$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930303a3a2f34382d3438203d3e20323134333233.roa File: 326130613a363034343a373930303a3a2f34382d3438203d3e20323134333233.roa (raw, json) Hash identifier: W9m7lXWPIkfL8FtEUzhFogIVgqu3Ot3np5NLexbqycE= Subject key identifier: FA:CB:FF:FF:5D:64:8B:50:FC:73:10:0F:0D:AE:2B:21:31:8A:DA:12 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 7B4F6475E9A20C0485AF202D92A95999BD0E66BA Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930303a3a2f34382d3438203d3e20323134333233.roa Signing time: Sat 21 Jun 2025 20:15:19 +0000 ROA not before: Sat 21 Jun 2025 20:10:19 +0000 ROA not after: Sat 20 Jun 2026 20:15:19 +0000 asID: 214323 IP address blocks: 2a0a:6044:7900::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 08:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:4f:64:75:e9:a2:0c:04:85:af:20:2d:92:a9:59:99:bd:0e:66:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 21 20:10:19 2025 GMT Not After : Jun 20 20:15:19 2026 GMT Subject: CN=FACBFFFF5D648B50FC73100F0DAE2B21318ADA12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:05:41:5f:34:45:06:a1:75:6f:d5:43:bf: a2:ef:01:51:17:79:45:40:dd:e9:83:f4:b2:6e:5e: d0:10:be:e4:7b:85:3d:a5:97:17:58:a8:16:cc:33: c1:e6:b2:e2:c6:00:88:fe:ab:fa:e8:3b:7a:65:1c: 96:94:2d:98:59:4c:d4:1d:ea:38:76:30:2b:c3:92: f0:23:a1:cb:31:d5:51:47:4c:16:dc:5a:bc:eb:54: c6:44:23:77:3d:14:aa:75:21:e3:4c:52:1d:ae:8e: 03:07:d7:63:08:5c:d2:bb:09:80:70:e6:dd:8d:e2: db:48:b2:60:80:db:67:62:8f:2f:96:c4:c1:17:01: 16:8d:0f:dc:5a:58:66:92:81:ce:37:b2:5c:c5:40: 56:d3:07:e9:95:20:62:23:88:ea:fe:68:46:7c:a0: 0a:1e:50:36:12:05:05:f9:03:b7:6a:78:78:23:0e: a3:47:00:91:18:11:13:49:41:a1:6e:a9:8a:3e:1b: d4:36:cb:47:1b:3c:8b:64:14:57:f9:f0:01:ae:12: 6c:28:16:dc:50:3a:fa:1d:e3:80:29:82:39:97:a6: d2:ca:92:74:b4:02:2e:96:65:f4:7b:bc:89:1c:cf: a8:03:27:a7:53:30:2e:10:5b:15:3f:a9:0e:08:e5: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:CB:FF:FF:5D:64:8B:50:FC:73:10:0F:0D:AE:2B:21:31:8A:DA:12 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930303a3a2f34382d3438203d3e20323134333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7900::/48 Signature Algorithm: sha256WithRSAEncryption 74:41:c1:27:c1:b9:86:3c:ec:64:88:ff:2a:3c:ae:91:51:70: 72:b0:29:01:21:10:41:18:a8:3f:22:45:e9:9e:8c:68:51:34: 1c:64:54:2d:d0:30:b1:f8:87:5e:76:ce:11:d5:a2:37:ca:8b: 91:b1:4b:3e:d0:11:d6:41:9f:61:f3:74:eb:12:52:b8:c9:8c: 33:cf:3e:37:57:e8:bd:b8:bf:2f:e0:a1:57:8a:d4:f9:13:c8: 4c:9e:2e:5a:83:20:57:bc:cc:b4:97:02:60:24:fe:e2:12:af: 0f:94:88:df:f8:28:e8:f9:b7:e9:87:50:1a:d8:53:4d:7a:01: 49:b8:9f:8f:82:bb:e2:27:70:2e:d1:02:3d:bf:cb:19:6e:19: 16:eb:bc:13:ac:55:59:e8:33:6e:b0:83:e1:5f:36:92:b5:1a: a7:d1:1e:5a:42:84:5c:cb:05:25:0c:90:3c:72:71:7c:7d:b4: 2c:b4:5a:29:bb:04:c9:b1:67:8b:35:ef:fb:06:ef:d7:79:0e: e2:11:9a:1a:a4:1b:1d:8c:a6:97:17:fd:6f:a8:6d:ba:22:d1: 0a:f7:c8:c6:e3:ad:ed:a0:07:c9:cf:99:ce:22:56:af:ea:8a: 93:4b:d8:4e:a7:b6:dc:ee:2d:fa:3b:c9:ad:56:3d:a4:ce:fb: d1:57:86:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUe09kdemiDASFryAtkqlZmb0OZrowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjEyMDEwMTlaFw0yNjA2MjAyMDE1MTlaMDMxMTAvBgNV BAMTKEZBQ0JGRkZGNUQ2NDhCNTBGQzczMTAwRjBEQUUyQjIxMzE4QURBMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg9AVBXzRFBqF1b9VDv6LvAVEX eUVA3emD9LJuXtAQvuR7hT2llxdYqBbMM8HmsuLGAIj+q/roO3plHJaULZhZTNQd 6jh2MCvDkvAjocsx1VFHTBbcWrzrVMZEI3c9FKp1IeNMUh2ujgMH12MIXNK7CYBw 5t2N4ttIsmCA22dijy+WxMEXARaND9xaWGaSgc43slzFQFbTB+mVIGIjiOr+aEZ8 oAoeUDYSBQX5A7dqeHgjDqNHAJEYERNJQaFuqYo+G9Q2y0cbPItkFFf58AGuEmwo FtxQOvod44ApgjmXptLKknS0Ai6WZfR7vIkcz6gDJ6dTMC4QWxU/qQ4I5SQHAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU+sv//11ki1D8cxAPDa4rITGK2hIwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNzM5MzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMzMzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoKYER5ADANBgkqhkiG9w0BAQsFAAOCAQEAdEHBJ8G5hjzsZIj/ KjyukVFwcrApASEQQRioPyJF6Z6MaFE0HGRULdAwsfiHXnbOEdWiN8qLkbFLPtAR 1kGfYfN06xJSuMmMM88+N1fovbi/L+ChV4rU+RPITJ4uWoMgV7zMtJcCYCT+4hKv D5SI3/go6Pm36YdQGthTTXoBSbifj4K74idwLtECPb/LGW4ZFuu8E6xVWegzbrCD 4V82krUap9EeWkKEXMsFJQyQPHJxfH20LLRaKbsEybFnizXv+wbv13kO4hGaGqQb HYymlxf9b6htuiLRCvfIxuOt7aAHyc+ZziJWr+qKk0vYTqe23O4t+jvJrVY9pM77 0VeGRA== -----END CERTIFICATE-----Generated at Sun Jun 29 19:53:20 2025 by rpki-client