$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e20323131373830.roa File: 326130353a646663333a666432343a3a2f34382d3438203d3e20323131373830.roa (raw, json) Hash identifier: hqNIsM1YsYjR7NgrzDnrV+RHShc6pFI3BLRfpnsxvr0= Subject key identifier: 6A:EA:6C:1E:87:7C:E6:8E:04:6D:51:58:34:66:83:55:92:E6:94:60 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 291C581BF68CD2381B4EBB7041175C9B7EBCCAB6 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e20323131373830.roa Signing time: Sat 28 Jun 2025 07:48:01 +0000 ROA not before: Sat 28 Jun 2025 07:43:01 +0000 ROA not after: Sat 27 Jun 2026 07:48:01 +0000 asID: 211780 IP address blocks: 2a05:dfc3:fd24::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 20:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:1c:58:1b:f6:8c:d2:38:1b:4e:bb:70:41:17:5c:9b:7e:bc:ca:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 28 07:43:01 2025 GMT Not After : Jun 27 07:48:01 2026 GMT Subject: CN=6AEA6C1E877CE68E046D51583466835592E69460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:a5:58:0d:86:8c:73:6d:b6:11:1f:2f:cd:89: 29:83:0e:b2:d8:90:6c:a5:41:30:70:92:82:d9:52: 5b:48:fe:1d:e3:58:06:ff:20:24:1e:d2:25:5d:2e: df:bd:a6:04:8d:44:95:75:44:15:e2:bf:af:e9:f4: 6c:9c:e1:74:f3:b5:b5:f6:19:c0:99:74:7f:56:92: 42:68:57:7d:35:b2:8b:35:0f:33:58:36:3a:f7:43: cd:a4:f0:e4:d7:67:57:5e:ef:2a:46:00:76:51:40: 28:1e:31:c1:4b:10:cb:d4:40:f2:f7:4e:cb:24:fa: b6:8f:8b:52:44:f0:18:75:b2:1f:0d:52:70:65:a4: b2:f2:c4:38:3e:3f:12:43:5b:2e:d3:12:f6:7c:a8: 50:9a:a6:ee:82:d2:4e:ec:3a:94:49:2e:84:a3:09: 9d:36:6f:19:f5:83:77:2a:e4:25:40:9c:b7:80:15: d0:87:3a:ff:6b:32:cc:30:5c:0b:83:9d:ce:86:a0: b9:c8:6d:15:96:ec:7f:0f:70:52:8b:7f:3f:f6:b9: df:8c:16:9a:b2:2e:d1:b6:82:59:75:6a:78:e1:4e: 8a:e6:5f:f6:95:d3:96:37:af:09:f9:d0:6c:8d:78: 1f:3a:b5:70:85:07:2f:00:48:9e:d7:b3:90:ac:76: fe:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EA:6C:1E:87:7C:E6:8E:04:6D:51:58:34:66:83:55:92:E6:94:60 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e20323131373830.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd24::/48 Signature Algorithm: sha256WithRSAEncryption 40:ae:d1:b6:86:fe:9e:6b:85:3c:dc:e5:07:1b:9a:e1:c8:0b: d4:76:46:0b:6d:24:59:45:89:79:57:8d:b5:da:fa:80:0b:ea: 0a:62:ab:f4:65:a6:f8:a3:6f:e5:2c:fa:db:f6:6b:f1:ba:65: d4:18:4a:8e:0e:43:7b:1a:4f:07:09:10:69:09:fd:67:3b:02: d0:cb:62:bb:9f:85:23:6b:37:ad:29:39:71:d3:ea:6b:5f:fb: 59:8a:12:e7:2b:06:fb:de:6f:76:e9:a7:ca:57:08:78:c7:48: dd:1d:e1:e2:a0:a0:15:c5:62:f2:7b:14:b6:c4:fa:21:b8:25: ec:92:41:6c:9e:62:db:1c:3e:1c:92:97:91:52:51:75:18:87: 41:e3:10:e3:79:32:9b:81:46:94:e9:06:42:7f:2a:ea:9b:81: 90:ef:51:67:9a:a3:63:e0:f9:27:7e:42:79:1f:a3:cc:b4:6d: dd:0e:86:d3:d6:69:d5:6d:35:26:95:a9:01:2f:66:bd:9d:63: e7:64:c8:69:9e:9d:9a:c0:24:33:eb:c0:d1:f0:f9:45:83:04: 4f:02:ad:0d:48:7d:2a:62:ae:2f:03:a6:ca:f9:a1:87:45:27: 19:cc:97:a0:da:19:fe:e5:bd:60:98:70:47:37:ff:71:7e:29: 4e:78:ee:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKRxYG/aM0jgbTrtwQRdcm368yrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjgwNzQzMDFaFw0yNjA2MjcwNzQ4MDFaMDMxMTAvBgNV BAMTKDZBRUE2QzFFODc3Q0U2OEUwNDZENTE1ODM0NjY4MzU1OTJFNjk0NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCFpVgNhoxzbbYRHy/NiSmDDrLY kGylQTBwkoLZUltI/h3jWAb/ICQe0iVdLt+9pgSNRJV1RBXiv6/p9Gyc4XTztbX2 GcCZdH9WkkJoV301sos1DzNYNjr3Q82k8OTXZ1de7ypGAHZRQCgeMcFLEMvUQPL3 Tssk+raPi1JE8Bh1sh8NUnBlpLLyxDg+PxJDWy7TEvZ8qFCapu6C0k7sOpRJLoSj CZ02bxn1g3cq5CVAnLeAFdCHOv9rMswwXAuDnc6GoLnIbRWW7H8PcFKLfz/2ud+M FpqyLtG2gll1anjhTormX/aV05Y3rwn50GyNeB86tXCFBy8ASJ7Xs5Csdv6VAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUaupsHod85o4EbVFYNGaDVZLmlGAwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzIzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMTM3MzgzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoF38P9JDANBgkqhkiG9w0BAQsFAAOCAQEAQK7Rtob+nmuFPNzl Bxua4cgL1HZGC20kWUWJeVeNtdr6gAvqCmKr9GWm+KNv5Sz62/Zr8bpl1BhKjg5D expPBwkQaQn9ZzsC0Mtiu5+FI2s3rSk5cdPqa1/7WYoS5ysG+95vdumnylcIeMdI 3R3h4qCgFcVi8nsUtsT6Ibgl7JJBbJ5i2xw+HJKXkVJRdRiHQeMQ43kym4FGlOkG Qn8q6puBkO9RZ5qjY+D5J35CeR+jzLRt3Q6G09Zp1W01JpWpAS9mvZ1j52TIaZ6d msAkM+vA0fD5RYMETwKtDUh9KmKuLwOmyvmhh0UnGcyXoNoZ/uW9YJhwRzf/cX4p Tnjutg== -----END CERTIFICATE-----Generated at Mon Jun 30 09:55:17 2025 by rpki-client