$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a663030303a3a2f33362d3336203d3e2030.roa File: 326130613a363034343a663030303a3a2f33362d3336203d3e2030.roa (raw, json) Hash identifier: B4dppC+2By45Orl3T9Y8D+30DUvb+5fxPVMAxghYwFU= Subject key identifier: CD:53:25:99:56:05:57:30:D4:80:A5:42:FC:F0:B5:5D:1D:73:56:3D Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 374E6509ED90CC4EEC564721B88186B0C721E188 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a663030303a3a2f33362d3336203d3e2030.roa Signing time: Sun 11 May 2025 15:25:15 +0000 ROA not before: Sun 11 May 2025 15:20:15 +0000 ROA not after: Sun 10 May 2026 15:25:15 +0000 asID: 0 IP address blocks: 2a0a:6044:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 01 Jun 2025 16:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:4e:65:09:ed:90:cc:4e:ec:56:47:21:b8:81:86:b0:c7:21:e1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 11 15:20:15 2025 GMT Not After : May 10 15:25:15 2026 GMT Subject: CN=CD53259956055730D480A542FCF0B55D1D73563D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3a:6b:d1:bd:7e:4c:9c:6b:d8:c8:14:5a:9b: 3e:94:19:d3:36:14:19:11:3c:67:c1:4e:ee:40:4e: 8f:94:e1:75:c9:2a:f1:af:ba:29:b4:a9:23:e1:b2: 50:b3:0e:18:eb:bd:77:1c:74:dc:5e:e5:cc:0f:65: 0d:ce:6f:95:58:da:4c:15:92:45:96:5d:42:ec:b3: 56:2d:92:c1:20:5e:a4:58:fc:e9:23:65:6b:a0:66: 51:b5:6d:6e:07:aa:c6:3f:24:7d:19:62:6b:7b:86: f1:b3:57:4a:73:e2:88:88:7c:63:24:af:c6:e5:4a: 7e:62:cf:c4:1b:68:40:5a:ac:c4:df:7e:1a:98:ae: 46:44:69:1d:c3:77:1b:bf:0f:09:3a:96:ed:ef:02: ab:85:39:63:bd:9f:f0:80:e0:e6:b1:57:d3:13:30: a6:85:4d:9f:35:ec:4e:6b:a3:57:e2:19:cb:cc:b3: 61:39:bc:ec:f8:ce:3b:3a:ba:a5:28:20:fe:4a:64: bd:c6:21:f5:3f:52:9e:c9:22:27:8e:81:ec:b4:ff: a5:ad:af:08:cd:f2:81:9e:81:e9:fa:1c:10:d9:44: a7:94:01:5f:21:f9:74:5e:f0:82:3a:73:c1:c1:a8: e0:30:e6:95:12:28:dd:b2:ed:d1:b4:88:08:ed:62: 2a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:53:25:99:56:05:57:30:D4:80:A5:42:FC:F0:B5:5D:1D:73:56:3D X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a663030303a3a2f33362d3336203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:f000::/36 Signature Algorithm: sha256WithRSAEncryption 10:ca:bc:a9:da:b6:73:8e:ba:89:31:81:98:c7:db:b3:2d:89: f7:b2:35:12:2c:19:5b:11:31:e3:a1:00:0d:54:55:e7:53:4f: ab:ea:44:35:f0:18:bc:6b:50:96:5a:d0:9f:fe:81:35:bf:52: f0:0c:4a:83:49:76:78:31:38:6c:68:ca:c4:86:9a:b9:2e:9d: 99:2f:22:20:67:07:cb:fa:29:1c:0d:eb:4d:41:3c:2c:06:93: a9:1f:55:80:7d:5a:16:49:ff:7d:f5:82:f3:6d:3f:67:3d:fe: 34:e1:e7:95:5d:e4:d1:cd:1f:91:d1:ca:da:7e:1f:04:49:64: 84:5e:8f:99:3f:4e:33:86:ca:a6:76:40:1e:a3:15:a7:34:f7: 58:25:fb:f5:10:be:aa:93:b0:ae:ca:81:41:66:0a:e0:fd:d7: 68:ec:81:67:73:4d:03:f8:cb:ba:08:d2:53:fe:a2:71:1f:38: 5d:90:9f:06:53:3c:dd:e7:91:2a:fe:94:17:7f:7d:13:2a:21: aa:d2:4e:3b:04:38:7e:6d:2f:75:22:39:c7:ac:96:ea:83:8d: d5:f7:c3:0a:e9:7a:94:10:d0:7d:a8:87:b4:88:94:f9:77:fa: 3b:dd:33:ae:a2:30:40:43:44:24:25:ee:23:63:5c:99:77:ed: b0:f7:e4:a4 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUN05lCe2QzE7sVkchuIGGsMch4YgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MTExNTIwMTVaFw0yNjA1MTAxNTI1MTVaMDMxMTAvBgNV BAMTKENENTMyNTk5NTYwNTU3MzBENDgwQTU0MkZDRjBCNTVEMUQ3MzU2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsOmvRvX5MnGvYyBRamz6UGdM2 FBkRPGfBTu5ATo+U4XXJKvGvuim0qSPhslCzDhjrvXccdNxe5cwPZQ3Ob5VY2kwV kkWWXULss1YtksEgXqRY/OkjZWugZlG1bW4HqsY/JH0ZYmt7hvGzV0pz4oiIfGMk r8blSn5iz8QbaEBarMTffhqYrkZEaR3Ddxu/Dwk6lu3vAquFOWO9n/CA4OaxV9MT MKaFTZ817E5ro1fiGcvMs2E5vOz4zjs6uqUoIP5KZL3GIfU/Up7JIieOgey0/6Wt rwjN8oGegen6HBDZRKeUAV8h+XRe8II6c8HBqOAw5pUSKN2y7dG0iAjtYir5AgMB AAGjggJvMIICazAdBgNVHQ4EFgQUzVMlmVYFVzDUgKVC/PC1XR1zVj0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2NjMwMzAzMDNhM2EyZjMzMzYyZDMzMzYyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYE KgpgRPAwDQYJKoZIhvcNAQELBQADggEBABDKvKnatnOOuokxgZjH27MtifeyNRIs GVsRMeOhAA1UVedTT6vqRDXwGLxrUJZa0J/+gTW/UvAMSoNJdngxOGxoysSGmrku nZkvIiBnB8v6KRwN601BPCwGk6kfVYB9WhZJ/331gvNtP2c9/jTh55Vd5NHNH5HR ytp+HwRJZIRej5k/TjOGyqZ2QB6jFac091gl+/UQvqqTsK7KgUFmCuD912jsgWdz TQP4y7oI0lP+onEfOF2QnwZTPN3nkSr+lBd/fRMqIarSTjsEOH5tL3UiOcesluqD jdX3wwrpepQQ0H2oh7SIlPl3+jvdM66iMEBDRCQl7iNjXJl37bD35KQ= -----END CERTIFICATE-----Generated at Sun Jun 1 03:11:37 2025 by rpki-client