$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666433303a3a2f34342d3532203d3e20323038393133.roa File: 326130353a646663333a666433303a3a2f34342d3532203d3e20323038393133.roa (raw, json) Hash identifier: 6TPtOgy2xuVsrLhhMgZTAM5eUxcGQt0m68YHa6fv0UM= Subject key identifier: F5:9C:66:1A:F4:C3:A8:C5:4C:64:F4:B0:AE:48:9F:35:0F:34:B5:1D Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 6497928D6E88A5677B143C5591B4C3ABD8A620C1 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666433303a3a2f34342d3532203d3e20323038393133.roa Signing time: Sun 11 May 2025 14:43:36 +0000 ROA not before: Sun 11 May 2025 14:38:36 +0000 ROA not after: Sun 10 May 2026 14:43:36 +0000 asID: 208913 IP address blocks: 2a05:dfc3:fd30::/44 maxlen: 52 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:97:92:8d:6e:88:a5:67:7b:14:3c:55:91:b4:c3:ab:d8:a6:20:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 11 14:38:36 2025 GMT Not After : May 10 14:43:36 2026 GMT Subject: CN=F59C661AF4C3A8C54C64F4B0AE489F350F34B51D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1d:69:22:2f:2f:bd:7b:08:9d:79:11:97:cc: 09:d1:49:b6:16:1a:4d:20:92:2c:b1:04:4a:dd:50: f7:c8:80:db:d2:44:9e:e3:58:33:bb:fa:00:9f:ca: 4e:b4:8f:a1:2b:30:2f:f3:2f:3f:bf:5a:df:df:7d: 7c:68:d0:06:85:1d:44:f4:d9:7a:33:39:df:d6:f0: 18:eb:3f:85:22:68:34:c4:ae:6e:82:ac:05:3d:df: fa:60:c1:02:d6:79:20:9d:b8:7b:db:77:1b:44:23: e6:12:f2:ef:74:1d:ac:1b:10:e3:c8:2f:f5:47:99: 5e:fe:ef:65:6a:6b:54:86:28:02:13:ed:55:26:9f: dc:7f:3f:9c:fe:f7:16:8a:7a:1f:c1:6a:bc:12:19: 95:05:bf:fd:44:db:86:80:a4:34:3a:0b:f7:bc:5f: a7:e6:db:1a:29:cf:0b:6d:69:b0:3e:7e:ad:6f:38: b3:30:ab:88:c2:95:13:be:68:35:36:cd:9f:0a:58: 47:c4:9f:df:1b:d7:7c:b0:b0:7a:23:53:8d:a3:6f: 89:78:00:86:cf:50:b2:bf:cc:4e:b5:e2:cd:52:80: c2:0c:c7:eb:22:30:a7:dc:11:72:77:11:0c:7b:40: fb:da:f3:d9:ae:32:ce:c2:6c:3e:6a:43:bc:8c:b4: 94:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9C:66:1A:F4:C3:A8:C5:4C:64:F4:B0:AE:48:9F:35:0F:34:B5:1D X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666433303a3a2f34342d3532203d3e20323038393133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd30::/44 Signature Algorithm: sha256WithRSAEncryption b9:9f:a7:46:c0:b7:e1:13:4c:fc:36:e1:96:7b:ec:e8:23:ff: d6:84:b3:06:93:d6:c7:cf:d5:5a:5f:fa:dd:78:2f:fa:b7:a3: fb:49:5e:a2:9a:05:4b:4e:fe:c5:0d:e5:fe:33:f9:50:d9:3d: 36:e2:86:c9:58:0a:7d:f3:30:1e:b8:8d:6b:b3:8d:0b:b5:09: a4:30:aa:b4:6a:8b:33:51:00:c1:47:be:da:16:8d:68:45:ea: dc:9a:6a:2b:56:18:98:2b:fc:1b:a4:5f:b9:13:e9:47:6b:2e: 19:f3:23:bf:b7:36:58:13:f4:34:4d:d9:56:61:44:fd:b7:80: 23:4f:7b:97:b1:61:84:f3:48:6f:68:98:b9:6a:fe:b9:f6:15: 7d:46:6f:8f:dc:2d:06:15:4c:7e:13:d3:31:be:ba:b5:6c:ef: 64:53:f7:bf:a0:b5:1d:07:08:9d:45:95:52:2a:51:1f:5a:2e: 72:8c:4c:1a:e3:00:24:a3:3b:35:a5:7f:2e:ae:49:b5:44:39: 21:2b:42:3f:bd:06:15:02:e6:06:45:0c:61:be:35:64:df:d9: 1d:fa:c7:9f:49:fa:85:a5:b8:40:d3:c1:49:76:24:3f:ea:96: 1c:89:f3:ba:52:7e:0d:ed:14:ce:32:8f:b9:6b:02:a7:83:51: 41:f7:18:be -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZJeSjW6IpWd7FDxVkbTDq9imIMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MTExNDM4MzZaFw0yNjA1MTAxNDQzMzZaMDMxMTAvBgNV BAMTKEY1OUM2NjFBRjRDM0E4QzU0QzY0RjRCMEFFNDg5RjM1MEYzNEI1MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbHWkiLy+9ewideRGXzAnRSbYW Gk0gkiyxBErdUPfIgNvSRJ7jWDO7+gCfyk60j6ErMC/zLz+/Wt/ffXxo0AaFHUT0 2XozOd/W8BjrP4UiaDTErm6CrAU93/pgwQLWeSCduHvbdxtEI+YS8u90HawbEOPI L/VHmV7+72Vqa1SGKAIT7VUmn9x/P5z+9xaKeh/BarwSGZUFv/1E24aApDQ6C/e8 X6fm2xopzwttabA+fq1vOLMwq4jClRO+aDU2zZ8KWEfEn98b13ywsHojU42jb4l4 AIbPULK/zE614s1SgMIMx+siMKfcEXJ3EQx7QPva89muMs7CbD5qQ7yMtJRtAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU9ZxmGvTDqMVMZPSwrkifNQ80tR0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzMzMDNhM2EyZjM0MzQyZDM1MzIyMDNkM2UyMDMyMzAzODM5MzEzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoF38P9MDANBgkqhkiG9w0BAQsFAAOCAQEAuZ+nRsC34RNM/Dbh lnvs6CP/1oSzBpPWx8/VWl/63Xgv+rej+0leopoFS07+xQ3l/jP5UNk9NuKGyVgK ffMwHriNa7ONC7UJpDCqtGqLM1EAwUe+2haNaEXq3JpqK1YYmCv8G6RfuRPpR2su GfMjv7c2WBP0NE3ZVmFE/beAI097l7FhhPNIb2iYuWr+ufYVfUZvj9wtBhVMfhPT Mb66tWzvZFP3v6C1HQcInUWVUipRH1oucoxMGuMAJKM7NaV/Lq5JtUQ5IStCP70G FQLmBkUMYb41ZN/ZHfrHn0n6haW4QNPBSXYkP+qWHInzulJ+De0UzjKPuWsCp4NR QfcYvg== -----END CERTIFICATE-----Generated at Tue Jun 3 10:19:01 2025 by rpki-client