$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616331303a3a2f34342d3434203d3e2030.roa File: 326130613a363034343a616331303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: yrlu4Dpw8EtKIpPV2D5GduYXJXngvPsCDTtJTI5BPsY= Subject key identifier: 91:DA:72:38:FB:7F:2B:0E:40:D5:D7:B7:A8:F4:24:71:F7:DA:94:94 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 25FFE797C5994BE2BE2E640E42F18F1CD4B45473 Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616331303a3a2f34342d3434203d3e2030.roa Signing time: Thu 10 Apr 2025 17:51:16 +0000 ROA not before: Thu 10 Apr 2025 17:46:16 +0000 ROA not after: Thu 09 Apr 2026 17:51:16 +0000 asID: 0 IP address blocks: 2a0a:6044:ac10::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 07:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ff:e7:97:c5:99:4b:e2:be:2e:64:0e:42:f1:8f:1c:d4:b4:54:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Apr 10 17:46:16 2025 GMT Not After : Apr 9 17:51:16 2026 GMT Subject: CN=91DA7238FB7F2B0E40D5D7B7A8F42471F7DA9494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:44:a5:b1:c3:0c:25:8b:2a:46:f0:0b:74:b0: 44:7f:50:ff:97:8b:8f:7a:c6:00:a5:48:9a:13:74: a3:21:e3:e0:af:5a:9d:37:ff:e5:0c:ed:f5:14:5b: 05:06:94:d0:40:5f:5f:56:05:ac:c8:12:9b:a3:59: f3:02:ea:f6:ec:4e:09:54:3a:40:54:7e:95:de:5a: f4:c0:0c:55:df:cd:9a:5c:2e:a9:e0:dd:84:77:c4: 9e:e9:ea:16:66:2e:70:dc:8a:e5:13:c8:18:a9:17: 67:ad:c0:0d:80:cb:1b:34:43:94:b3:26:fa:f4:51: 84:8e:1e:bc:b2:66:47:99:58:b3:de:e1:d1:21:cb: 8d:f2:60:d4:a3:f7:64:cf:56:65:e7:7d:59:49:4d: f5:17:ea:62:bf:ce:82:f9:f9:3d:bd:28:c7:12:17: f9:fa:9b:1a:0e:01:44:9d:6d:ed:55:b4:e9:00:44: 0c:74:48:a0:a3:ee:14:85:a4:09:2b:0c:7e:91:f6: 32:7e:c8:f3:4a:5e:18:94:a1:a3:ad:f7:55:94:dc: 33:af:49:eb:a4:1e:ef:e7:f4:e9:17:03:08:9b:ac: a8:dd:eb:ab:03:60:4a:15:e1:ab:76:ff:81:90:a8: 93:ec:4d:0f:00:7f:ac:69:26:f9:72:db:84:31:fc: 1a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DA:72:38:FB:7F:2B:0E:40:D5:D7:B7:A8:F4:24:71:F7:DA:94:94 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616331303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac10::/44 Signature Algorithm: sha256WithRSAEncryption aa:32:8d:4d:f2:cd:93:a7:75:dc:8c:cb:d2:ce:c5:af:ad:a2: 00:64:43:e9:e5:c6:d4:c7:b5:23:e0:b9:ed:c6:4f:e1:f1:a3: b0:e1:ec:23:ec:fc:c6:b7:81:e6:f2:75:d1:8d:59:fc:e3:05: bb:01:4c:99:e3:07:b5:89:e5:0c:ef:fa:8c:14:89:aa:14:a8: 87:bf:84:a9:03:62:39:a5:4f:14:3b:c1:80:21:42:60:da:6b: 48:d5:c1:f7:7e:f3:e3:49:30:be:5e:a7:ff:df:e4:02:8b:3b: dc:fb:9e:6d:7b:e7:36:0b:f5:d7:76:82:dc:8c:25:7a:2c:0b: b5:44:9c:91:bd:6a:ed:28:b2:67:96:05:3b:75:83:7a:96:c1: 33:be:39:a1:e0:99:79:d1:fa:b7:26:ec:fb:7c:80:7a:60:e4: 88:e0:e1:3b:fc:f1:08:92:d9:e5:6a:ea:c5:2a:8c:c9:75:67: 41:b9:fc:ad:c6:8a:a0:e9:9d:17:d5:55:12:11:ce:7c:e3:f8: 88:4e:63:2a:cc:57:19:d7:6c:c9:50:f8:5b:e2:36:f6:99:8b: 3b:08:a0:f2:10:e7:b7:fd:ea:ea:7a:a1:da:44:db:66:28:64: 0e:19:64:08:7f:72:aa:af:c8:8d:9a:bc:44:fb:4f:ce:ad:36: 3a:66:d4:48 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUJf/nl8WZS+K+LmQOQvGPHNS0VHMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA0MTAxNzQ2MTZaFw0yNjA0MDkxNzUxMTZaMDMxMTAvBgNV BAMTKDkxREE3MjM4RkI3RjJCMEU0MEQ1RDdCN0E4RjQyNDcxRjdEQTk0OTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvRKWxwwwliypG8At0sER/UP+X i496xgClSJoTdKMh4+CvWp03/+UM7fUUWwUGlNBAX19WBazIEpujWfMC6vbsTglU OkBUfpXeWvTADFXfzZpcLqng3YR3xJ7p6hZmLnDciuUTyBipF2etwA2Ayxs0Q5Sz Jvr0UYSOHryyZkeZWLPe4dEhy43yYNSj92TPVmXnfVlJTfUX6mK/zoL5+T29KMcS F/n6mxoOAUSdbe1VtOkARAx0SKCj7hSFpAkrDH6R9jJ+yPNKXhiUoaOt91WU3DOv SeukHu/n9OkXAwibrKjd66sDYEoV4at2/4GQqJPsTQ8Af6xpJvly24Qx/BpJAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUkdpyOPt/Kw5A1de3qPQkcffalJQwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTYzMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgpgRKwQMA0GCSqGSIb3DQEBCwUAA4IBAQCqMo1N8s2Tp3XcjMvSzsWvraIAZEPp 5cbUx7Uj4Lntxk/h8aOw4ewj7PzGt4Hm8nXRjVn84wW7AUyZ4we1ieUM7/qMFImq FKiHv4SpA2I5pU8UO8GAIUJg2mtI1cH3fvPjSTC+Xqf/3+QCizvc+55te+c2C/XX doLcjCV6LAu1RJyRvWrtKLJnlgU7dYN6lsEzvjmh4Jl50fq3Juz7fIB6YOSI4OE7 /PEIktnlaurFKozJdWdBufytxoqg6Z0X1VUSEc584/iITmMqzFcZ12zJUPhb4jb2 mYs7CKDyEOe3/erqeqHaRNtmKGQOGWQIf3Kqr8iNmrxE+0/OrTY6ZtRI -----END CERTIFICATE-----Generated at Sat Apr 26 14:48:42 2025 by rpki-client