$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: PNV+6g1yuxZfiOErO1rlD/OjvHSDnl045B3ycAeUEw8= Subject key identifier: AF:28:A7:50:A3:C1:CD:9F:A9:A2:45:07:A6:FD:C5:F2:86:2B:A7:0E Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 58A6F910C8B07667FB16E9039C150488E2061AB9 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 04 Jul 2025 10:46:28 +0000 ROA not before: Fri 04 Jul 2025 10:41:28 +0000 ROA not after: Fri 03 Jul 2026 10:46:28 +0000 asID: 200676 IP address blocks: 2a06:a003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a6:f9:10:c8:b0:76:67:fb:16:e9:03:9c:15:04:88:e2:06:1a:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jul 4 10:41:28 2025 GMT Not After : Jul 3 10:46:28 2026 GMT Subject: CN=AF28A750A3C1CD9FA9A24507A6FDC5F2862BA70E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:af:a6:b6:24:c2:94:1f:39:88:f6:80:4e:88: e2:12:60:b8:b1:51:d8:22:15:c5:c3:12:a3:ee:c5: 29:00:eb:3b:1d:d5:b5:46:ea:f0:27:20:0e:8a:63: e4:ec:f3:86:8c:d3:01:d4:84:9d:3f:81:c1:69:3c: 41:a8:58:38:57:ff:95:4c:ab:f8:db:f9:4d:8d:1f: 89:62:ec:0a:e8:6d:79:60:6b:df:b2:6d:e4:95:54: 7c:b7:30:cf:fa:6d:12:ec:23:ff:c4:4c:14:31:f7: b6:19:00:0e:57:08:d0:e6:e7:dd:3f:88:1a:39:25: 3f:98:12:1d:6a:5f:67:4a:e5:ce:47:13:e5:5b:91: bc:0b:dd:f9:b6:09:1b:06:90:83:2f:a9:9c:04:a1: 78:6f:9c:de:f0:c8:51:78:57:e9:be:48:64:11:55: ef:53:d3:a9:0b:54:03:11:8d:b7:6f:8c:44:f1:f0: 9b:5a:04:81:07:c3:d9:17:09:b6:d7:4e:06:f7:23: 7b:6d:28:a5:46:a9:a9:bf:41:85:15:a0:45:4d:63: 28:e3:96:1d:c2:44:cd:ad:3c:b3:c9:11:5d:38:57: 3a:f4:63:8c:77:a1:1c:0d:b7:c5:4e:29:e2:c2:18: 85:e4:72:55:68:94:88:c5:d2:37:2f:58:cb:0c:e7: d8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:28:A7:50:A3:C1:CD:9F:A9:A2:45:07:A6:FD:C5:F2:86:2B:A7:0E X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003::/48 Signature Algorithm: sha256WithRSAEncryption 5e:bf:be:0c:c6:66:71:2c:05:f9:7d:4b:5d:d3:e7:c0:58:1f: 7b:07:bc:a7:bd:f8:92:f4:09:42:29:ca:4a:49:68:6b:df:33: c2:ac:e6:52:04:ef:50:4c:39:f0:8a:7e:63:8a:80:d8:cb:b0: 00:d1:1c:8b:9c:55:83:93:7d:07:5c:04:2b:30:1d:0f:d4:43: 53:17:23:68:14:78:19:81:3c:49:7a:aa:3d:af:92:7d:21:8a: d5:d2:d3:b5:45:97:0d:85:af:06:f7:a2:99:eb:0f:8d:b2:da: 0f:72:33:f6:61:d0:1a:1b:12:60:61:d3:bd:9d:7f:06:f5:b4: a7:02:de:0a:97:6a:5d:63:04:dd:71:68:61:e8:a7:b3:61:b5: 01:73:15:1a:aa:5f:a7:5c:fa:30:d2:0c:e6:b7:8c:33:fe:1f: a9:e2:92:12:11:43:da:b7:8c:0c:9c:b9:13:05:28:03:3f:40: 2d:1a:3a:c3:58:52:04:f1:d6:0a:82:ef:27:c2:11:6a:8a:bc: c8:85:70:b7:7c:3f:64:2d:5f:45:e7:d0:8b:40:e0:bb:a8:ca: b0:0d:72:ec:22:3d:6e:a8:16:d0:3f:f6:a7:d3:81:7c:31:c6: d5:08:db:ad:e4:74:34:12:aa:b9:22:44:49:32:93:c4:10:2d: 16:85:bf:f0 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUWKb5EMiwdmf7FukDnBUEiOIGGrkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNTA3MDQxMDQxMjhaFw0yNjA3MDMxMDQ2MjhaMDMxMTAvBgNV BAMTKEFGMjhBNzUwQTNDMUNEOUZBOUEyNDUwN0E2RkRDNUYyODYyQkE3MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkr6a2JMKUHzmI9oBOiOISYLix UdgiFcXDEqPuxSkA6zsd1bVG6vAnIA6KY+Ts84aM0wHUhJ0/gcFpPEGoWDhX/5VM q/jb+U2NH4li7ArobXlga9+ybeSVVHy3MM/6bRLsI//ETBQx97YZAA5XCNDm590/ iBo5JT+YEh1qX2dK5c5HE+VbkbwL3fm2CRsGkIMvqZwEoXhvnN7wyFF4V+m+SGQR Ve9T06kLVAMRjbdvjETx8JtaBIEHw9kXCbbXTgb3I3ttKKVGqam/QYUVoEVNYyjj lh3CRM2tPLPJEV04Vzr0Y4x3oRwNt8VOKeLCGIXkclVolIjF0jcvWMsM59gdAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUryinUKPBzZ+pokUHpv3F8oYrpw4wHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMwMzYzNzM2LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA KgagAwAAMA0GCSqGSIb3DQEBCwUAA4IBAQBev74MxmZxLAX5fUtd0+fAWB97B7yn vfiS9AlCKcpKSWhr3zPCrOZSBO9QTDnwin5jioDYy7AA0RyLnFWDk30HXAQrMB0P 1ENTFyNoFHgZgTxJeqo9r5J9IYrV0tO1RZcNha8G96KZ6w+NstoPcjP2YdAaGxJg YdO9nX8G9bSnAt4Kl2pdYwTdcWhh6KezYbUBcxUaql+nXPow0gzmt4wz/h+p4pIS EUPat4wMnLkTBSgDP0AtGjrDWFIE8dYKgu8nwhFqirzIhXC3fD9kLV9F59CLQOC7 qMqwDXLsIj1uqBbQP/an04F8McbVCNut5HQ0Eqq5IkRJMpPEEC0Whb/w -----END CERTIFICATE-----Generated at Sat Jul 5 08:50:37 2025 by rpki-client