$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e203437323732.roa File: 326130353a646663333a666432343a3a2f34382d3438203d3e203437323732.roa (raw, json) Hash identifier: ezstwe3qw/glH3oWMml3unGAiCw1K0z6u9+ROWzcj8c= Subject key identifier: 0E:E4:DD:9C:84:70:D5:F5:32:74:0A:6A:29:DC:88:97:0B:25:E5:F8 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 3FBD6081D09A14E7EFB29B6FEE02423B4F7819D0 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e203437323732.roa Signing time: Sat 28 Jun 2025 07:49:56 +0000 ROA not before: Sat 28 Jun 2025 07:44:56 +0000 ROA not after: Sat 27 Jun 2026 07:49:56 +0000 asID: 47272 IP address blocks: 2a05:dfc3:fd24::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:bd:60:81:d0:9a:14:e7:ef:b2:9b:6f:ee:02:42:3b:4f:78:19:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 28 07:44:56 2025 GMT Not After : Jun 27 07:49:56 2026 GMT Subject: CN=0EE4DD9C8470D5F532740A6A29DC88970B25E5F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:61:af:73:a2:32:51:72:db:aa:5f:25:06:61: 6a:65:92:ff:45:ef:91:88:25:2e:91:0e:75:bc:83: f2:f7:cf:32:94:cd:f9:5b:aa:32:e2:46:0b:e9:ac: 2f:5d:1c:ba:24:4d:6d:24:e4:fa:6b:6a:55:9b:4b: a8:6f:67:4d:86:91:20:c3:a4:cb:0b:8e:ab:8d:77: c5:5a:07:04:6b:a8:5b:03:b5:c7:34:4c:23:ed:5d: e8:c5:b3:a8:1a:c0:5b:88:99:db:58:da:5e:8c:26: cf:2a:3e:b5:5f:84:d3:73:4d:cc:a5:c0:27:a1:0c: 0f:d1:ab:5c:af:9a:e4:28:6d:d6:85:8a:b2:f4:11: cf:af:8a:80:93:6d:78:3b:3e:ac:34:7f:c7:e4:bc: 22:b2:d6:a8:24:dd:04:cf:c1:e2:61:ce:ff:4a:50: 22:50:75:c3:dd:aa:53:79:2a:f1:44:6a:43:f3:d4: 05:1a:5e:86:a8:66:74:9e:da:af:6c:e4:25:16:f6: dc:04:f8:75:6f:e6:4a:84:ce:81:33:30:4f:97:cf: 1f:03:0d:11:ff:92:79:15:96:29:b0:ed:fc:37:0b: b1:d3:66:62:00:ba:04:16:6a:27:4f:7a:bb:ec:12: f5:bb:9a:db:ab:a8:0c:71:e1:c0:07:44:78:32:13: 26:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E4:DD:9C:84:70:D5:F5:32:74:0A:6A:29:DC:88:97:0B:25:E5:F8 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666432343a3a2f34382d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd24::/48 Signature Algorithm: sha256WithRSAEncryption 8d:52:c9:ef:13:a3:d7:2d:b2:5b:cb:58:58:cc:f0:77:f8:76: d2:f3:8f:24:6f:8b:c5:54:c8:08:63:4e:ae:ad:5f:f8:4e:ca: cb:28:13:59:98:a5:77:e1:db:ed:83:e3:57:fb:75:15:64:84: 8f:44:08:5e:47:73:76:e6:3a:1b:74:d9:51:20:d1:23:47:c1: 46:83:53:e6:f5:8d:b9:9d:be:37:0d:f9:ee:ed:4c:c9:c9:aa: e5:1e:89:08:4d:11:07:8a:40:fa:d2:5f:de:5d:94:38:7b:a0: 2e:3a:65:2b:13:03:74:aa:cf:2d:2d:7a:23:21:3b:b6:37:1e: 4f:00:ea:e3:58:e9:38:09:47:13:ee:db:1c:32:57:98:f0:1f: 76:5f:d8:32:af:3a:00:2c:e8:1a:01:9a:02:37:d8:41:18:76: 90:24:1d:9c:43:5c:8e:c5:33:26:1f:6c:bd:99:33:29:bd:96: 0e:2f:37:7b:e0:10:5b:d1:b0:8b:93:11:92:e5:35:89:e3:be: 98:61:67:80:b4:e5:48:f9:49:11:bd:9a:5d:86:23:95:f2:85: 94:bf:22:bf:8c:b8:1e:6a:fd:16:a2:64:72:9a:cb:55:48:a7: 32:90:82:45:95:b6:ab:72:b1:ff:de:21:54:32:52:37:a2:bd: 97:d1:36:a6 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUP71ggdCaFOfvsptv7gJCO094GdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjgwNzQ0NTZaFw0yNjA2MjcwNzQ5NTZaMDMxMTAvBgNV BAMTKDBFRTRERDlDODQ3MEQ1RjUzMjc0MEE2QTI5REM4ODk3MEIyNUU1RjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNYa9zojJRctuqXyUGYWplkv9F 75GIJS6RDnW8g/L3zzKUzflbqjLiRgvprC9dHLokTW0k5PpralWbS6hvZ02GkSDD pMsLjquNd8VaBwRrqFsDtcc0TCPtXejFs6gawFuImdtY2l6MJs8qPrVfhNNzTcyl wCehDA/Rq1yvmuQobdaFirL0Ec+vioCTbXg7Pqw0f8fkvCKy1qgk3QTPweJhzv9K UCJQdcPdqlN5KvFEakPz1AUaXoaoZnSe2q9s5CUW9twE+HVv5kqEzoEzME+Xzx8D DRH/knkVlimw7fw3C7HTZmIAugQWaidPervsEvW7mturqAxx4cAHRHgyEyZnAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUDuTdnIRw1fUydApqKdyIlwsl5fgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzIzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM3MzIucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqBd/D/SQwDQYJKoZIhvcNAQELBQADggEBAI1Sye8To9ctslvLWFjM 8Hf4dtLzjyRvi8VUyAhjTq6tX/hOyssoE1mYpXfh2+2D41f7dRVkhI9ECF5Hc3bm Oht02VEg0SNHwUaDU+b1jbmdvjcN+e7tTMnJquUeiQhNEQeKQPrSX95dlDh7oC46 ZSsTA3Sqzy0teiMhO7Y3Hk8A6uNY6TgJRxPu2xwyV5jwH3Zf2DKvOgAs6BoBmgI3 2EEYdpAkHZxDXI7FMyYfbL2ZMym9lg4vN3vgEFvRsIuTEZLlNYnjvphhZ4C05Uj5 SRG9ml2GI5XyhZS/Ir+MuB5q/RaiZHKay1VIpzKQgkWVtqtysf/eIVQyUjeivZfR NqY= -----END CERTIFICATE-----Generated at Sun Jun 29 06:33:17 2025 by rpki-client