$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a613a3a2f34382d3438203d3e203437323732.roa File: 326130663a363238303a613a3a2f34382d3438203d3e203437323732.roa (raw, json) Hash identifier: 6Cud/tRgP6+yHo5YrWVFj1IpIVh6l2kxi0e7VPf+qAs= Subject key identifier: 32:CE:6F:D7:2A:75:8D:57:D6:74:42:57:61:E7:17:A1:6B:D7:C4:23 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 1FED69172E26E5064906B692CF852FFCB012BAD0 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a613a3a2f34382d3438203d3e203437323732.roa Signing time: Thu 26 Jun 2025 17:29:54 +0000 ROA not before: Thu 26 Jun 2025 17:24:54 +0000 ROA not after: Thu 25 Jun 2026 17:29:54 +0000 asID: 47272 IP address blocks: 2a0f:6280:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 30 Jun 2025 01:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ed:69:17:2e:26:e5:06:49:06:b6:92:cf:85:2f:fc:b0:12:ba:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 26 17:24:54 2025 GMT Not After : Jun 25 17:29:54 2026 GMT Subject: CN=32CE6FD72A758D57D674425761E717A16BD7C423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:a0:9f:fd:33:d7:02:53:34:86:35:28:ae: 93:5a:94:1f:00:56:bc:c7:d6:50:84:05:69:74:9e: d9:36:eb:88:9c:8f:4d:52:2f:16:df:60:aa:cb:13: 8e:51:b4:a0:08:e6:a1:5d:ad:62:8c:21:3e:11:99: 95:a7:9e:d4:83:d5:27:b3:33:1e:91:d1:8a:80:4e: ad:a6:a3:df:a2:06:3d:c8:3f:25:a1:72:f7:e2:02: 3b:5c:f7:a6:ee:64:f9:b7:5b:de:e8:e7:95:35:55: 71:57:4a:80:d1:14:20:92:72:6e:96:d4:d8:f9:2a: 86:72:fd:91:a5:e0:07:d2:2c:df:16:67:61:69:4b: 11:c7:e8:6e:b5:40:72:9e:93:a6:bd:3f:53:f6:82: 13:79:9d:af:52:ea:24:64:3c:a0:55:a7:91:60:f0: 2d:53:12:38:00:ba:67:2e:d9:d6:f1:07:6b:47:60: 7a:86:a9:2b:ac:1b:5c:75:24:6d:79:18:8c:4c:40: 51:bc:26:83:f4:85:1d:c5:df:10:ea:f9:9f:36:96: 61:1d:31:a3:bd:1b:57:ab:29:c4:6f:4d:b3:24:94: a8:dd:f4:d4:84:d1:e0:5b:db:18:05:6f:09:90:70: 77:40:4c:3c:50:87:90:7f:42:6d:e3:4f:87:21:69: 8a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CE:6F:D7:2A:75:8D:57:D6:74:42:57:61:E7:17:A1:6B:D7:C4:23 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130663a363238303a613a3a2f34382d3438203d3e203437323732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:6280:a::/48 Signature Algorithm: sha256WithRSAEncryption b4:65:6b:df:fa:c3:f3:a4:a5:63:48:1c:60:58:12:95:a4:c8: 73:05:e5:5a:ed:06:8b:58:fc:6e:d3:f9:5c:fc:0b:3b:8a:3e: c6:48:23:a2:b1:6b:eb:9d:47:28:0c:4e:66:fe:5c:96:fe:8d: 82:30:53:21:95:83:07:89:6b:e5:ec:69:6f:14:86:b1:bd:ff: 3f:25:f7:1c:16:fc:00:cd:9c:c8:2b:df:c8:fa:eb:26:40:bb: 3f:b0:81:e4:49:42:97:f8:cb:5d:a4:19:31:09:60:a3:a3:17: 09:74:82:2a:40:1d:52:87:30:d8:6e:0a:e8:23:7a:70:f7:e7: 95:3c:89:97:11:10:09:17:9f:60:ee:e0:0e:10:37:e3:99:01: 1a:13:3f:74:8c:b5:31:09:4f:98:f2:b9:8d:79:88:77:98:2e: 4e:d4:6c:f4:0e:df:6b:c9:e2:fd:f3:ba:9d:02:f3:19:fe:2b: 74:ec:3e:44:42:83:98:0e:e9:65:d5:c4:38:7b:2e:a5:0d:c9: 7f:58:b8:37:47:a8:43:7b:b4:47:47:6a:76:74:21:06:18:62: 5e:27:db:99:c8:64:4d:29:21:bf:e0:1e:29:a7:72:00:9d:36: f5:bb:48:e4:fc:d8:e2:aa:4c:57:72:46:94:09:a5:49:0a:ca: cb:de:4a:62 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUH+1pFy4m5QZJBraSz4Uv/LASutAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MjYxNzI0NTRaFw0yNjA2MjUxNzI5NTRaMDMxMTAvBgNV BAMTKDMyQ0U2RkQ3MkE3NThENTdENjc0NDI1NzYxRTcxN0ExNkJEN0M0MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCihaCf/TPXAlM0hjUorpNalB8A VrzH1lCEBWl0ntk264icj01SLxbfYKrLE45RtKAI5qFdrWKMIT4RmZWnntSD1Sez Mx6R0YqATq2mo9+iBj3IPyWhcvfiAjtc96buZPm3W97o55U1VXFXSoDRFCCScm6W 1Nj5KoZy/ZGl4AfSLN8WZ2FpSxHH6G61QHKek6a9P1P2ghN5na9S6iRkPKBVp5Fg 8C1TEjgAumcu2dbxB2tHYHqGqSusG1x1JG15GIxMQFG8JoP0hR3F3xDq+Z82lmEd MaO9G1erKcRvTbMklKjd9NSE0eBb2xgFbwmQcHdATDxQh5B/Qm3jT4chaYojAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUMs5v1yp1jVfWdEJXYecXoWvXxCMwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjYzYTM2MzIzODMw M2E2MTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzczMjM3MzIucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqD2KAAAowDQYJKoZIhvcNAQELBQADggEBALRla9/6w/OkpWNIHGBYEpWkyHMF 5VrtBotY/G7T+Vz8CzuKPsZII6Kxa+udRygMTmb+XJb+jYIwUyGVgweJa+XsaW8U hrG9/z8l9xwW/ADNnMgr38j66yZAuz+wgeRJQpf4y12kGTEJYKOjFwl0gipAHVKH MNhuCugjenD355U8iZcREAkXn2Du4A4QN+OZARoTP3SMtTEJT5jyuY15iHeYLk7U bPQO32vJ4v3zup0C8xn+K3TsPkRCg5gO6WXVxDh7LqUNyX9YuDdHqEN7tEdHanZ0 IQYYYl4n25nIZE0pIb/gHimncgCdNvW7SOT82OKqTFdyRpQJpUkKysveSmI= -----END CERTIFICATE-----Generated at Sun Jun 29 16:48:51 2025 by rpki-client