$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a353030303a3a2f33362d3434203d3e20323134303136.roa File: 326130363a313238313a353030303a3a2f33362d3434203d3e20323134303136.roa (raw, json) Hash identifier: +XYpKMBeeu8RlEWeTItxkQIi6yyjG6zkI9EJE9QNd3M= Subject key identifier: 22:C5:D0:15:CC:74:96:67:74:60:0D:9D:4A:13:85:D1:7A:C8:0B:A8 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 19F279AF73F28F38F145A17E12E506F126FA3987 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a353030303a3a2f33362d3434203d3e20323134303136.roa Signing time: Sat 21 Jun 2025 10:40:40 +0000 ROA not before: Sat 21 Jun 2025 10:35:40 +0000 ROA not after: Sat 20 Jun 2026 10:40:40 +0000 asID: 214016 IP address blocks: 2a06:1281:5000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 01:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f2:79:af:73:f2:8f:38:f1:45:a1:7e:12:e5:06:f1:26:fa:39:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 21 10:35:40 2025 GMT Not After : Jun 20 10:40:40 2026 GMT Subject: CN=22C5D015CC74966774600D9D4A1385D17AC80BA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d1:79:61:81:25:86:bd:85:8e:67:0a:f0:cb: a1:94:23:2b:e6:01:0f:4b:7f:eb:34:59:e8:6e:b2: 0e:f4:95:0b:db:54:79:5a:32:61:8a:02:20:cc:20: d5:be:d5:25:7c:be:3c:01:3b:56:08:60:52:17:79: 31:60:25:36:80:7b:bb:57:b8:06:7b:15:13:77:ff: 65:cd:99:14:31:f9:8a:33:63:7d:de:8e:d2:69:7c: 77:a1:07:2d:f4:c4:74:ee:60:fa:72:0e:ec:e1:f1: 18:af:3a:84:1b:7f:63:71:fb:30:62:f7:18:31:01: ce:bb:fc:2c:33:19:fe:4e:35:e9:4a:76:46:79:f4: 91:44:21:28:2d:90:6a:e2:d1:26:9f:36:f6:bb:ad: fa:e9:78:ee:88:07:65:34:13:3b:b0:9b:dc:62:ff: 14:aa:8b:46:e2:5a:7a:28:9f:05:0e:46:b4:b3:48: ab:28:70:30:fa:db:46:ab:28:55:96:fd:cf:36:de: 90:dc:29:c1:14:41:63:5c:77:32:23:d4:7d:90:45: 54:5b:a8:b9:a8:1e:b8:19:a9:a3:a9:2a:52:da:ed: df:42:68:31:53:56:6a:75:4b:ce:cf:60:5f:09:3a: d9:9a:19:49:a2:8a:5f:3e:58:61:4f:4d:fd:5b:b1: d0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C5:D0:15:CC:74:96:67:74:60:0D:9D:4A:13:85:D1:7A:C8:0B:A8 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130363a313238313a353030303a3a2f33362d3434203d3e20323134303136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1281:5000::/36 Signature Algorithm: sha256WithRSAEncryption af:22:75:ec:58:7b:80:37:52:f5:3a:9b:a4:ed:a3:9f:5e:02: d8:15:e1:90:62:09:af:a0:c8:73:6f:f9:d8:fe:92:53:43:38: ad:b7:cd:77:88:c5:e5:65:b4:6f:49:56:d8:b8:d5:14:c8:2f: 35:20:cf:46:0f:7b:d0:6a:df:2f:95:a1:e0:4b:13:72:e1:73: 6d:eb:1a:f4:9e:67:ca:e7:aa:0a:19:53:e2:39:1f:bf:8e:6f: a8:e6:0e:43:15:23:eb:e5:02:ae:92:93:a6:7c:49:11:b3:89: 42:f8:2d:9c:a4:7c:24:1f:f3:cc:10:39:58:ac:66:5e:46:ff: 1e:1c:80:e6:e9:b5:0e:6b:d0:f8:5f:38:fd:6d:03:10:7d:43: 7f:ed:cf:39:6c:07:26:5a:61:47:e7:7b:c9:20:98:80:12:4d: 97:e9:e6:74:d8:ac:44:9b:79:aa:75:49:56:1a:c4:fd:04:f6: 16:fc:d4:c2:f6:a6:b7:ce:7d:ec:fb:d7:ce:73:9a:aa:b2:27: f4:aa:08:00:d6:51:f5:fb:52:15:78:8d:43:cf:cb:ab:bf:dd: e0:ec:0f:7c:da:d7:9a:ac:89:a6:62:6d:db:35:89:40:60:67: fb:71:f2:aa:1d:70:83:18:77:5a:24:74:ed:31:9d:b7:40:0b: e5:39:94:6f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUGfJ5r3PyjzjxRaF+EuUG8Sb6OYcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjExMDM1NDBaFw0yNjA2MjAxMDQwNDBaMDMxMTAvBgNV BAMTKDIyQzVEMDE1Q0M3NDk2Njc3NDYwMEQ5RDRBMTM4NUQxN0FDODBCQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD0XlhgSWGvYWOZwrwy6GUIyvm AQ9Lf+s0Wehusg70lQvbVHlaMmGKAiDMINW+1SV8vjwBO1YIYFIXeTFgJTaAe7tX uAZ7FRN3/2XNmRQx+YozY33ejtJpfHehBy30xHTuYPpyDuzh8RivOoQbf2Nx+zBi 9xgxAc67/CwzGf5ONelKdkZ59JFEISgtkGri0SafNva7rfrpeO6IB2U0Ezuwm9xi /xSqi0biWnoonwUORrSzSKsocDD620arKFWW/c823pDcKcEUQWNcdzIj1H2QRVRb qLmoHrgZqaOpKlLa7d9CaDFTVmp1S87PYF8JOtmaGUmiil8+WGFPTf1bsdDnAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUIsXQFcx0lmd0YA2dShOF0XrIC6gwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzYzYTMxMzIzODMx M2EzNTMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzNDMwMzEzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoGEoFQMA0GCSqGSIb3DQEBCwUAA4IBAQCvInXsWHuAN1L1Opuk 7aOfXgLYFeGQYgmvoMhzb/nY/pJTQzitt813iMXlZbRvSVbYuNUUyC81IM9GD3vQ at8vlaHgSxNy4XNt6xr0nmfK56oKGVPiOR+/jm+o5g5DFSPr5QKukpOmfEkRs4lC +C2cpHwkH/PMEDlYrGZeRv8eHIDm6bUOa9D4Xzj9bQMQfUN/7c85bAcmWmFH53vJ IJiAEk2X6eZ02KxEm3mqdUlWGsT9BPYW/NTC9qa3zn3s+9fOc5qqsif0qggA1lH1 +1IVeI1Dz8urv93g7A982tearImmYm3bNYlAYGf7cfKqHXCDGHdaJHTtMZ23QAvl OZRv -----END CERTIFICATE-----Generated at Sun Jun 29 17:49:02 2025 by rpki-client