$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: rOXq6KopS7nNrxLenr0thMMbHkGjihkrbeGzvVQ4fNc= Subject key identifier: 6F:AF:EE:AF:10:53:08:59:BE:06:93:AA:CE:1B:64:72:74:D3:F1:81 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 494F3C2D6AA30599D3CE557E7035CC3D7A22217F Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 04 Jul 2025 10:46:26 +0000 ROA not before: Fri 04 Jul 2025 10:41:26 +0000 ROA not after: Fri 03 Jul 2026 10:46:26 +0000 asID: 200676 IP address blocks: 2a06:a003:1111::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:4f:3c:2d:6a:a3:05:99:d3:ce:55:7e:70:35:cc:3d:7a:22:21:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jul 4 10:41:26 2025 GMT Not After : Jul 3 10:46:26 2026 GMT Subject: CN=6FAFEEAF10530859BE0693AACE1B647274D3F181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d1:0d:27:1b:9c:50:70:57:3c:92:fb:51:92: fb:98:07:68:71:9b:cf:78:52:32:b4:0b:e9:53:26: 1c:4c:49:8b:39:03:2c:7b:cb:17:1b:8f:94:c9:6b: 19:e8:63:67:48:9e:6c:bd:0d:ed:32:28:56:2c:9b: 09:4b:a1:2c:b2:a8:5c:f9:87:66:11:16:d8:b1:30: 7e:63:b7:48:b5:55:71:3b:8c:32:43:28:a6:8a:49: 06:04:eb:4c:05:58:f7:77:fd:3f:25:75:d4:b4:e4: c8:88:6e:d8:fb:d0:01:19:db:82:1d:0d:2d:2d:05: 66:ea:d2:ea:6b:ba:b7:9d:9d:33:5d:e3:52:af:8d: 6e:23:f9:bc:62:73:44:f2:d0:9e:cf:8a:3e:f5:85: ef:b3:66:cf:e4:4e:e6:fd:ba:74:68:35:ec:1f:fb: 3c:99:19:f5:c7:09:a2:ed:52:80:01:dc:9b:09:2b: 27:3d:f6:59:82:a9:35:9a:78:06:34:1f:64:41:ce: ae:03:72:37:fe:f3:8b:43:75:23:ce:ec:1d:a0:97: 0f:38:d5:de:86:a2:df:15:73:f4:73:24:6a:df:a6: cb:31:de:c6:9f:ec:9e:18:37:71:27:e8:ca:ab:9e: 10:b9:30:28:e9:30:88:95:c1:ca:39:b9:4c:06:2b: b5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:AF:EE:AF:10:53:08:59:BE:06:93:AA:CE:1B:64:72:74:D3:F1:81 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:1111::/48 Signature Algorithm: sha256WithRSAEncryption 39:d9:61:35:ab:f1:36:17:c9:f3:c3:57:a8:02:68:5d:a0:bb: 4b:87:ff:51:b1:5e:e1:a4:dd:ec:5c:fe:fe:6d:22:e2:b0:97: 3f:10:5b:1a:31:2f:db:8a:44:47:8e:87:30:68:a2:d1:67:1f: 18:2e:4b:60:35:f1:6b:e3:51:f1:0e:58:35:3e:b4:ed:a0:68: b3:cb:1d:77:ae:b2:8f:1d:c5:30:f3:27:88:10:75:0c:46:24: fc:6b:69:b1:80:21:9d:24:72:f6:e5:9f:6f:e5:d1:b3:1e:53: 5d:ba:7c:1b:b0:7f:5a:63:ad:a5:d8:d3:fb:61:28:0c:76:07: 20:8a:da:13:36:a0:a7:fe:3c:82:37:5c:b3:87:be:1c:59:c2: 3b:69:f6:71:5c:8a:8f:00:af:2c:82:da:a4:f8:fc:ae:23:24: 7b:6f:dd:81:a2:56:d9:ed:4b:40:15:67:63:eb:fe:57:2b:f8: 5f:c4:b4:24:cf:b3:e7:7a:a3:7b:ac:76:98:d0:5e:a2:73:97: a2:65:82:15:49:65:ff:9c:e3:ca:c0:07:88:45:9a:0c:6a:91: 66:b3:d8:bd:fa:44:90:5a:54:1a:16:4b:22:44:c5:e2:b4:35: 0d:84:4a:8f:ce:5b:bd:cc:92:f2:03:4e:90:85:3b:ae:72:8c: 9e:ee:f1:da -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUSU88LWqjBZnTzlV+cDXMPXoiIX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNTA3MDQxMDQxMjZaFw0yNjA3MDMxMDQ2MjZaMDMxMTAvBgNV BAMTKDZGQUZFRUFGMTA1MzA4NTlCRTA2OTNBQUNFMUI2NDcyNzREM0YxODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl0Q0nG5xQcFc8kvtRkvuYB2hx m894UjK0C+lTJhxMSYs5Ayx7yxcbj5TJaxnoY2dInmy9De0yKFYsmwlLoSyyqFz5 h2YRFtixMH5jt0i1VXE7jDJDKKaKSQYE60wFWPd3/T8lddS05MiIbtj70AEZ24Id DS0tBWbq0uprurednTNd41KvjW4j+bxic0Ty0J7Pij71he+zZs/kTub9unRoNewf +zyZGfXHCaLtUoAB3JsJKyc99lmCqTWaeAY0H2RBzq4Dcjf+84tDdSPO7B2glw84 1d6Got8Vc/RzJGrfpssx3saf7J4YN3En6MqrnhC5MCjpMIiVwco5uUwGK7WrAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUb6/urxBTCFm+BpOqzhtkcnTT8YEwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzMTMxMzEzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAMRETANBgkqhkiG9w0BAQsFAAOCAQEAOdlhNavxNhfJ88NX qAJoXaC7S4f/UbFe4aTd7Fz+/m0i4rCXPxBbGjEv24pER46HMGii0WcfGC5LYDXx a+NR8Q5YNT607aBos8sdd66yjx3FMPMniBB1DEYk/GtpsYAhnSRy9uWfb+XRsx5T Xbp8G7B/WmOtpdjT+2EoDHYHIIraEzagp/48gjdcs4e+HFnCO2n2cVyKjwCvLILa pPj8riMke2/dgaJW2e1LQBVnY+v+Vyv4X8S0JM+z53qje6x2mNBeonOXomWCFUll /5zjysAHiEWaDGqRZrPYvfpEkFpUGhZLIkTF4rQ1DYRKj85bvcyS8gNOkIU7rnKM nu7x2g== -----END CERTIFICATE-----Generated at Sat Jul 5 08:53:14 2025 by rpki-client