$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a333030303a3a2f33362d3434203d3e20323136323630.roa File: 326130393a353463373a333030303a3a2f33362d3434203d3e20323136323630.roa (raw, json) Hash identifier: C5MmcGDgHJ3RkG6zSFEBwFePrqQ4Vc8lvVluL2Z13xQ= Subject key identifier: 66:7E:DE:0C:30:AF:84:DF:E3:70:CD:FF:F5:B7:75:CC:60:EF:F5:D3 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 4CFA41BC8600386DBC6E74056F4604764983E386 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a333030303a3a2f33362d3434203d3e20323136323630.roa Signing time: Tue 27 May 2025 20:54:10 +0000 ROA not before: Tue 27 May 2025 20:49:10 +0000 ROA not after: Tue 26 May 2026 20:54:10 +0000 asID: 216260 IP address blocks: 2a09:54c7:3000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fa:41:bc:86:00:38:6d:bc:6e:74:05:6f:46:04:76:49:83:e3:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 27 20:49:10 2025 GMT Not After : May 26 20:54:10 2026 GMT Subject: CN=667EDE0C30AF84DFE370CDFFF5B775CC60EFF5D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c5:ef:b2:6e:9a:92:b2:a2:2e:90:5a:57:0c: 03:c8:ce:e0:a9:d6:14:d8:77:b6:11:12:2e:ab:0a: 2f:f5:b6:fa:93:9a:78:61:1a:4c:35:ac:ef:e5:34: 3c:c6:38:e7:9b:e1:7e:0f:e3:f4:40:7d:75:95:33: 21:ba:84:3d:44:69:19:31:c5:50:30:25:f4:d7:67: 48:7d:95:8d:68:d2:5e:0a:17:fd:fb:40:78:89:9f: 4a:e4:01:86:60:5b:7f:95:f2:2e:dd:b6:01:f3:60: 01:5a:60:08:f6:71:ce:54:e2:48:f9:ff:75:c4:16: e3:ca:a5:04:3b:ea:d8:68:24:a1:11:40:08:d8:0a: ca:56:29:a8:7c:23:3d:c5:07:a5:19:92:e9:d2:b8: b7:1f:25:8e:94:68:4c:6e:2e:19:f8:cb:26:81:e2: 30:de:48:40:71:8f:ba:39:0c:f6:5b:37:be:fa:42: cd:c0:e3:f0:95:7f:af:a8:54:6b:cc:7d:73:7a:02: a1:7b:a6:58:41:90:ba:f3:d0:d0:1d:5a:72:d0:2d: 84:62:4c:1e:59:9d:7e:4b:47:89:41:26:e2:30:fe: 6b:e4:ac:e6:87:c3:0f:ea:46:bf:f4:cc:99:c3:04: 9d:84:b1:5a:c0:d6:08:80:3a:70:57:87:b7:a0:cd: 3d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:7E:DE:0C:30:AF:84:DF:E3:70:CD:FF:F5:B7:75:CC:60:EF:F5:D3 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a333030303a3a2f33362d3434203d3e20323136323630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:3000::/36 Signature Algorithm: sha256WithRSAEncryption 07:e5:59:53:fd:27:0a:33:44:d3:1b:8b:ec:fe:9e:b1:d9:d5: 3f:45:84:c5:86:eb:d9:87:c2:70:2e:35:69:a9:86:c4:98:f8: 3f:06:c4:21:2e:a7:2d:c0:80:c1:fb:e1:f9:5b:a6:0c:52:10: fe:5f:67:70:ac:4e:e1:ca:34:c2:26:58:11:6c:47:a8:ef:67: c8:85:dc:b9:7a:a8:a1:b7:e7:5b:63:0f:92:03:af:5f:6d:9c: c5:ce:55:62:a2:49:36:54:c0:30:67:f2:05:cc:8d:ab:bd:c6: ee:38:af:7e:b7:44:59:e3:13:bb:97:d8:73:53:51:0d:7e:18: ff:fe:9f:bc:70:5e:7d:1b:11:46:8f:f4:e3:9e:79:d2:d1:ea: 6a:46:b2:14:08:97:dc:bf:87:8d:a3:53:eb:bf:20:8d:5b:74: 33:cc:49:bb:2f:41:94:ad:07:dd:59:27:2f:69:34:54:b1:e3: fa:49:db:ee:6a:de:31:ba:af:ee:7f:95:58:6d:3f:f3:1e:11: fd:28:54:a3:26:f0:70:ed:cb:dd:bc:79:a9:43:e3:7e:d0:a6: 6f:3f:52:8e:6c:02:12:23:f9:e3:14:7e:60:27:3f:4e:7a:ec: 61:71:e8:19:dc:32:8e:22:a1:fb:16:2b:08:89:2d:3b:4f:bb: 7e:92:1c:d4 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUTPpBvIYAOG28bnQFb0YEdkmD44YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjcyMDQ5MTBaFw0yNjA1MjYyMDU0MTBaMDMxMTAvBgNV BAMTKDY2N0VERTBDMzBBRjg0REZFMzcwQ0RGRkY1Qjc3NUNDNjBFRkY1RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoxe+ybpqSsqIukFpXDAPIzuCp 1hTYd7YREi6rCi/1tvqTmnhhGkw1rO/lNDzGOOeb4X4P4/RAfXWVMyG6hD1EaRkx xVAwJfTXZ0h9lY1o0l4KF/37QHiJn0rkAYZgW3+V8i7dtgHzYAFaYAj2cc5U4kj5 /3XEFuPKpQQ76thoJKERQAjYCspWKah8Iz3FB6UZkunSuLcfJY6UaExuLhn4yyaB 4jDeSEBxj7o5DPZbN776Qs3A4/CVf6+oVGvMfXN6AqF7plhBkLrz0NAdWnLQLYRi TB5ZnX5LR4lBJuIw/mvkrOaHww/qRr/0zJnDBJ2EsVrA1giAOnBXh7egzT3NAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUZn7eDDCvhN/jcM3/9bd1zGDv9dMwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzMzMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzNjMyMzYzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMcwMA0GCSqGSIb3DQEBCwUAA4IBAQAH5VlT/ScKM0TTG4vs /p6x2dU/RYTFhuvZh8JwLjVpqYbEmPg/BsQhLqctwIDB++H5W6YMUhD+X2dwrE7h yjTCJlgRbEeo72fIhdy5eqiht+dbYw+SA69fbZzFzlViokk2VMAwZ/IFzI2rvcbu OK9+t0RZ4xO7l9hzU1ENfhj//p+8cF59GxFGj/TjnnnS0epqRrIUCJfcv4eNo1Pr vyCNW3QzzEm7L0GUrQfdWScvaTRUseP6Sdvuat4xuq/uf5VYbT/zHhH9KFSjJvBw 7cvdvHmpQ+N+0KZvP1KObAISI/njFH5gJz9OeuxhcegZ3DKOIqH7FisIiS07T7t+ khzU -----END CERTIFICATE-----Generated at Tue Jun 3 10:14:33 2025 by rpki-client