$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a3a2f33362d3336203d3e203437323732.roa File: 326130393a353463363a3a2f33362d3336203d3e203437323732.roa (raw, json) Hash identifier: NXl/N9MhQpZ0LDWIt7g5/4Q8T44FwyaW51CCC00aK1s= Subject key identifier: 60:52:AD:79:F6:67:FE:01:BE:FC:C7:5F:01:EE:4B:B3:B0:25:A3:0D Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 3B670A17C95C91B49FAD53ACC8BB5DA33557E805 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a3a2f33362d3336203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:23 +0000 ROA not before: Fri 07 Feb 2025 19:08:23 +0000 ROA not after: Fri 06 Feb 2026 19:13:23 +0000 asID: 47272 IP address blocks: 2a09:54c6::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:67:0a:17:c9:5c:91:b4:9f:ad:53:ac:c8:bb:5d:a3:35:57:e8:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:08:23 2025 GMT Not After : Feb 6 19:13:23 2026 GMT Subject: CN=6052AD79F667FE01BEFCC75F01EE4BB3B025A30D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:73:3a:c9:60:56:1e:7c:b5:f9:23:e7:74:0a: ac:69:d9:83:0a:ee:4b:78:95:5b:dc:c5:d1:98:a5: b2:5e:50:17:42:e8:f2:bc:c2:a7:2e:67:e0:73:27: 58:5f:09:13:88:e9:ed:cb:a5:6c:6d:dd:a3:21:65: e1:2c:0a:7f:56:1e:48:f6:3d:32:1e:e6:17:f4:46: dc:97:74:f0:1d:40:2d:7a:0f:71:aa:d2:a9:0b:f9: 38:34:21:48:8b:d8:32:32:ad:5c:ba:1e:bc:87:15: 15:1b:26:2d:5a:e3:36:13:ba:b2:4a:d1:37:a5:34: 67:08:be:51:28:69:24:93:e2:d6:a5:56:4f:ba:3e: 8a:8c:50:76:40:c9:92:22:7f:d0:46:8e:61:a0:3e: 0d:36:00:b3:a5:10:8c:e4:2d:fe:48:5e:0b:d9:95: 5a:0d:db:d4:91:7a:95:12:3e:2b:44:4a:7d:60:51: 1d:2a:75:dd:6b:ad:d0:46:c8:e6:ee:5b:0f:88:d1: 0d:55:ca:f8:76:2d:86:8d:09:a5:67:f2:6d:7c:73: 00:01:ba:f0:cb:d8:a9:cd:a7:04:9b:01:e0:bc:f5: d2:a9:38:b8:82:0f:36:77:2e:dc:c4:be:14:9c:82: a6:9a:5e:34:ea:db:a7:47:f1:eb:b1:20:3f:a9:22: 39:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:52:AD:79:F6:67:FE:01:BE:FC:C7:5F:01:EE:4B:B3:B0:25:A3:0D X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a3a2f33362d3336203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6::/36 Signature Algorithm: sha256WithRSAEncryption 28:38:0d:db:99:75:c6:be:3b:80:6f:77:a2:bb:f1:08:e1:63: ea:bf:c0:b0:3f:16:71:51:60:10:8c:8c:cb:b3:23:58:42:2d: ea:ef:f0:05:2b:68:c9:cf:95:3d:0d:bb:29:17:7f:45:33:59: 55:bc:8f:56:aa:bf:52:36:29:0f:9e:3d:2e:3a:44:ce:ea:39: 9e:92:db:49:a5:1a:e7:33:57:ae:11:7f:50:61:5f:b7:6b:3c: f1:25:1c:4d:bf:d8:05:9f:03:12:ac:7b:af:05:ed:49:71:c1: f6:50:18:d0:dd:a0:cb:21:7d:e8:e2:bc:d4:23:37:de:27:98: 78:7a:3f:a9:2f:c1:c7:c0:8f:64:c8:84:de:3e:98:61:67:2e: 88:66:68:4b:d2:15:8b:0e:ae:f6:65:3f:2c:fa:24:fb:58:1f: 7e:25:ef:e2:4c:13:5b:d1:11:bc:68:a2:05:38:a7:06:db:e0: be:7d:22:36:ee:ab:1a:af:af:0b:1a:25:2f:58:c4:7a:97:08: ec:df:4b:a7:97:e9:c3:4f:56:ef:1e:d2:24:f8:53:e5:1c:55: c1:55:8f:a7:e7:36:66:74:ff:07:6e:6f:f4:13:c6:d6:8b:1e: 3a:8a:82:52:80:51:83:eb:34:1c:0d:85:79:51:49:d2:3d:de: b5:5c:cd:96 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUO2cKF8lckbSfrVOsyLtdozVX6AUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA4MjNaFw0yNjAyMDYxOTEzMjNaMDMxMTAvBgNV BAMTKDYwNTJBRDc5RjY2N0ZFMDFCRUZDQzc1RjAxRUU0QkIzQjAyNUEzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmczrJYFYefLX5I+d0Cqxp2YMK 7kt4lVvcxdGYpbJeUBdC6PK8wqcuZ+BzJ1hfCROI6e3LpWxt3aMhZeEsCn9WHkj2 PTIe5hf0RtyXdPAdQC16D3Gq0qkL+Tg0IUiL2DIyrVy6HryHFRUbJi1a4zYTurJK 0TelNGcIvlEoaSST4talVk+6PoqMUHZAyZIif9BGjmGgPg02ALOlEIzkLf5IXgvZ lVoN29SRepUSPitESn1gUR0qdd1rrdBGyObuWw+I0Q1Vyvh2LYaNCaVn8m18cwAB uvDL2KnNpwSbAeC89dKpOLiCDzZ3LtzEvhScgqaaXjTq26dH8euxID+pIjnZAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUYFKtefZn/gG+/MdfAe5Ls7Alow0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzQzNzMyMzczMi5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBCoJ VMYAMA0GCSqGSIb3DQEBCwUAA4IBAQAoOA3bmXXGvjuAb3eiu/EI4WPqv8CwPxZx UWAQjIzLsyNYQi3q7/AFK2jJz5U9DbspF39FM1lVvI9Wqr9SNikPnj0uOkTO6jme kttJpRrnM1euEX9QYV+3azzxJRxNv9gFnwMSrHuvBe1JccH2UBjQ3aDLIX3o4rzU IzfeJ5h4ej+pL8HHwI9kyITePphhZy6IZmhL0hWLDq72ZT8s+iT7WB9+Je/iTBNb 0RG8aKIFOKcG2+C+fSI27qsar68LGiUvWMR6lwjs30unl+nDT1bvHtIk+FPlHFXB VY+n5zZmdP8Hbm/0E8bWix46ioJSgFGD6zQcDYV5UUnSPd61XM2W -----END CERTIFICATE-----Generated at Thu Apr 3 07:11:06 2025 by rpki-client