$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3434203d3e20323134383438.roa File: 326130393a353463363a663030303a3a2f33362d3434203d3e20323134383438.roa (raw, json) Hash identifier: +CepfflLP/SwWOrcGMfTkYBOP3dNH4aDLkRiXWZPj+A= Subject key identifier: F7:18:F2:C0:BC:84:67:F6:18:76:5B:9E:2F:A9:3E:42:90:C1:A1:14 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 3670FC9422AE2FEAB71761EC098C5E19B92C7599 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3434203d3e20323134383438.roa Signing time: Tue 29 Apr 2025 18:06:42 +0000 ROA not before: Tue 29 Apr 2025 18:01:42 +0000 ROA not after: Tue 28 Apr 2026 18:06:42 +0000 asID: 214848 IP address blocks: 2a09:54c6:f000::/36 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 12:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:70:fc:94:22:ae:2f:ea:b7:17:61:ec:09:8c:5e:19:b9:2c:75:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Apr 29 18:01:42 2025 GMT Not After : Apr 28 18:06:42 2026 GMT Subject: CN=F718F2C0BC8467F618765B9E2FA93E4290C1A114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7b:7d:96:3a:9a:4c:fe:a4:c8:42:b0:26:af: bf:0a:a8:b0:38:ce:1f:d1:b3:5c:dc:55:47:7d:ce: d6:59:cc:b0:f1:40:b3:28:1b:9f:96:03:69:3c:11: dc:28:3e:5f:13:dc:5e:41:d5:eb:66:73:b6:e0:cd: b7:c6:a8:11:17:d1:8a:90:ce:91:91:ab:a7:ef:2d: aa:02:8f:7f:f8:e1:64:d1:68:ef:29:97:54:f4:02: 1d:67:cd:90:1f:4a:1a:1c:0f:fb:79:ff:de:dc:2a: 08:53:5c:f5:20:75:41:15:4e:56:11:49:b2:d6:ce: b0:39:dd:6a:f1:57:b7:d6:eb:45:c6:60:15:c4:25: 97:78:f8:ec:33:f5:0b:74:02:0c:db:83:33:09:c5: f5:36:95:2b:ea:97:23:76:42:5c:32:bc:14:38:d2: e8:de:60:e5:61:59:06:21:00:af:e1:d8:dc:83:6a: 88:3f:86:f7:e1:3e:dd:01:44:38:70:8f:a0:66:09: 64:49:4d:07:6b:a2:ba:70:4e:86:40:d2:9a:bc:26: 9d:c2:e8:da:ba:45:2f:d7:32:65:f7:b2:b8:87:70: 11:4b:b6:f8:97:cd:8d:24:91:89:b3:b5:dd:6c:e3: 20:2f:74:77:a2:06:aa:6c:09:76:46:ac:39:ed:0a: eb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:18:F2:C0:BC:84:67:F6:18:76:5B:9E:2F:A9:3E:42:90:C1:A1:14 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a663030303a3a2f33362d3434203d3e20323134383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:f000::/36 Signature Algorithm: sha256WithRSAEncryption 9a:4b:d0:7c:64:a0:a5:8b:af:0e:94:ea:4a:08:9e:98:df:cf: a3:ab:c6:28:c8:25:a4:91:a9:06:a4:f7:bf:db:67:9a:81:ea: aa:35:61:f0:89:d4:c1:2c:74:13:91:4f:40:ee:c8:3e:4d:a3: a4:f1:79:8e:15:7e:e4:33:66:29:18:0c:05:48:81:d0:d8:8c: 6c:17:58:c9:16:f8:73:97:f6:02:df:79:8d:59:4f:29:c7:5c: 96:1f:28:1b:49:05:6e:f6:49:c5:f5:23:ee:65:ca:82:2c:85: 59:fd:0d:cb:9a:31:e5:70:7b:9a:ce:0d:7f:af:dd:bd:b1:ed: 7d:02:e5:c9:c8:c4:ea:19:54:4d:0d:0d:6d:53:9f:80:83:0f: 31:28:80:77:b1:91:31:9c:1c:e1:ff:e2:a6:c4:88:d2:80:ca: 17:f9:db:95:00:5e:63:20:97:8c:6b:de:9d:d0:e0:0d:ef:1b: 1e:d4:c7:ef:76:92:17:a0:e9:98:fc:0f:51:4b:ea:ba:15:ed: 36:36:11:2d:48:b6:69:e9:6b:56:60:6a:1b:9e:cc:0e:12:ed: 5f:88:e8:9e:15:49:2d:27:60:c9:2e:4c:37:29:12:79:e5:22: 3e:db:f7:77:16:73:96:5e:20:f2:6c:2e:31:89:4b:ff:d2:65: 48:c3:41:e9 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUNnD8lCKuL+q3F2HsCYxeGbksdZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA0MjkxODAxNDJaFw0yNjA0MjgxODA2NDJaMDMxMTAvBgNV BAMTKEY3MThGMkMwQkM4NDY3RjYxODc2NUI5RTJGQTkzRTQyOTBDMUExMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDre32WOppM/qTIQrAmr78KqLA4 zh/Rs1zcVUd9ztZZzLDxQLMoG5+WA2k8EdwoPl8T3F5B1etmc7bgzbfGqBEX0YqQ zpGRq6fvLaoCj3/44WTRaO8pl1T0Ah1nzZAfShocD/t5/97cKghTXPUgdUEVTlYR SbLWzrA53WrxV7fW60XGYBXEJZd4+Owz9Qt0AgzbgzMJxfU2lSvqlyN2QlwyvBQ4 0ujeYOVhWQYhAK/h2NyDaog/hvfhPt0BRDhwj6BmCWRJTQdrorpwToZA0pq8Jp3C 6Nq6RS/XMmX3sriHcBFLtviXzY0kkYmztd1s4yAvdHeiBqpsCXZGrDntCusNAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU9xjywLyEZ/YYdlueL6k+QpDBoRQwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2E2NjMwMzAzMDNhM2EyZjMzMzYyZDM0MzQyMDNkM2UyMDMyMzEzNDM4MzQzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMbwMA0GCSqGSIb3DQEBCwUAA4IBAQCaS9B8ZKCli68OlOpK CJ6Y38+jq8YoyCWkkakGpPe/22eageqqNWHwidTBLHQTkU9A7sg+TaOk8XmOFX7k M2YpGAwFSIHQ2IxsF1jJFvhzl/YC33mNWU8px1yWHygbSQVu9knF9SPuZcqCLIVZ /Q3LmjHlcHuazg1/r929se19AuXJyMTqGVRNDQ1tU5+Agw8xKIB3sZExnBzh/+Km xIjSgMoX+duVAF5jIJeMa96d0OAN7xse1MfvdpIXoOmY/A9RS+q6Fe02NhEtSLZp 6WtWYGobnswOEu1fiOieFUktJ2DJLkw3KRJ55SI+2/d3FnOWXiDybC4xiUv/0mVI w0Hp -----END CERTIFICATE-----Generated at Sat May 10 02:25:58 2025 by rpki-client