$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a353030303a3a2f33362d3434203d3e20323133383634.roa File: 326130393a353463373a353030303a3a2f33362d3434203d3e20323133383634.roa (raw, json) Hash identifier: ZOE5b8KjsMllU+XDiw/mun26h2dXircTSDJZtiQUysc= Subject key identifier: 57:96:01:83:93:48:98:22:8E:98:E8:F8:40:D7:19:7E:40:DB:6E:38 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 2050FDB3110D783CBC4929BE7D4DE95180F2FBB4 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a353030303a3a2f33362d3434203d3e20323133383634.roa Signing time: Wed 28 May 2025 16:44:22 +0000 ROA not before: Wed 28 May 2025 16:39:22 +0000 ROA not after: Wed 27 May 2026 16:44:22 +0000 asID: 213864 IP address blocks: 2a09:54c7:5000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:50:fd:b3:11:0d:78:3c:bc:49:29:be:7d:4d:e9:51:80:f2:fb:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 28 16:39:22 2025 GMT Not After : May 27 16:44:22 2026 GMT Subject: CN=57960183934898228E98E8F840D7197E40DB6E38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7b:b3:a2:42:35:85:bd:3d:e4:3f:dd:31:a6: 89:4e:08:fd:ff:13:09:cd:e4:94:08:e6:e9:7c:f6: 6c:d1:29:a1:01:f2:b9:00:7b:0e:d2:61:a2:9b:de: a7:50:9c:2b:14:11:be:6a:f8:34:d1:e6:af:2b:37: 72:30:28:78:3b:c3:47:88:5f:a7:0f:10:7d:30:2c: d2:49:89:d8:31:f5:1f:cb:2c:49:b3:e1:34:8d:97: 68:5c:4e:d8:a4:b2:d6:8d:0d:77:20:e6:3f:2b:ea: 43:50:62:26:94:14:61:6d:8a:86:ee:64:96:e1:1d: 48:10:b2:65:9f:81:d4:20:9c:9b:a1:82:89:d3:00: 9f:db:16:95:e5:0d:21:b3:24:7a:97:49:88:26:3d: fc:58:9c:9a:8b:ec:b7:b9:e6:ca:18:ec:c6:6d:b8: 58:01:8d:27:c0:67:89:34:96:9b:79:64:ff:f3:22: fb:32:ff:33:b7:87:86:cf:81:78:32:3d:d9:10:95: b0:42:4a:0d:64:e9:d1:bd:1b:f2:01:b6:bf:64:4f: d6:04:2d:87:dc:09:36:0d:8a:c5:ac:01:4f:d4:e6: 65:2e:59:6c:0e:9b:a5:f6:c7:94:5f:32:d6:d3:f3: 50:a6:e4:9c:ee:b2:61:f6:09:17:f0:3c:5f:73:d6: 9d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:96:01:83:93:48:98:22:8E:98:E8:F8:40:D7:19:7E:40:DB:6E:38 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a353030303a3a2f33362d3434203d3e20323133383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:5000::/36 Signature Algorithm: sha256WithRSAEncryption 51:30:0c:04:1c:ce:fc:98:2e:b0:84:26:d5:44:01:15:a1:86: 42:26:1e:1d:2b:b8:10:c3:99:67:9d:3e:76:38:c2:71:b6:54: 3e:31:91:93:58:7b:e2:7e:c7:42:bd:60:9a:23:06:eb:bc:f9: 31:84:c1:ab:0a:5d:91:46:99:3a:03:a7:51:44:e9:b3:b5:b0: f6:8a:be:9d:82:63:00:34:77:48:58:21:ff:cb:12:fd:81:b9: 88:5d:6c:d4:28:0d:7e:28:76:05:a3:6d:d2:fe:ce:6e:9c:67: dc:f3:15:be:86:1e:11:12:80:72:18:f6:99:bb:cd:b5:c9:5f: 0e:b9:5e:10:c2:8f:e1:ac:aa:30:fb:b2:9d:76:9e:c7:dc:c8: 69:32:8d:20:33:da:79:16:f4:1e:2c:40:7f:81:03:39:c8:e8: 35:dd:90:ee:95:8e:9d:3b:e7:5f:9f:12:f2:ed:fb:d5:1e:10: 1e:01:d1:8d:33:f6:db:b4:6d:19:d6:44:ae:a7:7e:fa:37:2e: cb:b7:f6:2b:e6:a8:28:ef:fd:39:de:f7:53:51:97:f1:ad:7b: dd:5e:d4:41:ac:93:47:7f:aa:78:b3:01:20:7c:98:2d:b2:26: 0a:f0:e5:98:86:97:a5:44:c4:8b:c3:e9:20:9a:9b:fa:cb:10: d7:08:59:0e -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUIFD9sxENeDy8SSm+fU3pUYDy+7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjgxNjM5MjJaFw0yNjA1MjcxNjQ0MjJaMDMxMTAvBgNV BAMTKDU3OTYwMTgzOTM0ODk4MjI4RTk4RThGODQwRDcxOTdFNDBEQjZFMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7e7OiQjWFvT3kP90xpolOCP3/ EwnN5JQI5ul89mzRKaEB8rkAew7SYaKb3qdQnCsUEb5q+DTR5q8rN3IwKHg7w0eI X6cPEH0wLNJJidgx9R/LLEmz4TSNl2hcTtikstaNDXcg5j8r6kNQYiaUFGFtiobu ZJbhHUgQsmWfgdQgnJuhgonTAJ/bFpXlDSGzJHqXSYgmPfxYnJqL7Le55soY7MZt uFgBjSfAZ4k0lpt5ZP/zIvsy/zO3h4bPgXgyPdkQlbBCSg1k6dG9G/IBtr9kT9YE LYfcCTYNisWsAU/U5mUuWWwOm6X2x5RfMtbT81Cm5JzusmH2CRfwPF9z1p3JAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUV5YBg5NImCKOmOj4QNcZfkDbbjgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzMzM4MzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMdQMA0GCSqGSIb3DQEBCwUAA4IBAQBRMAwEHM78mC6whCbV RAEVoYZCJh4dK7gQw5lnnT52OMJxtlQ+MZGTWHvifsdCvWCaIwbrvPkxhMGrCl2R Rpk6A6dRROmztbD2ir6dgmMANHdIWCH/yxL9gbmIXWzUKA1+KHYFo23S/s5unGfc 8xW+hh4REoByGPaZu821yV8OuV4Qwo/hrKow+7Kddp7H3MhpMo0gM9p5FvQeLEB/ gQM5yOg13ZDulY6dO+dfnxLy7fvVHhAeAdGNM/bbtG0Z1kSup376Ny7Lt/Yr5qgo 7/053vdTUZfxrXvdXtRBrJNHf6p4swEgfJgtsiYK8OWYhpelRMSLw+kgmpv6yxDX CFkO -----END CERTIFICATE-----Generated at Tue Jun 3 10:16:20 2025 by rpki-client