$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663430303a3a2f34302d3438203d3e203439383637.roa File: 326130353a646663333a663430303a3a2f34302d3438203d3e203439383637.roa (raw, json) Hash identifier: sDzZVf/v9y3+pv+r1a29b3VfbnIrDc3apk7O0UkOZVI= Subject key identifier: C6:09:CE:E0:08:BD:72:E1:F1:CD:7E:69:A2:FF:7F:B2:48:DC:5D:DE Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 568FE7385CE9EE76AA8185E60668025F2C4908EE Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663430303a3a2f34302d3438203d3e203439383637.roa Signing time: Sat 14 Jun 2025 13:45:32 +0000 ROA not before: Sat 14 Jun 2025 13:40:32 +0000 ROA not after: Sat 13 Jun 2026 13:45:32 +0000 asID: 49867 IP address blocks: 2a05:dfc3:f400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:8f:e7:38:5c:e9:ee:76:aa:81:85:e6:06:68:02:5f:2c:49:08:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 14 13:40:32 2025 GMT Not After : Jun 13 13:45:32 2026 GMT Subject: CN=C609CEE008BD72E1F1CD7E69A2FF7FB248DC5DDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:4f:87:3f:84:8c:f2:ab:67:1f:4c:cc:b9:e5: f1:86:54:63:94:c6:c9:cc:4c:b0:ef:a1:b3:97:4a: 61:28:66:37:ce:91:b7:08:5c:9d:93:27:ad:15:06: b2:32:6b:25:0d:11:74:15:bd:c5:2a:f3:14:7d:95: 54:a2:3e:09:ae:45:41:e2:b6:0b:2e:43:ae:20:7b: 55:96:c3:43:70:f4:0b:d9:87:b0:59:56:01:41:78: be:de:da:65:b0:e6:be:0a:63:e0:fe:04:2c:c9:43: 03:78:ca:36:40:2c:a6:2d:95:13:75:77:13:79:0c: bc:81:c1:86:6d:78:75:42:b8:86:f5:41:09:0f:6a: ea:2b:67:43:24:64:83:a4:ed:90:a2:ab:fe:c9:06: 65:12:09:bc:2c:98:50:ef:ac:6e:e4:b9:64:57:1b: b5:a3:67:de:fe:2a:40:22:40:06:5e:09:3a:08:a6: 77:c2:ed:05:d0:44:34:a4:66:1a:cf:1d:95:3a:68: ff:28:34:10:33:ba:7f:6b:53:27:3c:a1:94:33:72: 4a:d5:1e:43:05:b4:7c:47:df:20:f2:c7:f8:92:24: 02:0c:b2:5a:b7:64:00:b6:e5:c9:22:9e:c3:a1:48: 8e:4c:34:e8:cb:d9:bc:5d:99:11:5e:3b:07:b5:96: 5a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:09:CE:E0:08:BD:72:E1:F1:CD:7E:69:A2:FF:7F:B2:48:DC:5D:DE X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663430303a3a2f34302d3438203d3e203439383637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f400::/40 Signature Algorithm: sha256WithRSAEncryption b3:f4:44:16:cd:8c:2c:1a:ed:3b:ac:6e:a4:2c:e9:10:e4:ae: aa:4f:35:a4:40:41:b0:6b:07:93:41:2d:5b:60:25:71:0c:b8: 58:2a:bb:69:4d:ca:11:c2:ed:14:41:ea:c7:98:64:03:01:c5: 08:63:31:5e:5d:3f:2e:8b:94:cc:9f:6c:11:cb:dc:85:32:17: c0:3b:04:91:6c:d5:64:4a:e1:fd:68:07:47:cd:8a:dd:e3:ec: 3b:2c:6e:fb:b6:36:87:dd:ff:0f:70:a7:1f:8e:30:ad:7c:8f: 30:64:e7:1d:36:20:f0:d9:4c:3b:29:9a:68:7a:a4:4f:70:ed: af:8c:9a:2d:30:ba:14:36:59:c9:6a:d7:bc:a1:3d:e7:32:95: 43:48:e9:6a:89:db:ee:a5:e5:5e:cf:81:05:ac:da:81:74:8c: fc:47:9e:59:2e:3a:0c:13:e9:d2:d4:50:d2:7c:14:ce:4a:0d: 58:d5:dc:8b:9c:0b:5e:21:53:d1:f9:1b:be:2d:b4:e0:af:ff: ec:0c:f3:09:8d:6a:de:02:19:a6:1f:32:cc:cc:43:d6:53:1d: 5d:fd:1e:47:f3:ef:20:69:58:e6:c3:93:09:b2:38:57:fc:9e: 9a:83:87:b4:3e:f0:1f:65:e1:07:66:5c:a7:6c:c3:dc:20:90: a9:7b:49:47 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUVo/nOFzp7naqgYXmBmgCXyxJCO4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTQxMzQwMzJaFw0yNjA2MTMxMzQ1MzJaMDMxMTAvBgNV BAMTKEM2MDlDRUUwMDhCRDcyRTFGMUNEN0U2OUEyRkY3RkIyNDhEQzVEREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYT4c/hIzyq2cfTMy55fGGVGOU xsnMTLDvobOXSmEoZjfOkbcIXJ2TJ60VBrIyayUNEXQVvcUq8xR9lVSiPgmuRUHi tgsuQ64ge1WWw0Nw9AvZh7BZVgFBeL7e2mWw5r4KY+D+BCzJQwN4yjZALKYtlRN1 dxN5DLyBwYZteHVCuIb1QQkPauorZ0MkZIOk7ZCiq/7JBmUSCbwsmFDvrG7kuWRX G7WjZ97+KkAiQAZeCToIpnfC7QXQRDSkZhrPHZU6aP8oNBAzun9rUyc8oZQzckrV HkMFtHxH3yDyx/iSJAIMslq3ZAC25ckinsOhSI5MNOjL2bxdmRFeOwe1llo7AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUxgnO4Ai9cuHxzX5pov9/skjcXd4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM0MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDM0MzkzODM2Mzcucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqBd/D9DANBgkqhkiG9w0BAQsFAAOCAQEAs/REFs2MLBrtO6xupCzp EOSuqk81pEBBsGsHk0EtW2AlcQy4WCq7aU3KEcLtFEHqx5hkAwHFCGMxXl0/LouU zJ9sEcvchTIXwDsEkWzVZErh/WgHR82K3ePsOyxu+7Y2h93/D3CnH44wrXyPMGTn HTYg8NlMOymaaHqkT3Dtr4yaLTC6FDZZyWrXvKE95zKVQ0jpaonb7qXlXs+BBaza gXSM/EeeWS46DBPp0tRQ0nwUzkoNWNXci5wLXiFT0fkbvi204K//7AzzCY1q3gIZ ph8yzMxD1lMdXf0eR/PvIGlY5sOTCbI4V/yemoOHtD7wH2XhB2Zcp2zD3CCQqXtJ Rw== -----END CERTIFICATE-----Generated at Sun Jun 15 23:28:44 2025 by rpki-client