$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa File: 326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa (raw, json) Hash identifier: Qf9fkBm4j963v8CRV3utW+LlfUWKAekDsAnEuzCz/vw= Subject key identifier: 45:31:A5:C2:08:0B:50:11:76:BE:19:DD:6A:26:AE:A5:87:6B:07:A3 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 5FA4181FEECD8647BEA7A8D609A45A95B203A399 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa Signing time: Tue 27 May 2025 07:36:37 +0000 ROA not before: Tue 27 May 2025 07:31:37 +0000 ROA not after: Tue 26 May 2026 07:36:37 +0000 asID: 214299 IP address blocks: 2a09:54c7:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a4:18:1f:ee:cd:86:47:be:a7:a8:d6:09:a4:5a:95:b2:03:a3:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 27 07:31:37 2025 GMT Not After : May 26 07:36:37 2026 GMT Subject: CN=4531A5C2080B501176BE19DD6A26AEA5876B07A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f9:a3:fa:07:89:4a:0f:06:14:f3:f7:74:94: 49:ba:fd:28:6b:ed:35:80:72:79:95:34:2a:e3:19: 93:95:90:c8:24:e8:00:e3:51:4d:55:5e:10:95:3f: 45:5a:be:08:0b:7a:ac:d5:eb:e6:f1:cd:14:dd:b3: ff:8b:d8:3c:de:65:f5:52:53:15:bb:02:5d:75:0f: 9f:ad:85:e3:1d:3d:b1:03:10:ef:2f:a0:2f:47:28: c5:9c:22:f1:8e:be:5d:48:02:ea:6c:42:93:f7:64: 2d:1e:89:8c:30:1d:1a:91:05:99:88:9a:53:d9:47: 7e:c9:0f:20:d0:f8:2e:e1:d9:5b:ba:88:ff:cd:5d: 47:a5:2c:2e:ed:99:fe:79:02:3b:84:df:80:d3:06: d9:b9:45:33:21:db:cd:99:77:a0:ee:a1:9a:d9:db: 4d:de:15:b6:aa:3f:7f:16:6d:48:99:eb:0e:13:46: ed:07:c8:67:d1:fa:b2:bc:36:e8:d9:ce:10:61:d0: 6f:de:46:55:03:e1:59:48:9c:3d:17:6a:ad:a3:3d: af:0e:c3:99:36:17:d7:1b:e0:c3:ea:75:07:8b:2a: 70:74:92:9a:03:0c:5a:e1:f7:9c:81:f5:80:71:40: 7f:27:46:76:80:0b:fb:57:9f:a6:5a:f1:6d:88:6a: 5b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:31:A5:C2:08:0B:50:11:76:BE:19:DD:6A:26:AE:A5:87:6B:07:A3 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a313030303a3a2f34382d3438203d3e20323134323939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:1000::/48 Signature Algorithm: sha256WithRSAEncryption 18:aa:4e:e4:fb:bd:74:3a:44:42:97:d5:d5:08:af:88:e1:a2: fb:ae:58:e3:5f:78:6c:7a:e9:9b:43:10:93:8b:3f:5c:ba:78: d1:4d:d4:2e:31:5d:9a:be:c5:84:7b:91:ef:86:60:70:0d:17: 87:f0:5f:6b:06:a7:23:c3:cc:36:98:3b:7e:43:18:f4:45:b8: 7a:53:ef:30:54:37:9e:2f:be:0b:51:2f:f2:39:02:97:96:5e: bd:37:5d:f6:8f:c7:22:ae:84:6b:cd:e3:64:37:47:59:35:bf: ff:aa:90:fa:4e:03:7b:a5:4c:47:a5:17:d2:cc:13:be:60:3b: 4e:31:c8:bd:02:67:b0:15:ab:fa:49:97:f0:d5:90:6e:98:18: 18:f0:17:4a:19:3c:a9:23:5b:d6:f9:99:fe:d7:60:c0:43:c4: dd:cb:6d:08:04:5b:e2:b6:b3:98:7a:8c:f8:fe:93:80:00:36: 60:6c:c0:19:29:63:30:bb:ca:c2:70:bf:bb:bc:80:70:85:f7: fe:d6:31:44:b0:bf:f7:b3:62:6d:8e:a5:6a:1d:ce:fb:55:a4: 0c:2a:33:47:ad:a3:d5:01:1d:e7:fc:80:2f:05:22:f4:91:11: 74:06:5a:92:c7:6d:f8:9d:de:a9:b2:43:16:73:dd:d9:fe:16: 34:a4:cf:53 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUX6QYH+7Nhke+p6jWCaRalbIDo5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjcwNzMxMzdaFw0yNjA1MjYwNzM2MzdaMDMxMTAvBgNV BAMTKDQ1MzFBNUMyMDgwQjUwMTE3NkJFMTlERDZBMjZBRUE1ODc2QjA3QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn+aP6B4lKDwYU8/d0lEm6/Shr 7TWAcnmVNCrjGZOVkMgk6ADjUU1VXhCVP0VavggLeqzV6+bxzRTds/+L2DzeZfVS UxW7Al11D5+theMdPbEDEO8voC9HKMWcIvGOvl1IAupsQpP3ZC0eiYwwHRqRBZmI mlPZR37JDyDQ+C7h2Vu6iP/NXUelLC7tmf55AjuE34DTBtm5RTMh282Zd6DuoZrZ 203eFbaqP38WbUiZ6w4TRu0HyGfR+rK8NujZzhBh0G/eRlUD4VlInD0Xaq2jPa8O w5k2F9cb4MPqdQeLKnB0kpoDDFrh95yB9YBxQH8nRnaAC/tXn6Za8W2IaludAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQURTGlwggLUBF2vhndaiaupYdrB6MwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzMTMwMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMyMzkzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMcQADANBgkqhkiG9w0BAQsFAAOCAQEAGKpO5Pu9dDpEQpfV 1QiviOGi+65Y4194bHrpm0MQk4s/XLp40U3ULjFdmr7FhHuR74ZgcA0Xh/Bfawan I8PMNpg7fkMY9EW4elPvMFQ3ni++C1Ev8jkCl5ZevTdd9o/HIq6Ea83jZDdHWTW/ /6qQ+k4De6VMR6UX0swTvmA7TjHIvQJnsBWr+kmX8NWQbpgYGPAXShk8qSNb1vmZ /tdgwEPE3cttCARb4razmHqM+P6TgAA2YGzAGSljMLvKwnC/u7yAcIX3/tYxRLC/ 97NibY6lah3O+1WkDCozR62j1QEd5/yALwUi9JERdAZaksdt+J3eqbJDFnPd2f4W NKTPUw== -----END CERTIFICATE-----Generated at Tue Jun 3 10:16:21 2025 by rpki-client