$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323430303a3a2f33382d313238203d3e20323130343537.roa File: 326130393a353463373a323430303a3a2f33382d313238203d3e20323130343537.roa (raw, json) Hash identifier: PGrvb2k/xT94Wc5KakH9PJhrnujDmyc9Jln5dbq1SB4= Subject key identifier: 58:1C:D3:B2:90:5D:EE:B1:87:41:CB:2F:4E:88:EC:4F:01:78:F6:28 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 780F6475F2E15EF86CE49876C214B1BC4A53D69E Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323430303a3a2f33382d313238203d3e20323130343537.roa Signing time: Wed 28 May 2025 18:16:41 +0000 ROA not before: Wed 28 May 2025 18:11:41 +0000 ROA not after: Wed 27 May 2026 18:16:41 +0000 asID: 210457 IP address blocks: 2a09:54c7:2400::/38 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:0f:64:75:f2:e1:5e:f8:6c:e4:98:76:c2:14:b1:bc:4a:53:d6:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 28 18:11:41 2025 GMT Not After : May 27 18:16:41 2026 GMT Subject: CN=581CD3B2905DEEB18741CB2F4E88EC4F0178F628 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dd:fe:3a:51:fd:17:da:ae:8a:72:05:18:dd: 1b:59:fb:bc:46:05:8d:95:b8:8b:9e:61:c9:8a:81: 76:57:0c:ae:39:3f:3f:73:4b:38:4f:54:e7:92:6d: 77:d1:3f:f8:ae:b2:5f:44:e5:99:de:e5:96:9f:27: a2:01:0e:68:2b:45:88:cc:f6:7c:a1:63:12:96:70: ec:b0:57:9d:a9:4b:d4:1f:b2:9b:c6:c8:59:69:66: e7:b5:26:af:b8:d3:7d:8c:5a:19:35:3a:8f:2c:d1: 5e:cd:40:b6:cb:f1:41:f5:71:b4:fa:46:3b:07:43: 36:8a:ef:f5:1e:6c:e4:6d:b3:3d:0e:c3:15:48:d3: 89:05:3f:50:c7:93:8d:ed:1f:22:12:d2:f6:55:88: 64:3d:03:8c:76:f2:8c:1a:a0:a2:d7:00:1f:b1:66: b3:14:c3:15:4b:99:2b:24:23:69:f2:7c:cc:1b:81: eb:7d:ea:c6:98:f4:ae:51:82:31:1e:95:0d:ce:b6: 55:63:9f:1b:0b:87:23:a3:a8:9b:94:c5:44:cb:bf: b7:cc:ed:51:38:54:f0:53:82:9a:66:94:fb:b1:e0: ea:3d:0d:9f:47:53:dc:db:03:d2:ce:29:f4:b1:0f: fc:bf:13:43:1d:da:84:0f:38:25:3f:25:07:07:9c: 32:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:1C:D3:B2:90:5D:EE:B1:87:41:CB:2F:4E:88:EC:4F:01:78:F6:28 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a323430303a3a2f33382d313238203d3e20323130343537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:2400::/38 Signature Algorithm: sha256WithRSAEncryption 50:01:ea:f9:7a:8f:f0:ce:ee:68:29:d8:ed:3f:ed:fa:2b:bb: e0:35:2f:c7:74:72:fb:8d:d2:6f:94:66:10:cc:5b:ac:22:b2: 94:14:45:cf:12:ea:0f:b9:a5:e6:e5:65:74:12:e5:12:84:2b: e2:a5:fa:92:b2:60:57:90:93:2e:03:f0:af:f0:2d:72:b7:ca: 4a:6a:fe:f4:ac:5b:7f:01:60:f8:c7:7a:8e:ae:f7:dd:db:d2: b6:d1:3e:80:a7:3b:a5:70:e1:7e:91:f9:86:fc:3b:67:d9:d1: ae:39:bb:a5:5b:1b:24:29:07:e3:f1:81:b3:a8:91:2d:9c:cc: 66:f7:2b:24:44:2c:4b:ff:23:32:de:5d:7f:c4:3f:86:7a:e3: 45:58:ab:7c:07:60:b1:24:ce:3b:a5:fc:af:b8:bb:cb:e5:e3: de:4a:c0:ea:16:af:17:68:f2:41:f2:f7:fb:21:d4:2e:a7:82: 57:1c:45:84:b4:48:6c:41:77:50:be:8b:d3:1a:97:b9:46:50: 4e:68:ff:09:80:5d:e4:12:15:82:e2:49:a7:80:10:a3:60:77: c1:46:ed:e0:e0:69:e5:6d:09:43:fc:c8:eb:47:23:5e:0a:0a: 66:4c:38:96:93:bc:3d:c3:cc:aa:95:9c:b6:53:2c:89:4e:b4: 15:54:7e:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUeA9kdfLhXvhs5Jh2whSxvEpT1p4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjgxODExNDFaFw0yNjA1MjcxODE2NDFaMDMxMTAvBgNV BAMTKDU4MUNEM0IyOTA1REVFQjE4NzQxQ0IyRjRFODhFQzRGMDE3OEY2MjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr3f46Uf0X2q6KcgUY3RtZ+7xG BY2VuIueYcmKgXZXDK45Pz9zSzhPVOeSbXfRP/iusl9E5Zne5ZafJ6IBDmgrRYjM 9nyhYxKWcOywV52pS9QfspvGyFlpZue1Jq+4032MWhk1Oo8s0V7NQLbL8UH1cbT6 RjsHQzaK7/UebORtsz0OwxVI04kFP1DHk43tHyIS0vZViGQ9A4x28owaoKLXAB+x ZrMUwxVLmSskI2nyfMwbget96saY9K5RgjEelQ3OtlVjnxsLhyOjqJuUxUTLv7fM 7VE4VPBTgppmlPux4Oo9DZ9HU9zbA9LOKfSxD/y/E0Md2oQPOCU/JQcHnDLzAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUWBzTspBd7rGHQcsvTojsTwF49igwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzMjM0MzAzMDNhM2EyZjMzMzgyZDMxMzIzODIwM2QzZTIwMzIzMTMwMzQzNTM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAOBAIAAjAIAwYCKglUxyQwDQYJKoZIhvcNAQELBQADggEBAFAB6vl6j/DO7mgp 2O0/7foru+A1L8d0cvuN0m+UZhDMW6wispQURc8S6g+5peblZXQS5RKEK+Kl+pKy YFeQky4D8K/wLXK3ykpq/vSsW38BYPjHeo6u993b0rbRPoCnO6Vw4X6R+Yb8O2fZ 0a45u6VbGyQpB+PxgbOokS2czGb3KyRELEv/IzLeXX/EP4Z640VYq3wHYLEkzjul /K+4u8vl495KwOoWrxdo8kHy9/sh1C6nglccRYS0SGxBd1C+i9Mal7lGUE5o/wmA XeQSFYLiSaeAEKNgd8FG7eDgaeVtCUP8yOtHI14KCmZMOJaTvD3DzKqVnLZTLIlO tBVUfmo= -----END CERTIFICATE-----Generated at Tue Jun 3 10:22:18 2025 by rpki-client