$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435303a3a2f34382d3438203d3e20323133363431.roa File: 326130353a646663333a666435303a3a2f34382d3438203d3e20323133363431.roa (raw, json) Hash identifier: kdyFV5qY6U+lnMxBfSK6cLaIjYGkGHEY2x0cPOWdWs8= Subject key identifier: 96:57:DD:E3:5A:99:1F:52:6A:34:8D:0E:F3:87:37:2D:1D:61:98:03 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 43F0555D4D8EA1FE2897CF164DA93CE7DEDBF5C4 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435303a3a2f34382d3438203d3e20323133363431.roa Signing time: Mon 02 Jun 2025 17:32:20 +0000 ROA not before: Mon 02 Jun 2025 17:27:20 +0000 ROA not after: Mon 01 Jun 2026 17:32:20 +0000 asID: 213641 IP address blocks: 2a05:dfc3:fd50::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 18:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:f0:55:5d:4d:8e:a1:fe:28:97:cf:16:4d:a9:3c:e7:de:db:f5:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 2 17:27:20 2025 GMT Not After : Jun 1 17:32:20 2026 GMT Subject: CN=9657DDE35A991F526A348D0EF387372D1D619803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8d:65:c2:bb:05:c3:7b:f8:ea:c7:97:8c:4a: 83:63:ea:8d:a9:2d:f5:cf:e0:11:46:f3:43:95:e0: d9:9c:7f:ef:8a:da:de:f5:22:00:11:d2:94:83:a3: f6:bb:79:7e:5a:a1:f9:7b:f1:e8:36:07:6b:dd:5a: d6:21:b7:e3:af:72:29:c7:4d:a1:9d:a2:50:b6:2d: e1:f3:00:53:f6:cc:ed:fc:7c:ec:f9:4a:ff:28:72: 16:36:ad:df:d9:f1:01:4b:71:35:c3:e2:a5:0d:2a: 8f:fe:9a:95:3c:ac:21:8f:94:83:65:7e:a8:4a:81: 47:92:63:fe:e3:14:ee:36:a6:1a:8e:ae:d2:bc:1b: dd:98:2a:17:82:1a:f4:cd:32:b2:39:f1:8a:eb:38: 9d:62:a4:cd:11:dd:02:2e:d6:55:b2:09:03:87:55: 67:bf:4c:1e:3c:75:74:03:c1:97:7c:07:35:b7:be: e3:c2:75:e4:d1:c4:9d:a5:b3:d9:51:82:c6:62:1b: 9c:a8:4b:66:60:06:ba:bd:9a:ea:a0:a4:17:7d:dc: 6d:59:5c:0d:d2:08:95:af:62:dc:99:b1:2c:c9:94: 01:65:e3:2a:dd:2b:0a:d8:c9:aa:a6:db:94:cd:de: 7c:33:3b:d2:61:c1:59:a0:ac:9b:1f:da:d0:e7:25: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:57:DD:E3:5A:99:1F:52:6A:34:8D:0E:F3:87:37:2D:1D:61:98:03 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435303a3a2f34382d3438203d3e20323133363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd50::/48 Signature Algorithm: sha256WithRSAEncryption ab:d6:c3:db:b9:c8:4e:d0:73:22:e1:c9:f5:5d:e2:f8:8d:e7: 4a:3f:64:2b:f3:c0:96:c3:fb:e2:5b:a4:7b:d6:71:f4:c8:96: 99:15:fc:6a:7c:40:57:bf:47:ef:72:04:72:c7:27:2c:d8:87: 3e:05:39:67:ca:bd:5b:f0:a0:c5:76:44:12:62:12:92:dc:b4: b1:c8:17:d6:3f:81:1c:24:0b:ed:53:bd:32:ee:25:b7:f6:28: 0f:5e:31:85:c4:dc:17:8b:f7:e6:ce:16:b2:98:d8:61:98:a2: e7:73:bf:f9:9a:a2:fc:1d:72:b1:47:12:7d:d1:8b:bd:2c:fd: 14:1d:4e:c3:a3:2d:56:a5:20:ac:79:2d:ef:7f:9b:7a:6d:60: 46:77:75:ba:b7:db:c5:8e:c9:c4:03:a1:d0:45:97:23:07:2c: 2e:d2:c3:6d:33:fb:94:43:53:13:da:44:2e:9f:d1:c5:28:da: a6:de:e8:a9:7e:88:15:12:6c:6c:9e:d3:a4:20:66:0f:30:b6: c0:85:4f:dc:73:0d:ee:f3:5e:2b:85:09:2b:41:e8:8f:6c:1c: 00:ae:56:1f:47:37:49:e6:de:33:7f:6e:15:34:b1:ee:a7:99: 88:01:21:0f:97:b7:5e:3c:c5:be:52:1e:92:a2:b9:c1:6a:10: 26:d4:66:19 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUQ/BVXU2Oof4ol88WTak8597b9cQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MDIxNzI3MjBaFw0yNjA2MDExNzMyMjBaMDMxMTAvBgNV BAMTKDk2NTdEREUzNUE5OTFGNTI2QTM0OEQwRUYzODczNzJEMUQ2MTk4MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVjWXCuwXDe/jqx5eMSoNj6o2p LfXP4BFG80OV4Nmcf++K2t71IgAR0pSDo/a7eX5aofl78eg2B2vdWtYht+OvcinH TaGdolC2LeHzAFP2zO38fOz5Sv8ochY2rd/Z8QFLcTXD4qUNKo/+mpU8rCGPlINl fqhKgUeSY/7jFO42phqOrtK8G92YKheCGvTNMrI58YrrOJ1ipM0R3QIu1lWyCQOH VWe/TB48dXQDwZd8BzW3vuPCdeTRxJ2ls9lRgsZiG5yoS2ZgBrq9muqgpBd93G1Z XA3SCJWvYtyZsSzJlAFl4yrdKwrYyaqm25TN3nwzO9JhwVmgrJsf2tDnJVNzAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUllfd41qZH1JqNI0O84c3LR1hmAMwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzUzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMzM2MzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38P9UDANBgkqhkiG9w0BAQsFAAOCAQEAq9bD27nITtBzIuHJ 9V3i+I3nSj9kK/PAlsP74luke9Zx9MiWmRX8anxAV79H73IEcscnLNiHPgU5Z8q9 W/CgxXZEEmISkty0scgX1j+BHCQL7VO9Mu4lt/YoD14xhcTcF4v35s4WspjYYZii 53O/+Zqi/B1ysUcSfdGLvSz9FB1Ow6MtVqUgrHkt73+bem1gRnd1urfbxY7JxAOh 0EWXIwcsLtLDbTP7lENTE9pELp/RxSjapt7oqX6IFRJsbJ7TpCBmDzC2wIVP3HMN 7vNeK4UJK0Hoj2wcAK5WH0c3SebeM39uFTSx7qeZiAEhD5e3XjzFvlIekqK5wWoQ JtRmGQ== -----END CERTIFICATE-----Generated at Thu Jun 5 05:17:58 2025 by rpki-client