$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666330303a3a2f34302d3438203d3e20323131303636.roa File: 326130353a646663333a666330303a3a2f34302d3438203d3e20323131303636.roa (raw, json) Hash identifier: UpyRakloZLrx6SW/FpJJzZaRFXRGRhBTYjvuV63vWaM= Subject key identifier: C3:A3:13:0D:DB:2A:F6:56:EF:9B:B7:38:10:D1:D6:C4:F0:6F:77:78 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 4A6D3B4A0ABC3425EA7E2F00D6C039C5B7B6AD19 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666330303a3a2f34302d3438203d3e20323131303636.roa Signing time: Sun 30 Mar 2025 11:00:22 +0000 ROA not before: Sun 30 Mar 2025 10:55:22 +0000 ROA not after: Sun 29 Mar 2026 11:00:22 +0000 asID: 211066 IP address blocks: 2a05:dfc3:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 18 Apr 2025 11:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6d:3b:4a:0a:bc:34:25:ea:7e:2f:00:d6:c0:39:c5:b7:b6:ad:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Mar 30 10:55:22 2025 GMT Not After : Mar 29 11:00:22 2026 GMT Subject: CN=C3A3130DDB2AF656EF9BB73810D1D6C4F06F7778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:58:c3:f4:87:d8:6c:72:c5:b9:ab:cd:7d: fb:eb:25:9e:cb:13:9f:a3:39:d1:02:9d:c4:c4:30: ff:3b:17:cd:6d:b2:dc:f8:2b:53:7a:92:05:e0:f5: ef:8c:88:80:53:a0:d7:f2:80:d6:7e:7c:2e:4c:2a: 4f:3f:b0:bb:93:f2:74:a7:8a:73:59:87:c1:4b:ff: fb:e3:fa:83:11:58:21:f0:d3:7f:5a:f2:8a:5c:93: 03:f7:42:db:c8:37:47:29:92:64:16:e3:e7:3c:94: f5:e8:13:72:30:a4:01:b3:cb:51:fd:7e:81:54:05: 9e:b1:38:b0:20:1b:a0:ed:dd:a0:21:a4:71:ba:70: 87:71:3f:49:c2:d3:24:20:0b:8e:e4:d2:b4:5d:18: 65:1c:20:09:a8:f7:e8:43:1a:c2:9a:9f:eb:e5:2f: 7b:d9:90:43:f2:a4:69:79:d3:5d:3a:14:f2:fe:80: bb:04:31:9a:c3:4b:29:a8:a7:f9:c6:92:9b:22:2f: 67:57:37:c0:9a:98:0e:1d:fc:23:00:87:2c:b3:e6: b7:03:ba:7b:64:20:ca:d9:5a:62:52:25:42:ba:7f: 07:c1:b0:38:3f:89:ad:57:ae:f5:54:5c:e1:fb:79: 2a:a3:9d:81:f6:a1:46:8d:72:a3:ab:85:77:36:b1: e7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A3:13:0D:DB:2A:F6:56:EF:9B:B7:38:10:D1:D6:C4:F0:6F:77:78 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666330303a3a2f34302d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 24:68:18:c9:1d:b3:28:3a:ef:98:1a:02:9e:72:e7:a2:60:c3: 87:02:22:34:e4:42:50:06:c5:fb:92:80:84:b2:61:1c:c5:3d: dd:44:cc:7c:b3:4d:a6:a2:4d:ce:1b:28:84:b8:12:6c:eb:6e: a3:97:2b:fb:01:2b:d1:72:a1:24:88:a4:6b:61:dc:57:4e:60: 82:72:22:d9:bc:d2:b8:5d:64:b0:81:74:c8:26:34:7a:76:13: fd:1d:7f:f2:11:ec:50:cf:92:68:48:f6:3f:d3:37:c0:d9:4e: bf:78:9e:a1:20:6c:75:9d:8b:26:05:e4:66:7f:b1:34:7d:95: cd:54:24:45:a4:1f:35:e5:83:96:e8:23:46:25:90:f6:ea:d4: 83:01:38:44:f4:8a:d9:b3:16:a0:12:87:b4:d2:55:bf:0e:de: 97:d8:01:8a:76:77:5f:15:c5:ca:79:4d:59:9b:03:cd:17:5a: e7:58:99:82:b2:ff:3f:d9:8a:e2:87:86:93:13:35:85:b8:68: b1:44:83:35:bb:f5:c1:2a:0d:75:99:c6:e4:b8:b3:6f:22:81: db:70:fe:02:da:6b:de:12:25:37:91:5c:ad:6f:2b:df:3c:79: 9a:3d:9f:18:42:b5:47:86:9b:79:1a:5a:4a:54:2d:11:0b:ef: b9:ca:5e:97 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUSm07Sgq8NCXqfi8A1sA5xbe2rRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAzMzAxMDU1MjJaFw0yNjAzMjkxMTAwMjJaMDMxMTAvBgNV BAMTKEMzQTMxMzBEREIyQUY2NTZFRjlCQjczODEwRDFENkM0RjA2Rjc3NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6aFjD9IfYbHLFuavNffvrJZ7L E5+jOdECncTEMP87F81tstz4K1N6kgXg9e+MiIBToNfygNZ+fC5MKk8/sLuT8nSn inNZh8FL//vj+oMRWCHw039a8opckwP3QtvIN0cpkmQW4+c8lPXoE3IwpAGzy1H9 foFUBZ6xOLAgG6Dt3aAhpHG6cIdxP0nC0yQgC47k0rRdGGUcIAmo9+hDGsKan+vl L3vZkEPypGl50106FPL+gLsEMZrDSymop/nGkpsiL2dXN8CamA4d/CMAhyyz5rcD untkIMrZWmJSJUK6fwfBsDg/ia1XrvVUXOH7eSqjnYH2oUaNcqOrhXc2sedZAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUw6MTDdsq9lbvm7c4ENHWxPBvd3gwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjYzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzMTMwMzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoF38P8MA0GCSqGSIb3DQEBCwUAA4IBAQAkaBjJHbMoOu+YGgKe cueiYMOHAiI05EJQBsX7koCEsmEcxT3dRMx8s02mok3OGyiEuBJs626jlyv7ASvR cqEkiKRrYdxXTmCCciLZvNK4XWSwgXTIJjR6dhP9HX/yEexQz5JoSPY/0zfA2U6/ eJ6hIGx1nYsmBeRmf7E0fZXNVCRFpB815YOW6CNGJZD26tSDAThE9IrZsxagEoe0 0lW/Dt6X2AGKdndfFcXKeU1ZmwPNF1rnWJmCsv8/2Yrih4aTEzWFuGixRIM1u/XB Kg11mcbkuLNvIoHbcP4C2mveEiU3kVytbyvfPHmaPZ8YQrVHhpt5GlpKVC0RC++5 yl6X -----END CERTIFICATE-----Generated at Thu Apr 17 23:56:20 2025 by rpki-client