$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323030303a3a2f33362d313238203d3e20323132313132.roa File: 326130393a353463373a323030303a3a2f33362d313238203d3e20323132313132.roa (raw, json) Hash identifier: a1PfRAVDBuwnurJTL5XSqjXdKQ2m/LHpnYS/WXZ5efo= Subject key identifier: 31:D9:D5:2F:90:0B:B2:FC:14:53:FE:72:CC:61:FF:03:6B:6D:EF:6B Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 36CC6E4D07A53CB7F3FDE1769335807987368E35 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323030303a3a2f33362d313238203d3e20323132313132.roa Signing time: Wed 28 May 2025 11:01:02 +0000 ROA not before: Wed 28 May 2025 10:56:02 +0000 ROA not after: Wed 27 May 2026 11:01:02 +0000 asID: 212112 IP address blocks: 2a09:54c7:2000::/36 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:cc:6e:4d:07:a5:3c:b7:f3:fd:e1:76:93:35:80:79:87:36:8e:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 28 10:56:02 2025 GMT Not After : May 27 11:01:02 2026 GMT Subject: CN=31D9D52F900BB2FC1453FE72CC61FF036B6DEF6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:27:9c:75:25:ff:5f:36:f3:91:7f:c5:45:6d: b3:87:24:4f:23:52:53:56:0c:72:f7:ee:7a:03:3a: cd:8a:ce:b3:9a:ea:df:59:84:ef:0d:04:90:66:82: a5:92:8f:46:29:e6:c4:a4:51:f2:95:6e:8f:c0:e2: 53:df:6e:39:62:91:4b:d5:e6:a4:57:aa:00:d2:b1: 46:c8:84:aa:b0:65:d7:53:b8:75:fd:bc:93:72:54: 3f:18:fe:28:b9:3d:6a:5c:99:8d:5a:0e:c8:fe:38: e6:f5:a8:20:89:68:23:b5:5d:4b:6e:f8:81:83:d5: 4f:51:ce:87:b5:e8:70:4b:8d:b8:dd:66:69:96:fe: 08:56:65:2a:be:1f:98:8a:ec:18:c7:6f:f9:a4:bf: d7:db:a6:74:d5:23:01:68:94:3a:48:af:f9:f3:97: 24:91:49:22:31:e6:b6:47:c5:10:6c:c5:32:c8:d3: 8d:5c:5f:0f:68:3d:e9:0a:59:b2:08:cb:97:e1:0e: 0f:38:29:f7:40:78:9a:d5:20:15:ca:71:28:83:67: 75:3b:c2:42:61:7e:4c:a8:0a:6e:89:1e:ba:36:0d: 40:8c:13:81:e5:b3:64:f9:ba:3e:96:5d:66:59:8c: e7:1f:1d:58:fa:04:f0:b3:b1:97:5c:11:0a:69:75: a4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D9:D5:2F:90:0B:B2:FC:14:53:FE:72:CC:61:FF:03:6B:6D:EF:6B X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323030303a3a2f33362d313238203d3e20323132313132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:2000::/36 Signature Algorithm: sha256WithRSAEncryption 80:46:91:a0:26:c2:f2:e1:2a:d9:cb:a8:25:b8:bd:03:82:7c: 14:a7:97:54:b5:6e:90:92:57:fe:39:75:5e:d2:a5:ed:bb:a7: 37:ec:24:1a:c0:63:0b:ad:ba:2c:39:26:0e:f1:a2:82:8e:c8: f8:e6:f2:2f:b8:fd:98:6e:47:87:59:bb:3c:1e:73:93:57:e6: 4d:8b:90:15:75:a9:f5:28:15:a0:ba:8a:b0:f2:bd:c0:48:97: 9c:12:a2:4a:d2:5a:d7:47:76:a9:b3:a7:c6:46:84:67:d7:cb: 2c:2a:09:f7:47:56:2a:9b:d0:cb:e0:6e:ac:54:df:2f:e3:d7: 7a:d3:36:cb:03:85:ed:c6:dc:32:59:c8:94:04:72:d7:f4:ac: 50:bc:71:56:e8:11:1a:a9:98:cb:42:76:58:3a:b9:6a:6e:71: 6b:95:47:c0:5b:64:1c:fd:b0:7f:67:64:c2:26:01:5f:8b:db: 9b:67:df:51:3f:e5:e4:cd:ac:0f:fd:88:29:9b:e8:f1:b4:64: a2:56:af:b5:40:51:77:48:bd:bc:ca:ed:ad:ad:1e:7a:2b:9d: 53:7d:3b:cc:ff:4b:be:3a:37:38:41:9e:4a:7b:6a:9d:f6:f4: f4:50:f1:f5:2c:21:27:56:94:4e:99:b7:f9:15:61:d1:71:c3: 8b:84:5e:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUNsxuTQelPLfz/eF2kzWAeYc2jjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjgxMDU2MDJaFw0yNjA1MjcxMTAxMDJaMDMxMTAvBgNV BAMTKDMxRDlENTJGOTAwQkIyRkMxNDUzRkU3MkNDNjFGRjAzNkI2REVGNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaJ5x1Jf9fNvORf8VFbbOHJE8j UlNWDHL37noDOs2KzrOa6t9ZhO8NBJBmgqWSj0Yp5sSkUfKVbo/A4lPfbjlikUvV 5qRXqgDSsUbIhKqwZddTuHX9vJNyVD8Y/ii5PWpcmY1aDsj+OOb1qCCJaCO1XUtu +IGD1U9Rzoe16HBLjbjdZmmW/ghWZSq+H5iK7BjHb/mkv9fbpnTVIwFolDpIr/nz lySRSSIx5rZHxRBsxTLI041cXw9oPekKWbIIy5fhDg84KfdAeJrVIBXKcSiDZ3U7 wkJhfkyoCm6JHro2DUCME4Hls2T5uj6WXWZZjOcfHVj6BPCzsZdcEQppdaTZAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUMdnVL5ALsvwUU/5yzGH/A2tt72swHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzMjMwMzAzMDNhM2EyZjMzMzYyZDMxMzIzODIwM2QzZTIwMzIzMTMyMzEzMTMy LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAOBAIAAjAIAwYEKglUxyAwDQYJKoZIhvcNAQELBQADggEBAIBGkaAmwvLhKtnL qCW4vQOCfBSnl1S1bpCSV/45dV7Spe27pzfsJBrAYwutuiw5Jg7xooKOyPjm8i+4 /ZhuR4dZuzwec5NX5k2LkBV1qfUoFaC6irDyvcBIl5wSokrSWtdHdqmzp8ZGhGfX yywqCfdHViqb0MvgbqxU3y/j13rTNssDhe3G3DJZyJQEctf0rFC8cVboERqpmMtC dlg6uWpucWuVR8BbZBz9sH9nZMImAV+L25tn31E/5eTNrA/9iCmb6PG0ZKJWr7VA UXdIvbzK7a2tHnornVN9O8z/S746NzhBnkp7ap329PRQ8fUsISdWlE6Zt/kVYdFx w4uEXuc= -----END CERTIFICATE-----Generated at Tue Jun 3 10:14:30 2025 by rpki-client