$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616363303a3a2f34342d3438203d3e203331383938.roa File: 326130613a363034343a616363303a3a2f34342d3438203d3e203331383938.roa (raw, json) Hash identifier: XzKopt+R6TpzAAqwVty7Jle48xmsj8o0MyHi7N7m+Fk= Subject key identifier: 85:C8:A1:B4:76:A3:B9:50:A7:AF:33:20:8B:EA:FF:14:59:88:E9:06 Certificate issuer: /CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Certificate serial: 7C5C030AA27D633EBBEADF26DD0590F8F4E3368B Authority key identifier: CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616363303a3a2f34342d3438203d3e203331383938.roa Signing time: Wed 09 Apr 2025 15:56:55 +0000 ROA not before: Wed 09 Apr 2025 15:51:55 +0000 ROA not after: Wed 08 Apr 2026 15:56:55 +0000 asID: 31898 IP address blocks: 2a0a:6044:acc0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 07:09:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:5c:03:0a:a2:7d:63:3e:bb:ea:df:26:dd:05:90:f8:f4:e3:36:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCD5D3BE49456F7D48B7321029C886F318C23B36 Validity Not Before: Apr 9 15:51:55 2025 GMT Not After : Apr 8 15:56:55 2026 GMT Subject: CN=85C8A1B476A3B950A7AF33208BEAFF145988E906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:85:1d:bc:b0:de:40:a8:72:b6:1d:c6:72:2d: b9:ad:39:d7:2b:cf:a0:11:04:65:44:30:60:e7:30: a2:31:cd:7c:d0:c5:dd:d7:25:5c:74:18:82:1d:37: ce:6c:0c:87:55:7f:33:2a:af:d0:8c:49:da:83:7a: 5f:df:c0:a9:ec:c0:c2:63:11:4d:2e:ac:fd:11:34: 19:e9:01:e4:95:56:2b:f0:ba:9d:6c:08:c4:bb:46: 6e:b9:a2:0e:fa:69:1d:0b:37:e2:05:75:d6:0a:5a: 8c:06:a4:c9:d1:36:a2:d8:1a:39:06:2d:ee:2c:a4: 7d:3d:d1:74:9d:ae:93:f8:d5:b8:85:e4:75:33:66: 10:7d:d6:7c:f8:1d:39:36:67:da:7a:75:4a:b4:03: 93:f5:40:e0:35:1b:56:f2:b3:f9:c0:45:dc:1e:f2: ff:f8:e9:d0:f2:d3:52:6b:37:74:c7:3f:3a:98:a1: 4c:ba:c8:56:00:d9:d1:e5:5c:b4:1c:cb:17:9f:f4: 29:a2:d5:93:93:ca:43:c1:4f:19:24:c3:4f:b4:c6: 50:7f:55:39:6a:fe:86:34:df:7e:4c:a5:88:9f:c5: 8a:13:59:95:76:68:23:7b:78:ca:c7:1f:44:a2:33: 63:32:4f:b1:ca:e8:39:ad:8f:92:2a:dc:0d:5a:3a: 94:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C8:A1:B4:76:A3:B9:50:A7:AF:33:20:8B:EA:FF:14:59:88:E9:06 X509v3 Authority Key Identifier: keyid:CC:D5:D3:BE:49:45:6F:7D:48:B7:32:10:29:C8:86:F3:18:C2:3B:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/CCD5D3BE49456F7D48B7321029C886F318C23B36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CCD5D3BE49456F7D48B7321029C886F318C23B36.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7948738-3255-49f9-9b6c-9c9f3898995d/3/326130613a363034343a616363303a3a2f34342d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:acc0::/44 Signature Algorithm: sha256WithRSAEncryption a0:d5:bd:3b:ee:23:07:48:31:b8:07:bb:37:e9:8d:1c:da:eb: 21:67:c6:8b:0b:2e:8d:e3:c9:54:b6:ef:94:d5:63:3c:8e:11: c4:71:88:1a:2c:8c:88:fc:f2:3f:03:03:d2:36:1d:b1:bf:8a: 83:2e:00:4e:71:0f:80:02:ef:84:4d:f1:25:7b:e4:94:08:9a: 44:3f:5c:86:9e:9b:d9:b5:46:b2:e5:1b:be:7c:3e:22:8c:8e: 9b:93:08:4a:9d:2d:de:c0:75:19:e8:fe:bb:b9:c8:ed:45:a1: 43:9a:e8:4f:81:e2:e0:be:3d:47:9d:89:25:f7:b2:14:5c:de: d0:f6:81:c6:c5:23:20:4f:ea:b3:a9:f7:98:e2:61:33:1e:7e: c6:4f:9e:2a:0a:12:d3:bc:56:84:fb:57:6b:b5:b5:ee:c9:e2: cc:24:f4:ae:30:9f:e0:9c:65:0f:0c:52:47:1a:c7:e1:9f:fe: fa:9b:e0:54:6a:c1:f3:89:8c:38:d7:b0:16:38:30:b0:c5:17: 8c:e1:20:61:c4:b5:b3:a4:30:3e:16:2d:da:14:0b:40:9b:0c: df:4a:d8:8b:98:77:4b:54:7a:d4:3d:4f:24:a8:c1:34:c1:2e: 8d:70:b3:c8:24:6e:60:3a:1d:f8:dc:08:49:d4:6c:31:00:03: 52:0e:25:83 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUfFwDCqJ9Yz676t8m3QWQ+PTjNoswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMx OEMyM0IzNjAeFw0yNTA0MDkxNTUxNTVaFw0yNjA0MDgxNTU2NTVaMDMxMTAvBgNV BAMTKDg1QzhBMUI0NzZBM0I5NTBBN0FGMzMyMDhCRUFGRjE0NTk4OEU5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrhR28sN5AqHK2HcZyLbmtOdcr z6ARBGVEMGDnMKIxzXzQxd3XJVx0GIIdN85sDIdVfzMqr9CMSdqDel/fwKnswMJj EU0urP0RNBnpAeSVVivwup1sCMS7Rm65og76aR0LN+IFddYKWowGpMnRNqLYGjkG Le4spH090XSdrpP41biF5HUzZhB91nz4HTk2Z9p6dUq0A5P1QOA1G1bys/nARdwe 8v/46dDy01JrN3THPzqYoUy6yFYA2dHlXLQcyxef9Cmi1ZOTykPBTxkkw0+0xlB/ VTlq/oY0335MpYifxYoTWZV2aCN7eMrHH0SiM2MyT7HK6Dmtj5Iq3A1aOpQBAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUhcihtHajuVCnrzMgi+r/FFmI6QYwHwYDVR0j BBgwFoAUzNXTvklFb31ItzIQKciG8xjCOzYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjc5NDg3MzgtMzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5 OTVkLzMvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMyM0IzNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0NENUQzQkU0OTQ1NkY3RDQ4QjczMjEwMjlDODg2RjMxOEMy M0IzNi5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjc5NDg3Mzgt MzI1NS00OWY5LTliNmMtOWM5ZjM4OTg5OTVkLzMvMzI2MTMwNjEzYTM2MzAzNDM0 M2E2MTYzNjMzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMzMzEzODM5Mzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqCmBErMAwDQYJKoZIhvcNAQELBQADggEBAKDVvTvuIwdIMbgHuzfp jRza6yFnxosLLo3jyVS275TVYzyOEcRxiBosjIj88j8DA9I2HbG/ioMuAE5xD4AC 74RN8SV75JQImkQ/XIaem9m1RrLlG758PiKMjpuTCEqdLd7AdRno/ru5yO1FoUOa 6E+B4uC+PUediSX3shRc3tD2gcbFIyBP6rOp95jiYTMefsZPnioKEtO8VoT7V2u1 te7J4swk9K4wn+CcZQ8MUkcax+Gf/vqb4FRqwfOJjDjXsBY4MLDFF4zhIGHEtbOk MD4WLdoUC0CbDN9K2IuYd0tUetQ9TySowTTBLo1ws8gkbmA6HfjcCEnUbDEAA1IO JYM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:43 2025 by rpki-client