$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a363030303a3a2f33362d3434203d3e20323133383634.roa File: 326130393a353463373a363030303a3a2f33362d3434203d3e20323133383634.roa (raw, json) Hash identifier: vFiackOHiGq3gGCekdF97WWSKb04wMiQfKCpaseMeA8= Subject key identifier: B6:8A:A8:C3:E8:AC:7F:34:F0:1F:C5:F6:D7:D9:C7:94:C5:49:26:DE Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 15C9424EE033C4E78A991C4C7CDBEC90B7096046 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a363030303a3a2f33362d3434203d3e20323133383634.roa Signing time: Wed 28 May 2025 16:44:34 +0000 ROA not before: Wed 28 May 2025 16:39:34 +0000 ROA not after: Wed 27 May 2026 16:44:34 +0000 asID: 213864 IP address blocks: 2a09:54c7:6000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c9:42:4e:e0:33:c4:e7:8a:99:1c:4c:7c:db:ec:90:b7:09:60:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 28 16:39:34 2025 GMT Not After : May 27 16:44:34 2026 GMT Subject: CN=B68AA8C3E8AC7F34F01FC5F6D7D9C794C54926DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ee:7f:f1:07:2a:22:82:0e:17:f6:46:1f:0d: 91:fd:29:7c:65:ff:d0:1e:15:1e:6b:8a:f1:fa:0a: 9d:90:9a:fe:36:03:65:0d:b8:b3:28:11:eb:04:a0: e7:4a:ae:52:84:b4:2c:f1:c4:0f:2f:09:f8:61:96: 65:e2:32:90:c5:3b:fc:17:b5:b6:4a:14:9d:d5:68: 84:82:92:e9:d9:46:b6:78:32:13:a5:2d:37:b5:47: 7d:2f:b7:da:05:e7:a2:14:80:dc:0e:74:2a:8e:3b: 93:02:10:15:cc:91:d4:cf:3c:a2:d2:ed:1f:14:a5: 28:a7:99:ec:85:2f:57:7e:26:66:5b:ea:75:ea:84: 94:1b:68:8d:90:b3:a3:ab:4c:a0:29:28:69:35:f6: 0a:e6:65:b6:bc:fe:ec:fa:55:58:a2:58:ed:8c:f4: 65:b7:78:d3:b3:43:f7:f7:03:b2:72:47:14:1c:43: 07:9b:a0:c7:30:30:37:01:4b:44:54:f4:39:1c:85: 02:8f:68:02:12:42:d2:ce:53:af:3b:f0:d8:19:9a: 1f:d1:15:b2:02:d1:5a:ce:26:b2:51:83:14:94:84: 16:d6:5b:d0:1e:13:51:0e:fa:ff:b5:61:00:6f:f2: a0:35:e4:c4:5e:1a:5d:6c:c8:2e:60:0e:19:a0:80: 45:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:8A:A8:C3:E8:AC:7F:34:F0:1F:C5:F6:D7:D9:C7:94:C5:49:26:DE X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a363030303a3a2f33362d3434203d3e20323133383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:6000::/36 Signature Algorithm: sha256WithRSAEncryption 22:c7:65:9d:c7:8d:6e:a4:30:f8:c1:90:80:38:fc:8b:20:c6: 72:4f:4b:38:da:54:c7:db:ed:0e:a8:5a:e2:45:25:db:21:22: d8:28:c7:95:76:23:02:c1:5f:10:41:c2:3d:d0:6a:78:b5:b0: bc:ac:80:17:c8:92:0b:e4:04:dd:f4:39:6d:b3:e0:08:4d:da: e4:32:c9:79:02:50:42:ed:f7:c3:66:48:cc:37:c2:13:a3:09: bc:e1:00:99:77:91:ff:2f:28:6a:32:7c:97:54:b4:73:15:aa: 6f:1a:37:da:41:29:83:3e:73:d3:e7:ac:ff:3d:2f:75:56:51: 57:06:52:6e:43:70:3a:b3:09:96:9c:eb:ee:56:2b:5d:21:f2: 3e:49:1b:21:cb:21:b3:a9:4e:8c:c5:01:ea:0e:ee:ce:fc:f6: 4f:fe:fb:09:64:85:df:91:52:1e:98:ef:02:d3:99:dc:3d:5d: 58:04:81:b8:50:2b:2c:b8:b7:c4:cf:20:8b:4f:57:f0:f3:38: 61:f4:c0:48:48:47:b0:f1:47:dd:01:b3:70:fd:60:a9:2f:46: c6:07:e3:cf:96:e3:93:4a:48:61:12:97:b5:9d:99:c1:bd:13: 53:80:14:bf:68:02:99:d3:19:c2:7c:7b:41:43:6d:ce:f2:39: 57:53:6f:ef -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUFclCTuAzxOeKmRxMfNvskLcJYEYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MjgxNjM5MzRaFw0yNjA1MjcxNjQ0MzRaMDMxMTAvBgNV BAMTKEI2OEFBOEMzRThBQzdGMzRGMDFGQzVGNkQ3RDlDNzk0QzU0OTI2REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc7n/xByoigg4X9kYfDZH9KXxl /9AeFR5rivH6Cp2Qmv42A2UNuLMoEesEoOdKrlKEtCzxxA8vCfhhlmXiMpDFO/wX tbZKFJ3VaISCkunZRrZ4MhOlLTe1R30vt9oF56IUgNwOdCqOO5MCEBXMkdTPPKLS 7R8UpSinmeyFL1d+JmZb6nXqhJQbaI2Qs6OrTKApKGk19grmZba8/uz6VViiWO2M 9GW3eNOzQ/f3A7JyRxQcQweboMcwMDcBS0RU9DkchQKPaAISQtLOU6878NgZmh/R FbIC0VrOJrJRgxSUhBbWW9AeE1EO+v+1YQBv8qA15MReGl1syC5gDhmggEX7AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUtoqow+isfzTwH8X219nHlMVJJt4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2EzNjMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzMzM4MzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMdgMA0GCSqGSIb3DQEBCwUAA4IBAQAix2Wdx41upDD4wZCA OPyLIMZyT0s42lTH2+0OqFriRSXbISLYKMeVdiMCwV8QQcI90Gp4tbC8rIAXyJIL 5ATd9Dlts+AITdrkMsl5AlBC7ffDZkjMN8ITowm84QCZd5H/LyhqMnyXVLRzFapv GjfaQSmDPnPT56z/PS91VlFXBlJuQ3A6swmWnOvuVitdIfI+SRshyyGzqU6MxQHq Du7O/PZP/vsJZIXfkVIemO8C05ncPV1YBIG4UCssuLfEzyCLT1fw8zhh9MBISEew 8UfdAbNw/WCpL0bGB+PPluOTSkhhEpe1nZnBvRNTgBS/aAKZ0xnCfHtBQ23O8jlX U2/v -----END CERTIFICATE-----Generated at Tue Jun 3 10:16:23 2025 by rpki-client