$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a633030303a3a2f33342d3334203d3e20323133383634.roa File: 326130393a353463373a633030303a3a2f33342d3334203d3e20323133383634.roa (raw, json) Hash identifier: +rVR92THERy1/drzro6MT12fjcVy3432g/e5r2jspMk= Subject key identifier: 07:5E:7C:C3:DF:1A:8F:A0:DE:FF:FF:C9:67:D7:FC:CB:28:2F:EC:18 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 418D6121B8074981A28A7127CCE6E1A4049452E5 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a633030303a3a2f33342d3334203d3e20323133383634.roa Signing time: Thu 12 Jun 2025 09:22:29 +0000 ROA not before: Thu 12 Jun 2025 09:17:29 +0000 ROA not after: Thu 11 Jun 2026 09:22:29 +0000 asID: 213864 IP address blocks: 2a09:54c7:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 08:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8d:61:21:b8:07:49:81:a2:8a:71:27:cc:e6:e1:a4:04:94:52:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 12 09:17:29 2025 GMT Not After : Jun 11 09:22:29 2026 GMT Subject: CN=075E7CC3DF1A8FA0DEFFFFC967D7FCCB282FEC18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ac:2b:38:4b:67:53:6d:a1:ee:4c:35:0d:d3: b7:96:d8:0a:f1:4e:11:7c:be:13:a9:6f:30:bf:67: 57:20:a4:e6:4f:3c:1f:53:f1:9b:77:a1:54:21:e4: 8e:2a:96:1c:c3:e7:e8:1a:3c:39:5e:c8:e7:c5:a7: c5:c8:e7:bf:7b:d2:ec:77:de:39:b3:2c:45:54:ee: 9f:20:0f:05:ff:09:a9:45:c2:3a:21:23:e2:c8:0f: 95:4e:e0:87:7f:77:f0:c0:d0:7d:58:41:64:ab:d3: cb:33:cd:93:f7:04:b0:48:3a:b7:38:62:9f:65:43: 3d:19:fb:52:51:78:4c:b9:5f:3e:3a:53:b0:06:96: e1:8b:6c:50:63:39:64:8c:3a:99:a7:ab:dd:3f:f1: 36:7a:17:9a:b2:aa:98:5d:03:55:05:d6:4f:fa:dd: 1e:fa:f8:da:dc:01:7a:d9:3c:2b:c0:14:22:8d:b6: 50:a3:92:49:f0:31:0c:c9:21:bc:39:7b:83:bb:90: 62:49:8c:9a:9a:ed:3f:89:75:97:d4:de:87:f2:85: 06:fb:81:5a:be:2f:51:e9:7e:11:23:15:06:15:7f: bd:e4:8c:1a:57:a2:0e:3c:20:b5:94:d2:a3:95:23: ce:ee:35:95:fb:ae:69:c8:d6:9c:7f:32:ea:e4:38: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5E:7C:C3:DF:1A:8F:A0:DE:FF:FF:C9:67:D7:FC:CB:28:2F:EC:18 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463373a633030303a3a2f33342d3334203d3e20323133383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c7:c000::/34 Signature Algorithm: sha256WithRSAEncryption a4:b9:c5:1b:d4:fc:96:2e:b2:65:b9:8a:ec:58:0e:77:88:a6: 6b:75:81:71:a8:a1:39:4a:76:34:35:d6:b4:18:1d:91:da:c8: 09:0b:b0:81:f1:26:e4:34:29:14:fe:cf:ed:61:6e:58:6b:b1: a0:a9:2d:8a:a0:79:96:b8:f6:b3:2f:f7:45:e8:d9:06:ac:30: 6c:cb:2f:a7:3e:04:97:6e:15:ef:78:f0:96:bc:37:9f:6f:ee: 9f:5c:13:3b:bc:e9:4f:ae:d4:dd:58:76:90:6b:46:fd:96:63: a5:d3:81:af:7f:a2:be:76:dd:2f:ff:eb:6e:a7:21:a1:1f:8c: 51:a0:d1:b1:fa:d3:ce:a3:27:56:c8:ba:6f:b3:d1:23:f6:f6: 62:d1:ff:2f:5e:e2:68:d7:bd:ec:ec:91:1a:b4:61:3c:c1:22: 98:e8:1d:bb:bb:7c:78:5c:6e:15:48:14:0a:1f:97:cb:d1:89: fc:67:b8:96:07:c5:ee:66:13:b7:4a:ba:55:da:3b:fb:90:fb: 53:be:b7:04:22:a9:6f:34:d4:2d:bb:63:7a:a1:b8:f8:23:73: 4e:ef:cb:d8:df:1c:c7:29:10:40:43:5b:66:03:4c:7d:7c:71: 43:36:1f:2b:11:89:91:59:3d:31:5d:9b:39:ce:7f:23:21:bb: f5:b5:4e:28 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUQY1hIbgHSYGiinEnzObhpASUUuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTIwOTE3MjlaFw0yNjA2MTEwOTIyMjlaMDMxMTAvBgNV BAMTKDA3NUU3Q0MzREYxQThGQTBERUZGRkZDOTY3RDdGQ0NCMjgyRkVDMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtrCs4S2dTbaHuTDUN07eW2Arx ThF8vhOpbzC/Z1cgpOZPPB9T8Zt3oVQh5I4qlhzD5+gaPDleyOfFp8XI57970ux3 3jmzLEVU7p8gDwX/CalFwjohI+LID5VO4Id/d/DA0H1YQWSr08szzZP3BLBIOrc4 Yp9lQz0Z+1JReEy5Xz46U7AGluGLbFBjOWSMOpmnq90/8TZ6F5qyqphdA1UF1k/6 3R76+NrcAXrZPCvAFCKNtlCjkknwMQzJIbw5e4O7kGJJjJqa7T+JdZfU3ofyhQb7 gVq+L1HpfhEjFQYVf73kjBpXog48ILWU0qOVI87uNZX7rmnI1px/MurkOCHZAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUB158w98aj6De///JZ9f8yygv7BgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM3 M2E2MzMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNkM2UyMDMyMzEzMzM4MzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBioJVMfAMA0GCSqGSIb3DQEBCwUAA4IBAQCkucUb1PyWLrJluYrs WA53iKZrdYFxqKE5SnY0Nda0GB2R2sgJC7CB8SbkNCkU/s/tYW5Ya7GgqS2KoHmW uPazL/dF6NkGrDBsyy+nPgSXbhXvePCWvDefb+6fXBM7vOlPrtTdWHaQa0b9lmOl 04Gvf6K+dt0v/+tupyGhH4xRoNGx+tPOoydWyLpvs9Ej9vZi0f8vXuJo173s7JEa tGE8wSKY6B27u3x4XG4VSBQKH5fL0Yn8Z7iWB8XuZhO3SrpV2jv7kPtTvrcEIqlv NNQtu2N6obj4I3NO78vY3xzHKRBAQ1tmA0x9fHFDNh8rEYmRWT0xXZs5zn8jIbv1 tU4o -----END CERTIFICATE-----Generated at Sun Jun 29 20:10:58 2025 by rpki-client