$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: kunZD4UEEwcG2nc99Wb+xz1yK+IdIm7SjegbAra8chc= Subject key identifier: 27:44:79:B8:97:81:69:C9:33:F4:E3:4A:1A:5C:B5:B1:53:8C:66:89 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 23B049C2FE1D2F9A0E7A26FAFDBEDA815F9CF274 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 04 Jul 2025 10:46:26 +0000 ROA not before: Fri 04 Jul 2025 10:41:26 +0000 ROA not after: Fri 03 Jul 2026 10:46:26 +0000 asID: 200676 IP address blocks: 2a06:a003:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:b0:49:c2:fe:1d:2f:9a:0e:7a:26:fa:fd:be:da:81:5f:9c:f2:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jul 4 10:41:26 2025 GMT Not After : Jul 3 10:46:26 2026 GMT Subject: CN=274479B8978169C933F4E34A1A5CB5B1538C6689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ad:af:82:cb:e1:90:73:fb:5f:8f:6c:ae:ab: b0:8d:21:d7:18:75:f8:46:d6:e8:f2:33:82:b8:d6: 6f:47:e5:25:a3:b1:05:cb:1e:47:cc:fd:72:c4:d2: 4f:19:ac:9a:f4:1b:4e:66:ee:21:25:25:1e:fe:e2: b3:55:5e:8e:7a:cf:ef:a5:c1:23:94:8d:e8:54:26: b9:81:2c:8b:f2:e0:dd:56:cd:3b:0f:4f:b2:2f:a7: 52:28:de:52:a2:6d:aa:7d:2c:db:ed:fb:1a:2f:d7: ae:9d:8b:87:3f:d9:d5:1f:29:43:8d:1f:9a:93:97: 30:8f:a7:52:3a:b0:5b:b7:a9:d7:af:25:98:7e:8b: dd:2f:3e:8d:73:b3:60:c8:cb:db:6b:71:41:08:d2: 4c:ac:33:2f:10:53:80:f6:99:9c:41:21:17:d7:bb: e8:4f:99:12:d7:f9:7e:7a:8b:36:e3:ee:0d:44:15: 2c:5c:19:68:b1:b4:52:9c:7c:b5:3b:ae:c3:cd:8f: e8:d0:fc:4c:0e:18:0e:98:5e:d8:3d:2c:07:9a:50: 83:63:86:62:7a:00:6c:a3:87:1c:34:78:b9:cf:3a: 3c:5c:20:7f:49:eb:bf:8f:14:69:74:aa:1b:4e:e2: b1:85:ba:ff:ea:2a:d8:0a:aa:a5:fe:48:c9:07:89: 3e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:44:79:B8:97:81:69:C9:33:F4:E3:4A:1A:5C:B5:B1:53:8C:66:89 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 31:3b:6d:ea:f2:05:67:68:45:1e:6a:7c:38:11:f7:e0:a9:eb: 20:c4:85:0c:1a:9f:63:62:b9:d5:35:f7:2b:df:9c:9f:68:55: 48:2f:a5:51:14:b7:96:9a:8a:1a:30:8e:0e:a2:19:e7:58:09: 4e:0f:2e:24:ca:73:63:f6:ce:2d:05:97:f2:6c:2c:3c:18:50: 4c:a4:19:db:11:40:8a:a2:cb:c8:ea:f0:1c:8a:77:ec:4d:eb: 0a:fd:3f:1f:a6:4b:db:fe:88:46:da:27:d7:24:bf:0b:cb:77: 25:9a:64:ae:d8:b1:f8:c5:9f:a5:28:7b:60:98:70:18:a9:fd: 88:38:83:4e:f3:3b:4c:5b:c0:8b:44:d8:42:70:61:21:d8:86: 05:1c:e9:c8:78:8f:3d:99:0a:18:6a:ed:51:ca:62:73:13:c6: 63:89:95:df:54:23:7a:e5:19:30:f1:e3:16:d0:ec:4b:28:61: 6c:08:4c:ba:c5:07:dc:59:69:5c:36:ff:f6:ec:5a:cc:ad:05: 4c:97:89:82:5d:0b:d0:46:87:8e:df:3e:69:a4:2f:c1:74:94: 18:c2:f5:56:4b:f3:0b:c1:fd:95:2f:e1:e7:ca:2d:aa:fa:78: 20:20:98:ef:33:b3:83:92:2a:44:09:d3:6b:5b:61:7a:8b:85: 05:c6:42:0a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUI7BJwv4dL5oOeib6/b7agV+c8nQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNTA3MDQxMDQxMjZaFw0yNjA3MDMxMDQ2MjZaMDMxMTAvBgNV BAMTKDI3NDQ3OUI4OTc4MTY5QzkzM0Y0RTM0QTFBNUNCNUIxNTM4QzY2ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtra+Cy+GQc/tfj2yuq7CNIdcY dfhG1ujyM4K41m9H5SWjsQXLHkfM/XLE0k8ZrJr0G05m7iElJR7+4rNVXo56z++l wSOUjehUJrmBLIvy4N1WzTsPT7Ivp1Io3lKibap9LNvt+xov166di4c/2dUfKUON H5qTlzCPp1I6sFu3qdevJZh+i90vPo1zs2DIy9trcUEI0kysMy8QU4D2mZxBIRfX u+hPmRLX+X56izbj7g1EFSxcGWixtFKcfLU7rsPNj+jQ/EwOGA6YXtg9LAeaUINj hmJ6AGyjhxw0eLnPOjxcIH9J67+PFGl0qhtO4rGFuv/qKtgKqqX+SMkHiT6tAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUJ0R5uJeBackz9ONKGly1sVOMZokwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAOwCzANBgkqhkiG9w0BAQsFAAOCAQEAMTtt6vIFZ2hFHmp8 OBH34KnrIMSFDBqfY2K51TX3K9+cn2hVSC+lURS3lpqKGjCODqIZ51gJTg8uJMpz Y/bOLQWX8mwsPBhQTKQZ2xFAiqLLyOrwHIp37E3rCv0/H6ZL2/6IRton1yS/C8t3 JZpkrtix+MWfpSh7YJhwGKn9iDiDTvM7TFvAi0TYQnBhIdiGBRzpyHiPPZkKGGrt UcpicxPGY4mV31QjeuUZMPHjFtDsSyhhbAhMusUH3FlpXDb/9uxazK0FTJeJgl0L 0EaHjt8+aaQvwXSUGML1VkvzC8H9lS/h58otqvp4ICCY7zOzg5IqRAnTa1theouF BcZCCg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:53:58 2025 by rpki-client