$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a383030303a3a2f33362d3634203d3e20323034363736.roa File: 326130393a353463363a383030303a3a2f33362d3634203d3e20323034363736.roa (raw, json) Hash identifier: W0oicFVlVlOX4sZ+9RGaNV1uRqpCXYbyDGz+N+jkIgg= Subject key identifier: D4:D4:7C:5E:32:2F:CF:3D:83:66:99:6C:86:EE:27:09:9B:9F:0C:BD Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 7EE2E06DCAD62FF47511CCB39484BB0FDD4B8A05 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a383030303a3a2f33362d3634203d3e20323034363736.roa Signing time: Thu 10 Apr 2025 22:07:31 +0000 ROA not before: Thu 10 Apr 2025 22:02:31 +0000 ROA not after: Thu 09 Apr 2026 22:07:31 +0000 asID: 204676 IP address blocks: 2a09:54c6:8000::/36 maxlen: 64 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 12:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e2:e0:6d:ca:d6:2f:f4:75:11:cc:b3:94:84:bb:0f:dd:4b:8a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Apr 10 22:02:31 2025 GMT Not After : Apr 9 22:07:31 2026 GMT Subject: CN=D4D47C5E322FCF3D8366996C86EE27099B9F0CBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f1:49:5d:76:94:e7:88:6c:29:6d:d2:7a:1d: 2c:cc:f7:f1:50:bb:03:02:ed:8c:9c:12:de:fc:7e: 5d:2c:45:6e:b4:0b:2e:f1:48:a8:86:a4:8f:74:8c: e5:47:c4:ed:cd:bd:ef:d1:e7:04:28:6f:48:b4:34: 33:58:03:52:2d:9b:32:1b:42:72:dd:54:ff:6f:fc: 5d:24:5c:27:16:09:90:83:0f:c5:c8:10:18:1d:41: 73:4e:41:03:44:c2:c8:2a:db:82:ba:2d:2e:f4:4d: 57:97:0a:87:55:2f:d7:eb:b8:7a:b2:4b:76:70:62: 53:28:39:8b:42:e0:a3:f1:db:d8:8f:7c:51:4a:a3: be:6b:f4:75:11:00:de:10:31:79:a6:ae:3f:ac:dc: e7:7b:ce:ea:fd:ac:0d:4b:f6:cc:9a:8d:81:8e:2d: c0:57:42:82:a8:5c:5b:d0:6b:e7:5c:ef:de:ec:87: cc:ba:bc:2b:d1:d0:8f:be:24:de:ab:7f:4e:b3:1e: bb:52:d1:c7:96:06:20:98:a7:ad:94:cd:8d:fa:e5: bc:eb:a2:e9:a8:14:30:3d:5d:a4:af:ca:3b:3b:55: 79:cd:ac:32:59:ec:bf:3c:b8:b5:fa:c9:9b:8d:bc: fb:7f:77:c8:5e:e8:d8:2c:67:01:99:29:a5:70:28: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D4:7C:5E:32:2F:CF:3D:83:66:99:6C:86:EE:27:09:9B:9F:0C:BD X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130393a353463363a383030303a3a2f33362d3634203d3e20323034363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:8000::/36 Signature Algorithm: sha256WithRSAEncryption b4:1e:2a:83:b5:80:37:7f:fc:37:8b:a5:88:63:8b:0f:dc:19: a5:0a:89:ca:c6:9c:83:9a:e2:a6:e9:85:fd:a5:25:05:1e:d1: 3a:8a:0c:07:9b:99:ff:17:39:32:e0:4b:39:40:68:08:d2:50: ce:8b:d3:9a:8c:f3:fe:87:72:d1:22:07:b9:45:ae:27:8d:5a: 10:d2:1d:e5:ad:bc:0b:04:2d:51:e7:54:81:45:22:3c:44:5c: 19:8a:ee:01:59:d7:0c:e1:af:16:db:ed:f7:7e:2a:dd:45:7c: ed:a1:43:55:d9:f0:0a:3a:55:f4:7e:30:a9:6d:03:4f:5b:f9: fc:4f:c6:ce:16:58:83:48:5c:e6:ee:17:c6:7b:8a:98:29:53: ce:3a:b9:cf:47:34:af:2a:51:df:40:e0:c5:98:96:77:5c:cc: 6c:45:29:17:98:d3:fa:0e:1c:c5:ae:d6:fb:cc:c6:20:a7:06: 43:59:4c:3f:46:d1:fd:fa:a1:cc:be:38:78:2e:6c:0b:ed:29: 7f:78:9c:ab:10:76:1f:43:a7:2a:70:7e:79:b5:4b:3c:2e:20: 9a:4d:1b:39:fa:d1:b1:29:60:45:29:97:73:b9:37:8f:84:97: f3:01:9a:4b:15:7c:fc:84:20:41:54:4b:aa:0b:4e:1b:57:07: ff:ab:73:c8 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUfuLgbcrWL/R1EcyzlIS7D91LigUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA0MTAyMjAyMzFaFw0yNjA0MDkyMjA3MzFaMDMxMTAvBgNV BAMTKEQ0RDQ3QzVFMzIyRkNGM0Q4MzY2OTk2Qzg2RUUyNzA5OUI5RjBDQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO8UlddpTniGwpbdJ6HSzM9/FQ uwMC7YycEt78fl0sRW60Cy7xSKiGpI90jOVHxO3Nve/R5wQob0i0NDNYA1ItmzIb QnLdVP9v/F0kXCcWCZCDD8XIEBgdQXNOQQNEwsgq24K6LS70TVeXCodVL9fruHqy S3ZwYlMoOYtC4KPx29iPfFFKo75r9HURAN4QMXmmrj+s3Od7zur9rA1L9syajYGO LcBXQoKoXFvQa+dc797sh8y6vCvR0I++JN6rf06zHrtS0ceWBiCYp62UzY365bzr oumoFDA9XaSvyjs7VXnNrDJZ7L88uLX6yZuNvPt/d8he6NgsZwGZKaVwKPw9AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU1NR8XjIvzz2DZplshu4nCZufDL0wHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwMzkzYTM1MzQ2MzM2 M2EzODMwMzAzMDNhM2EyZjMzMzYyZDM2MzQyMDNkM2UyMDMyMzAzNDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGBCoJVMaAMA0GCSqGSIb3DQEBCwUAA4IBAQC0HiqDtYA3f/w3i6WI Y4sP3BmlConKxpyDmuKm6YX9pSUFHtE6igwHm5n/Fzky4Es5QGgI0lDOi9OajPP+ h3LRIge5Ra4njVoQ0h3lrbwLBC1R51SBRSI8RFwZiu4BWdcM4a8W2+33firdRXzt oUNV2fAKOlX0fjCpbQNPW/n8T8bOFliDSFzm7hfGe4qYKVPOOrnPRzSvKlHfQODF mJZ3XMxsRSkXmNP6DhzFrtb7zMYgpwZDWUw/RtH9+qHMvjh4LmwL7Sl/eJyrEHYf Q6cqcH55tUs8LiCaTRs5+tGxKWBFKZdzuTePhJfzAZpLFXz8hCBBVEuqC04bVwf/ q3PI -----END CERTIFICATE-----Generated at Tue Apr 29 01:23:30 2025 by rpki-client