$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930323a3a2f34382d3438203d3e20323134333233.roa File: 326130613a363034343a373930323a3a2f34382d3438203d3e20323134333233.roa (raw, json) Hash identifier: dqBfAYwLNs9c0iMkBHmdTHA0wgbmJRbipyWUFKD0ODw= Subject key identifier: F9:B9:74:10:64:3C:38:26:4F:6C:4B:0D:52:39:1F:38:4F:9C:71:6B Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 5815CD70BEFBA4968FFE95D2B3DB4D33479AED82 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930323a3a2f34382d3438203d3e20323134333233.roa Signing time: Sat 21 Jun 2025 20:19:15 +0000 ROA not before: Sat 21 Jun 2025 20:14:15 +0000 ROA not after: Sat 20 Jun 2026 20:19:15 +0000 asID: 214323 IP address blocks: 2a0a:6044:7902::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 08:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:15:cd:70:be:fb:a4:96:8f:fe:95:d2:b3:db:4d:33:47:9a:ed:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 21 20:14:15 2025 GMT Not After : Jun 20 20:19:15 2026 GMT Subject: CN=F9B97410643C38264F6C4B0D52391F384F9C716B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f3:9c:8d:47:e4:ee:21:e6:13:a9:62:83:cc: de:0f:ae:20:64:5f:8d:38:c0:ac:e7:bf:7e:2d:53: 9f:af:3d:69:05:75:5a:98:a6:bb:76:71:45:e5:b7: 9a:2b:12:7f:3f:4c:09:fc:f9:6d:c8:a8:b6:e0:06: 7a:50:58:73:8e:f5:a8:51:c4:13:3d:92:5d:bb:77: fb:e4:51:ed:dd:57:83:87:b7:91:32:df:a8:f8:39: 23:fa:05:36:33:9f:69:22:69:da:ef:62:ef:0e:e6: 4f:a6:2e:e8:8f:c8:f5:a5:0d:da:c5:59:f9:43:03: db:18:b1:86:0e:8c:f3:41:82:07:ec:b2:82:4f:ad: cb:0d:49:f7:65:17:3f:e5:98:43:04:8e:9f:73:17: b0:30:87:68:46:36:12:06:16:24:c8:dd:2d:71:c8: 37:fd:24:38:fd:f4:c1:bb:35:0f:ee:bd:6d:a4:de: 0f:2a:87:0f:e4:6d:9d:fd:b4:c3:3d:dd:95:29:7e: 13:8f:f0:06:f0:6b:74:96:0a:76:27:03:3e:ea:51: 61:6f:0f:66:48:18:13:11:1d:9b:2a:e3:66:4c:ed: 3a:bd:82:52:08:68:21:96:72:71:11:7d:a7:ac:b0: 2e:b9:4a:6f:a9:4d:f5:eb:f1:7a:1e:39:84:50:66: ca:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:B9:74:10:64:3C:38:26:4F:6C:4B:0D:52:39:1F:38:4F:9C:71:6B X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a373930323a3a2f34382d3438203d3e20323134333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7902::/48 Signature Algorithm: sha256WithRSAEncryption 0b:c3:71:fc:8c:b1:08:23:b4:9f:29:24:08:09:59:63:a2:6b: 38:27:35:43:ce:39:cb:61:d1:e2:37:65:fd:f1:dd:39:b0:6f: 1c:62:b9:13:5f:ce:05:41:78:31:a5:5f:86:16:27:90:65:47: df:53:77:b3:e5:c8:03:17:54:8e:59:a8:6f:82:c9:17:80:ac: 54:78:75:9c:94:75:b9:38:67:89:40:38:37:2f:9c:23:35:75: 28:4d:ea:98:32:bd:2d:89:fe:d9:51:c1:48:48:29:78:8d:e4: cd:a7:bf:94:26:23:de:50:7f:8c:17:7a:cb:5f:10:95:f6:b2: d2:cf:45:cf:42:82:4c:a6:d4:f9:c6:fc:68:18:67:ba:9f:b9: 2f:f9:97:92:aa:46:eb:01:b4:6b:0b:8d:3a:81:2e:9f:af:4a: 76:89:fd:fc:e7:2f:60:8e:a0:f1:ef:08:1b:39:28:10:e7:74: 7f:23:8e:58:0c:47:fb:80:ec:62:46:49:e6:b9:fb:99:1c:45: c1:a0:2f:ef:07:2b:cd:be:ba:ad:1a:7a:27:cc:c1:80:1f:3b: ca:97:0b:f0:15:bc:30:e4:6d:a2:85:97:a7:fe:5b:e3:ce:9f: d1:1e:53:93:41:b9:c0:ce:bc:e5:33:77:74:85:2a:9c:5e:a7: 66:4c:39:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUWBXNcL77pJaP/pXSs9tNM0ea7YIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjEyMDE0MTVaFw0yNjA2MjAyMDE5MTVaMDMxMTAvBgNV BAMTKEY5Qjk3NDEwNjQzQzM4MjY0RjZDNEIwRDUyMzkxRjM4NEY5QzcxNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE85yNR+TuIeYTqWKDzN4PriBk X404wKznv34tU5+vPWkFdVqYprt2cUXlt5orEn8/TAn8+W3IqLbgBnpQWHOO9ahR xBM9kl27d/vkUe3dV4OHt5Ey36j4OSP6BTYzn2kiadrvYu8O5k+mLuiPyPWlDdrF WflDA9sYsYYOjPNBggfssoJPrcsNSfdlFz/lmEMEjp9zF7Awh2hGNhIGFiTI3S1x yDf9JDj99MG7NQ/uvW2k3g8qhw/kbZ39tMM93ZUpfhOP8Abwa3SWCnYnAz7qUWFv D2ZIGBMRHZsq42ZM7Tq9glIIaCGWcnERfaessC65Sm+pTfXr8XoeOYRQZsrbAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU+bl0EGQ8OCZPbEsNUjkfOE+ccWswHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2EzNzM5MzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDMzMzIzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoKYER5AjANBgkqhkiG9w0BAQsFAAOCAQEAC8Nx/IyxCCO0nykk CAlZY6JrOCc1Q845y2HR4jdl/fHdObBvHGK5E1/OBUF4MaVfhhYnkGVH31N3s+XI AxdUjlmob4LJF4CsVHh1nJR1uThniUA4Ny+cIzV1KE3qmDK9LYn+2VHBSEgpeI3k zae/lCYj3lB/jBd6y18Qlfay0s9Fz0KCTKbU+cb8aBhnup+5L/mXkqpG6wG0awuN OoEun69Kdon9/OcvYI6g8e8IGzkoEOd0fyOOWAxH+4DsYkZJ5rn7mRxFwaAv7wcr zb66rRp6J8zBgB87ypcL8BW8MORtooWXp/5b486f0R5Tk0G5wM685TN3dIUqnF6n Zkw5YA== -----END CERTIFICATE-----Generated at Sun Jun 29 19:39:46 2025 by rpki-client