$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e20323133383634.roa File: 326130353a646663323a3a2f33322d3332203d3e20323133383634.roa (raw, json) Hash identifier: G2s3GyI8UiHGd6eJScuGAaHBW20KAhwgfJ4Acyv7Iso= Subject key identifier: DA:06:5E:9B:6D:B4:92:36:A2:BE:78:1A:52:AF:7C:56:5C:CE:87:27 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 41FF7659C67FC743F420CD66EED2A51B805FE60C Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e20323133383634.roa Signing time: Fri 13 Jun 2025 08:36:15 +0000 ROA not before: Fri 13 Jun 2025 08:31:15 +0000 ROA not after: Fri 12 Jun 2026 08:36:15 +0000 asID: 213864 IP address blocks: 2a05:dfc2::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:ff:76:59:c6:7f:c7:43:f4:20:cd:66:ee:d2:a5:1b:80:5f:e6:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 13 08:31:15 2025 GMT Not After : Jun 12 08:36:15 2026 GMT Subject: CN=DA065E9B6DB49236A2BE781A52AF7C565CCE8727 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:11:4b:54:23:78:4c:37:76:58:fb:88:0a: af:0b:5f:67:ac:46:64:4d:ec:a9:e3:88:0d:44:75: 27:5b:1d:22:17:dc:be:b7:3c:9a:c2:77:3e:07:f6: d0:37:6f:12:04:21:d4:c5:b1:9e:c9:53:1b:73:74: a9:cf:78:fe:cb:2d:2f:06:7e:41:d3:36:89:f6:de: 97:16:9c:16:49:75:05:41:81:fd:05:b5:e0:21:4d: 72:64:45:36:64:2e:1e:73:bd:6a:d5:31:6e:b8:48: 0d:6a:b4:47:fa:d6:de:78:c5:21:83:56:e4:49:41: 8f:e0:31:66:c8:44:9e:bf:ac:2e:4b:08:a2:d7:11: ff:c8:ef:ec:82:70:73:08:c4:da:b1:64:8d:2d:41: 4e:2a:54:70:d0:a7:02:49:40:77:67:9e:8a:99:52: 22:45:5b:d4:2f:99:d0:cd:d3:20:36:e6:08:c8:0a: 78:cf:e7:d9:92:6f:55:90:d0:5a:26:5c:a6:5e:b2: 77:98:44:48:69:cc:66:09:08:f5:56:2f:07:2b:3c: 95:b2:7b:3f:e3:65:3f:1b:0a:27:4c:af:a5:81:4e: 7e:f1:fe:1a:3c:d1:a5:76:0b:45:94:0e:bd:87:4e: 29:6b:fc:23:58:04:e3:ba:00:fb:a6:88:7b:8c:fb: 71:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:06:5E:9B:6D:B4:92:36:A2:BE:78:1A:52:AF:7C:56:5C:CE:87:27 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663323a3a2f33322d3332203d3e20323133383634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc2::/32 Signature Algorithm: sha256WithRSAEncryption 3d:4d:7f:58:81:e5:cc:a9:de:cb:aa:e6:c2:90:f3:15:d8:18: 5f:be:33:1e:bf:86:6b:3b:a3:0b:8a:e6:2b:c7:59:cc:f8:4d: 33:02:19:3d:b4:b1:5c:9d:77:af:65:c6:78:aa:4b:a8:09:c1: a9:b2:60:38:7b:e7:e3:a6:24:03:71:29:a4:cf:71:7c:14:9e: f1:07:a8:50:51:e5:2e:63:d9:8a:bb:1d:c2:b6:98:b1:02:a3: 65:a7:5b:99:eb:d8:3a:fa:57:97:01:ff:65:59:4c:db:28:54: 3c:f9:89:ed:24:38:1d:71:cc:d1:9c:78:f2:ca:90:e7:92:fb: 5b:e8:ad:95:ce:33:5b:01:fb:88:b0:4c:d7:0f:c7:82:e4:eb: 0b:18:ed:ff:8c:81:01:fb:68:61:16:40:38:73:e4:e5:38:57: 98:3a:59:51:52:95:1f:eb:db:90:5c:5f:d2:bc:01:45:2b:01: 94:9e:f8:a7:8d:75:9f:88:28:1a:74:a5:74:fe:55:0c:92:c2: d3:6e:25:25:0f:ef:6d:4d:88:51:c9:35:2b:9f:35:ae:8a:93: c6:18:e8:22:ff:dc:8a:65:8f:c3:03:74:ec:19:df:b9:b4:13: 35:0e:4e:0b:e2:6b:64:2c:3f:70:37:a9:66:56:6f:bc:b7:57: 1b:38:a6:56 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUQf92WcZ/x0P0IM1m7tKlG4Bf5gwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTMwODMxMTVaFw0yNjA2MTIwODM2MTVaMDMxMTAvBgNV BAMTKERBMDY1RTlCNkRCNDkyMzZBMkJFNzgxQTUyQUY3QzU2NUNDRTg3MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrchFLVCN4TDd2WPuICq8LX2es RmRN7KnjiA1EdSdbHSIX3L63PJrCdz4H9tA3bxIEIdTFsZ7JUxtzdKnPeP7LLS8G fkHTNon23pcWnBZJdQVBgf0FteAhTXJkRTZkLh5zvWrVMW64SA1qtEf61t54xSGD VuRJQY/gMWbIRJ6/rC5LCKLXEf/I7+yCcHMIxNqxZI0tQU4qVHDQpwJJQHdnnoqZ UiJFW9QvmdDN0yA25gjICnjP59mSb1WQ0FomXKZesneYREhpzGYJCPVWLwcrPJWy ez/jZT8bCidMr6WBTn7x/ho80aV2C0WUDr2HTilr/CNYBOO6APumiHuM+3GJAgMB AAGjggJuMIICajAdBgNVHQ4EFgQU2gZem220kjaivngaUq98VlzOhycwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMy M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMTMzMzgzNjM0LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgXfwjANBgkqhkiG9w0BAQsFAAOCAQEAPU1/WIHlzKney6rmwpDzFdgYX74zHr+G azujC4rmK8dZzPhNMwIZPbSxXJ13r2XGeKpLqAnBqbJgOHvn46YkA3EppM9xfBSe 8QeoUFHlLmPZirsdwraYsQKjZadbmevYOvpXlwH/ZVlM2yhUPPmJ7SQ4HXHM0Zx4 8sqQ55L7W+itlc4zWwH7iLBM1w/HguTrCxjt/4yBAftoYRZAOHPk5ThXmDpZUVKV H+vbkFxf0rwBRSsBlJ74p411n4goGnSldP5VDJLC024lJQ/vbU2IUck1K581roqT xhjoIv/cimWPwwN07BnfubQTNQ5OC+JrZCw/cDepZlZvvLdXGzimVg== -----END CERTIFICATE-----Generated at Sun Jun 15 23:21:21 2025 by rpki-client