$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a623030303a3a2f34302d3438203d3e20323135323136.roa File: 326130613a363034343a623030303a3a2f34302d3438203d3e20323135323136.roa (raw, json) Hash identifier: /5giI2w3XuU6ysgTqLQCNh3Dp7GWRT1wQOLeyWgPn3M= Subject key identifier: 5E:82:07:19:91:97:23:AB:20:23:61:28:BB:45:83:59:57:9E:A6:0B Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 65F8ECDDDFFB5730A157B4B071B714406BE7F06C Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a623030303a3a2f34302d3438203d3e20323135323136.roa Signing time: Thu 08 May 2025 08:00:50 +0000 ROA not before: Thu 08 May 2025 07:55:50 +0000 ROA not after: Thu 07 May 2026 08:00:50 +0000 asID: 215216 IP address blocks: 2a0a:6044:b000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f8:ec:dd:df:fb:57:30:a1:57:b4:b0:71:b7:14:40:6b:e7:f0:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: May 8 07:55:50 2025 GMT Not After : May 7 08:00:50 2026 GMT Subject: CN=5E820719919723AB20236128BB458359579EA60B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:57:d3:5a:0f:7b:5d:6c:2d:bc:ed:24:3e:60: 25:bf:5f:c8:55:81:16:fb:d7:2f:59:78:e3:a2:b7: b6:7f:c8:ac:25:71:b7:73:3c:97:3e:45:40:e5:c1: 24:08:41:94:84:58:17:e2:5f:45:4e:aa:66:b9:21: 7e:49:5d:18:f6:6f:ee:40:29:3f:4a:00:4f:15:5b: c3:57:25:b8:96:e4:51:ca:5c:57:e1:61:be:04:51: 5c:aa:5f:dd:2c:d7:7f:2a:9b:0c:58:35:03:ce:48: 03:07:e4:28:3d:0a:86:64:f4:d2:28:b2:5c:c0:de: 40:0e:5e:ba:c1:c2:d6:22:5c:64:c8:85:9d:fa:cc: b7:e2:21:b3:4b:69:27:24:b6:2e:ca:93:9f:70:2d: c9:0f:49:1e:7b:dd:e9:b5:fe:00:ad:5b:de:64:bb: 5f:11:09:e4:99:85:c0:14:b5:e3:28:c0:19:81:2f: d6:82:64:aa:2e:68:cb:3e:64:28:3f:60:d2:f7:2c: e5:7f:63:f0:be:fd:8a:dd:45:25:cf:ce:18:95:13: 00:08:77:5a:90:b3:12:5e:01:a4:b5:c7:11:eb:57: 1a:8a:c9:32:17:13:bb:13:d7:2c:c4:19:b4:ca:1a: 23:0c:b6:62:ef:36:03:79:40:88:10:2f:8f:cf:e4: c7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:82:07:19:91:97:23:AB:20:23:61:28:BB:45:83:59:57:9E:A6:0B X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a623030303a3a2f34302d3438203d3e20323135323136.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b000::/40 Signature Algorithm: sha256WithRSAEncryption 93:8b:46:cb:b5:0a:a0:80:7f:02:8d:de:a5:99:c2:2e:8a:7e: 05:db:45:2f:3d:50:32:8c:5b:73:aa:ea:6c:85:1c:c0:80:b5: b2:1e:70:3f:19:3f:38:b4:e8:b2:c4:9c:3d:aa:0e:06:2a:f7: 80:d4:ab:d4:26:10:05:dd:67:91:7f:cc:51:3d:cd:85:dd:c8: 8d:64:a0:ab:7f:d3:03:3e:49:29:43:0b:96:eb:9e:2e:8f:a6: 10:a3:29:34:95:05:e8:36:c9:45:d8:05:92:9b:bb:5b:9c:82: ee:02:07:60:cb:33:df:ff:05:fe:82:cd:ed:98:fd:df:d4:e6: 6d:71:58:90:99:b3:4d:a4:01:1c:55:8d:97:a4:b8:17:4d:5f: 23:47:01:91:6b:c2:a7:99:35:ed:1f:dd:68:f0:99:cf:ec:81: 07:bf:d3:5b:b8:d4:c2:6a:58:1c:fd:82:f2:61:3a:98:22:e3: ca:23:c4:50:fb:fb:fe:bf:c5:ff:21:fe:57:ed:d6:0f:a6:90: 72:48:30:bb:aa:e8:f1:5f:65:4c:1d:39:75:80:7e:f9:72:e4: 4f:2a:6e:92:fd:de:4c:f9:ec:d6:96:cb:0b:23:5c:6f:8b:41: 2c:bb:46:2a:b3:e0:af:8e:80:5a:7a:cd:34:bb:0f:ee:14:f3: 64:ba:b0:c8 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUZfjs3d/7VzChV7SwcbcUQGvn8GwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA1MDgwNzU1NTBaFw0yNjA1MDcwODAwNTBaMDMxMTAvBgNV BAMTKDVFODIwNzE5OTE5NzIzQUIyMDIzNjEyOEJCNDU4MzU5NTc5RUE2MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaV9NaD3tdbC287SQ+YCW/X8hV gRb71y9ZeOOit7Z/yKwlcbdzPJc+RUDlwSQIQZSEWBfiX0VOqma5IX5JXRj2b+5A KT9KAE8VW8NXJbiW5FHKXFfhYb4EUVyqX90s138qmwxYNQPOSAMH5Cg9CoZk9NIo slzA3kAOXrrBwtYiXGTIhZ36zLfiIbNLaSckti7Kk59wLckPSR573em1/gCtW95k u18RCeSZhcAUteMowBmBL9aCZKouaMs+ZCg/YNL3LOV/Y/C+/YrdRSXPzhiVEwAI d1qQsxJeAaS1xxHrVxqKyTIXE7sT1yzEGbTKGiMMtmLvNgN5QIgQL4/P5MeJAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUXoIHGZGXI6sgI2Eou0WDWVeepgswHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MjMwMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNTMyMzEzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYESwMA0GCSqGSIb3DQEBCwUAA4IBAQCTi0bLtQqggH8Cjd6l mcIuin4F20UvPVAyjFtzqupshRzAgLWyHnA/GT84tOiyxJw9qg4GKveA1KvUJhAF 3WeRf8xRPc2F3ciNZKCrf9MDPkkpQwuW654uj6YQoyk0lQXoNslF2AWSm7tbnILu AgdgyzPf/wX+gs3tmP3f1OZtcViQmbNNpAEcVY2XpLgXTV8jRwGRa8KnmTXtH91o 8JnP7IEHv9NbuNTCalgc/YLyYTqYIuPKI8RQ+/v+v8X/If5X7dYPppBySDC7qujx X2VMHTl1gH75cuRPKm6S/d5M+ezWlssLI1xvi0Esu0Yqs+CvjoBaes00uw/uFPNk urDI -----END CERTIFICATE-----Generated at Fri May 9 06:13:54 2025 by rpki-client