$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a343a3a2f34382d3438203d3e203437323732.roa File: 326130613a363034343a343a3a2f34382d3438203d3e203437323732.roa (raw, json) Hash identifier: EIlap4rLdtkLBDZJ7B6TVuD1hYajAdGtUsWOqroMYIQ= Subject key identifier: F0:D6:9D:6D:BC:11:4A:DF:B7:3C:D7:88:F8:AA:79:BA:AE:03:C2:95 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 48B0ACD08E245C5D34D0A620CC4B6E24F9FA7B91 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a343a3a2f34382d3438203d3e203437323732.roa Signing time: Fri 07 Feb 2025 19:13:19 +0000 ROA not before: Fri 07 Feb 2025 19:08:19 +0000 ROA not after: Fri 06 Feb 2026 19:13:19 +0000 asID: 47272 IP address blocks: 2a0a:6044:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 15:16:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:b0:ac:d0:8e:24:5c:5d:34:d0:a6:20:cc:4b:6e:24:f9:fa:7b:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 19:08:19 2025 GMT Not After : Feb 6 19:13:19 2026 GMT Subject: CN=F0D69D6DBC114ADFB73CD788F8AA79BAAE03C295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:51:89:60:6b:1a:26:87:bb:b0:b7:b5:98:ce: 78:2e:fb:69:e1:9e:25:4e:fc:ba:52:d8:6a:86:a4: 95:78:70:b0:99:ca:d4:66:a2:29:59:24:56:2a:d6: e6:ab:c2:6f:c4:3f:60:e7:81:44:1a:d2:c2:bc:50: 82:45:54:56:c4:c1:5c:48:0c:31:b9:ed:57:42:98: 67:1f:b8:78:b6:1d:08:80:43:00:23:66:0f:00:d2: 99:8a:be:4e:1e:ac:df:98:de:44:b4:c5:6d:35:f6: 0e:fb:7d:7d:f9:03:79:95:f3:65:a5:a2:d3:45:94: 8e:7c:f8:6c:15:e9:e8:7e:73:b2:57:d2:64:a0:3a: 06:40:da:24:8a:98:3d:82:70:94:02:a7:15:35:06: 80:e8:47:67:1f:ca:25:77:96:07:94:ef:c5:5b:75: 97:16:c4:f4:54:c7:c3:eb:de:7e:ac:3e:9f:af:7c: 1f:5f:9e:dd:a1:bd:f6:10:7b:f2:90:d9:c1:0f:fd: a2:ad:ed:72:38:7e:d4:db:6f:4b:4f:3c:8b:24:41: 57:79:43:7e:c7:b2:a7:33:e4:5e:08:32:35:6d:9a: d7:df:d1:aa:38:35:2b:16:cd:3b:4a:ed:ba:86:2b: 80:f5:25:98:f0:7d:eb:ce:05:1f:fa:09:38:a6:f4: 05:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D6:9D:6D:BC:11:4A:DF:B7:3C:D7:88:F8:AA:79:BA:AE:03:C2:95 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a343a3a2f34382d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:4::/48 Signature Algorithm: sha256WithRSAEncryption ab:0f:57:06:00:0c:c9:de:78:02:70:6a:ac:95:30:d7:7c:e5: 16:5b:e6:49:47:65:f4:3f:c8:cb:1a:5e:b1:fc:da:ee:79:04: 3e:22:71:28:8e:7d:4a:64:a6:e0:59:3a:64:c4:fc:c5:bd:c9: d8:68:39:dc:10:ee:ab:d4:2a:b8:d4:a8:44:af:49:84:ef:e5: 6b:60:3d:98:53:09:6a:1f:bc:bd:fa:8f:f8:1b:c1:6d:f3:89: 8a:d2:65:5d:ec:b7:57:09:6d:6c:21:64:31:46:e6:ac:75:13: ba:c2:e9:70:78:88:95:15:85:e2:a4:c5:a0:c9:75:90:d3:df: 95:c6:f1:e1:96:2b:1a:d9:26:29:f6:79:91:a4:a2:fb:66:8a: 1f:2b:7a:87:4a:f0:76:0d:78:ac:64:84:f8:71:80:4f:63:17: 35:4d:98:e6:92:11:fc:89:5f:71:23:df:9f:18:64:4b:13:5b: ee:11:c6:92:73:58:0b:dc:69:31:c7:0a:5d:a1:a3:23:d2:07: ca:e7:73:a8:8c:b3:50:f7:cd:76:a2:4b:e0:5d:f2:24:da:b0: 69:d9:6f:29:97:54:e1:0c:90:c7:6d:42:10:b4:01:ec:fc:d9: 73:2c:b9:9d:fd:0f:7a:41:ef:a2:99:6b:36:2b:fd:8f:0e:34: e5:e9:b5:37 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUSLCs0I4kXF000KYgzEtuJPn6e5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxOTA4MTlaFw0yNjAyMDYxOTEzMTlaMDMxMTAvBgNV BAMTKEYwRDY5RDZEQkMxMTRBREZCNzNDRDc4OEY4QUE3OUJBQUUwM0MyOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyUYlgaxomh7uwt7WYzngu+2nh niVO/LpS2GqGpJV4cLCZytRmoilZJFYq1uarwm/EP2DngUQa0sK8UIJFVFbEwVxI DDG57VdCmGcfuHi2HQiAQwAjZg8A0pmKvk4erN+Y3kS0xW019g77fX35A3mV82Wl otNFlI58+GwV6eh+c7JX0mSgOgZA2iSKmD2CcJQCpxU1BoDoR2cfyiV3lgeU78Vb dZcWxPRUx8Pr3n6sPp+vfB9fnt2hvfYQe/KQ2cEP/aKt7XI4ftTbb0tPPIskQVd5 Q37Hsqcz5F4IMjVtmtff0ao4NSsWzTtK7bqGK4D1JZjwfevOBR/6CTim9AXLAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQU8NadbbwRSt+3PNeI+Kp5uq4DwpUwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqCmBEAAQwDQYJKoZIhvcNAQELBQADggEBAKsPVwYADMneeAJwaqyVMNd85RZb 5klHZfQ/yMsaXrH82u55BD4icSiOfUpkpuBZOmTE/MW9ydhoOdwQ7qvUKrjUqESv SYTv5WtgPZhTCWofvL36j/gbwW3ziYrSZV3st1cJbWwhZDFG5qx1E7rC6XB4iJUV heKkxaDJdZDT35XG8eGWKxrZJin2eZGkovtmih8reodK8HYNeKxkhPhxgE9jFzVN mOaSEfyJX3Ej358YZEsTW+4RxpJzWAvcaTHHCl2hoyPSB8rnc6iMs1D3zXaiS+Bd 8iTasGnZbymXVOEMkMdtQhC0Aez82XMsuZ39D3pB76KZazYr/Y8ONOXptTc= -----END CERTIFICATE-----Generated at Thu Apr 3 07:09:27 2025 by rpki-client