$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a333a3a2f34382d3438203d3e203437323732.roa File: 326130613a363034343a333a3a2f34382d3438203d3e203437323732.roa (raw, json) Hash identifier: n9Lga05jP8oFGUAOIOj5xURXevis1pEOAmTC3PudZf4= Subject key identifier: 3B:7F:E6:A6:85:BE:0E:76:14:99:40:FA:2B:AB:DC:A3:2C:7E:D3:B4 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 34E4978FCA4401FC65DE658798726C2CEE2FED06 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a333a3a2f34382d3438203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:23 +0000 ROA not before: Fri 07 Feb 2025 19:08:23 +0000 ROA not after: Fri 06 Feb 2026 19:13:23 +0000 asID: 47272 IP address blocks: 2a0a:6044:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:e4:97:8f:ca:44:01:fc:65:de:65:87:98:72:6c:2c:ee:2f:ed:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:08:23 2025 GMT Not After : Feb 6 19:13:23 2026 GMT Subject: CN=3B7FE6A685BE0E76149940FA2BABDCA32C7ED3B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:59:3a:74:06:1e:1c:61:97:d0:12:31:8f:d1: 72:57:b8:cd:f5:c1:30:2f:1e:bf:b2:d7:a5:c1:34: a4:44:b1:e7:79:d1:f9:8e:71:32:22:a8:0c:a0:79: 30:1e:b1:f1:71:09:9e:4b:6d:6c:86:67:0d:0f:3d: d0:1d:10:9e:20:19:c4:93:c7:e2:c6:5a:f2:45:4d: b5:6d:66:8e:30:98:66:89:90:f3:e5:2d:e4:f7:bb: 27:ee:25:53:65:87:98:3b:91:49:7f:da:2a:c4:a6: 1c:3d:a3:54:19:a5:46:72:75:51:8e:c0:30:8d:78: cf:36:4a:7b:44:be:57:6f:14:bf:44:9a:8e:67:3d: 85:21:93:5d:e5:6a:05:a7:b3:ab:84:34:2d:20:bb: 15:0a:f1:25:f1:7c:e4:49:17:6a:d9:12:07:e7:38: d5:59:d5:fd:a2:5e:aa:79:a5:bb:1d:9a:f3:e1:ce: 97:0f:cc:9f:b8:c4:21:3b:9d:64:e4:83:74:46:79: 68:7e:dd:0d:67:6b:4f:19:c9:33:9d:1a:ce:92:c7: f0:fd:bf:18:a0:4c:35:88:6c:f1:3d:f2:07:4f:f2: 88:88:b1:36:c9:fc:91:de:05:c6:0f:5d:72:24:ca: d5:09:23:5d:8c:d5:9b:d1:85:82:d8:0f:20:f0:3e: b5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:7F:E6:A6:85:BE:0E:76:14:99:40:FA:2B:AB:DC:A3:2C:7E:D3:B4 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a333a3a2f34382d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:3::/48 Signature Algorithm: sha256WithRSAEncryption b7:89:16:b5:ed:27:f0:f8:49:7e:5e:1f:da:f2:04:17:bc:36: 66:e6:2f:ae:00:f2:ad:a2:69:84:e1:ee:8e:53:7e:5e:b8:2c: d8:0f:81:55:0f:72:8e:58:c7:02:09:16:ce:e7:5c:39:4d:2b: 4b:92:d4:72:2f:a8:a9:78:1f:76:02:b6:86:c8:24:f2:82:3e: 4b:41:b7:f6:f6:94:d3:81:85:e9:cb:1b:33:a0:1e:c8:00:f2: b0:13:17:d3:d5:55:2f:e5:a3:f9:06:f4:c7:65:80:c1:00:36: 9e:cd:48:1f:37:ee:8c:e0:0c:ec:28:aa:eb:35:59:6c:c1:53: d4:13:8f:04:e4:0f:56:55:fc:37:71:05:c9:b0:11:67:20:5e: 5a:ce:bf:28:37:3d:ab:8d:4c:61:22:97:78:03:6e:af:64:cb: ab:3b:69:c8:98:85:93:9b:50:9e:53:55:07:a8:38:ae:e8:2a: 6f:bf:57:19:25:cb:b7:82:70:26:54:06:91:f1:1f:6e:ee:36: 73:41:ae:fb:ee:62:3e:f2:f8:dd:01:18:18:4c:09:be:9c:df: 29:d9:82:c4:af:b8:88:a4:16:8a:92:84:38:48:67:b6:a8:53: e0:a1:a8:41:6f:ae:92:5d:82:57:37:49:ed:92:a7:1d:66:25: b7:95:44:b8 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUNOSXj8pEAfxl3mWHmHJsLO4v7QYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA4MjNaFw0yNjAyMDYxOTEzMjNaMDMxMTAvBgNV BAMTKDNCN0ZFNkE2ODVCRTBFNzYxNDk5NDBGQTJCQUJEQ0EzMkM3RUQzQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzWTp0Bh4cYZfQEjGP0XJXuM31 wTAvHr+y16XBNKREsed50fmOcTIiqAygeTAesfFxCZ5LbWyGZw0PPdAdEJ4gGcST x+LGWvJFTbVtZo4wmGaJkPPlLeT3uyfuJVNlh5g7kUl/2irEphw9o1QZpUZydVGO wDCNeM82SntEvldvFL9Emo5nPYUhk13lagWns6uENC0guxUK8SXxfORJF2rZEgfn ONVZ1f2iXqp5pbsdmvPhzpcPzJ+4xCE7nWTkg3RGeWh+3Q1na08ZyTOdGs6Sx/D9 vxigTDWIbPE98gdP8oiIsTbJ/JHeBcYPXXIkytUJI12M1ZvRhYLYDyDwPrURAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUO3/mpoW+DnYUmUD6K6vcoyx+07QwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqCmBEAAMwDQYJKoZIhvcNAQELBQADggEBALeJFrXtJ/D4SX5eH9ryBBe8Nmbm L64A8q2iaYTh7o5Tfl64LNgPgVUPco5YxwIJFs7nXDlNK0uS1HIvqKl4H3YCtobI JPKCPktBt/b2lNOBhenLGzOgHsgA8rATF9PVVS/lo/kG9MdlgMEANp7NSB837ozg DOwoqus1WWzBU9QTjwTkD1ZV/DdxBcmwEWcgXlrOvyg3PauNTGEil3gDbq9ky6s7 aciYhZObUJ5TVQeoOK7oKm+/Vxkly7eCcCZUBpHxH27uNnNBrvvuYj7y+N0BGBhM Cb6c3ynZgsSvuIikFoqShDhIZ7aoU+ChqEFvrpJdglc3Se2Spx1mJbeVRLg= -----END CERTIFICATE-----Generated at Thu Apr 3 07:09:26 2025 by rpki-client