$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613930303a3a2f34302d3438203d3e20323136303532.roa File: 326130613a363034343a613930303a3a2f34302d3438203d3e20323136303532.roa (raw, json) Hash identifier: 2/4IjQbeaKRD+UZsUAZDIcg74m67yxK29jhRp6TWFT0= Subject key identifier: CA:CE:EA:DB:E0:9C:CC:61:C7:D0:DF:8F:9E:BD:99:13:8E:19:46:D0 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 20D8F87B5AE59F36165A292228656D881C8E2FC9 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613930303a3a2f34302d3438203d3e20323136303532.roa Signing time: Wed 23 Apr 2025 22:37:13 +0000 ROA not before: Wed 23 Apr 2025 22:32:13 +0000 ROA not after: Wed 22 Apr 2026 22:37:13 +0000 asID: 216052 IP address blocks: 2a0a:6044:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 12:28:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d8:f8:7b:5a:e5:9f:36:16:5a:29:22:28:65:6d:88:1c:8e:2f:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Apr 23 22:32:13 2025 GMT Not After : Apr 22 22:37:13 2026 GMT Subject: CN=CACEEADBE09CCC61C7D0DF8F9EBD99138E1946D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ad:d7:32:30:42:fd:4d:13:f4:31:38:09:7c: 47:6e:c5:80:3a:5d:d8:76:10:fe:26:4d:5c:be:b4: d7:12:26:ca:d8:64:8f:b5:04:d4:9c:e9:32:54:64: 13:78:91:95:52:64:55:0b:41:33:e1:ac:31:5c:02: 18:19:ec:2a:95:4f:d1:a0:4a:1b:44:e0:66:fb:54: 75:14:c0:b0:60:26:72:3b:b3:53:d2:57:72:25:6c: 50:8f:08:a7:60:12:61:47:7e:f1:c6:6b:02:3a:a7: 9a:78:0b:0d:07:97:b3:83:7d:fa:94:4c:90:8e:ea: 01:ea:17:59:81:11:ad:5d:d9:21:42:83:ad:33:a8: 27:3e:bc:74:cb:aa:5c:40:16:79:f6:f8:ee:01:00: 8d:d1:4e:73:16:64:92:a4:9c:6c:2b:1c:b5:8a:46: bd:f1:94:17:34:da:46:66:51:47:35:0f:3a:18:6c: 59:50:7f:7f:c2:ec:70:87:8e:cf:3b:05:70:f8:57: f2:c1:57:9d:2d:ac:68:5c:73:e1:34:a9:e0:b1:29: 8c:b8:ba:0f:f9:80:ed:e9:48:66:64:47:66:e1:88: bb:f8:29:69:a0:1a:31:20:4f:c4:ca:be:74:99:ca: 1b:3a:0b:37:71:3e:df:69:f4:19:63:7a:f4:eb:23: 0d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:CE:EA:DB:E0:9C:CC:61:C7:D0:DF:8F:9E:BD:99:13:8E:19:46:D0 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a613930303a3a2f34302d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:a900::/40 Signature Algorithm: sha256WithRSAEncryption a9:65:24:1a:7c:16:55:c0:9a:83:2b:d4:67:fe:9b:c0:99:50: 61:9a:7b:cd:57:3b:ac:7c:3f:e3:9a:46:f5:28:44:9e:eb:de: 6e:57:bd:a2:c8:37:d1:4c:fd:23:e9:a5:2f:42:fc:1f:9a:d6: c8:1a:d7:ce:f1:cd:ac:3a:3b:4c:91:8b:8c:7d:0f:24:c2:28: 4c:93:38:dc:7e:96:da:ec:d7:66:f8:91:ea:ed:cd:66:6d:b6: 26:b7:5f:4d:8c:b2:17:36:c0:ee:3e:0b:43:18:14:2e:92:09: 67:39:2f:05:45:65:9f:dd:a1:a7:2e:4c:53:02:16:4e:31:ef: fc:3a:68:0f:0a:81:ab:d1:aa:28:9e:5a:4e:76:e3:a4:5e:bb: a5:2d:69:40:c9:c8:64:9e:52:52:ec:87:d6:7c:6c:cb:4e:91: 0c:db:ba:c5:6a:e7:4d:6b:79:e3:9b:10:aa:a6:52:c3:e7:14: 96:c2:6f:1f:e4:63:6a:8f:f9:c4:2e:a2:ee:f6:73:e2:13:a1: 23:fe:52:15:b7:29:e1:9a:a1:d1:79:10:16:de:94:51:cd:a2: 2b:90:e6:c7:ef:7d:98:99:60:58:97:68:bc:57:d8:4f:0a:de: f2:a7:a6:51:63:4c:97:58:4b:d3:e5:e6:38:4d:66:e5:63:68: 40:dc:ba:7f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUINj4e1rlnzYWWikiKGVtiByOL8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA0MjMyMjMyMTNaFw0yNjA0MjIyMjM3MTNaMDMxMTAvBgNV BAMTKENBQ0VFQURCRTA5Q0NDNjFDN0QwREY4RjlFQkQ5OTEzOEUxOTQ2RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrrdcyMEL9TRP0MTgJfEduxYA6 Xdh2EP4mTVy+tNcSJsrYZI+1BNSc6TJUZBN4kZVSZFULQTPhrDFcAhgZ7CqVT9Gg ShtE4Gb7VHUUwLBgJnI7s1PSV3IlbFCPCKdgEmFHfvHGawI6p5p4Cw0Hl7ODffqU TJCO6gHqF1mBEa1d2SFCg60zqCc+vHTLqlxAFnn2+O4BAI3RTnMWZJKknGwrHLWK Rr3xlBc02kZmUUc1DzoYbFlQf3/C7HCHjs87BXD4V/LBV50trGhcc+E0qeCxKYy4 ug/5gO3pSGZkR2bhiLv4KWmgGjEgT8TKvnSZyhs6CzdxPt9p9BljevTrIw0RAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUys7q2+CczGHH0N+Pnr2ZE44ZRtAwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTM5MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoKYESpMA0GCSqGSIb3DQEBCwUAA4IBAQCpZSQafBZVwJqDK9Rn /pvAmVBhmnvNVzusfD/jmkb1KESe695uV72iyDfRTP0j6aUvQvwfmtbIGtfO8c2s OjtMkYuMfQ8kwihMkzjcfpba7Ndm+JHq7c1mbbYmt19NjLIXNsDuPgtDGBQukgln OS8FRWWf3aGnLkxTAhZOMe/8OmgPCoGr0aoonlpOduOkXrulLWlAychknlJS7IfW fGzLTpEM27rFaudNa3njmxCqplLD5xSWwm8f5GNqj/nELqLu9nPiE6Ej/lIVtynh mqHReRAW3pRRzaIrkObH732YmWBYl2i8V9hPCt7yp6ZRY0yXWEvT5eY4TWblY2hA 3Lp/ -----END CERTIFICATE-----Generated at Mon Apr 28 19:53:51 2025 by rpki-client