$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a31343a3a2f34382d3438203d3e203437323732.roa File: 326130663a363238303a31343a3a2f34382d3438203d3e203437323732.roa (raw, json) Hash identifier: 53r2THOHjKjP50HOJNfd47UEAMJ+i2/vCjTxIAIWEYQ= Subject key identifier: 27:C6:87:16:FC:37:15:86:8B:98:10:81:52:AF:71:5F:23:4C:95:37 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 1C7A576227C7CF1254649F26F08C1BF74731AD58 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a31343a3a2f34382d3438203d3e203437323732.roa Signing time: Thu 26 Jun 2025 17:36:06 +0000 ROA not before: Thu 26 Jun 2025 17:31:06 +0000 ROA not after: Thu 25 Jun 2026 17:36:06 +0000 asID: 47272 IP address blocks: 2a0f:6280:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 00:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:7a:57:62:27:c7:cf:12:54:64:9f:26:f0:8c:1b:f7:47:31:ad:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 26 17:31:06 2025 GMT Not After : Jun 25 17:36:06 2026 GMT Subject: CN=27C68716FC3715868B98108152AF715F234C9537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6d:33:92:cd:d5:f6:65:1c:d4:09:dc:c9:1c: 86:19:ca:82:00:25:59:54:29:e4:e8:54:6f:80:79: 07:23:21:4c:58:4c:99:55:e4:14:79:94:4a:c8:c1: da:8d:10:bd:92:78:93:44:44:2a:14:63:6e:c2:f6: 02:ab:da:15:e8:16:b3:06:6e:5c:37:24:90:9b:e7: e8:24:f6:41:4b:eb:c6:df:ef:b0:47:58:46:8c:93: a8:1b:46:39:33:c4:ed:5d:97:63:2a:95:5b:31:9c: e5:23:d1:bf:40:05:d7:8a:75:9b:aa:3f:b4:d3:eb: 4b:49:0b:46:2d:59:a4:23:1a:d2:8a:1d:24:8f:61: c7:3b:2b:76:97:cc:10:a7:4e:8a:71:c0:63:04:44: f1:a5:15:ba:b4:41:3d:ef:fd:38:83:82:11:e7:56: 11:ec:fe:8e:45:96:b8:5e:5c:e4:4a:80:2b:02:28: b4:d6:e0:e4:32:ad:fd:c0:5a:c8:e8:b3:70:58:75: 8a:a4:e1:40:92:f7:4b:53:b4:1e:00:40:30:f3:9c: 17:29:6c:e1:43:a0:dc:09:1a:3c:00:5f:5c:74:ae: 07:d9:bd:f3:15:12:b7:5e:b9:1a:17:d0:88:38:31: e8:25:4c:83:79:40:25:ca:90:89:87:ea:96:09:58: 6d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C6:87:16:FC:37:15:86:8B:98:10:81:52:AF:71:5F:23:4C:95:37 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a31343a3a2f34382d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6280:14::/48 Signature Algorithm: sha256WithRSAEncryption 1e:dc:74:b6:ee:de:89:1b:c8:a7:60:a0:91:64:f6:59:39:43: eb:85:f5:60:f0:0b:5c:f4:b3:7d:af:59:f0:cc:d5:4c:fe:58: 53:1c:4d:90:0a:8d:a7:f8:b0:5a:9a:71:68:9a:2f:b3:5e:90: 7d:d0:34:e2:8a:0b:90:bd:50:82:e9:ec:c3:80:79:00:80:ce: 7e:22:09:fc:c5:6c:e1:22:ad:e3:f3:b0:ae:38:3d:50:7b:01: 50:8d:18:de:39:3e:17:73:4e:0c:c6:31:3e:d3:00:c8:0f:b6: 56:cd:8d:dc:e3:b3:38:8b:17:bf:63:d9:3b:18:c1:f9:9a:8d: 13:87:2e:d8:ea:96:14:37:73:fc:8f:5c:6d:1a:f8:16:eb:d8: 58:a6:b8:6e:4f:ee:7f:e1:d0:4e:e5:3e:3c:30:f8:3e:2e:4f: ef:cc:76:dc:9e:c7:02:1e:19:87:fe:d0:b7:8f:b2:a2:1c:db: a1:7b:a7:f5:32:f6:d7:41:3b:53:1e:db:42:4a:b4:ec:5a:48: 7d:83:ff:fd:98:92:1e:0b:dd:c2:bf:ef:9b:13:28:10:10:6c: f8:9c:28:4b:57:ed:f0:62:96:e5:02:d6:b6:ac:d3:5a:6e:73: 0c:48:e4:33:ad:ad:a6:78:80:9f:94:41:fb:7d:ee:4b:11:d9: 1f:6b:20:17 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgIUHHpXYifHzxJUZJ8m8Iwb90cxrVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjYxNzMxMDZaFw0yNjA2MjUxNzM2MDZaMDMxMTAvBgNV BAMTKDI3QzY4NzE2RkMzNzE1ODY4Qjk4MTA4MTUyQUY3MTVGMjM0Qzk1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChbTOSzdX2ZRzUCdzJHIYZyoIA JVlUKeToVG+AeQcjIUxYTJlV5BR5lErIwdqNEL2SeJNERCoUY27C9gKr2hXoFrMG blw3JJCb5+gk9kFL68bf77BHWEaMk6gbRjkzxO1dl2MqlVsxnOUj0b9ABdeKdZuq P7TT60tJC0YtWaQjGtKKHSSPYcc7K3aXzBCnTopxwGMERPGlFbq0QT3v/TiDghHn VhHs/o5FlrheXORKgCsCKLTW4OQyrf3AWsjos3BYdYqk4UCS90tTtB4AQDDznBcp bOFDoNwJGjwAX1x0rgfZvfMVErdeuRoX0Ig4MeglTIN5QCXKkImH6pYJWG1fAgMB AAGjggJ0MIICcDAdBgNVHQ4EFgQUJ8aHFvw3FYaLmBCBUq9xXyNMlTcwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjYzYTM2MzIzODMw M2EzMTM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQzNzMyMzczMi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACoPYoAAFDANBgkqhkiG9w0BAQsFAAOCAQEAHtx0tu7eiRvIp2CgkWT2WTlD 64X1YPALXPSzfa9Z8MzVTP5YUxxNkAqNp/iwWppxaJovs16QfdA04ooLkL1Qguns w4B5AIDOfiIJ/MVs4SKt4/Owrjg9UHsBUI0Y3jk+F3NODMYxPtMAyA+2Vs2N3OOz OIsXv2PZOxjB+ZqNE4cu2OqWFDdz/I9cbRr4FuvYWKa4bk/uf+HQTuU+PDD4Pi5P 78x23J7HAh4Zh/7Qt4+yohzboXun9TL210E7Ux7bQkq07FpIfYP//ZiSHgvdwr/v mxMoEBBs+JwoS1ft8GKW5QLWtqzTWm5zDEjkM62tpniAn5RB+33uSxHZH2sgFw== -----END CERTIFICATE-----Generated at Sun Jun 29 06:33:10 2025 by rpki-client