$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa File: 326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa (raw, json) Hash identifier: /Zbso6UkM6xgJFtVkakYf0EqePCwE/kvmC4G0qmKtJ8= Subject key identifier: AE:89:BC:84:48:86:D7:B4:44:0B:16:15:B4:A2:E6:B6:E5:D7:44:02 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 02A957E23B9051B3B09D876BEFC66A7B4A62DE66 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa Signing time: Wed 12 Mar 2025 03:35:12 +0000 ROA not before: Wed 12 Mar 2025 03:30:12 +0000 ROA not after: Wed 11 Mar 2026 03:35:12 +0000 asID: 214731 IP address blocks: 2a06:1281:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a9:57:e2:3b:90:51:b3:b0:9d:87:6b:ef:c6:6a:7b:4a:62:de:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Mar 12 03:30:12 2025 GMT Not After : Mar 11 03:35:12 2026 GMT Subject: CN=AE89BC844886D7B4440B1615B4A2E6B6E5D74402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6c:9a:7e:e4:68:25:83:31:95:1e:ad:4d:45: 20:41:0c:d4:5e:63:0b:8b:2d:86:e0:59:82:53:0b: 38:89:58:e1:d0:79:33:68:53:14:16:d0:f4:8a:1b: a9:05:27:b4:f7:9f:76:ec:7c:17:a0:61:32:b6:24: 05:3a:96:46:cf:c5:65:9b:69:bf:1f:db:ef:69:5b: ef:ff:79:dc:55:d6:1e:23:c6:75:f0:ee:b6:f6:c8: 1d:a0:be:60:ce:87:71:ff:6c:21:74:44:ee:26:83: a9:f2:bf:f6:cf:bf:c4:35:1e:b8:c0:52:cf:dd:61: 7e:7b:02:bc:ce:55:45:b9:e9:fe:fd:54:2e:1e:1e: b7:3f:5d:ae:0e:5f:6b:41:fa:1f:b7:10:c8:09:9c: 3e:ed:34:48:54:00:39:74:59:27:0b:d1:cb:e8:81: 72:69:e9:73:44:0d:b2:7a:78:eb:70:e4:6a:2d:38: fd:94:fa:bb:b2:65:ec:c9:f5:81:44:e0:50:34:74: d2:5f:f7:bf:93:8f:82:be:59:bb:3c:42:84:66:36: 66:d6:0a:46:2a:b7:09:ad:98:fe:41:b5:45:08:ff: 7f:e1:c8:56:5a:bb:c2:ca:db:2f:a8:f0:4d:d1:75: 01:f7:fd:24:90:f7:67:40:3d:2f:f1:89:bc:8f:8f: d1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:89:BC:84:48:86:D7:B4:44:0B:16:15:B4:A2:E6:B6:E5:D7:44:02 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a343030303a3a2f33362d3438203d3e20323134373331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:4000::/36 Signature Algorithm: sha256WithRSAEncryption 8e:c0:58:c5:91:84:bd:56:be:31:9a:0c:5c:ae:ad:e1:bd:eb: 68:c4:bd:f8:0d:3b:c0:2b:a7:ea:0d:67:27:0d:84:d4:30:54: c7:42:b6:fe:89:3c:c2:c2:4c:62:4e:6f:05:05:bd:fc:bf:07: d0:04:a8:6e:d6:c5:de:c3:17:01:f7:89:78:76:a1:56:3b:c6: ff:e7:b1:1f:ff:a4:d5:0b:ef:c8:3a:fb:36:df:ca:ad:83:f2: 6a:dc:9a:50:0b:3a:a2:cb:c9:bf:81:0b:f7:6b:6a:91:3e:10: 52:86:fa:56:ec:44:35:8f:56:eb:3c:6a:74:a0:f4:ad:8a:43: cc:50:f0:06:2f:12:d9:ae:dc:53:a4:55:fc:3f:36:93:59:5e: 00:1b:23:21:2b:54:5a:62:40:af:e2:c7:9e:0e:85:91:a2:20: b6:19:f0:44:36:ee:5b:78:55:97:c5:12:31:61:1d:04:88:b3: 63:bf:6e:9b:a2:3a:f7:30:84:8d:e0:64:87:80:57:40:ab:54: 89:da:6e:d9:41:47:b0:1e:35:98:da:77:22:b9:51:82:38:9f: 3c:f7:97:07:3b:32:b7:a8:94:aa:c8:17:39:7e:4e:22:e2:c8: 37:23:02:df:64:ab:3f:01:1a:94:b9:5f:f5:1b:4b:15:a3:66: b2:0c:bd:23 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUAqlX4juQUbOwnYdr78Zqe0pi3mYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAzMTIwMzMwMTJaFw0yNjAzMTEwMzM1MTJaMDMxMTAvBgNV BAMTKEFFODlCQzg0NDg4NkQ3QjQ0NDBCMTYxNUI0QTJFNkI2RTVENzQ0MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDebJp+5GglgzGVHq1NRSBBDNRe YwuLLYbgWYJTCziJWOHQeTNoUxQW0PSKG6kFJ7T3n3bsfBegYTK2JAU6lkbPxWWb ab8f2+9pW+//edxV1h4jxnXw7rb2yB2gvmDOh3H/bCF0RO4mg6nyv/bPv8Q1HrjA Us/dYX57ArzOVUW56f79VC4eHrc/Xa4OX2tB+h+3EMgJnD7tNEhUADl0WScL0cvo gXJp6XNEDbJ6eOtw5GotOP2U+ruyZezJ9YFE4FA0dNJf97+Tj4K+Wbs8QoRmNmbW CkYqtwmtmP5BtUUI/3/hyFZau8LK2y+o8E3RdQH3/SSQ92dAPS/xibyPj9H1AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUrom8hEiG17RECxYVtKLmtuXXRAIwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzYzYTMxMzIzODMx M2EzNDMwMzAzMDNhM2EyZjMzMzYyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzMzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoGEoFAMA0GCSqGSIb3DQEBCwUAA4IBAQCOwFjFkYS9Vr4xmgxc rq3hvetoxL34DTvAK6fqDWcnDYTUMFTHQrb+iTzCwkxiTm8FBb38vwfQBKhu1sXe wxcB94l4dqFWO8b/57Ef/6TVC+/IOvs238qtg/Jq3JpQCzqiy8m/gQv3a2qRPhBS hvpW7EQ1j1brPGp0oPStikPMUPAGLxLZrtxTpFX8PzaTWV4AGyMhK1RaYkCv4see DoWRoiC2GfBENu5beFWXxRIxYR0EiLNjv26bojr3MISN4GSHgFdAq1SJ2m7ZQUew HjWY2nciuVGCOJ8895cHOzK3qJSqyBc5fk4i4sg3IwLfZKs/ARqUuV/1G0sVo2ay DL0j -----END CERTIFICATE-----Generated at Sun Apr 6 11:46:46 2025 by rpki-client