$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663830303a3a2f34302d3438203d3e20323134373537.roa File: 326130353a646663333a663830303a3a2f34302d3438203d3e20323134373537.roa (raw, json) Hash identifier: WY1zC8YYMNWgIryax8ZbbnxRSteiasgKokbhTCKQ3jc= Subject key identifier: 52:78:00:7C:F9:95:78:8A:50:F2:57:87:7E:7D:C5:97:63:5F:D5:D7 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 54F50F4E8225D4CA0F33BDC3A132DAA06C08BCCA Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663830303a3a2f34302d3438203d3e20323134373537.roa Signing time: Sat 17 May 2025 19:16:03 +0000 ROA not before: Sat 17 May 2025 19:11:03 +0000 ROA not after: Sat 16 May 2026 19:16:03 +0000 asID: 214757 IP address blocks: 2a05:dfc3:f800::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 14:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:f5:0f:4e:82:25:d4:ca:0f:33:bd:c3:a1:32:da:a0:6c:08:bc:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 17 19:11:03 2025 GMT Not After : May 16 19:16:03 2026 GMT Subject: CN=5278007CF995788A50F257877E7DC597635FD5D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a8:dc:50:26:2a:a2:2a:9c:08:22:d2:97:40: 81:66:c8:75:16:d0:b8:b9:87:7e:6d:f8:0b:e7:4d: e1:ec:3e:b6:ee:d3:f7:e8:80:ad:2a:17:c3:f8:23: 7f:fa:9b:12:30:65:e7:03:0b:45:76:db:89:6b:f2: 09:3b:8f:2f:4b:e1:28:f3:5c:f9:0e:cb:d2:e7:27: f0:4a:7f:32:07:16:f8:5b:5f:9d:28:72:1d:c0:fd: 08:2e:61:39:d1:e8:9f:ba:3b:e3:e5:2e:40:fe:68: 69:e6:13:00:2e:aa:52:39:10:cb:9b:3b:e8:cb:d3: 28:3c:14:8f:f8:de:1b:a5:d4:2c:13:91:9f:d8:69: 3c:aa:44:4b:be:bd:3d:99:d5:da:a8:b5:ed:62:34: 4d:4f:44:07:b0:8e:4f:b5:7f:f8:0c:14:5b:9c:fa: ab:57:8e:d3:de:01:bd:17:b9:ea:c2:3c:9a:ae:32: 45:a6:43:70:ea:0e:90:bc:54:a6:9e:d2:21:d8:46: 3a:8e:7b:7c:f0:6b:cf:ed:ab:74:d0:cc:57:e9:20: 68:1a:9c:e5:cb:9d:7b:e7:94:73:a2:b9:f7:55:d2: 87:d8:25:19:9d:e6:df:84:a0:0c:b7:40:f2:45:5d: dd:73:82:5b:58:56:e2:f2:3a:9d:1a:b1:78:b1:dc: 84:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:78:00:7C:F9:95:78:8A:50:F2:57:87:7E:7D:C5:97:63:5F:D5:D7 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663830303a3a2f34302d3438203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f800::/40 Signature Algorithm: sha256WithRSAEncryption 31:c4:2f:73:96:a4:34:64:6c:ae:15:68:08:6b:0a:00:d5:25: 98:dc:38:77:b9:25:e5:52:37:4d:b4:1a:42:1a:0f:c1:46:aa: fe:07:d0:58:ac:11:62:e1:10:52:57:f1:85:e8:1f:9c:ef:31: d0:f7:f2:2b:d5:61:29:af:5f:1e:91:a4:4b:b6:82:f2:9e:e6: 1d:e3:8f:97:a8:77:ac:b1:3a:98:0b:2f:46:1f:50:71:8f:28: 4d:37:7c:e8:a7:ae:0c:cf:09:24:0f:fb:be:ea:ff:f9:86:be: 26:fd:43:d8:3d:11:69:99:68:ca:62:d2:ca:4d:9a:64:5e:18: ce:ad:0b:29:85:58:22:24:77:b5:d5:08:8f:79:4f:bd:11:dd: aa:70:b0:5c:58:37:32:50:0a:8d:0f:8c:e8:64:46:6a:9e:eb: 17:cc:16:16:02:71:52:32:eb:ef:50:19:42:33:99:03:7e:41: 2b:e6:7f:2f:9c:6c:28:c3:d5:3c:3a:ee:f3:b7:30:4b:01:69: ce:9e:e5:07:ff:8a:27:4c:fe:35:b5:ce:c0:f6:52:92:0d:f6: d1:7e:9c:50:1c:f7:5a:0f:03:e4:f4:ea:1a:21:ca:30:13:69: 30:f5:73:d2:87:88:d3:1f:16:a5:46:cd:f0:e3:ae:b8:a1:ac: 14:52:8f:c0 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUVPUPToIl1MoPM73DoTLaoGwIvMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MTcxOTExMDNaFw0yNjA1MTYxOTE2MDNaMDMxMTAvBgNV BAMTKDUyNzgwMDdDRjk5NTc4OEE1MEYyNTc4NzdFN0RDNTk3NjM1RkQ1RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcqNxQJiqiKpwIItKXQIFmyHUW 0Li5h35t+AvnTeHsPrbu0/fogK0qF8P4I3/6mxIwZecDC0V224lr8gk7jy9L4Sjz XPkOy9LnJ/BKfzIHFvhbX50och3A/QguYTnR6J+6O+PlLkD+aGnmEwAuqlI5EMub O+jL0yg8FI/43hul1CwTkZ/YaTyqREu+vT2Z1dqote1iNE1PRAewjk+1f/gMFFuc +qtXjtPeAb0XuerCPJquMkWmQ3DqDpC8VKae0iHYRjqOe3zwa8/tq3TQzFfpIGga nOXLnXvnlHOiufdV0ofYJRmd5t+EoAy3QPJFXd1zgltYVuLyOp0asXix3IT1AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUUngAfPmVeIpQ8leHfn3Fl2Nf1dcwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM4MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzUzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoF38P4MA0GCSqGSIb3DQEBCwUAA4IBAQAxxC9zlqQ0ZGyuFWgI awoA1SWY3Dh3uSXlUjdNtBpCGg/BRqr+B9BYrBFi4RBSV/GF6B+c7zHQ9/Ir1WEp r18ekaRLtoLynuYd44+XqHessTqYCy9GH1BxjyhNN3zop64MzwkkD/u+6v/5hr4m /UPYPRFpmWjKYtLKTZpkXhjOrQsphVgiJHe11QiPeU+9Ed2qcLBcWDcyUAqND4zo ZEZqnusXzBYWAnFSMuvvUBlCM5kDfkEr5n8vnGwow9U8Ou7ztzBLAWnOnuUH/4on TP41tc7A9lKSDfbRfpxQHPdaDwPk9OoaIcowE2kw9XPSh4jTHxalRs3w4664oawU Uo/A -----END CERTIFICATE-----Generated at Tue Jun 3 03:51:14 2025 by rpki-client