$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663663653a3a2f34382d3438203d3e203331383938.roa File: 326130353a646663333a663663653a3a2f34382d3438203d3e203331383938.roa (raw, json) Hash identifier: XuDs41xnY4uX8pmlCtrx6/Jzl/DgneVLhwiNE+Q8jps= Subject key identifier: F1:61:2B:C0:D7:08:97:67:1B:AF:48:F0:0F:8C:D8:00:DE:7E:8A:AB Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 22CCB18ECE3BFFB00AE950C6EEF725858E778E4E Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663663653a3a2f34382d3438203d3e203331383938.roa Signing time: Mon 02 Jun 2025 21:19:45 +0000 ROA not before: Mon 02 Jun 2025 21:14:45 +0000 ROA not after: Mon 01 Jun 2026 21:19:45 +0000 asID: 31898 IP address blocks: 2a05:dfc3:f6ce::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:cc:b1:8e:ce:3b:ff:b0:0a:e9:50:c6:ee:f7:25:85:8e:77:8e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 2 21:14:45 2025 GMT Not After : Jun 1 21:19:45 2026 GMT Subject: CN=F1612BC0D70897671BAF48F00F8CD800DE7E8AAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c6:8e:7c:08:e1:1e:e5:db:e2:cb:1e:c7:74: d9:e1:91:77:62:a7:4b:6e:2e:68:8b:c0:ba:71:66: bd:9a:ab:96:14:55:ae:95:bf:61:24:b3:88:cb:f2: 82:e5:50:ff:3e:92:43:d1:b9:aa:1f:43:27:e8:65: eb:15:bd:48:94:b9:fb:2d:c4:a9:4b:9c:36:35:02: 40:a4:af:dc:bf:8e:6f:9d:53:0a:23:66:59:b2:1e: a5:3f:28:52:78:9d:10:58:ca:24:f5:d7:18:40:e4: 13:77:6f:a2:86:e6:0d:a4:90:a7:df:ef:f4:5c:5c: 9c:a1:e1:21:be:67:9b:e6:63:cb:b9:ec:41:60:71: a8:61:2d:69:5e:ce:2f:c6:e7:c8:4d:46:22:b4:ab: 0f:a1:d1:0f:d1:b5:f8:cf:1c:67:76:7e:5f:c8:fd: e7:e0:3a:4a:e1:4a:a9:84:79:6c:54:6f:8b:0c:76: 20:b3:8d:ed:8c:02:63:61:54:9c:00:a3:6b:0c:65: 1d:6a:35:bf:c9:fd:66:cc:b8:fc:6b:8e:7f:6c:56: e3:39:03:ba:61:ef:fc:f7:fc:44:24:b8:e9:07:39: 8d:c5:79:fb:57:97:06:df:1a:c8:70:28:99:94:e3: c9:e7:c5:d0:73:90:18:4c:40:68:75:fd:43:c3:4b: b2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:61:2B:C0:D7:08:97:67:1B:AF:48:F0:0F:8C:D8:00:DE:7E:8A:AB X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663663653a3a2f34382d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f6ce::/48 Signature Algorithm: sha256WithRSAEncryption 8e:af:17:5a:44:75:dc:20:72:85:f9:97:5f:5e:18:9c:d8:5e: 65:9a:6c:5f:1a:75:de:74:0f:6c:95:8f:dd:44:b9:0c:7a:06: 0b:f3:96:32:31:16:21:16:26:51:56:4c:ab:e1:47:29:df:00: cd:16:9c:f1:0f:a7:af:9b:0b:09:f0:5c:c9:ca:81:e5:96:cd: 06:17:ff:13:1e:d3:d3:21:3f:17:dc:4d:91:07:e9:a0:bc:bb: 3f:82:10:e1:c1:68:93:57:30:00:46:25:e7:8a:03:d8:1b:cc: 3f:83:af:c8:81:03:4b:8a:57:c1:8b:4c:75:ae:e8:66:be:e7: 2d:13:89:d0:0d:3b:96:ea:77:9f:98:0a:26:5b:e5:11:3e:22: e0:c0:5a:2e:aa:e4:87:22:62:55:28:29:81:5d:16:f2:92:bc: e9:6c:7c:0a:97:70:88:64:fb:e7:34:aa:c7:a3:0a:07:de:12: 04:01:8b:3e:7c:84:ca:34:28:c0:78:f3:cc:72:a4:b1:95:2a: 2b:fd:dc:21:00:13:1d:3e:22:cb:11:00:9d:48:ee:61:7c:9b: 67:98:93:bf:c2:2b:06:ca:58:31:f1:3b:57:cf:83:54:ca:42: 70:01:fc:1b:81:d9:2e:93:b1:12:77:8f:cb:20:82:f9:72:6a: 4d:dc:3b:59 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUIsyxjs47/7AK6VDG7vclhY53jk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MDIyMTE0NDVaFw0yNjA2MDEyMTE5NDVaMDMxMTAvBgNV BAMTKEYxNjEyQkMwRDcwODk3NjcxQkFGNDhGMDBGOENEODAwREU3RThBQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbxo58COEe5dviyx7HdNnhkXdi p0tuLmiLwLpxZr2aq5YUVa6Vv2Eks4jL8oLlUP8+kkPRuaofQyfoZesVvUiUufst xKlLnDY1AkCkr9y/jm+dUwojZlmyHqU/KFJ4nRBYyiT11xhA5BN3b6KG5g2kkKff 7/RcXJyh4SG+Z5vmY8u57EFgcahhLWlezi/G58hNRiK0qw+h0Q/RtfjPHGd2fl/I /efgOkrhSqmEeWxUb4sMdiCzje2MAmNhVJwAo2sMZR1qNb/J/WbMuPxrjn9sVuM5 A7ph7/z3/EQkuOkHOY3FeftXlwbfGshwKJmU48nnxdBzkBhMQGh1/UPDS7LHAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQU8WErwNcIl2cbr0jwD4zYAN5+iqswHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM2NjM2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMzMzEzODM5Mzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqBd/D9s4wDQYJKoZIhvcNAQELBQADggEBAI6vF1pEddwgcoX5l19e GJzYXmWabF8add50D2yVj91EuQx6BgvzljIxFiEWJlFWTKvhRynfAM0WnPEPp6+b CwnwXMnKgeWWzQYX/xMe09MhPxfcTZEH6aC8uz+CEOHBaJNXMABGJeeKA9gbzD+D r8iBA0uKV8GLTHWu6Ga+5y0TidANO5bqd5+YCiZb5RE+IuDAWi6q5IciYlUoKYFd FvKSvOlsfAqXcIhk++c0qsejCgfeEgQBiz58hMo0KMB488xypLGVKiv93CEAEx0+ IssRAJ1I7mF8m2eYk7/CKwbKWDHxO1fPg1TKQnAB/BuB2S6TsRJ3j8sggvlyak3c O1k= -----END CERTIFICATE-----Generated at Sun Jun 15 17:37:34 2025 by rpki-client