$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613130303a3a2f34302d3438203d3e20323134373537.roa File: 326130613a363034343a613130303a3a2f34302d3438203d3e20323134373537.roa (raw, json) Hash identifier: CjQsduGLYbnxY2hhOItSP9QHQndH1rsimr5advKqTu4= Subject key identifier: 24:CB:B9:36:D6:9B:32:BF:BF:CD:02:27:02:0A:83:36:A8:21:57:23 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 0D2671DE03E21B21EC20026F18A45B0301AEDED1 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613130303a3a2f34302d3438203d3e20323134373537.roa Signing time: Sat 08 Feb 2025 19:18:44 +0000 ROA not before: Sat 08 Feb 2025 19:13:44 +0000 ROA not after: Sat 07 Feb 2026 19:18:44 +0000 asID: 214757 IP address blocks: 2a0a:6044:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 00:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:26:71:de:03:e2:1b:21:ec:20:02:6f:18:a4:5b:03:01:ae:de:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 8 19:13:44 2025 GMT Not After : Feb 7 19:18:44 2026 GMT Subject: CN=24CBB936D69B32BFBFCD0227020A8336A8215723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:4c:41:f1:be:c6:81:12:dd:41:02:6c:57:6e: 85:e4:42:ba:fc:5d:0a:5c:63:1a:19:3f:6c:fd:06: ed:a8:c6:0d:d8:67:ce:e3:b4:ee:70:93:dc:cd:b5: 4d:18:f3:e9:1b:a0:fb:44:ad:17:3a:88:83:41:6a: 6f:27:7a:3a:b8:74:39:e6:13:be:e0:af:4b:09:95: db:11:a1:d7:ed:92:88:66:47:34:43:96:33:c7:4f: df:a9:64:05:5c:9c:45:4a:db:e5:78:67:b8:e2:da: 05:87:f4:15:8d:63:50:52:2c:f2:a6:c9:77:97:1a: 87:87:64:23:f6:e3:45:96:ac:69:2b:02:c0:7a:7e: 2a:12:e5:f1:c2:d4:51:9d:6b:5d:0c:d7:4f:22:fe: de:6e:65:12:2f:fe:e8:7c:f0:47:ee:da:19:c4:a8: 5f:09:a8:af:51:b1:df:58:ca:26:4e:e3:47:1f:eb: 24:c1:34:89:ec:08:58:15:ac:ad:71:91:93:a2:72: e1:f9:0c:07:1e:47:7f:4d:1e:1c:40:dd:56:3f:11: 7c:59:e8:44:cf:fe:f8:61:f7:2b:16:42:ec:8e:8b: d1:d5:d7:53:82:d2:f6:a9:52:c1:09:1c:f9:1e:ff: 4c:7b:62:bc:50:8e:80:f2:a4:7f:9b:c3:a3:e7:20: 55:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CB:B9:36:D6:9B:32:BF:BF:CD:02:27:02:0A:83:36:A8:21:57:23 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613130303a3a2f34302d3438203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:a100::/40 Signature Algorithm: sha256WithRSAEncryption 76:f3:61:44:5f:22:7b:f5:b1:2e:e9:7d:9b:73:dc:93:fd:92: dd:80:7a:d1:c5:c1:b2:22:5d:8f:4b:3c:54:00:93:20:03:6a: 97:55:91:45:70:0d:6d:23:9a:5d:7e:33:45:11:96:67:5a:e7: 09:01:81:87:f8:d9:f5:7b:9a:64:ac:71:df:00:3e:91:3a:97: b4:ae:c3:ee:46:6c:6d:14:b8:b8:f8:93:a3:99:29:64:60:d0: ea:eb:6f:b4:47:1a:6f:0c:ef:af:12:a8:04:ca:73:3d:15:31: c4:59:03:68:15:3a:d8:c2:eb:c8:bc:68:ff:97:9f:9c:69:07: 3f:09:32:59:c5:fd:96:d6:32:e6:9f:0e:f8:3c:71:a6:1e:4c: 6b:3a:52:e6:dc:4d:7b:f1:94:74:ca:f0:fa:8b:08:65:ab:49: c2:35:72:66:8c:b9:07:06:0d:e4:53:17:bf:13:1d:9e:42:e1: 70:6b:cb:95:81:4e:d7:9a:a5:ec:d0:59:45:dc:a8:f8:6a:90: db:54:bd:75:3f:89:29:b5:53:fa:12:a4:2c:e9:a9:ab:00:a1: ec:9f:06:66:a8:73:52:50:32:d6:20:b8:e0:94:26:18:13:78: 4c:71:dc:66:e7:07:b1:76:82:16:29:ce:07:4c:13:d7:e1:e4: 33:c2:f3:9e -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUDSZx3gPiGyHsIAJvGKRbAwGu3tEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDgxOTEzNDRaFw0yNjAyMDcxOTE4NDRaMDMxMTAvBgNV BAMTKDI0Q0JCOTM2RDY5QjMyQkZCRkNEMDIyNzAyMEE4MzM2QTgyMTU3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrTEHxvsaBEt1BAmxXboXkQrr8 XQpcYxoZP2z9Bu2oxg3YZ87jtO5wk9zNtU0Y8+kboPtErRc6iINBam8nejq4dDnm E77gr0sJldsRodftkohmRzRDljPHT9+pZAVcnEVK2+V4Z7ji2gWH9BWNY1BSLPKm yXeXGoeHZCP240WWrGkrAsB6fioS5fHC1FGda10M108i/t5uZRIv/uh88Efu2hnE qF8JqK9Rsd9YyiZO40cf6yTBNInsCFgVrK1xkZOicuH5DAceR39NHhxA3VY/EXxZ 6ETP/vhh9ysWQuyOi9HV11OC0vapUsEJHPke/0x7YrxQjoDypH+bw6PnIFXTAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUJMu5NtabMr+/zQInAgqDNqghVyMwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTMxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzUzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYEShMA0GCSqGSIb3DQEBCwUAA4IBAQB282FEXyJ79bEu6X2b c9yT/ZLdgHrRxcGyIl2PSzxUAJMgA2qXVZFFcA1tI5pdfjNFEZZnWucJAYGH+Nn1 e5pkrHHfAD6ROpe0rsPuRmxtFLi4+JOjmSlkYNDq62+0RxpvDO+vEqgEynM9FTHE WQNoFTrYwuvIvGj/l5+caQc/CTJZxf2W1jLmnw74PHGmHkxrOlLm3E178ZR0yvD6 iwhlq0nCNXJmjLkHBg3kUxe/Ex2eQuFwa8uVgU7XmqXs0FlF3Kj4apDbVL11P4kp tVP6EqQs6amrAKHsnwZmqHNSUDLWILjglCYYE3hMcdxm5wexdoIWKc4HTBPX4eQz wvOe -----END CERTIFICATE-----Generated at Sat Apr 5 07:38:57 2025 by rpki-client