$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a343030303a3a2f33362d3434203d3e20323133383634.roa File: 326130393a353463373a343030303a3a2f33362d3434203d3e20323133383634.roa (raw, json) Hash identifier: D7EyQLEgyP0+Wvh60qu+S4uvrRQ3VPXGZDoxT+sofTY= Subject key identifier: C6:11:F3:A0:1C:51:C2:A6:A4:9A:82:69:F1:C4:CF:63:5F:CB:FC:7E Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 6666A631A357F458C7A8586926FB1C793FFDAF91 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a343030303a3a2f33362d3434203d3e20323133383634.roa Signing time: Wed 28 May 2025 16:44:09 +0000 ROA not before: Wed 28 May 2025 16:39:09 +0000 ROA not after: Wed 27 May 2026 16:44:09 +0000 asID: 213864 IP address blocks: 2a09:54c7:4000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:66:a6:31:a3:57:f4:58:c7:a8:58:69:26:fb:1c:79:3f:fd:af:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 28 16:39:09 2025 GMT Not After : May 27 16:44:09 2026 GMT Subject: CN=C611F3A01C51C2A6A49A8269F1C4CF635FCBFC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:88:0a:f4:9c:b5:13:56:28:7d:51:3c:57:ee: d9:17:ee:3d:be:2a:58:57:8a:7a:03:a5:32:10:4b: 75:5b:2d:20:53:b6:b2:f3:f4:f8:cf:b2:d4:59:11: 1f:15:56:9f:ac:e4:a2:98:41:bf:f0:65:2d:fd:d2: 41:be:1f:bb:1c:d5:50:26:d0:62:d1:e6:6f:5c:aa: 98:53:30:2a:95:82:c5:fd:2e:44:72:e0:6f:98:10: 42:5f:a4:73:19:0d:3f:9a:22:3a:08:cb:84:28:bf: 6b:fe:ec:b5:8c:2e:84:bf:9e:96:82:19:d5:0f:b8: 12:65:b8:a2:72:31:b6:fb:70:81:e2:3b:0d:e0:48: 68:17:78:9e:28:18:27:da:e2:1f:68:07:5f:64:3c: b9:8d:d9:17:79:bd:a3:87:cc:ca:1d:2b:b9:a6:87: 39:ad:a2:1c:ae:38:6f:ab:92:70:cf:be:55:10:df: fe:ef:ad:b3:e6:05:1c:52:16:21:bc:73:96:93:13: f5:0b:d9:8b:8b:01:44:61:f2:b0:2c:7e:fe:78:3a: 41:8d:c2:5d:0f:b5:e9:77:3f:ee:25:35:e2:e0:3e: 0b:15:40:8a:c6:d4:74:d0:52:6d:72:80:ce:1a:3e: 30:44:ba:98:19:48:3a:08:1b:32:55:3c:00:2f:55: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:11:F3:A0:1C:51:C2:A6:A4:9A:82:69:F1:C4:CF:63:5F:CB:FC:7E X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a343030303a3a2f33362d3434203d3e20323133383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:4000::/36 Signature Algorithm: sha256WithRSAEncryption 5d:9c:cb:a9:e9:22:3e:45:91:75:b8:41:14:00:ee:64:12:62: e9:68:b4:98:9a:0c:20:2b:26:45:93:23:06:28:ee:d3:68:2e: d3:79:c5:da:62:e8:cf:37:8d:d7:66:45:b2:b2:a0:f4:e1:7b: 5b:a2:1e:9a:f5:d5:57:9c:0f:5b:f6:92:4d:dc:e4:b7:47:7e: 70:22:e7:0d:28:d8:45:ff:b7:f8:d4:56:b0:80:5a:b0:d7:cd: c4:21:45:84:15:df:2a:13:3e:81:e1:11:26:d3:ac:c9:63:d6: b3:c4:7a:8f:32:3f:72:ed:bf:58:7e:67:b9:3e:b9:6b:02:c4: 17:4f:b2:66:3b:48:2e:52:84:79:8b:c4:55:4e:87:be:04:60: a7:3e:98:f1:1b:77:b1:ff:89:19:43:fe:8e:93:97:33:de:5e: 95:e0:8d:af:30:4a:e7:05:43:88:3e:69:61:4b:bf:ea:cd:62: 32:b2:d3:1e:b6:58:ea:51:3e:cd:68:7a:a6:1c:f2:17:fc:e1: c6:ee:20:05:66:f7:ad:92:04:53:11:21:39:7f:24:a0:02:46: ba:ee:74:65:9e:62:8c:98:93:72:2f:75:bd:75:81:47:01:5b: 99:99:90:c9:63:23:d8:53:b4:dc:fa:82:93:a5:ca:5b:05:f2: c4:54:87:55 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUZmamMaNX9FjHqFhpJvsceT/9r5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjgxNjM5MDlaFw0yNjA1MjcxNjQ0MDlaMDMxMTAvBgNV BAMTKEM2MTFGM0EwMUM1MUMyQTZBNDlBODI2OUYxQzRDRjYzNUZDQkZDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDViAr0nLUTVih9UTxX7tkX7j2+ KlhXinoDpTIQS3VbLSBTtrLz9PjPstRZER8VVp+s5KKYQb/wZS390kG+H7sc1VAm 0GLR5m9cqphTMCqVgsX9LkRy4G+YEEJfpHMZDT+aIjoIy4Qov2v+7LWMLoS/npaC GdUPuBJluKJyMbb7cIHiOw3gSGgXeJ4oGCfa4h9oB19kPLmN2Rd5vaOHzModK7mm hzmtohyuOG+rknDPvlUQ3/7vrbPmBRxSFiG8c5aTE/UL2YuLAURh8rAsfv54OkGN wl0Ptel3P+4lNeLgPgsVQIrG1HTQUm1ygM4aPjBEupgZSDoIGzJVPAAvVbUFAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUxhHzoBxRwqakmoJp8cTPY1/L/H4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzNDMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzMzM4MzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMdAMA0GCSqGSIb3DQEBCwUAA4IBAQBdnMup6SI+RZF1uEEU AO5kEmLpaLSYmgwgKyZFkyMGKO7TaC7TecXaYujPN43XZkWysqD04Xtboh6a9dVX nA9b9pJN3OS3R35wIucNKNhF/7f41FawgFqw183EIUWEFd8qEz6B4REm06zJY9az xHqPMj9y7b9Yfme5PrlrAsQXT7JmO0guUoR5i8RVToe+BGCnPpjxG3ex/4kZQ/6O k5cz3l6V4I2vMErnBUOIPmlhS7/qzWIystMetljqUT7NaHqmHPIX/OHG7iAFZvet kgRTESE5fySgAka67nRlnmKMmJNyL3W9dYFHAVuZmZDJYyPYU7Tc+oKTpcpbBfLE VIdV -----END CERTIFICATE-----Generated at Tue Jun 3 10:16:25 2025 by rpki-client