$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa File: 326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa (raw, json) Hash identifier: La7O0Xc63yyCe3ikwhJCiyiUXwyfwX8v39WtU7KgzzU= Subject key identifier: DF:65:BF:ED:0E:FF:F9:82:86:75:E4:54:77:32:95:B0:4B:F8:46:2B Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 6B76B487D9F9BEE32FB989DB5CD3C7A2D39B3038 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa Signing time: Fri 07 Feb 2025 18:35:23 +0000 ROA not before: Fri 07 Feb 2025 18:30:23 +0000 ROA not after: Fri 06 Feb 2026 18:35:23 +0000 asID: 205398 IP address blocks: 2a0a:6044:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 21:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:76:b4:87:d9:f9:be:e3:2f:b9:89:db:5c:d3:c7:a2:d3:9b:30:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Feb 7 18:30:23 2025 GMT Not After : Feb 6 18:35:23 2026 GMT Subject: CN=DF65BFED0EFFF9828675E454773295B04BF8462B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f8:0c:fd:a8:6a:f2:42:49:c9:3f:59:f3:bd: 94:13:1b:0d:bd:c9:95:83:f8:b9:2e:a2:66:7a:05: cf:57:44:d8:40:32:d4:98:3a:a3:23:38:3f:c2:af: d7:c4:1d:e2:84:6a:d3:d0:23:e5:6b:43:35:79:ff: 3d:68:9d:99:e9:73:22:f4:e9:57:fa:66:fd:cd:4f: af:9d:8a:3c:f7:7e:cb:95:3f:e3:aa:d0:23:85:2f: 70:fb:df:2d:c5:7d:27:e7:48:aa:10:2d:e8:ab:c1: 98:2c:83:40:62:47:8f:e4:e8:e3:6e:ca:4d:38:08: 24:60:ca:a8:79:28:0b:4e:ed:8b:6a:16:c1:a5:58: af:9c:dc:a6:46:b2:dc:95:b3:78:ae:33:07:ef:eb: 9c:53:6c:2c:2a:fb:be:7c:e7:9e:eb:72:34:7b:68: 7f:a0:8c:cc:6d:c1:e1:6e:f4:30:04:bb:3f:2b:db: 92:98:30:1a:f6:ef:94:80:b1:41:36:99:3d:5b:6e: de:9f:7c:bd:86:fd:bc:53:b0:f8:4d:e8:b1:5e:6f: f9:af:54:d7:b0:29:1a:e9:08:41:1c:d0:c4:e7:08: 7b:91:4b:3c:d7:4b:8a:20:d1:b0:53:37:bd:4e:35: 36:b6:2d:3f:f7:65:c2:29:ff:0c:ee:09:0f:22:31: 2d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:65:BF:ED:0E:FF:F9:82:86:75:E4:54:77:32:95:B0:4B:F8:46:2B X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ad00::/40 Signature Algorithm: sha256WithRSAEncryption 0d:80:da:1b:5c:5b:52:c5:3a:9c:4f:fa:f1:03:0f:3d:0e:74: f5:9d:a2:cd:9c:74:63:43:27:50:b1:ec:91:02:dc:74:f7:37: 29:24:14:ba:c4:3f:9e:32:20:4e:3d:77:8b:20:66:5d:12:68: 23:99:87:b3:72:fe:c1:ea:52:79:07:1f:bd:3d:20:72:a8:25: 8e:52:b7:4b:b9:35:b0:67:ff:00:c0:f8:42:74:eb:ee:a0:ce: 0f:3a:d0:63:d6:74:06:b9:d8:df:8e:b6:5f:49:b0:99:fa:86: fc:f9:0e:0e:14:e6:01:3a:f7:58:94:dd:12:db:21:3a:cb:03: 71:74:bb:f2:e9:15:dd:79:ae:e4:91:e4:91:eb:2e:1e:03:22: c9:9f:19:f8:b2:51:e6:1b:80:90:32:b7:3a:8b:b1:c9:6c:2e: f1:1f:cf:02:3d:ae:dd:09:43:28:df:2c:93:95:58:23:c5:50: 1b:1d:3d:99:0d:51:8f:63:67:05:71:b1:07:16:fd:0e:a0:75: 4f:08:18:16:9b:d4:77:60:b3:d3:aa:bd:ec:74:57:19:24:5e: da:03:6a:ee:4e:c4:62:45:63:4e:90:5f:f5:8b:96:80:da:89: 01:91:74:36:ae:77:44:31:c5:ab:44:fb:26:6b:ce:05:81:92: 27:64:de:66 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUa3a0h9n5vuMvuYnbXNPHotObMDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAyMDcxODMwMjNaFw0yNjAyMDYxODM1MjNaMDMxMTAvBgNV BAMTKERGNjVCRkVEMEVGRkY5ODI4Njc1RTQ1NDc3MzI5NUIwNEJGODQ2MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW+Az9qGryQknJP1nzvZQTGw29 yZWD+LkuomZ6Bc9XRNhAMtSYOqMjOD/Cr9fEHeKEatPQI+VrQzV5/z1onZnpcyL0 6Vf6Zv3NT6+dijz3fsuVP+Oq0COFL3D73y3FfSfnSKoQLeirwZgsg0BiR4/k6ONu yk04CCRgyqh5KAtO7YtqFsGlWK+c3KZGstyVs3iuMwfv65xTbCwq+758557rcjR7 aH+gjMxtweFu9DAEuz8r25KYMBr275SAsUE2mT1bbt6ffL2G/bxTsPhN6LFeb/mv VNewKRrpCEEc0MTnCHuRSzzXS4og0bBTN71ONTa2LT/3ZcIp/wzuCQ8iMS2zAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU32W/7Q7/+YKGdeRUdzKVsEv4RiswHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTY0MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzAzNTMzMzkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYEStMA0GCSqGSIb3DQEBCwUAA4IBAQANgNobXFtSxTqcT/rx Aw89DnT1naLNnHRjQydQseyRAtx09zcpJBS6xD+eMiBOPXeLIGZdEmgjmYezcv7B 6lJ5Bx+9PSByqCWOUrdLuTWwZ/8AwPhCdOvuoM4POtBj1nQGudjfjrZfSbCZ+ob8 +Q4OFOYBOvdYlN0S2yE6ywNxdLvy6RXdea7kkeSR6y4eAyLJnxn4slHmG4CQMrc6 i7HJbC7xH88CPa7dCUMo3yyTlVgjxVAbHT2ZDVGPY2cFcbEHFv0OoHVPCBgWm9R3 YLPTqr3sdFcZJF7aA2ruTsRiRWNOkF/1i5aA2okBkXQ2rndEMcWrRPsma84FgZIn ZN5m -----END CERTIFICATE-----Generated at Sat Apr 5 06:49:44 2025 by rpki-client