$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: qr/bfrnor+1gB61vuOA1czljaK/VRJBauBs1U2EbENw= Subject key identifier: 29:0F:A1:C9:66:72:67:28:23:BE:40:19:6A:BB:4A:44:79:59:74:7B Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 70A6D8475AD14330FD5C753C37C59E7171DAF0B1 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 04 Jul 2025 10:46:27 +0000 ROA not before: Fri 04 Jul 2025 10:41:27 +0000 ROA not after: Fri 03 Jul 2026 10:46:27 +0000 asID: 200676 IP address blocks: 2a06:a003:1337::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:a6:d8:47:5a:d1:43:30:fd:5c:75:3c:37:c5:9e:71:71:da:f0:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jul 4 10:41:27 2025 GMT Not After : Jul 3 10:46:27 2026 GMT Subject: CN=290FA1C96672672823BE40196ABB4A447959747B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:df:69:6f:6e:1e:2a:f5:ad:05:42:c3:a3:c7: 43:2a:48:6d:ed:ea:0c:4c:a0:71:0d:6e:68:1c:9f: 4a:7c:93:de:b7:c2:4c:87:c5:18:0a:b4:0c:74:db: cd:5d:70:15:a6:88:f1:b7:75:f2:8c:db:07:5e:56: 9b:37:e1:f5:44:79:0d:43:74:50:47:da:b3:0c:2d: b2:df:6d:b2:92:e3:14:15:f2:bb:b4:e9:b2:bb:03: 1b:0d:57:99:66:a5:19:11:d9:81:4d:81:19:e1:96: 3f:5f:b0:2f:7f:2f:7b:c0:19:53:68:b3:39:66:d9: 36:31:64:1c:cc:53:73:dd:db:82:31:12:38:df:e3: 38:08:66:d0:b1:f8:1c:6e:39:dc:b7:fe:88:33:83: 8d:0c:0c:d8:1b:ff:90:9d:8e:a8:aa:63:e2:f3:a1: 7b:41:5d:ad:c6:cf:65:40:7f:54:e3:86:e2:3e:f7: 7a:07:d7:ad:55:79:29:df:9b:df:15:86:bc:0e:2e: 24:a1:64:ad:52:50:39:34:e4:fa:2f:00:c3:2c:ba: 0b:ee:75:61:76:8b:d2:79:8d:01:86:2f:13:7f:76: 01:99:6a:d4:c6:17:fb:81:89:6b:43:f9:31:3b:8c: fa:12:bf:dd:d7:4f:ee:a0:e2:7a:28:45:ff:b7:da: a1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:0F:A1:C9:66:72:67:28:23:BE:40:19:6A:BB:4A:44:79:59:74:7B X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:1337::/48 Signature Algorithm: sha256WithRSAEncryption 53:5c:b5:61:50:f1:34:4f:1a:8b:da:9d:55:f0:f4:f6:22:66: 33:d0:1c:a8:86:b8:d2:8a:0e:5e:03:39:cc:8e:48:56:25:e4: 09:36:5d:8e:88:45:fd:b1:fd:1e:37:d6:b0:e5:5f:90:f3:34: 7c:cc:c7:82:5d:23:1a:2d:ab:ec:10:a7:3b:2f:0e:51:e1:f1: 31:84:82:bf:51:22:f6:ff:e8:27:71:e8:70:36:17:68:6c:97: ab:77:b6:ce:f9:3b:e8:19:32:c9:9b:b9:cf:e7:e4:b9:e8:70: 3a:84:94:e8:af:5c:74:56:9a:27:9e:fa:e4:ff:f9:79:54:01: d2:9e:81:1e:98:98:d3:f5:06:b2:a8:b2:56:6b:57:d0:23:d4: ea:e1:21:7d:b4:9e:3b:51:34:8a:2a:4d:02:a2:d2:2b:d1:0e: bb:ea:ae:5b:c8:0d:59:20:84:6b:a2:d3:40:60:62:ae:f9:1e: 32:ee:2d:87:d2:d1:d3:cf:36:83:40:34:09:c9:2e:fc:f6:79: 8e:4d:c5:af:81:b2:6c:e1:ee:95:3d:c9:c3:a9:a6:64:18:fc: f7:65:2d:be:a1:5d:b7:1f:95:99:ed:d7:f9:eb:cc:65:31:e4: 6b:0e:a3:ac:1c:ec:9b:a9:a2:f0:80:45:cf:68:34:6c:13:1b: 61:36:96:2c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUcKbYR1rRQzD9XHU8N8WecXHa8LEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNTA3MDQxMDQxMjdaFw0yNjA3MDMxMDQ2MjdaMDMxMTAvBgNV BAMTKDI5MEZBMUM5NjY3MjY3MjgyM0JFNDAxOTZBQkI0QTQ0Nzk1OTc0N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs32lvbh4q9a0FQsOjx0MqSG3t 6gxMoHENbmgcn0p8k963wkyHxRgKtAx0281dcBWmiPG3dfKM2wdeVps34fVEeQ1D dFBH2rMMLbLfbbKS4xQV8ru06bK7AxsNV5lmpRkR2YFNgRnhlj9fsC9/L3vAGVNo szlm2TYxZBzMU3Pd24IxEjjf4zgIZtCx+BxuOdy3/ogzg40MDNgb/5CdjqiqY+Lz oXtBXa3Gz2VAf1TjhuI+93oH161VeSnfm98VhrwOLiShZK1SUDk05PovAMMsugvu dWF2i9J5jQGGLxN/dgGZatTGF/uBiWtD+TE7jPoSv93XT+6g4nooRf+32qH7AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUKQ+hyWZyZygjvkAZartKRHlZdHswHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzMTMzMzMzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAMTNzANBgkqhkiG9w0BAQsFAAOCAQEAU1y1YVDxNE8ai9qd VfD09iJmM9AcqIa40ooOXgM5zI5IViXkCTZdjohF/bH9HjfWsOVfkPM0fMzHgl0j Gi2r7BCnOy8OUeHxMYSCv1Ei9v/oJ3HocDYXaGyXq3e2zvk76BkyyZu5z+fkuehw OoSU6K9cdFaaJ5765P/5eVQB0p6BHpiY0/UGsqiyVmtX0CPU6uEhfbSeO1E0iipN AqLSK9EOu+quW8gNWSCEa6LTQGBirvkeMu4th9LR0882g0A0Ccku/PZ5jk3Fr4Gy bOHulT3Jw6mmZBj892UtvqFdtx+Vme3X+evMZTHkaw6jrBzsm6mi8IBFz2g0bBMb YTaWLA== -----END CERTIFICATE-----Generated at Sat Jul 5 08:54:27 2025 by rpki-client