$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666437303a3a2f34342d3532203d3e20323134323036.roa File: 326130353a646663333a666437303a3a2f34342d3532203d3e20323134323036.roa (raw, json) Hash identifier: DlvNbcBO+yBNQoqbLOWSFtSXt5dby7CMGXBXdwxFcHo= Subject key identifier: 6D:6D:DA:EA:D9:09:E5:20:15:C4:19:FE:E7:7A:9D:5B:2B:D5:C1:6F Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 5804E45FA0581A5C5CBCACA87F8378ABE19878BD Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666437303a3a2f34342d3532203d3e20323134323036.roa Signing time: Fri 20 Jun 2025 15:14:01 +0000 ROA not before: Fri 20 Jun 2025 15:09:01 +0000 ROA not after: Fri 19 Jun 2026 15:14:01 +0000 asID: 214206 IP address blocks: 2a05:dfc3:fd70::/44 maxlen: 52 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 01 Jul 2025 07:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:04:e4:5f:a0:58:1a:5c:5c:bc:ac:a8:7f:83:78:ab:e1:98:78:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 20 15:09:01 2025 GMT Not After : Jun 19 15:14:01 2026 GMT Subject: CN=6D6DDAEAD909E52015C419FEE77A9D5B2BD5C16F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fb:d9:ad:81:70:e3:5a:01:be:fb:0c:fd:9c: 2a:27:1d:dd:6b:29:13:04:b9:9c:9e:48:b6:2c:88: d4:2a:21:f3:8e:be:3b:c2:d0:0b:8d:2d:7d:ac:d4: de:0e:a4:93:3e:ee:ad:75:fd:43:90:db:15:ba:c1: 67:73:e8:1d:76:42:ab:2a:7c:76:01:95:fa:9b:ee: 51:d3:30:ed:cf:bf:5c:10:66:42:02:71:b0:fd:54: e6:17:50:98:55:ad:eb:62:90:8e:2e:ca:91:81:5b: f3:7f:ca:6c:53:40:64:45:4e:a2:b1:cd:eb:e8:74: 44:fa:0e:17:78:72:77:1a:80:91:73:4e:15:3e:5f: b9:df:8f:4b:b4:2f:f1:08:eb:fa:84:8e:27:6c:07: f9:3c:f5:05:32:8c:65:65:49:4e:25:df:fa:cf:e9: e1:db:84:4c:80:7b:3d:bc:7e:8c:7a:8b:e4:ce:a9: 1f:27:a1:4c:f4:5d:de:54:cb:af:6c:61:0f:09:e5: 55:1f:67:a1:e2:c8:8a:a7:cf:89:a0:fe:03:1f:12: 21:ca:75:bd:72:a9:92:ad:1a:c9:c0:59:ae:a9:04: 5e:f2:45:2e:57:0a:6a:a9:e2:a9:a6:be:48:7b:87: 28:9b:9e:90:5f:05:1e:02:38:95:2b:76:70:df:2b: d2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6D:DA:EA:D9:09:E5:20:15:C4:19:FE:E7:7A:9D:5B:2B:D5:C1:6F X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666437303a3a2f34342d3532203d3e20323134323036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd70::/44 Signature Algorithm: sha256WithRSAEncryption 5c:96:2c:88:d8:c1:19:80:ed:20:e2:fa:3b:8d:f8:b0:b2:60: ff:7d:ea:9e:78:03:7d:fb:9b:c7:a6:0f:9f:fd:da:2f:42:99: 42:9a:91:a4:a0:53:cb:8a:e2:d0:13:c6:6e:d2:a6:09:f9:57: 29:57:11:d6:32:c5:57:c2:ab:80:c7:2c:f5:bb:fa:dd:3b:69: 5f:ad:6a:b2:cc:36:84:cb:40:5b:8f:f9:2f:9a:71:d7:be:71: c8:65:0f:5f:d2:c7:c9:30:8c:2e:27:83:a6:52:c4:34:cc:52: c8:80:a6:f6:77:87:50:d2:d7:ad:4e:d9:05:ce:0e:00:63:31: 37:25:e2:b6:a4:68:71:f0:f0:e3:ea:3d:94:5e:4d:e0:16:39: 58:2c:47:45:e4:71:09:0f:3b:01:02:da:30:14:5d:67:08:35: 17:88:a2:75:b5:48:c5:fc:84:08:58:45:0b:74:02:e3:98:ea: 87:78:d1:9a:4b:9d:eb:e3:7f:0e:43:46:02:5f:02:2b:20:88: 99:40:d0:6a:31:9a:db:61:5c:94:8d:e5:11:da:d1:89:bd:86: 83:da:86:8b:d6:e5:a8:f8:36:f8:4f:10:52:8b:df:d4:fd:a0: 33:5e:12:8d:31:71:34:c7:73:23:2e:e3:11:d2:6f:27:56:e7: e7:7b:57:39 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUWATkX6BYGlxcvKyof4N4q+GYeL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjAxNTA5MDFaFw0yNjA2MTkxNTE0MDFaMDMxMTAvBgNV BAMTKDZENkREQUVBRDkwOUU1MjAxNUM0MTlGRUU3N0E5RDVCMkJENUMxNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+9mtgXDjWgG++wz9nConHd1r KRMEuZyeSLYsiNQqIfOOvjvC0AuNLX2s1N4OpJM+7q11/UOQ2xW6wWdz6B12Qqsq fHYBlfqb7lHTMO3Pv1wQZkICcbD9VOYXUJhVretikI4uypGBW/N/ymxTQGRFTqKx zevodET6Dhd4cncagJFzThU+X7nfj0u0L/EI6/qEjidsB/k89QUyjGVlSU4l3/rP 6eHbhEyAez28fox6i+TOqR8noUz0Xd5Uy69sYQ8J5VUfZ6HiyIqnz4mg/gMfEiHK db1yqZKtGsnAWa6pBF7yRS5XCmqp4qmmvkh7hyibnpBfBR4COJUrdnDfK9LRAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUbW3a6tkJ5SAVxBn+53qdWyvVwW8wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzczMDNhM2EyZjM0MzQyZDM1MzIyMDNkM2UyMDMyMzEzNDMyMzAzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoF38P9cDANBgkqhkiG9w0BAQsFAAOCAQEAXJYsiNjBGYDtIOL6 O434sLJg/33qnngDffubx6YPn/3aL0KZQpqRpKBTy4ri0BPGbtKmCflXKVcR1jLF V8KrgMcs9bv63TtpX61qssw2hMtAW4/5L5px175xyGUPX9LHyTCMLieDplLENMxS yICm9neHUNLXrU7ZBc4OAGMxNyXitqRocfDw4+o9lF5N4BY5WCxHReRxCQ87AQLa MBRdZwg1F4iidbVIxfyECFhFC3QC45jqh3jRmkud6+N/DkNGAl8CKyCImUDQajGa 22FclI3lEdrRib2Gg9qGi9blqPg2+E8QUovf1P2gM14SjTFxNMdzIy7jEdJvJ1bn 53tXOQ== -----END CERTIFICATE-----Generated at Mon Jun 30 14:58:32 2025 by rpki-client