$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435313a3a2f34382d3438203d3e20323133363431.roa File: 326130353a646663333a666435313a3a2f34382d3438203d3e20323133363431.roa (raw, json) Hash identifier: 048LXez3tGzQgqI4xfQ39oxExClYXwxdG/GMwQeQFL8= Subject key identifier: 82:A5:99:2A:6E:7D:82:E1:A7:4C:02:92:8D:9A:65:2D:E4:CE:0B:AA Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 209E8866691C7A8A66477455814CB1C0402C9854 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435313a3a2f34382d3438203d3e20323133363431.roa Signing time: Mon 02 Jun 2025 17:32:33 +0000 ROA not before: Mon 02 Jun 2025 17:27:33 +0000 ROA not after: Mon 01 Jun 2026 17:32:33 +0000 asID: 213641 IP address blocks: 2a05:dfc3:fd51::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9e:88:66:69:1c:7a:8a:66:47:74:55:81:4c:b1:c0:40:2c:98:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 2 17:27:33 2025 GMT Not After : Jun 1 17:32:33 2026 GMT Subject: CN=82A5992A6E7D82E1A74C02928D9A652DE4CE0BAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:56:58:b5:6a:a0:af:e7:8b:e0:c0:41:ac: b8:f5:fc:66:8b:1f:bb:53:a0:52:82:c6:4d:5c:7f: 6f:1c:ed:ed:3c:f8:9e:44:c0:34:85:02:40:74:a2: 4c:74:60:6d:7e:0a:e9:01:65:07:8a:df:58:cd:93: f3:eb:b8:fa:17:38:74:69:04:9c:47:71:09:78:cc: 30:c5:96:b8:27:d4:ce:46:90:41:b7:73:09:c4:d5: 70:cc:ad:dc:73:14:94:e2:46:27:c5:8c:7f:00:46: 35:fd:fd:42:f7:a0:75:8e:14:d0:67:6e:e4:48:80: 02:cd:8a:a3:34:a1:3f:6b:84:5f:d7:30:4c:09:73: b3:9d:63:1f:87:94:00:bd:1f:f7:cc:5a:c9:de:2e: 33:2b:62:90:b2:e6:8c:9b:17:30:aa:6d:88:b1:66: 32:62:98:09:14:44:2c:1f:2e:4d:37:16:6c:65:bc: 51:e2:5c:cb:a9:46:12:2e:01:91:56:e6:09:b1:d3: 03:cd:7d:2d:ee:c3:90:34:69:93:53:3e:af:2d:32: f7:ca:76:ac:28:80:67:79:ff:5a:12:d7:4b:34:00: 79:b3:12:bd:af:44:35:c5:55:40:60:55:eb:5c:69: 36:ff:9e:d5:ce:f2:6e:ad:4d:d8:21:a3:e9:e4:66: 60:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A5:99:2A:6E:7D:82:E1:A7:4C:02:92:8D:9A:65:2D:E4:CE:0B:AA X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666435313a3a2f34382d3438203d3e20323133363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd51::/48 Signature Algorithm: sha256WithRSAEncryption 5c:60:6d:88:a4:18:da:60:aa:72:18:ce:9c:3f:40:01:2f:05: c9:17:5b:de:3b:ee:4b:86:44:d3:c9:85:39:e5:26:a7:cc:ce: 96:82:1f:36:4c:46:3b:ea:b7:6b:a2:62:0b:9a:e6:fa:8e:54: 93:39:34:30:50:c6:d9:1e:07:9d:e5:fa:96:6c:85:d1:2d:0b: 46:b7:d9:29:74:5e:37:aa:63:2c:ec:2e:65:1c:5f:b2:28:3e: ee:7d:ce:58:84:42:8f:84:f1:87:73:26:1d:d5:99:0a:08:9a: 06:88:4d:d5:27:08:f3:e3:40:0c:ca:b4:2f:55:f7:ba:1e:ab: 82:bb:f9:77:69:c8:30:a2:7f:38:6a:ca:cc:02:99:c9:41:74: 35:82:25:fd:11:44:bc:99:ed:29:05:6d:c0:16:04:94:e5:ea: 1f:27:0e:ad:4f:d1:4a:2a:a3:70:56:24:0b:ed:d2:bf:5f:12: 80:e3:8d:40:1c:ed:73:59:be:cf:e3:03:60:74:7e:46:f7:83: 29:f9:9f:77:a4:7d:a2:12:99:1c:36:73:c4:89:74:f9:52:1d: 78:ff:9b:67:79:1e:f0:c5:b9:20:75:3b:2a:ad:a7:9d:79:5a: 7e:68:36:49:bf:be:a6:eb:79:46:f5:29:8b:da:63:b4:8b:50: 8f:38:36:3d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUIJ6IZmkceopmR3RVgUyxwEAsmFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MDIxNzI3MzNaFw0yNjA2MDExNzMyMzNaMDMxMTAvBgNV BAMTKDgyQTU5OTJBNkU3RDgyRTFBNzRDMDI5MjhEOUE2NTJERTRDRTBCQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChilZYtWqgr+eL4MBBrLj1/GaL H7tToFKCxk1cf28c7e08+J5EwDSFAkB0okx0YG1+CukBZQeK31jNk/PruPoXOHRp BJxHcQl4zDDFlrgn1M5GkEG3cwnE1XDMrdxzFJTiRifFjH8ARjX9/UL3oHWOFNBn buRIgALNiqM0oT9rhF/XMEwJc7OdYx+HlAC9H/fMWsneLjMrYpCy5oybFzCqbYix ZjJimAkURCwfLk03FmxlvFHiXMupRhIuAZFW5gmx0wPNfS3uw5A0aZNTPq8tMvfK dqwogGd5/1oS10s0AHmzEr2vRDXFVUBgVetcaTb/ntXO8m6tTdgho+nkZmDnAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUgqWZKm59guGnTAKSjZplLeTOC6owHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzUzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMzM2MzQzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38P9UTANBgkqhkiG9w0BAQsFAAOCAQEAXGBtiKQY2mCqchjO nD9AAS8FyRdb3jvuS4ZE08mFOeUmp8zOloIfNkxGO+q3a6JiC5rm+o5Ukzk0MFDG 2R4HneX6lmyF0S0LRrfZKXReN6pjLOwuZRxfsig+7n3OWIRCj4Txh3MmHdWZCgia BohN1ScI8+NADMq0L1X3uh6rgrv5d2nIMKJ/OGrKzAKZyUF0NYIl/RFEvJntKQVt wBYElOXqHycOrU/RSiqjcFYkC+3Sv18SgOONQBztc1m+z+MDYHR+RveDKfmfd6R9 ohKZHDZzxIl0+VIdeP+bZ3ke8MW5IHU7Kq2nnXlafmg2Sb++put5RvUpi9pjtItQ jzg2PQ== -----END CERTIFICATE-----Generated at Thu Jun 5 05:15:43 2025 by rpki-client