$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a353a3a2f34382d313238203d3e203437323732.roa File: 326130613a363034343a353a3a2f34382d313238203d3e203437323732.roa (raw, json) Hash identifier: OyDWJkhbKWTYbFI+KIVKYX+4I1nQOXf464xv+8HYLec= Subject key identifier: 8A:1F:71:31:BF:17:B8:70:EB:A6:9D:CA:88:2B:81:BF:A0:E9:5E:C2 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 24179585EE7933244944DADFDCE9150E3CFE6A43 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a353a3a2f34382d313238203d3e203437323732.roa Signing time: Thu 19 Jun 2025 09:40:07 +0000 ROA not before: Thu 19 Jun 2025 09:35:07 +0000 ROA not after: Thu 18 Jun 2026 09:40:07 +0000 asID: 47272 IP address blocks: 2a0a:6044:5::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 12:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:17:95:85:ee:79:33:24:49:44:da:df:dc:e9:15:0e:3c:fe:6a:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 19 09:35:07 2025 GMT Not After : Jun 18 09:40:07 2026 GMT Subject: CN=8A1F7131BF17B870EBA69DCA882B81BFA0E95EC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:53:2e:1f:e6:de:ad:b9:f8:82:5d:8b:c5:c3: 11:34:34:75:dd:c3:c1:37:b3:dd:7f:88:16:ca:c8: 09:2e:1d:a7:1f:6a:b3:03:aa:45:e7:d4:cb:64:39: 31:d1:bf:ce:3b:3e:9f:f9:7f:61:28:88:e9:48:f7: b3:78:5d:84:68:ad:45:75:13:f1:03:1e:8e:e7:ec: b4:a7:9a:f7:94:13:db:60:c4:52:72:94:49:56:11: 3d:10:7f:53:45:16:7a:c3:a1:34:43:19:79:37:07: 9c:9d:1b:05:94:f6:b9:cd:ca:46:56:30:8d:c4:3b: b2:69:28:15:56:65:48:d6:96:32:38:cd:df:d7:1f: ef:84:3a:36:18:b7:13:b5:2a:7e:76:3d:5f:16:9e: d7:f1:10:4e:38:3a:55:a3:27:3e:40:bb:0d:a2:b0: bd:7f:06:32:48:c3:16:89:66:df:e6:fd:0e:91:6e: d0:1c:22:0d:68:71:73:56:39:25:02:d8:9c:35:d4: 72:e1:6b:0e:5e:d9:13:f1:51:97:a2:89:f2:4e:f1: c7:da:82:be:ac:87:f7:4f:d9:00:64:15:b9:d1:af: cd:6e:09:d7:e2:0d:10:d4:1a:3f:fd:28:e8:c0:a8: 43:60:78:74:89:82:61:67:c7:e1:52:cb:ec:67:cb: ce:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1F:71:31:BF:17:B8:70:EB:A6:9D:CA:88:2B:81:BF:A0:E9:5E:C2 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a353a3a2f34382d313238203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:5::/48 Signature Algorithm: sha256WithRSAEncryption 96:86:26:0f:f5:3e:88:4f:12:a7:33:a6:97:73:a0:01:ab:3c: 6b:59:35:47:fb:b6:17:a8:b3:fb:78:f2:ed:64:c4:52:b7:4d: 5d:bf:a3:b8:aa:fc:db:cb:19:f8:48:01:62:d6:9d:77:3d:f5: 59:da:e8:10:45:73:4f:c0:07:eb:89:d8:fe:37:8e:c3:ac:4b: 12:3a:97:3f:c7:22:77:86:bc:e3:3e:41:75:53:99:e5:44:82: cc:b0:a0:e4:06:77:87:77:d2:f9:f7:da:57:1d:8f:4e:4f:a9: c4:38:69:14:1c:30:6b:4c:65:d6:72:86:63:65:78:5f:77:54: e1:f5:99:49:79:d4:47:42:4b:e0:65:38:52:1d:22:55:3c:e3: 49:4f:ff:4f:ee:95:2a:32:ab:de:31:3d:f3:0a:c8:de:fd:af: 9a:b0:4a:71:61:64:b1:fa:ae:c7:4c:78:f5:44:32:3f:a1:4d: 91:c5:a0:62:8c:76:ad:af:a3:c4:09:e9:15:1e:f9:ef:e3:cc: b6:8d:c1:e0:75:c3:06:67:ad:54:8a:88:18:f8:62:d5:71:3a: 48:aa:40:fe:b6:03:50:6a:84:94:34:9f:5b:a2:45:b1:4d:d4: 0b:8e:43:1d:62:01:e2:9f:c4:69:da:fe:0e:42:6d:f0:75:23: e4:0f:fc:21 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgIUJBeVhe55MyRJRNrf3OkVDjz+akMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTkwOTM1MDdaFw0yNjA2MTgwOTQwMDdaMDMxMTAvBgNV BAMTKDhBMUY3MTMxQkYxN0I4NzBFQkE2OURDQTg4MkI4MUJGQTBFOTVFQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrUy4f5t6tufiCXYvFwxE0NHXd w8E3s91/iBbKyAkuHacfarMDqkXn1MtkOTHRv847Pp/5f2EoiOlI97N4XYRorUV1 E/EDHo7n7LSnmveUE9tgxFJylElWET0Qf1NFFnrDoTRDGXk3B5ydGwWU9rnNykZW MI3EO7JpKBVWZUjWljI4zd/XH++EOjYYtxO1Kn52PV8WntfxEE44OlWjJz5Auw2i sL1/BjJIwxaJZt/m/Q6RbtAcIg1ocXNWOSUC2Jw11HLhaw5e2RPxUZeiifJO8cfa gr6sh/dP2QBkFbnRr81uCdfiDRDUGj/9KOjAqENgeHSJgmFnx+FSy+xny85HAgMB AAGjggJ0MIICcDAdBgNVHQ4EFgQUih9xMb8XuHDrpp3KiCuBv6DpXsIwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNTNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzQzNzMyMzczMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACoKYEQABTANBgkqhkiG9w0BAQsFAAOCAQEAloYmD/U+iE8SpzOml3OgAas8 a1k1R/u2F6iz+3jy7WTEUrdNXb+juKr828sZ+EgBYtaddz31WdroEEVzT8AH64nY /jeOw6xLEjqXP8cid4a84z5BdVOZ5USCzLCg5AZ3h3fS+ffaVx2PTk+pxDhpFBww a0xl1nKGY2V4X3dU4fWZSXnUR0JL4GU4Uh0iVTzjSU//T+6VKjKr3jE98wrI3v2v mrBKcWFksfqux0x49UQyP6FNkcWgYox2ra+jxAnpFR757+PMto3B4HXDBmetVIqI GPhi1XE6SKpA/rYDUGqElDSfW6JFsU3UC45DHWIB4p/Eadr+DkJt8HUj5A/8IQ== -----END CERTIFICATE-----Generated at Sun Jun 29 06:18:06 2025 by rpki-client