E1FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:72:37:fa:d8:41:d4:fa:a4:fd:61:54:6e:f9: ce:a1:25:ad:d6:c0:f4:62:11:d2:61:64:9c:33:bd: be:d1:1a:0a:c0:4b:39:df:01:1f:55:29:68:2d:c5: c8:a2:83:01:84:4a:ed:96:0f:ab:6a:94:1f:5e:c6: e4:40:40:e2:38:7d:65:cb:0a:13:eb:46:fb:3f:41: fb:c1:ed:c2:c9:64:1d:d2:6d:a0:0c:87:63:59:54: 74:0b:fe:1d:b8:99:0b:4e:f5:23:71:1f:fb:e3:13: bf:32:1f:f4:6a:51:5e:75:09:f6:7c:7f:da:d0:6c: 49:ba:9f:dc:b6:4f:d1:d4:00:e2:44:79:6e:db:20: 00:64:bf:ad:2b:15:56:01:b8:f2:9d:bf:39:cc:14: 7d:90:43:92:62:f3:16:8b:5c:61:38:10:99:08:0d: 00:eb:d3:65:61:4e:7c:51:22:d4:4d:be:02:e2:62: 5c:4d:b4:dd:58:39:e7:58:1b:b2:63:b3:a4:33:8d: fe:08:f4:78:81:66:03:95:60:24:f4:16:a6:f8:da: 70:67:b9:2d:37:1d:06:13:72:82:90:67:00:72:15: 5d:d3:41:4e:82:03:72:32:0e:b8:9b:d3:7c:e8:e6: 1d:c7:54:95:b2:b3:96:b5:0f:85:c7:e0:16:65:94: 8a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FF:31:9F:6D:42:32:BC:09:E0:AC:80:9B:CF:3E:67:02:11:E1:FF X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663730303a3a2f34302d3438203d3e20313333353034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f700::/40 Signature Algorithm: sha256WithRSAEncryption 0c:69:80:33:13:ac:0d:3b:df:7b:d9:2f:6d:11:73:47:a6:c9: 64:7b:50:e9:8d:ba:4d:5e:32:5c:6a:81:af:2f:60:9e:59:6e: 2e:8b:d1:d4:17:61:63:22:82:d7:e9:55:6d:fa:9f:8c:92:ad: 8b:ef:c2:7f:26:8c:10:d9:73:c9:dd:46:96:5c:97:a9:a8:59: 67:0f:44:35:23:7e:9b:3c:ce:7b:85:b4:48:30:10:ff:da:43: 9c:85:81:d4:c8:c5:07:72:a3:5a:3c:0a:c7:18:28:0a:b8:3f: 68:5a:a7:c0:bc:88:06:03:b3:96:af:bb:01:ce:dd:d0:3e:87: 9b:ff:ba:06:62:6d:92:3a:72:f9:46:ca:00:69:32:d9:d5:c8: 30:ee:9b:dc:34:02:10:8f:42:95:42:12:a5:fd:7f:76:7f:21: ef:7a:2d:68:42:4f:82:ab:49:8d:a6:e9:f4:99:91:0e:ea:5b: cc:af:47:c8:5c:fd:36:48:88:e9:b5:eb:6a:33:11:e2:b2:4d: 13:c3:11:22:d9:56:4e:c9:52:64:75:30:02:09:e3:d5:21:0a: 55:d9:dd:16:67:92:70:ef:49:f3:52:89:ca:f0:80:7c:8e:05: 66:e0:e2:7b:a8:13:2d:6c:03:10:24:48:12:98:8e:4e:02:53: c2:15:9c:ed -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUbAUx7VnqdOHVlwPFcTqvz4dt9cMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjUxNDI0MzNaFw0yNjA1MjQxNDI5MzNaMDMxMTAvBgNV BAMTKDhDRkYzMTlGNkQ0MjMyQkMwOUUwQUM4MDlCQ0YzRTY3MDIxMUUxRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPcjf62EHU+qT9YVRu+c6hJa3W wPRiEdJhZJwzvb7RGgrASznfAR9VKWgtxciigwGESu2WD6tqlB9exuRAQOI4fWXL ChPrRvs/QfvB7cLJZB3SbaAMh2NZVHQL/h24mQtO9SNxH/vjE78yH/RqUV51CfZ8 f9rQbEm6n9y2T9HUAOJEeW7bIABkv60rFVYBuPKdvznMFH2QQ5Ji8xaLXGE4EJkI DQDr02VhTnxRItRNvgLiYlxNtN1YOedYG7Jjs6Qzjf4I9HiBZgOVYCT0Fqb42nBn uS03HQYTcoKQZwByFV3TQU6CA3IyDrib03zo5h3HVJWys5a1D4XH4BZllIrDAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUjP8xn21CMrwJ4KyAm88+ZwIR4f8wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM3MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzMzMzM1MzAzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoF38P3MA0GCSqGSIb3DQEBCwUAA4IBAQAMaYAzE6wNO9972S9t EXNHpslke1DpjbpNXjJcaoGvL2CeWW4ui9HUF2FjIoLX6VVt+p+Mkq2L78J/JowQ 2XPJ3UaWXJepqFlnD0Q1I36bPM57hbRIMBD/2kOchYHUyMUHcqNaPArHGCgKuD9o WqfAvIgGA7OWr7sBzt3QPoeb/7oGYm2SOnL5RsoAaTLZ1cgw7pvcNAIQj0KVQhKl /X92fyHvei1oQk+Cq0mNpun0mZEO6lvMr0fIXP02SIjptetqMxHisk0TwxEi2VZO yVJkdTACCePVIQpV2d0WZ5Jw70nzUonK8IB8jgVm4OJ7qBMtbAMQJEgSmI5OAlPC FZzt -----END CERTIFICATE-----Generated at Tue Jun 3 10:20:18 2025 by rpki-client