$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666436303a3a2f34342d3438203d3e20323134353631.roa File: 326130353a646663333a666436303a3a2f34342d3438203d3e20323134353631.roa (raw, json) Hash identifier: Fyh9yKe8lVxPSJZYmZJx0+WfU4UzB2fiqPqTzQWOJos= Subject key identifier: 4F:2D:D9:28:85:5A:24:C5:91:80:0C:C6:13:C9:E9:33:B1:F6:D8:59 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 29D59EB4AE6F61609C7BD2726FF6D28DBBAE162A Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666436303a3a2f34342d3438203d3e20323134353631.roa Signing time: Tue 10 Jun 2025 20:03:12 +0000 ROA not before: Tue 10 Jun 2025 19:58:12 +0000 ROA not after: Tue 09 Jun 2026 20:03:12 +0000 asID: 214561 IP address blocks: 2a05:dfc3:fd60::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d5:9e:b4:ae:6f:61:60:9c:7b:d2:72:6f:f6:d2:8d:bb:ae:16:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Jun 10 19:58:12 2025 GMT Not After : Jun 9 20:03:12 2026 GMT Subject: CN=4F2DD928855A24C591800CC613C9E933B1F6D859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:3f:a7:a1:a1:56:57:33:75:f3:70:40:cf: a6:78:46:5f:27:87:0e:58:54:78:d2:2c:e7:16:ca: 30:32:c9:01:ef:b9:4d:da:bc:c0:ff:87:13:4c:af: 67:31:91:79:3e:97:df:00:ef:e7:05:e5:9e:a6:9e: 22:52:ca:0b:f2:95:ad:d1:21:82:5f:56:f3:dc:22: 8a:e6:ee:1a:cd:69:fc:f7:e9:cb:1c:db:bc:58:03: fd:24:6b:e9:f1:47:85:35:ff:94:b5:cb:30:0b:e6: fc:5a:98:2d:81:b8:e8:d4:01:96:06:ca:a1:23:7c: 87:87:1f:50:b3:a2:e6:5f:14:aa:1a:15:86:8a:9b: 3c:3a:f0:2b:99:4e:33:12:e1:e9:b6:38:63:a7:22: d0:cf:69:6e:5b:ba:8d:a8:27:75:0e:ce:95:ad:2f: 7f:24:30:08:aa:85:70:bc:41:45:5a:ee:42:0e:23: ec:78:f8:a2:9f:65:b1:84:82:40:60:80:17:a0:4c: f7:8a:8d:e9:74:fd:8e:43:ab:78:28:8c:95:2d:5d: ae:51:d6:cc:9e:54:ba:66:c0:a5:a2:1c:a9:c8:05: e1:39:ba:c6:ee:6f:e7:ad:30:a7:f6:c6:f5:9d:2a: fe:a3:d9:76:5a:25:85:33:8e:dc:8d:b6:9f:59:1c: 62:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:2D:D9:28:85:5A:24:C5:91:80:0C:C6:13:C9:E9:33:B1:F6:D8:59 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130353a646663333a666436303a3a2f34342d3438203d3e20323134353631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc3:fd60::/44 Signature Algorithm: sha256WithRSAEncryption 46:41:98:ad:05:bd:b3:00:15:51:13:0b:eb:0f:db:1e:24:00: 16:95:65:ff:b6:16:8a:1b:5d:dd:09:d4:3b:6a:eb:ef:1d:e5: dc:5d:95:57:05:c4:10:6a:d4:74:c5:b3:3f:09:fe:11:93:b8: 46:18:f6:d3:38:c5:69:04:23:3a:52:5c:2f:9f:ff:ea:5f:8c: b8:95:4f:2e:c6:fd:7d:7b:87:4b:ad:d3:59:6a:d7:79:0c:cb: f6:7f:3d:83:42:d7:ef:0d:e9:f6:d6:3d:bb:74:c8:f1:1a:a4: eb:5e:db:e2:19:99:c2:ce:30:2c:89:0e:c4:60:04:96:ae:8f: a1:fb:1a:fb:77:aa:35:88:9f:01:a1:f2:b0:9a:f0:c4:44:d4: 72:0f:e1:74:a5:b8:9a:18:7e:75:53:a9:24:f4:b6:8a:fc:c7: 70:30:fc:6b:82:fc:92:c7:5d:7c:01:4a:bd:a0:77:29:ac:ff: 85:4f:c6:4d:53:aa:ed:15:f2:d1:73:c7:87:a3:23:7b:38:84: 57:5f:73:28:75:3f:a3:e0:c6:97:18:ac:17:8c:88:bf:0e:9e: 70:8c:ad:4c:11:46:83:73:96:92:5f:19:37:92:82:45:56:1b: 80:d4:ab:57:01:5a:1b:75:8d:56:3e:27:91:fe:2f:44:ea:d8: 0d:8d:fb:c9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKdWetK5vYWCce9Jyb/bSjbuuFiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA2MTAxOTU4MTJaFw0yNjA2MDkyMDAzMTJaMDMxMTAvBgNV BAMTKDRGMkREOTI4ODU1QTI0QzU5MTgwMENDNjEzQzlFOTMzQjFGNkQ4NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDObT+noaFWVzN183BAz6Z4Rl8n hw5YVHjSLOcWyjAyyQHvuU3avMD/hxNMr2cxkXk+l98A7+cF5Z6mniJSygvyla3R IYJfVvPcIorm7hrNafz36csc27xYA/0ka+nxR4U1/5S1yzAL5vxamC2BuOjUAZYG yqEjfIeHH1CzouZfFKoaFYaKmzw68CuZTjMS4em2OGOnItDPaW5buo2oJ3UOzpWt L38kMAiqhXC8QUVa7kIOI+x4+KKfZbGEgkBggBegTPeKjel0/Y5Dq3gojJUtXa5R 1syeVLpmwKWiHKnIBeE5usbub+etMKf2xvWdKv6j2XZaJYUzjtyNtp9ZHGKDAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUTy3ZKIVaJMWRgAzGE8npM7H22FkwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzUzYTY0NjY2MzMz M2E2NjY0MzYzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNDM1MzYzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoF38P9YDANBgkqhkiG9w0BAQsFAAOCAQEARkGYrQW9swAVURML 6w/bHiQAFpVl/7YWihtd3QnUO2rr7x3l3F2VVwXEEGrUdMWzPwn+EZO4Rhj20zjF aQQjOlJcL5//6l+MuJVPLsb9fXuHS63TWWrXeQzL9n89g0LX7w3p9tY9u3TI8Rqk 617b4hmZws4wLIkOxGAElq6Pofsa+3eqNYifAaHysJrwxETUcg/hdKW4mhh+dVOp JPS2ivzHcDD8a4L8ksddfAFKvaB3Kaz/hU/GTVOq7RXy0XPHh6MjeziEV19zKHU/ o+DGlxisF4yIvw6ecIytTBFGg3OWkl8ZN5KCRVYbgNSrVwFaG3WNVj4nkf4vROrY DY37yQ== -----END CERTIFICATE-----Generated at Sun Jun 15 22:19:53 2025 by rpki-client