$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a376130303a3a2f34302d3438203d3e20323134323033.roa File: 326130613a363034343a376130303a3a2f34302d3438203d3e20323134323033.roa (raw, json) Hash identifier: 6itj028Ifw9AXXoDLAx211bKrgujiHFjSZAPx7ljCW0= Subject key identifier: FC:53:46:34:B3:33:49:1A:82:11:45:85:75:73:12:C9:1E:04:20:A8 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 4AE916998D151C70F34B5DC46531B5BDE82C8267 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a376130303a3a2f34302d3438203d3e20323134323033.roa Signing time: Fri 14 Feb 2025 12:46:21 +0000 ROA not before: Fri 14 Feb 2025 12:41:21 +0000 ROA not after: Fri 13 Feb 2026 12:46:21 +0000 asID: 214203 IP address blocks: 2a0a:6044:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 00:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e9:16:99:8d:15:1c:70:f3:4b:5d:c4:65:31:b5:bd:e8:2c:82:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 14 12:41:21 2025 GMT Not After : Feb 13 12:46:21 2026 GMT Subject: CN=FC534634B333491A82114585757312C91E0420A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:14:19:4d:84:6e:51:32:5d:5d:c6:ee:e2:53: 5d:6a:a7:f1:8c:14:22:10:1b:b8:f7:ef:90:8c:84: ee:e5:97:4a:96:96:63:81:0a:80:52:85:f5:03:d5: c4:c2:36:c2:b0:4e:c3:5b:a0:f9:1c:15:e5:3c:1b: 19:4b:93:4e:3f:89:ab:4b:d4:16:d5:61:12:0a:b0: 84:08:b0:85:9b:e4:89:00:53:f2:6e:b1:13:00:7e: 1e:34:fc:fd:24:62:14:11:44:e6:7f:37:50:24:b8: 87:21:a4:d5:99:a4:c6:d1:3e:fb:f9:7d:73:2b:77: 51:1a:5d:ee:5b:3b:0a:a9:b8:55:2a:d7:64:6a:e9: 4e:af:59:e9:54:e2:dd:87:4a:f7:a6:ae:ea:00:d7: 10:19:63:66:af:76:df:0b:53:24:4f:fc:ae:8b:19: d8:87:4f:40:03:a7:ce:b2:48:d2:8e:6e:37:e9:b3: 9d:0c:70:b5:8b:45:49:cf:0e:5a:51:0f:38:de:e9: 05:66:4c:0e:34:0f:1b:75:b4:71:17:3b:55:bd:4c: ab:51:55:16:1f:54:61:43:7a:a0:92:16:0d:bd:d8: 24:42:9c:e9:e7:c6:22:4a:19:50:61:ec:f6:65:7f: 0c:fd:ff:e1:30:1d:1a:03:f7:91:54:3e:ef:f3:c5: c6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:53:46:34:B3:33:49:1A:82:11:45:85:75:73:12:C9:1E:04:20:A8 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a376130303a3a2f34302d3438203d3e20323134323033.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 4b:bf:76:0f:66:8d:f2:24:89:38:ea:d0:e7:90:72:bd:0a:87: 92:1e:ec:1b:62:64:90:c6:0f:b6:3c:96:c2:45:e2:0a:45:a9: 38:28:87:fd:de:64:72:ef:44:d9:13:db:33:f3:4b:e4:ab:30: 0f:3f:fb:d1:2d:12:a1:6b:1c:18:3e:5e:0c:18:6b:5a:20:e9: a5:30:d5:fd:f7:9e:83:9b:f9:a2:49:77:c0:e2:65:7a:8e:4b: f7:6d:c7:26:f1:f8:08:05:5a:e4:77:1d:0b:f4:54:ef:8a:e5: d4:f4:d6:9c:da:5f:04:9e:88:2c:13:59:61:6a:84:5c:5e:e1: c4:89:97:5f:12:53:3b:5d:5c:c6:b8:7b:ca:f5:8d:4d:dd:2c: 69:59:e1:9d:8b:28:b4:a6:10:39:3c:d5:5c:9a:ad:d1:7c:40: 0e:e8:cd:4e:b6:5a:91:50:15:9f:5b:cc:b4:6d:20:8b:94:a7: bb:88:37:56:f1:17:01:cd:d8:cb:98:02:c0:f5:bc:6e:69:00: ba:3d:5a:b4:66:4d:2a:0f:e7:fb:14:17:28:07:9e:96:6d:98: b1:40:c8:d5:48:6a:56:18:26:b8:5c:4e:b9:ea:ed:42:60:cb: 53:af:c0:92:3a:81:87:1c:ac:15:69:b3:c0:78:74:bd:78:fb: a9:ab:11:3a -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUSukWmY0VHHDzS13EZTG1vegsgmcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMTQxMjQxMjFaFw0yNjAyMTMxMjQ2MjFaMDMxMTAvBgNV BAMTKEZDNTM0NjM0QjMzMzQ5MUE4MjExNDU4NTc1NzMxMkM5MUUwNDIwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsFBlNhG5RMl1dxu7iU11qp/GM FCIQG7j375CMhO7ll0qWlmOBCoBShfUD1cTCNsKwTsNboPkcFeU8GxlLk04/iatL 1BbVYRIKsIQIsIWb5IkAU/JusRMAfh40/P0kYhQRROZ/N1AkuIchpNWZpMbRPvv5 fXMrd1EaXe5bOwqpuFUq12Rq6U6vWelU4t2HSvemruoA1xAZY2avdt8LUyRP/K6L GdiHT0ADp86ySNKObjfps50McLWLRUnPDlpRDzje6QVmTA40Dxt1tHEXO1W9TKtR VRYfVGFDeqCSFg292CRCnOnnxiJKGVBh7PZlfwz9/+EwHRoD95FUPu/zxcazAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU/FNGNLMzSRqCEUWFdXMSyR4EIKgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNzYxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNDMyMzAzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYER6MA0GCSqGSIb3DQEBCwUAA4IBAQBLv3YPZo3yJIk46tDn kHK9CoeSHuwbYmSQxg+2PJbCReIKRak4KIf93mRy70TZE9sz80vkqzAPP/vRLRKh axwYPl4MGGtaIOmlMNX9956Dm/miSXfA4mV6jkv3bccm8fgIBVrkdx0L9FTviuXU 9Nac2l8EnogsE1lhaoRcXuHEiZdfElM7XVzGuHvK9Y1N3SxpWeGdiyi0phA5PNVc mq3RfEAO6M1OtlqRUBWfW8y0bSCLlKe7iDdW8RcBzdjLmALA9bxuaQC6PVq0Zk0q D+f7FBcoB56WbZixQMjVSGpWGCa4XE656u1CYMtTr8CSOoGHHKwVabPAeHS9ePup qxE6 -----END CERTIFICATE-----Generated at Sat Apr 5 07:54:20 2025 by rpki-client