$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a313030303a3a2f33362d3336203d3e203437323732.roa File: 326130363a313238313a313030303a3a2f33362d3336203d3e203437323732.roa (raw, json) Hash identifier: wFIGWHqaoPZKqjHFP7efUJEfoHA4nLJBi6RaZQaFuOg= Subject key identifier: F0:B3:1C:A6:CD:7F:EB:AC:37:05:B3:06:D9:68:FD:7A:A7:1B:14:6D Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 58A53F6E3954D9EE32F49FC08F9F67F3629CA4B0 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a313030303a3a2f33362d3336203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:19 +0000 ROA not before: Fri 07 Feb 2025 19:08:19 +0000 ROA not after: Fri 06 Feb 2026 19:13:19 +0000 asID: 47272 IP address blocks: 2a06:1281:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a5:3f:6e:39:54:d9:ee:32:f4:9f:c0:8f:9f:67:f3:62:9c:a4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:08:19 2025 GMT Not After : Feb 6 19:13:19 2026 GMT Subject: CN=F0B31CA6CD7FEBAC3705B306D968FD7AA71B146D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:82:8b:38:bc:62:95:be:5e:0a:de:0b:dc:49: 6a:c0:07:61:63:37:93:9d:bd:cd:3d:f1:d5:10:14: 2c:a3:10:c3:c5:1a:8a:10:91:c9:12:7e:33:44:60: 67:7a:80:02:30:07:52:91:9d:6c:7b:29:20:c0:d5: 74:14:a8:d6:e3:c7:25:29:90:d1:41:90:35:82:c0: c3:1a:1a:8f:f8:01:4e:a4:ef:aa:1d:a1:91:de:60: 40:39:d3:57:7f:89:af:d2:ee:20:b4:38:f9:a9:08: 8c:45:02:4e:6c:e5:0a:9f:7d:b0:76:ec:1f:60:a0: 37:98:35:e3:48:43:48:02:2c:54:90:31:4d:15:63: d2:75:0b:8c:8e:02:fd:d1:88:bd:f4:43:9e:94:4d: d1:3d:56:29:7e:1a:63:e5:76:2b:9c:bc:14:91:3d: 32:3e:b6:32:bb:ff:b5:96:33:e1:60:e2:97:74:ab: 00:a6:08:5d:59:d3:66:89:a5:50:e4:96:12:34:c2: 34:e8:61:49:f8:4f:1d:e7:b0:f7:e1:80:d5:c2:6f: 1e:6d:f7:3d:09:08:49:55:55:df:aa:e3:29:e9:0d: 9c:ee:f1:2e:e5:6c:49:18:8f:aa:16:60:c9:b7:24: 04:44:55:51:a9:2f:f7:5e:e0:16:b9:65:63:6b:01: dc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B3:1C:A6:CD:7F:EB:AC:37:05:B3:06:D9:68:FD:7A:A7:1B:14:6D X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a313030303a3a2f33362d3336203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:1000::/36 Signature Algorithm: sha256WithRSAEncryption 9a:71:32:c6:03:16:b0:a6:dd:7f:dd:fa:ba:b4:3a:23:f9:20: a8:90:47:71:86:11:6b:33:e6:1f:f8:9e:7e:a9:cc:72:a4:2e: 85:76:fa:ca:70:2d:5f:00:ad:21:e2:6a:6f:83:73:c2:0e:bd: 54:ac:7f:ae:5d:8e:de:a9:f7:03:e3:06:a8:2e:ae:ef:d5:b8: 26:ae:d4:77:1c:f5:89:84:6a:88:0d:db:45:12:01:8a:ce:4e: 38:8d:07:a9:6c:ad:52:bd:c1:14:c0:e8:d3:c1:9f:d0:da:b2: 2e:78:0d:5d:16:77:90:42:87:86:0c:9b:84:d9:4e:2e:65:c9: 96:20:ad:b2:69:1c:56:42:e1:d0:93:2e:e4:10:8f:8d:0f:0f: 89:f5:54:3e:af:74:c3:e2:2e:ec:f8:cc:06:cd:08:76:60:37: 46:55:93:74:38:c4:ac:b5:60:52:52:8a:cb:ae:e0:79:97:46: 09:24:f9:98:13:16:06:36:37:a0:ec:58:9a:ca:22:49:34:83: 05:bc:bc:25:1a:8a:31:6a:af:ad:47:cf:87:0a:9c:25:1f:0a: 2c:58:c6:ac:27:8d:f0:c1:b6:a5:55:42:1c:be:aa:34:45:76: 7b:6b:c9:36:e3:c7:8c:9a:2f:a4:f7:98:87:6b:c3:fc:8d:be: 49:4d:cf:ca -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUWKU/bjlU2e4y9J/Aj59n82KcpLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA4MTlaFw0yNjAyMDYxOTEzMTlaMDMxMTAvBgNV BAMTKEYwQjMxQ0E2Q0Q3RkVCQUMzNzA1QjMwNkQ5NjhGRDdBQTcxQjE0NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0gos4vGKVvl4K3gvcSWrAB2Fj N5Odvc098dUQFCyjEMPFGooQkckSfjNEYGd6gAIwB1KRnWx7KSDA1XQUqNbjxyUp kNFBkDWCwMMaGo/4AU6k76odoZHeYEA501d/ia/S7iC0OPmpCIxFAk5s5QqffbB2 7B9goDeYNeNIQ0gCLFSQMU0VY9J1C4yOAv3RiL30Q56UTdE9Vil+GmPldiucvBSR PTI+tjK7/7WWM+Fg4pd0qwCmCF1Z02aJpVDklhI0wjToYUn4Tx3nsPfhgNXCbx5t 9z0JCElVVd+q4ynpDZzu8S7lbEkYj6oWYMm3JAREVVGpL/de4Ba5ZWNrAdy1AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQU8LMcps1/66w3BbMG2Wj9eqcbFG0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzYzYTMxMzIzODMx M2EzMTMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDM0MzczMjM3MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQqBhKBEDANBgkqhkiG9w0BAQsFAAOCAQEAmnEyxgMWsKbdf936urQ6 I/kgqJBHcYYRazPmH/iefqnMcqQuhXb6ynAtXwCtIeJqb4Nzwg69VKx/rl2O3qn3 A+MGqC6u79W4Jq7Udxz1iYRqiA3bRRIBis5OOI0HqWytUr3BFMDo08Gf0NqyLngN XRZ3kEKHhgybhNlOLmXJliCtsmkcVkLh0JMu5BCPjQ8PifVUPq90w+Iu7PjMBs0I dmA3RlWTdDjErLVgUlKKy67geZdGCST5mBMWBjY3oOxYmsoiSTSDBby8JRqKMWqv rUfPhwqcJR8KLFjGrCeN8MG2pVVCHL6qNEV2e2vJNuPHjJovpPeYh2vD/I2+SU3P yg== -----END CERTIFICATE-----Generated at Thu Apr 3 07:11:55 2025 by rpki-client