$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a633030303a3a2f33362d3434203d3e20323134303430.roa File: 326130393a353463363a633030303a3a2f33362d3434203d3e20323134303430.roa (raw, json) Hash identifier: XUx4iQnGbmIT47GLoyzH9+2kx+otDsLZpYl+hbUjeOM= Subject key identifier: 7D:F9:FA:EA:9F:8A:67:05:09:1C:8C:DA:F6:36:90:87:AD:38:75:2D Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 51A14C83FA63138D318BBAE4612375DAAB7D0746 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a633030303a3a2f33362d3434203d3e20323134303430.roa Signing time: Wed 14 May 2025 17:12:11 +0000 ROA not before: Wed 14 May 2025 17:07:11 +0000 ROA not after: Wed 13 May 2026 17:12:11 +0000 asID: 214040 IP address blocks: 2a09:54c6:c000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a1:4c:83:fa:63:13:8d:31:8b:ba:e4:61:23:75:da:ab:7d:07:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 14 17:07:11 2025 GMT Not After : May 13 17:12:11 2026 GMT Subject: CN=7DF9FAEA9F8A6705091C8CDAF6369087AD38752D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:8a:c2:1d:a2:0b:a3:eb:3e:71:9f:6b:4f:e7: e9:38:c2:1c:3c:91:5a:e2:19:4a:90:e3:e9:c6:b4: 9a:a6:19:8c:42:0d:f8:f8:9a:d2:1e:ea:40:99:cd: f7:5b:95:b5:1f:4d:ba:65:34:d0:bc:d2:cd:9c:f5: df:c9:2f:17:80:6f:4f:bf:9f:71:30:7d:b0:89:9e: bf:61:aa:7a:cd:e7:31:2c:f0:59:ff:79:86:5c:a3: 1b:ce:c1:7c:e6:f6:f1:7f:ae:80:2d:2d:2d:43:be: e0:bc:ee:b0:56:b8:e0:c3:76:0b:83:e0:66:81:90: 45:ad:a5:23:2c:8d:ad:c5:85:bc:f3:8b:7c:4a:98: c7:b5:8b:d9:9b:2a:e3:01:a9:5d:05:46:5f:d7:58: 1c:f3:0f:56:93:84:ea:93:13:cd:6e:3c:c2:30:59: 23:a2:44:04:e0:b6:a7:6f:1a:b7:dd:b4:3b:87:77: 77:88:3d:b7:a2:97:4c:b1:cf:e8:95:05:3e:9a:e8: 14:52:f1:95:70:8f:55:45:bf:77:4d:0c:4a:a4:bd: e1:e2:2e:63:70:3d:75:12:a0:09:88:bb:76:ee:fa: f9:d7:52:12:26:32:f1:40:8b:c9:45:4e:51:40:72: 51:c5:4b:16:8d:b8:6a:5c:c0:bf:b5:4e:9c:a8:09: 5a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F9:FA:EA:9F:8A:67:05:09:1C:8C:DA:F6:36:90:87:AD:38:75:2D X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a633030303a3a2f33362d3434203d3e20323134303430.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:c000::/36 Signature Algorithm: sha256WithRSAEncryption 2e:47:1f:3c:ee:80:70:a6:fa:7d:d6:f7:f3:31:bd:ae:e0:3a: cd:f6:4f:9b:33:b9:7d:d5:89:4a:03:de:8e:a0:ce:b0:ab:bb: 3e:53:8a:bf:87:37:20:48:8d:d7:98:9c:2b:a7:34:0c:25:65: 7c:06:09:79:f8:9b:a1:14:d7:b3:25:49:ea:f0:9b:c0:7f:5c: 7d:90:62:0b:c3:24:8c:dc:d9:45:e5:1d:9a:2d:f5:20:24:72: 30:ba:9c:33:52:92:c7:40:68:72:64:15:46:1c:3a:19:fa:94: 7d:62:42:a9:c8:57:ce:35:49:4a:62:2b:24:0d:f0:f5:93:ed: 5e:af:c2:d0:74:e7:8e:bc:e9:81:dc:1b:d6:2c:52:89:36:3d: 1c:5d:cb:3b:5c:02:67:c6:d2:59:07:6f:ae:e8:7a:1b:be:a6: a6:56:cc:b8:8d:d3:90:a3:9c:d4:2f:74:b9:55:d8:e9:74:4e: a5:1b:75:0a:5c:ae:2f:22:0f:68:b7:d7:67:08:1f:00:02:3e: 01:e8:49:3f:1d:77:9b:6f:05:37:c9:a8:d0:f5:bc:8b:c5:12: f0:c1:da:1b:5a:64:e5:34:8f:ed:19:0f:eb:e8:09:57:d7:f5: e2:6e:01:0a:c1:a1:17:6a:fb:20:2f:a4:ee:9a:19:26:86:a6: ef:6c:0b:d6 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUUaFMg/pjE40xi7rkYSN12qt9B0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MTQxNzA3MTFaFw0yNjA1MTMxNzEyMTFaMDMxMTAvBgNV BAMTKDdERjlGQUVBOUY4QTY3MDUwOTFDOENEQUY2MzY5MDg3QUQzODc1MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNisIdoguj6z5xn2tP5+k4whw8 kVriGUqQ4+nGtJqmGYxCDfj4mtIe6kCZzfdblbUfTbplNNC80s2c9d/JLxeAb0+/ n3EwfbCJnr9hqnrN5zEs8Fn/eYZcoxvOwXzm9vF/roAtLS1DvuC87rBWuODDdguD 4GaBkEWtpSMsja3Fhbzzi3xKmMe1i9mbKuMBqV0FRl/XWBzzD1aThOqTE81uPMIw WSOiRATgtqdvGrfdtDuHd3eIPbeil0yxz+iVBT6a6BRS8ZVwj1VFv3dNDEqkveHi LmNwPXUSoAmIu3bu+vnXUhImMvFAi8lFTlFAclHFSxaNuGpcwL+1TpyoCVp3AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUffn66p+KZwUJHIza9jaQh604dS0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2E2MzMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzNDMwMzQzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMbAMA0GCSqGSIb3DQEBCwUAA4IBAQAuRx887oBwpvp91vfz Mb2u4DrN9k+bM7l91YlKA96OoM6wq7s+U4q/hzcgSI3XmJwrpzQMJWV8Bgl5+Juh FNezJUnq8JvAf1x9kGILwySM3NlF5R2aLfUgJHIwupwzUpLHQGhyZBVGHDoZ+pR9 YkKpyFfONUlKYiskDfD1k+1er8LQdOeOvOmB3BvWLFKJNj0cXcs7XAJnxtJZB2+u 6HobvqamVsy4jdOQo5zUL3S5VdjpdE6lG3UKXK4vIg9ot9dnCB8AAj4B6Ek/HXeb bwU3yajQ9byLxRLwwdobWmTlNI/tGQ/r6AlX1/XibgEKwaEXavsgL6Tumhkmhqbv bAvW -----END CERTIFICATE-----Generated at Tue Jun 3 10:14:30 2025 by rpki-client