$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3336203d3e203437323732.roa File: 326130393a353463363a663030303a3a2f33362d3336203d3e203437323732.roa (raw, json) Hash identifier: jERmkppuPgPeR1wUuDwbKAFknkpPSP8nakVO9OpuEGI= Subject key identifier: A2:55:37:6C:F5:43:8B:DD:5C:49:0F:64:7F:F6:30:32:71:A3:3B:8C Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 5B14762C9AD5401DCC1FD3B201B30F8321D739FB Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3336203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:20 +0000 ROA not before: Fri 07 Feb 2025 19:08:20 +0000 ROA not after: Fri 06 Feb 2026 19:13:20 +0000 asID: 47272 IP address blocks: 2a09:54c6:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:14:76:2c:9a:d5:40:1d:cc:1f:d3:b2:01:b3:0f:83:21:d7:39:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:08:20 2025 GMT Not After : Feb 6 19:13:20 2026 GMT Subject: CN=A255376CF5438BDD5C490F647FF6303271A33B8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ec:da:dc:d4:30:34:94:83:e8:f2:4d:76:f5: e5:bc:a8:84:ce:e0:9b:3e:8a:26:61:aa:4f:bb:ef: c8:c4:93:bb:9f:66:6e:6e:b7:ce:b0:20:ba:dd:b8: b5:20:42:e6:49:25:56:a8:a1:f6:ca:f4:ec:a1:0e: 20:71:8c:f7:d2:d0:79:a7:f6:71:d6:3c:19:1b:23: d5:3a:10:2c:5a:ee:13:65:63:87:e1:fa:bc:ef:65: ce:70:f2:0c:d7:a8:35:34:45:92:2d:66:61:83:a9: 5e:7a:8c:4d:a1:7f:3b:c6:f9:83:5f:b4:aa:4f:91: 76:09:11:52:aa:95:5c:58:b0:e9:ae:f6:d0:3f:63: 47:71:cb:94:be:f6:52:21:f6:e6:21:0a:22:e6:40: 17:a0:44:f5:a5:df:cf:0d:35:18:41:b5:93:a1:37: ef:f1:8a:ea:91:d5:1f:02:c6:68:43:a8:0c:fb:01: c4:83:8d:8d:48:e6:43:26:3d:8b:70:55:2a:a3:b7: ef:d4:5d:5e:10:d1:2a:94:4f:04:b0:90:44:8b:fe: cf:51:69:4f:6c:49:bc:f4:fe:f8:b3:34:8a:9a:c9: d5:82:69:74:e4:99:91:42:46:bf:bb:f7:16:ec:22: 06:bb:71:85:66:ed:ba:f0:79:af:36:21:b8:25:e5: 76:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:55:37:6C:F5:43:8B:DD:5C:49:0F:64:7F:F6:30:32:71:A3:3B:8C X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3336203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:f000::/36 Signature Algorithm: sha256WithRSAEncryption 56:0c:05:c7:f4:ff:a5:c5:ce:c4:f8:8f:ee:d1:2a:96:64:08: b9:f7:69:6e:34:7a:ad:f5:46:9b:05:d9:15:9a:61:5c:d2:6a: c9:98:f8:5b:8a:ba:e0:2f:58:71:d9:06:dd:19:31:e1:4a:d8: 54:84:12:4d:ea:49:51:70:0f:77:c8:a5:28:d5:fc:57:b7:7a: 79:0e:c4:ed:ff:39:92:2a:24:b6:e3:e2:c8:e4:af:96:2a:72: 22:5c:99:7c:40:5a:54:80:58:75:9d:73:ae:87:dd:16:94:bc: 88:5b:d8:2b:f9:a2:85:0f:60:57:1b:f5:33:c3:3a:d0:84:13: 27:9d:8e:53:c9:2c:c6:91:96:02:2f:fc:0c:64:85:ee:7f:37: dd:f4:c7:1d:0e:b0:41:00:e5:82:a0:15:e0:37:01:73:5b:8c: 27:24:40:aa:a7:fc:86:a5:8e:d9:5f:67:5f:14:c8:9d:e8:32: 83:4d:f6:8c:37:e3:cc:54:97:8c:e1:d4:4f:82:7f:4f:25:1b: 19:f5:7e:94:a3:a4:4e:71:ce:cc:4d:52:a1:45:35:2c:3e:ed: f8:09:0b:db:3f:6c:01:b7:df:33:8f:05:e3:30:6a:d5:9f:3f: e5:d9:d4:d8:b1:06:14:9b:1c:d9:ee:2d:98:d3:44:c4:50:ed: cf:09:4a:c3 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUWxR2LJrVQB3MH9OyAbMPgyHXOfswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA4MjBaFw0yNjAyMDYxOTEzMjBaMDMxMTAvBgNV BAMTKEEyNTUzNzZDRjU0MzhCREQ1QzQ5MEY2NDdGRjYzMDMyNzFBMzNCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB7Nrc1DA0lIPo8k129eW8qITO 4Js+iiZhqk+778jEk7ufZm5ut86wILrduLUgQuZJJVaoofbK9OyhDiBxjPfS0Hmn 9nHWPBkbI9U6ECxa7hNlY4fh+rzvZc5w8gzXqDU0RZItZmGDqV56jE2hfzvG+YNf tKpPkXYJEVKqlVxYsOmu9tA/Y0dxy5S+9lIh9uYhCiLmQBegRPWl388NNRhBtZOh N+/xiuqR1R8CxmhDqAz7AcSDjY1I5kMmPYtwVSqjt+/UXV4Q0SqUTwSwkESL/s9R aU9sSbz0/vizNIqaydWCaXTkmZFCRr+79xbsIga7cYVm7brwea82Ibgl5XZ3AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUolU3bPVDi91cSQ9kf/YwMnGjO4wwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2E2NjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDM0MzczMjM3MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgQqCVTG8DANBgkqhkiG9w0BAQsFAAOCAQEAVgwFx/T/pcXOxPiP7tEq lmQIufdpbjR6rfVGmwXZFZphXNJqyZj4W4q64C9YcdkG3Rkx4UrYVIQSTepJUXAP d8ilKNX8V7d6eQ7E7f85kioktuPiyOSvlipyIlyZfEBaVIBYdZ1zrofdFpS8iFvY K/mihQ9gVxv1M8M60IQTJ52OU8ksxpGWAi/8DGSF7n833fTHHQ6wQQDlgqAV4DcB c1uMJyRAqqf8hqWO2V9nXxTInegyg032jDfjzFSXjOHUT4J/TyUbGfV+lKOkTnHO zE1SoUU1LD7t+AkL2z9sAbffM48F4zBq1Z8/5dnU2LEGFJsc2e4tmNNExFDtzwlK ww== -----END CERTIFICATE-----Generated at Thu Apr 3 07:12:35 2025 by rpki-client