$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a363230303a3a2f34302d3430203d3e20323134313732.roa File: 326130613a363034343a363230303a3a2f34302d3430203d3e20323134313732.roa (raw, json) Hash identifier: DtYDcNiGJ6Iae69f8rPaQnifhHS4svZkm4u5Tl24mkc= Subject key identifier: 3F:3C:54:2A:F9:12:DC:D1:53:BD:DF:7F:2E:5F:E0:20:6D:80:98:91 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 799A748BDB2EA8692D6F0407D0566CF5C4DFEC01 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a363230303a3a2f34302d3430203d3e20323134313732.roa Signing time: Tue 04 Mar 2025 21:13:04 +0000 ROA not before: Tue 04 Mar 2025 21:08:04 +0000 ROA not after: Tue 03 Mar 2026 21:13:04 +0000 asID: 214172 IP address blocks: 2a0a:6044:6200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:9a:74:8b:db:2e:a8:69:2d:6f:04:07:d0:56:6c:f5:c4:df:ec:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Mar 4 21:08:04 2025 GMT Not After : Mar 3 21:13:04 2026 GMT Subject: CN=3F3C542AF912DCD153BDDF7F2E5FE0206D809891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7a:b5:c9:7c:3b:dc:68:34:49:dd:a1:7b:ec: 72:85:80:f7:ae:8a:5a:f0:0c:f7:ac:c3:17:1f:4f: 60:3a:25:ad:4e:48:9c:4d:cd:67:7b:eb:a0:c6:f5: 1d:48:84:1d:5b:dd:fb:a3:11:5a:cf:f9:9a:c6:bb: 6a:b0:15:52:b5:3d:b6:92:11:f4:22:b8:bb:ad:96: 29:1f:b0:14:7e:56:3f:a6:03:03:e5:8c:6d:2c:dc: 57:f0:dc:57:b6:41:93:2b:94:57:e1:34:0f:15:6c: 08:94:87:b6:88:ae:a5:2b:34:43:22:99:db:1c:db: bd:9c:6d:74:81:0c:20:a8:86:12:b5:ff:30:78:4d: c4:80:e4:83:7c:be:49:a3:a0:75:ef:76:8e:48:f2: e0:08:35:73:27:82:19:b9:9d:4f:60:93:fa:a9:3e: a7:ae:37:df:7d:27:fa:6a:01:e0:0e:9a:e8:84:db: 6e:84:1d:28:b7:85:b3:5e:b8:16:3d:10:04:4c:f3: f2:dd:e0:2d:f1:28:41:00:d9:28:bd:2a:7d:fa:32: c4:23:4b:dd:df:8a:26:58:75:b7:9b:6f:b8:19:db: 61:90:8c:26:ab:4b:65:20:71:61:bd:0b:bb:bb:60: 0e:2e:ca:52:58:34:52:f5:42:41:e6:3f:ac:2a:c5: 8a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3C:54:2A:F9:12:DC:D1:53:BD:DF:7F:2E:5F:E0:20:6D:80:98:91 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a363230303a3a2f34302d3430203d3e20323134313732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:6200::/40 Signature Algorithm: sha256WithRSAEncryption 2c:98:e3:2e:84:5b:56:36:4d:b2:b3:a0:7e:14:37:8b:9f:a9: 88:a1:28:84:97:1a:16:98:0d:72:66:64:54:ba:fe:a6:e9:2d: 35:45:a8:95:d6:82:e8:53:5f:04:1a:a7:b9:50:59:1d:4b:69: ed:c3:64:bc:67:82:ad:19:a8:55:b4:7e:b1:c4:a8:c8:37:27: 10:80:a6:30:dc:e1:d5:86:93:ee:94:65:f5:50:fd:36:3f:a5: 90:66:e5:9d:dd:12:c5:27:fa:48:83:90:76:70:52:34:b3:07: b6:29:ee:7c:50:25:8d:3a:0a:18:5a:2e:31:46:60:0e:18:90: 28:ea:59:6c:17:8d:84:62:0a:9a:60:ca:e6:19:78:b5:4a:db: c7:39:e2:93:52:01:e5:98:43:63:94:a4:4c:83:c3:ef:e5:93: 3e:91:47:62:75:cb:08:c0:df:1d:3e:8c:0c:eb:05:9a:39:97: ef:7d:59:35:18:9a:82:3b:42:09:1e:3f:df:e8:c6:5e:4f:b6: 8a:0a:e9:7c:34:45:c8:20:b9:00:67:4f:ba:cb:b8:4a:8f:3f: f1:fa:cb:68:13:77:9c:18:56:d8:ef:a7:69:fb:43:4e:52:0f: b4:c4:2c:b7:87:35:39:a7:00:53:69:17:56:b3:e4:a7:4e:20: 48:80:64:3a -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUeZp0i9suqGktbwQH0FZs9cTf7AEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTAzMDQyMTA4MDRaFw0yNjAzMDMyMTEzMDRaMDMxMTAvBgNV BAMTKDNGM0M1NDJBRjkxMkRDRDE1M0JEREY3RjJFNUZFMDIwNkQ4MDk4OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWerXJfDvcaDRJ3aF77HKFgPeu ilrwDPeswxcfT2A6Ja1OSJxNzWd766DG9R1IhB1b3fujEVrP+ZrGu2qwFVK1PbaS EfQiuLutlikfsBR+Vj+mAwPljG0s3Ffw3Fe2QZMrlFfhNA8VbAiUh7aIrqUrNEMi mdsc272cbXSBDCCohhK1/zB4TcSA5IN8vkmjoHXvdo5I8uAINXMnghm5nU9gk/qp PqeuN999J/pqAeAOmuiE226EHSi3hbNeuBY9EARM8/Ld4C3xKEEA2Si9Kn36MsQj S93fiiZYdbebb7gZ22GQjCarS2UgcWG9C7u7YA4uylJYNFL1QkHmP6wqxYolAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUPzxUKvkS3NFTvd9/Ll/gIG2AmJEwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNjMyMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEzNDMxMzczMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYERiMA0GCSqGSIb3DQEBCwUAA4IBAQAsmOMuhFtWNk2ys6B+ FDeLn6mIoSiElxoWmA1yZmRUuv6m6S01RaiV1oLoU18EGqe5UFkdS2ntw2S8Z4Kt GahVtH6xxKjINycQgKYw3OHVhpPulGX1UP02P6WQZuWd3RLFJ/pIg5B2cFI0swe2 Ke58UCWNOgoYWi4xRmAOGJAo6llsF42EYgqaYMrmGXi1StvHOeKTUgHlmENjlKRM g8Pv5ZM+kUdidcsIwN8dPowM6wWaOZfvfVk1GJqCO0IJHj/f6MZeT7aKCul8NEXI ILkAZ0+6y7hKjz/x+stoE3ecGFbY76dp+0NOUg+0xCy3hzU5pwBTaRdWs+SnTiBI gGQ6 -----END CERTIFICATE-----Generated at Fri May 9 07:36:46 2025 by rpki-client