$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a353030303a3a2f33362d3434203d3e20323039363933.roa File: 326130393a353463363a353030303a3a2f33362d3434203d3e20323039363933.roa (raw, json) Hash identifier: kM6OaBJXLF42Y5Wm8mlmPe9mHDjI6vPtFMSXB3hF+Nk= Subject key identifier: F4:44:39:F2:ED:DE:1E:63:CD:B7:89:08:64:00:AC:8D:0E:74:1C:CE Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 72CEFED9F956B8E5ADCDAA1C133A53118821E768 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a353030303a3a2f33362d3434203d3e20323039363933.roa Signing time: Sat 31 May 2025 11:22:29 +0000 ROA not before: Sat 31 May 2025 11:17:29 +0000 ROA not after: Sat 30 May 2026 11:22:29 +0000 asID: 209693 IP address blocks: 2a09:54c6:5000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ce:fe:d9:f9:56:b8:e5:ad:cd:aa:1c:13:3a:53:11:88:21:e7:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 31 11:17:29 2025 GMT Not After : May 30 11:22:29 2026 GMT Subject: CN=F44439F2EDDE1E63CDB789086400AC8D0E741CCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:17:73:96:bf:42:de:1d:2a:62:a1:67:44: 94:00:2f:37:15:6b:83:8d:30:1f:d5:18:9e:cf:07: d4:77:14:b2:9e:d3:29:e5:b1:8c:ef:2e:5e:04:88: eb:f3:26:7d:10:19:80:61:2c:3c:7a:7b:a7:90:b3: 24:aa:1c:5a:6f:4e:47:9c:d5:fe:49:33:bc:1a:bc: e7:ee:7e:96:22:48:bc:76:a6:90:01:68:a8:ae:a6: bd:23:38:c4:84:3e:2d:3d:7e:54:22:c1:97:ad:90: 5d:e0:25:1c:a2:f5:18:b3:0a:57:4c:5f:7a:92:3c: 00:01:f1:d0:b4:b0:f6:90:e8:2f:1b:27:da:46:50: 1e:62:8f:62:55:95:70:cb:12:4b:8f:57:eb:9a:e1: fd:81:f9:46:d0:e0:00:63:77:01:d2:5b:f1:e6:ab: f9:ba:57:b9:68:13:e6:36:fd:de:de:e8:69:b8:ef: d9:c6:96:ca:0e:62:4c:a0:57:73:89:f6:83:18:83: 15:f9:08:b5:90:78:fe:e6:c5:46:7c:29:8e:58:fd: 94:92:a2:54:26:0b:18:75:54:b0:f4:6a:89:0a:1b: e8:4b:7d:79:51:89:b1:e0:09:fa:e1:5a:81:43:66: 15:b9:9b:4e:6a:95:79:c9:dc:9e:27:26:7e:34:4a: c1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:44:39:F2:ED:DE:1E:63:CD:B7:89:08:64:00:AC:8D:0E:74:1C:CE X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a353030303a3a2f33362d3434203d3e20323039363933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:5000::/36 Signature Algorithm: sha256WithRSAEncryption 4d:51:4b:1c:85:4c:cd:36:a6:81:13:02:d4:a4:c4:09:eb:0b: 58:2d:fd:03:ba:c7:87:1e:dc:58:47:73:e3:c9:1c:a4:59:64: 2a:ac:c6:75:ff:ca:eb:d9:e0:3a:20:b7:68:2e:84:e3:05:70: bb:a7:2e:57:e1:b0:d7:e8:24:f8:d8:dd:19:02:fb:d2:a3:b0: 32:71:3f:33:5e:15:7a:8f:09:67:51:6b:31:d5:9b:6c:4b:6d: 88:72:02:db:1c:0e:52:6c:7c:47:2f:ee:54:c1:d8:44:1c:49: 73:09:d0:72:be:a2:ab:dc:b4:38:24:07:ae:7b:b1:4b:d4:f6: 2c:53:d7:3a:8f:77:b0:97:2f:bc:31:8f:d5:86:a1:8e:1d:c6: 6f:42:c7:92:d6:c6:06:e0:84:55:89:ac:21:3d:5e:6d:03:47: 18:27:3c:ef:52:17:98:a7:e0:c1:21:2f:99:37:96:2d:99:b8: 13:52:58:35:ce:d0:b4:1d:47:35:78:a6:df:5d:0e:0e:2c:1d: 47:5f:60:3a:26:13:ac:43:b3:cd:6e:47:fc:d3:79:f0:21:3c: 13:fe:76:d4:e6:cf:ac:2a:0e:c5:fd:6b:e3:17:4c:8e:5d:d8: db:34:13:3d:e8:ec:c0:05:48:0a:f3:7d:75:21:de:01:e1:1e: 1d:26:3e:c3 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUcs7+2flWuOWtzaocEzpTEYgh52gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MzExMTE3MjlaFw0yNjA1MzAxMTIyMjlaMDMxMTAvBgNV BAMTKEY0NDQzOUYyRURERTFFNjNDREI3ODkwODY0MDBBQzhEMEU3NDFDQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDALRdzlr9C3h0qYqFnRJQALzcV a4ONMB/VGJ7PB9R3FLKe0ynlsYzvLl4EiOvzJn0QGYBhLDx6e6eQsySqHFpvTkec 1f5JM7wavOfufpYiSLx2ppABaKiupr0jOMSEPi09flQiwZetkF3gJRyi9RizCldM X3qSPAAB8dC0sPaQ6C8bJ9pGUB5ij2JVlXDLEkuPV+ua4f2B+UbQ4ABjdwHSW/Hm q/m6V7loE+Y2/d7e6Gm479nGlsoOYkygV3OJ9oMYgxX5CLWQeP7mxUZ8KY5Y/ZSS olQmCxh1VLD0aokKG+hLfXlRibHgCfrhWoFDZhW5m05qlXnJ3J4nJn40SsHvAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU9EQ58u3eHmPNt4kIZACsjQ50HM4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzAzOTM2MzkzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMZQMA0GCSqGSIb3DQEBCwUAA4IBAQBNUUschUzNNqaBEwLU pMQJ6wtYLf0DuseHHtxYR3PjyRykWWQqrMZ1/8rr2eA6ILdoLoTjBXC7py5X4bDX 6CT42N0ZAvvSo7AycT8zXhV6jwlnUWsx1ZtsS22IcgLbHA5SbHxHL+5UwdhEHElz CdByvqKr3LQ4JAeue7FL1PYsU9c6j3ewly+8MY/VhqGOHcZvQseS1sYG4IRViawh PV5tA0cYJzzvUheYp+DBIS+ZN5YtmbgTUlg1ztC0HUc1eKbfXQ4OLB1HX2A6JhOs Q7PNbkf803nwITwT/nbU5s+sKg7F/WvjF0yOXdjbNBM96OzABUgK8311Id4B4R4d Jj7D -----END CERTIFICATE-----Generated at Tue Jun 3 10:14:31 2025 by rpki-client