$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616336303a3a2f34342d3438203d3e203230343733.roa File: 326130613a363034343a616336303a3a2f34342d3438203d3e203230343733.roa (raw, json) Hash identifier: BAtmNKGrsVz4tPxo+v8wcJyzg2FwP8hreHCRlvuhh5E= Subject key identifier: 80:2E:73:E9:C0:84:5E:74:35:AA:1E:6B:8E:C3:61:B5:75:16:86:58 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 01C61309A0648FDB693CEA2B6470DDC29D5AEC05 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616336303a3a2f34342d3438203d3e203230343733.roa Signing time: Fri 07 Feb 2025 21:33:53 +0000 ROA not before: Fri 07 Feb 2025 21:28:53 +0000 ROA not after: Fri 06 Feb 2026 21:33:53 +0000 asID: 20473 IP address blocks: 2a0a:6044:ac60::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 19:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:c6:13:09:a0:64:8f:db:69:3c:ea:2b:64:70:dd:c2:9d:5a:ec:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 21:28:53 2025 GMT Not After : Feb 6 21:33:53 2026 GMT Subject: CN=802E73E9C0845E7435AA1E6B8EC361B575168658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:82:d1:54:b4:8a:c1:a2:d3:1d:f8:4d:0a:5b: f7:9c:7b:30:ca:d1:a0:70:b9:6f:b3:fe:ab:7a:d8: 09:9a:f8:fd:76:4d:ef:f7:81:e7:a3:0e:a3:05:e2: 36:e7:1d:d3:ed:b8:b4:f4:b7:28:01:e1:9e:fd:d3: 95:7e:c7:d7:8d:ed:22:9d:33:dd:3d:1e:ac:75:a2: 2c:7b:0c:b2:b0:dc:7a:a0:dd:44:10:da:8e:03:ed: ea:98:08:1d:92:71:6e:f3:b9:35:fb:d2:8f:75:e8: 45:2b:7d:24:71:92:40:b6:c2:8a:97:9c:9c:11:9d: c8:48:eb:7f:37:84:f3:81:42:8f:df:36:6d:db:ae: 5e:20:5a:35:eb:50:b9:95:ea:8b:dd:dd:1e:76:bc: ac:84:a2:43:6d:73:80:b4:6d:42:44:68:bf:ad:25: ce:ff:4b:f2:ca:0c:99:43:a6:26:e5:2a:5b:d4:85: bb:1b:c9:38:6f:37:17:b8:99:25:9b:6c:b2:df:dc: 9a:9b:05:1c:a3:29:34:48:14:25:de:7a:5b:fa:0c: 06:a6:f2:75:a8:0c:f1:9a:96:9d:53:75:fd:a6:dd: 09:27:f4:b6:dd:6b:bb:f6:4d:b7:19:db:9d:5f:75: e7:ae:4d:8e:95:1d:5e:d3:1f:2b:09:34:9e:80:e2: d2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:2E:73:E9:C0:84:5E:74:35:AA:1E:6B:8E:C3:61:B5:75:16:86:58 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616336303a3a2f34342d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac60::/44 Signature Algorithm: sha256WithRSAEncryption 34:67:8b:7a:60:bc:6b:46:9b:04:dc:cf:99:64:44:de:45:5c: 3d:65:e9:44:a6:71:b2:2c:19:ca:01:a3:88:1f:de:ec:8f:31: b9:38:94:d5:85:05:4b:b0:79:a5:0a:34:fa:0c:02:2f:a7:cf: d1:66:23:30:34:c1:f3:5a:3b:a1:c6:69:7d:36:9d:14:96:a3: eb:ae:87:43:af:10:92:d9:0a:37:6e:e5:3e:40:4c:be:80:cd: 25:68:d3:88:4f:31:f8:f1:e0:0b:59:a2:f8:0e:f9:a5:50:4d: 21:2e:6a:56:01:63:83:1e:b4:d9:a3:68:ea:1b:19:c4:c0:65: 41:a4:dc:ef:e0:88:11:75:5c:1a:b1:05:42:dd:14:92:a3:a0: 97:69:16:b0:7f:45:6a:19:85:95:3b:84:57:b8:cc:b0:68:28: 96:5d:54:6a:5c:9e:e0:ec:58:d7:72:61:b9:c6:bc:e0:db:ef: 70:20:c9:81:c7:f1:29:5b:f2:ed:2a:72:7e:f3:1c:34:c3:e7: ff:ca:4a:a4:61:a6:b5:1a:42:51:dd:f0:f1:41:60:60:10:1c: 21:1c:2f:6d:97:7e:7e:9f:c8:18:f2:fc:d4:d5:53:15:d5:07: d3:35:53:81:53:ab:55:63:a9:c0:64:48:a4:ed:fe:70:3b:16: 35:73:d6:e7 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUAcYTCaBkj9tpPOorZHDdwp1a7AUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcyMTI4NTNaFw0yNjAyMDYyMTMzNTNaMDMxMTAvBgNV BAMTKDgwMkU3M0U5QzA4NDVFNzQzNUFBMUU2QjhFQzM2MUI1NzUxNjg2NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcgtFUtIrBotMd+E0KW/ecezDK 0aBwuW+z/qt62Ama+P12Te/3geejDqMF4jbnHdPtuLT0tygB4Z7905V+x9eN7SKd M909Hqx1oix7DLKw3Hqg3UQQ2o4D7eqYCB2ScW7zuTX70o916EUrfSRxkkC2woqX nJwRnchI6383hPOBQo/fNm3brl4gWjXrULmV6ovd3R52vKyEokNtc4C0bUJEaL+t Jc7/S/LKDJlDpiblKlvUhbsbyThvNxe4mSWbbLLf3JqbBRyjKTRIFCXeelv6DAam 8nWoDPGalp1Tdf2m3Qkn9Lbda7v2TbcZ251fdeeuTY6VHV7THysJNJ6A4tKTAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUgC5z6cCEXnQ1qh5rjsNhtXUWhlgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTYzMzYzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzAzNDM3MzMucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqCmBErGAwDQYJKoZIhvcNAQELBQADggEBADRni3pgvGtGmwTcz5lk RN5FXD1l6USmcbIsGcoBo4gf3uyPMbk4lNWFBUuweaUKNPoMAi+nz9FmIzA0wfNa O6HGaX02nRSWo+uuh0OvEJLZCjdu5T5ATL6AzSVo04hPMfjx4AtZovgO+aVQTSEu alYBY4MetNmjaOobGcTAZUGk3O/giBF1XBqxBULdFJKjoJdpFrB/RWoZhZU7hFe4 zLBoKJZdVGpcnuDsWNdyYbnGvODb73AgyYHH8Slb8u0qcn7zHDTD5//KSqRhprUa QlHd8PFBYGAQHCEcL22Xfn6fyBjy/NTVUxXVB9M1U4FTq1VjqcBkSKTt/nA7FjVz 1uc= -----END CERTIFICATE-----Generated at Sun Apr 6 11:46:47 2025 by rpki-client