$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373330303a3a2f34302d3438203d3e20323133343437.roa File: 326130613a363034343a373330303a3a2f34302d3438203d3e20323133343437.roa (raw, json) Hash identifier: 7krkGpzQjk3vR7KlcLbrY1vwtCakN4v6/36mSvNOg70= Subject key identifier: A9:00:56:D9:E7:2F:D4:35:E8:8D:12:1B:0D:E6:D7:17:FD:E4:7D:59 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 717ABA4EC69A62441E3DFD821468160AC17E33B3 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373330303a3a2f34302d3438203d3e20323133343437.roa Signing time: Wed 07 May 2025 01:46:30 +0000 ROA not before: Wed 07 May 2025 01:41:30 +0000 ROA not after: Wed 06 May 2026 01:46:30 +0000 asID: 213447 IP address blocks: 2a0a:6044:7300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Jun 2025 22:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:7a:ba:4e:c6:9a:62:44:1e:3d:fd:82:14:68:16:0a:c1:7e:33:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 7 01:41:30 2025 GMT Not After : May 6 01:46:30 2026 GMT Subject: CN=A90056D9E72FD435E88D121B0DE6D717FDE47D59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:04:13:3f:c2:45:53:2e:9b:d6:ce:e7:d2:14: f5:15:78:3f:10:6b:e0:85:c0:6a:fa:fa:99:0c:58: 46:b8:fb:33:e1:d2:bb:3c:a8:f0:7b:5e:39:61:65: 50:b1:fd:67:4c:63:2e:5a:a9:e9:92:c2:74:c9:fc: d2:6b:dd:1b:12:82:90:dc:df:7f:6f:59:89:ba:8c: 2c:00:11:c0:4a:ba:85:cc:d1:39:e2:b1:e7:ef:a3: 89:6b:57:70:8e:f7:95:ea:38:7c:4d:11:fb:9e:0a: 96:98:87:39:9e:61:4e:88:1e:e6:5c:59:f3:6f:12: 01:f2:c3:cd:af:60:8b:73:5c:b9:69:f5:33:70:3f: 7f:7c:bb:8d:e6:e3:41:1e:b4:7d:e8:f2:98:5d:03: 97:5c:13:f7:e2:f5:e9:c9:e4:b2:c8:b0:c7:bd:ea: 96:bd:c7:3c:72:3b:12:80:75:2f:46:2f:a0:c7:f6: b6:ad:a0:ed:fb:e5:6f:22:30:14:cc:76:b7:11:80: d3:cf:58:4d:e2:1a:94:aa:a1:61:d2:9d:27:4e:73: bc:ec:53:d1:12:99:e3:f1:fe:9b:0f:8d:1b:d2:e0: 95:c3:3e:f6:45:3d:d0:b1:ef:5f:85:f3:3a:43:c5: aa:57:82:c7:ac:d3:47:35:5b:24:e8:cb:9e:f9:f7: 01:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:00:56:D9:E7:2F:D4:35:E8:8D:12:1B:0D:E6:D7:17:FD:E4:7D:59 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373330303a3a2f34302d3438203d3e20323133343437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7300::/40 Signature Algorithm: sha256WithRSAEncryption 47:51:88:87:48:00:a9:47:fa:5d:4a:de:5f:4f:ec:2e:58:09: f7:8a:95:75:e2:db:3d:bd:0f:e6:62:07:b0:69:46:70:40:ae: 68:52:a8:12:68:23:27:b5:4c:6b:24:ff:61:70:6d:32:70:2d: fa:c8:0b:73:fb:91:93:b5:67:9f:24:8c:8e:3d:25:bf:90:41: c6:40:33:f2:07:5d:f4:68:e1:e7:c5:21:d5:ef:c3:2d:0c:3e: ae:28:c2:3b:62:ea:f3:b4:9b:f8:53:d6:54:40:97:07:d8:a9: e8:b7:4b:c4:ff:66:98:f6:e7:d5:94:17:25:f6:db:41:86:67: ca:ed:c1:91:b7:4c:07:07:59:eb:66:e8:83:e2:53:50:4a:2d: 5f:94:b0:49:14:5a:93:9b:69:85:23:1b:79:96:de:72:e5:2a: eb:ba:6d:d2:94:c5:b1:8b:ab:89:89:18:7c:c2:6f:09:26:df: c0:83:eb:07:7c:75:ba:1e:ea:07:75:50:9d:40:45:17:3c:f3: d8:57:4b:9a:74:fa:9e:50:69:0c:2d:9b:58:0a:9c:63:8c:01: 30:a6:fa:f8:65:55:fe:04:b9:9d:63:fc:e4:86:b8:66:0a:19: 42:05:65:90:89:52:19:8f:a7:a5:a8:63:a7:cb:b1:24:ef:f1: be:6c:ff:80 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUcXq6TsaaYkQePf2CFGgWCsF+M7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MDcwMTQxMzBaFw0yNjA1MDYwMTQ2MzBaMDMxMTAvBgNV BAMTKEE5MDA1NkQ5RTcyRkQ0MzVFODhEMTIxQjBERTZENzE3RkRFNDdENTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZBBM/wkVTLpvWzufSFPUVeD8Q a+CFwGr6+pkMWEa4+zPh0rs8qPB7XjlhZVCx/WdMYy5aqemSwnTJ/NJr3RsSgpDc 339vWYm6jCwAEcBKuoXM0Tnisefvo4lrV3CO95XqOHxNEfueCpaYhzmeYU6IHuZc WfNvEgHyw82vYItzXLlp9TNwP398u43m40EetH3o8phdA5dcE/fi9enJ5LLIsMe9 6pa9xzxyOxKAdS9GL6DH9ratoO375W8iMBTMdrcRgNPPWE3iGpSqoWHSnSdOc7zs U9ESmePx/psPjRvS4JXDPvZFPdCx71+F8zpDxapXgses00c1WyToy5759wENAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUqQBW2ecv1DXojRIbDebXF/3kfVkwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNzMzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzMzM0MzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYERzMA0GCSqGSIb3DQEBCwUAA4IBAQBHUYiHSACpR/pdSt5f T+wuWAn3ipV14ts9vQ/mYgewaUZwQK5oUqgSaCMntUxrJP9hcG0ycC36yAtz+5GT tWefJIyOPSW/kEHGQDPyB130aOHnxSHV78MtDD6uKMI7YurztJv4U9ZUQJcH2Kno t0vE/2aY9ufVlBcl9ttBhmfK7cGRt0wHB1nrZuiD4lNQSi1flLBJFFqTm2mFIxt5 lt5y5Srrum3SlMWxi6uJiRh8wm8JJt/Ag+sHfHW6HuoHdVCdQEUXPPPYV0uadPqe UGkMLZtYCpxjjAEwpvr4ZVX+BLmdY/zkhrhmChlCBWWQiVIZj6elqGOny7Ek7/G+ bP+A -----END CERTIFICATE-----Generated at Tue Jun 3 10:13:05 2025 by rpki-client