$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa File: 326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa (raw, json) Hash identifier: eKJy7l6OuRs0DfHysu5cFBrWh13isKVUZ6G3jeDZHK4= Subject key identifier: FF:E7:0A:FD:32:BA:E0:5B:33:12:7C:1D:C8:D8:AC:F2:4A:E1:FD:68 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 546BCF2C110D7B7F840E18376B5A4161EA1A94D1 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa Signing time: Sat 21 Jun 2025 20:19:00 +0000 ROA not before: Sat 21 Jun 2025 20:14:00 +0000 ROA not after: Sat 20 Jun 2026 20:19:00 +0000 asID: 214323 IP address blocks: 2a0a:6044:7901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 08:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:6b:cf:2c:11:0d:7b:7f:84:0e:18:37:6b:5a:41:61:ea:1a:94:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 21 20:14:00 2025 GMT Not After : Jun 20 20:19:00 2026 GMT Subject: CN=FFE70AFD32BAE05B33127C1DC8D8ACF24AE1FD68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:39:6a:e1:0f:b3:06:5f:b5:f9:bb:cf:0f:66: 4e:ab:1a:b3:7d:72:8c:3d:24:af:e3:7a:fc:55:86: 82:4c:57:97:ee:0c:31:07:77:a0:72:4b:c3:53:cf: 87:62:77:70:42:8d:7c:05:b1:bf:92:ea:85:d6:f7: a2:9f:0f:67:36:2b:50:4f:c3:f8:65:26:7d:7c:cf: dd:a3:57:f9:58:7c:00:76:29:49:23:bf:8d:33:5c: 70:27:f9:11:6e:29:8d:8d:e9:a9:c1:4f:85:99:7e: 5f:83:99:18:ef:e7:a0:9d:dd:12:21:4b:97:84:49: 85:95:f5:03:ab:a9:81:22:9a:7e:d2:87:ba:3d:c9: de:29:08:47:3d:ea:d5:66:98:62:c8:f6:03:6b:63: de:87:89:ad:13:b3:ed:e1:9d:44:5e:d1:88:53:ca: 93:0b:1c:55:9b:fe:de:52:b5:b1:f8:49:70:ea:4b: 38:db:44:9d:44:31:5f:1d:14:23:eb:66:6c:ec:43: ae:74:79:8a:97:8d:54:9e:7d:0b:72:b6:dd:2f:60: c4:75:df:85:a5:f6:cb:b9:40:23:d6:2c:1c:d5:73: 82:cc:0f:11:b5:4b:99:71:40:8f:a1:8a:bb:db:de: 20:ea:28:6d:a3:b8:d8:b0:d3:57:ea:a6:06:cb:b5: 99:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E7:0A:FD:32:BA:E0:5B:33:12:7C:1D:C8:D8:AC:F2:4A:E1:FD:68 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7901::/48 Signature Algorithm: sha256WithRSAEncryption 99:60:5d:aa:96:7e:af:d4:8a:29:76:68:40:81:75:a9:42:4e: f2:74:b1:8e:b2:bf:76:d0:43:05:a5:4e:f8:5e:6b:95:5f:f3: 1c:aa:8b:33:4c:fa:14:49:98:df:f9:b3:9a:10:08:00:4c:a0: 37:77:c9:ca:2d:b6:cc:d4:6e:eb:9e:c7:d7:d1:85:aa:0d:56: 23:04:59:69:82:16:fb:cc:ee:bb:b4:db:01:d9:3e:2b:de:59: 0e:78:22:7d:6e:1e:ba:8e:14:61:ec:eb:f8:54:6b:27:a9:37: 8f:cb:16:ca:78:b5:08:a2:98:00:9e:2f:01:86:58:c0:2c:93: 03:23:9e:ca:49:7a:66:1f:90:1d:c2:cd:43:4c:6b:a2:a5:af: 76:98:f1:ed:83:14:d4:24:c5:64:0a:c0:d3:9a:75:05:02:dd: 0a:e5:56:f3:bc:15:b9:45:43:8d:1b:49:9e:95:65:9e:64:f9: 37:85:fc:e3:64:61:36:8a:3e:4e:a6:55:b1:82:bd:b7:3b:aa: 3a:11:6f:14:24:7e:17:99:b0:f2:f7:e2:85:11:35:ad:f5:47: 5c:ae:17:d6:72:0c:4c:23:6f:6e:24:a6:f5:cd:75:90:74:14: 49:8c:bd:57:6f:89:2f:33:5f:07:ad:72:c7:e1:01:f2:7b:86: 46:98:bf:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUVGvPLBENe3+EDhg3a1pBYeoalNEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjEyMDE0MDBaFw0yNjA2MjAyMDE5MDBaMDMxMTAvBgNV BAMTKEZGRTcwQUZEMzJCQUUwNUIzMzEyN0MxREM4RDhBQ0YyNEFFMUZENjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwOWrhD7MGX7X5u88PZk6rGrN9 cow9JK/jevxVhoJMV5fuDDEHd6ByS8NTz4did3BCjXwFsb+S6oXW96KfD2c2K1BP w/hlJn18z92jV/lYfAB2KUkjv40zXHAn+RFuKY2N6anBT4WZfl+DmRjv56Cd3RIh S5eESYWV9QOrqYEimn7Sh7o9yd4pCEc96tVmmGLI9gNrY96Hia0Ts+3hnURe0YhT ypMLHFWb/t5StbH4SXDqSzjbRJ1EMV8dFCPrZmzsQ650eYqXjVSefQtytt0vYMR1 34Wl9su5QCPWLBzVc4LMDxG1S5lxQI+hirvb3iDqKG2juNiw01fqpgbLtZmLAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU/+cK/TK64FszEnwdyNis8krh/WgwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNzM5MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMzMzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoKYER5ATANBgkqhkiG9w0BAQsFAAOCAQEAmWBdqpZ+r9SKKXZo QIF1qUJO8nSxjrK/dtBDBaVO+F5rlV/zHKqLM0z6FEmY3/mzmhAIAEygN3fJyi22 zNRu657H19GFqg1WIwRZaYIW+8zuu7TbAdk+K95ZDngifW4euo4UYezr+FRrJ6k3 j8sWyni1CKKYAJ4vAYZYwCyTAyOeykl6Zh+QHcLNQ0xroqWvdpjx7YMU1CTFZArA 05p1BQLdCuVW87wVuUVDjRtJnpVlnmT5N4X842RhNoo+TqZVsYK9tzuqOhFvFCR+ F5mw8vfihRE1rfVHXK4X1nIMTCNvbiSm9c11kHQUSYy9V2+JLzNfB61yx+EB8nuG Rpi/vA== -----END CERTIFICATE-----Generated at Sun Jun 29 19:35:55 2025 by rpki-client