$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663734303a3a2f34342d3434203d3e203136353039.roa File: 326130353a646663333a663734303a3a2f34342d3434203d3e203136353039.roa (raw, json) Hash identifier: 4TJsQZaF0rIGWOwC5xwt2h6pZoy9BvZSvomVKU+hpzE= Subject key identifier: 7C:50:21:8A:71:25:53:A2:E9:5A:10:FF:00:2A:3A:D7:15:AD:46:CE Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 1A561A3FF271A3E6AF9C758936E5B1591F40C549 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663734303a3a2f34342d3434203d3e203136353039.roa Signing time: Thu 12 Jun 2025 12:11:37 +0000 ROA not before: Thu 12 Jun 2025 12:06:37 +0000 ROA not after: Thu 11 Jun 2026 12:11:37 +0000 asID: 16509 IP address blocks: 2a05:dfc3:f740::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 01:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:56:1a:3f:f2:71:a3:e6:af:9c:75:89:36:e5:b1:59:1f:40:c5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 12 12:06:37 2025 GMT Not After : Jun 11 12:11:37 2026 GMT Subject: CN=7C50218A712553A2E95A10FF002A3AD715AD46CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b0:96:1c:e0:36:58:4f:8f:db:af:00:a4:43: c0:d5:ae:ee:aa:82:41:a9:a5:b8:4d:cf:ff:76:20: ac:d7:78:b9:6d:68:71:b1:bd:43:90:68:08:bc:c7: 7d:32:db:e0:88:35:15:dd:71:c5:d7:7f:bf:a5:13: ef:3e:63:01:3d:20:a3:e7:51:29:6e:c3:1b:83:06: 40:ad:c5:a5:d4:f9:e5:04:1d:b4:8f:d3:42:d9:31: ff:64:31:b3:cd:c7:35:5c:b8:3e:4e:8f:57:76:3e: 40:00:6d:55:fa:e7:cc:ab:f3:03:76:c9:81:2a:d5: a3:d8:53:3c:b3:d5:95:f9:45:de:c3:13:4b:48:47: d7:a2:89:c9:80:b4:2a:2b:bb:80:22:b1:f3:fe:ea: 52:ef:ea:2d:0e:98:2e:d0:5e:8c:e5:b1:c0:dc:1c: ee:be:6e:1b:ed:49:84:ca:b3:bc:9d:fa:6f:aa:12: 48:5c:60:8d:cc:50:5f:03:3f:1f:a4:df:6d:fb:8b: 87:85:56:54:03:8a:99:a4:6e:91:89:76:98:9b:96: 55:f0:ad:aa:c1:a0:1f:6f:00:d0:98:85:f0:68:8e: e1:e7:ab:f1:bf:44:8a:7c:f8:0f:3b:4c:b2:c0:91: a3:7d:23:7f:5e:12:07:ad:b8:63:07:9f:e3:eb:b1: 67:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:50:21:8A:71:25:53:A2:E9:5A:10:FF:00:2A:3A:D7:15:AD:46:CE X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a663734303a3a2f34342d3434203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:f740::/44 Signature Algorithm: sha256WithRSAEncryption 2b:77:42:75:76:63:0f:7f:59:12:28:d0:27:5e:fd:f4:9a:10: 7d:ec:d4:44:3e:02:d0:93:fa:7b:52:ac:4a:35:48:d4:a9:d9: 60:08:84:5f:2b:48:81:5a:2e:c9:1e:56:be:b5:d7:03:a0:a4: 91:c4:94:1b:bd:f7:c4:d5:fb:68:2c:49:62:a2:1b:54:d6:5d: 6b:2d:93:f2:50:13:7c:e1:f0:df:76:6b:b1:2d:f2:39:17:e9: 64:16:86:f7:99:0f:ac:39:cd:a1:df:47:6b:8c:8a:eb:29:63: 2f:2e:e2:ad:a2:de:ff:0f:4b:88:b4:22:86:05:7f:05:64:06: 09:7e:f4:84:77:0a:fc:af:a0:cc:ba:68:6c:cc:c3:08:8d:04: 86:69:01:ac:43:3f:7d:ce:82:0a:53:cc:e5:48:4e:58:39:e8: 91:2b:b1:98:96:51:f4:e9:e1:3a:fd:77:3b:bd:bb:2f:bf:1e: 1a:12:9d:d0:ec:d5:b2:bd:cd:90:32:7c:44:0b:38:ec:47:27: b2:f0:35:57:fd:78:d6:53:01:0f:95:d8:a2:d5:73:ca:dd:23: 57:fd:7a:ba:da:21:fb:5a:e4:86:4b:ee:8d:c1:5b:7d:1b:66: 6e:91:c6:aa:d5:12:b0:62:67:15:ba:57:94:a8:c4:a2:81:32: 32:b5:64:e2 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUGlYaP/Jxo+avnHWJNuWxWR9AxUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTIxMjA2MzdaFw0yNjA2MTExMjExMzdaMDMxMTAvBgNV BAMTKDdDNTAyMThBNzEyNTUzQTJFOTVBMTBGRjAwMkEzQUQ3MTVBRDQ2Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTsJYc4DZYT4/brwCkQ8DVru6q gkGppbhNz/92IKzXeLltaHGxvUOQaAi8x30y2+CINRXdccXXf7+lE+8+YwE9IKPn USluwxuDBkCtxaXU+eUEHbSP00LZMf9kMbPNxzVcuD5Oj1d2PkAAbVX658yr8wN2 yYEq1aPYUzyz1ZX5Rd7DE0tIR9eiicmAtCoru4AisfP+6lLv6i0OmC7QXozlscDc HO6+bhvtSYTKs7yd+m+qEkhcYI3MUF8DPx+k3237i4eFVlQDipmkbpGJdpibllXw rarBoB9vANCYhfBojuHnq/G/RIp8+A87TLLAkaN9I39eEgetuGMHn+PrsWeDAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUfFAhinElU6LpWhD/ACo61xWtRs4wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjM3MzQzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzYzNTMwMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqBd/D90AwDQYJKoZIhvcNAQELBQADggEBACt3QnV2Yw9/WRIo0Cde /fSaEH3s1EQ+AtCT+ntSrEo1SNSp2WAIhF8rSIFaLskeVr611wOgpJHElBu998TV +2gsSWKiG1TWXWstk/JQE3zh8N92a7Et8jkX6WQWhveZD6w5zaHfR2uMiuspYy8u 4q2i3v8PS4i0IoYFfwVkBgl+9IR3CvyvoMy6aGzMwwiNBIZpAaxDP33OggpTzOVI Tlg56JErsZiWUfTp4Tr9dzu9uy+/HhoSndDs1bK9zZAyfEQLOOxHJ7LwNVf9eNZT AQ+V2KLVc8rdI1f9erraIfta5IZL7o3BW30bZm6RxqrVErBiZxW6V5SoxKKBMjK1 ZOI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:23 2025 by rpki-client