$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/3130332e36382e3131312e302f32342d3234203d3e203438373030.roa File: 3130332e36382e3131312e302f32342d3234203d3e203438373030.roa (raw, json) Hash identifier: LtnyeStANI7BHax6GtICYUidJww0KL6erA0EQdu3bzg= Subject key identifier: F7:8A:04:A7:78:8D:D5:0B:93:CA:4B:BC:12:4E:8B:01:0E:53:CF:2E Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 2E057D65FEB8CDE86A2969B05B225BF96E1ED943 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/3130332e36382e3131312e302f32342d3234203d3e203438373030.roa Signing time: Tue 10 Mar 2026 19:56:28 +0000 ROA not before: Tue 10 Mar 2026 19:51:28 +0000 ROA not after: Tue 09 Mar 2027 19:56:28 +0000 asID: 48700 IP address blocks: 103.68.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 17 Mar 2026 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:05:7d:65:fe:b8:cd:e8:6a:29:69:b0:5b:22:5b:f9:6e:1e:d9:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Mar 10 19:51:28 2026 GMT Not After : Mar 9 19:56:28 2027 GMT Subject: CN=F78A04A7788DD50B93CA4BBC124E8B010E53CF2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:10:ef:c4:cd:53:b9:59:82:57:1a:c0:bf:b9: 53:37:e4:db:1b:cf:e4:8d:f4:93:fa:3d:06:de:02: 9b:14:c7:19:21:ad:42:68:53:d4:ee:c4:55:9f:87: ca:ce:82:c8:68:36:d5:02:cb:2d:ea:03:22:ed:5b: 80:53:64:cd:fb:02:a8:2c:ae:65:89:c8:e1:f7:55: 35:e8:b8:d0:8e:ef:d2:65:77:38:87:fc:08:68:1e: d7:c4:9b:34:87:88:08:39:f1:78:ce:a6:2b:97:f8: d2:9b:dd:bc:20:34:ba:6d:a0:e1:e6:3e:2b:6f:24: d7:3d:b9:02:61:57:cb:ed:53:a4:28:b9:e0:62:4d: 4d:7d:84:4d:32:2d:a6:b0:b4:31:e5:5c:39:87:9c: a6:5f:84:c1:04:91:16:99:3d:da:a7:c9:41:72:e2: 55:77:c2:ef:89:f8:4c:00:cb:42:59:42:57:35:92: 37:c7:29:df:cd:29:8d:a9:5b:21:9f:40:01:ee:ac: af:ac:d4:79:1a:8e:81:de:1b:13:7a:8b:c9:82:ea: a2:9c:88:c5:98:9f:2a:a7:4d:6a:98:c0:98:49:f8: 68:06:26:ab:0b:79:f0:7a:c0:61:36:af:ae:3c:68: 83:4b:ed:fa:d2:bb:63:4c:23:3f:ec:1b:6a:05:cc: e7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8A:04:A7:78:8D:D5:0B:93:CA:4B:BC:12:4E:8B:01:0E:53:CF:2E X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/3130332e36382e3131312e302f32342d3234203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.68.111.0/24 Signature Algorithm: sha256WithRSAEncryption 47:09:9f:c1:dc:98:76:3e:46:0d:a9:45:7c:68:2d:e8:2b:9e: 0a:4f:31:13:ab:3c:14:16:77:f6:4d:b0:99:ec:5b:9e:9a:48: de:c7:ed:b6:cc:a4:58:6a:35:82:bd:84:2b:78:52:c5:2d:ac: da:c4:47:9d:80:2c:1d:46:67:95:70:86:5a:2e:f7:ea:79:57: 1a:96:90:9a:23:83:43:ad:f5:f6:51:ed:2b:ce:4f:67:1b:3c: 87:d8:21:92:49:01:f5:aa:32:1c:4e:6b:7e:9e:a2:32:14:ad: 5d:17:07:ef:e0:d9:0a:2b:7f:db:5f:ee:bb:56:ea:b5:8d:7e: 24:54:49:91:74:1a:0d:05:64:6e:bd:7a:49:0e:5d:b1:42:98: 06:7e:95:57:14:74:a2:48:4b:32:52:da:43:e0:d7:3f:9e:51: 98:ba:c3:72:d5:9d:b3:ee:e2:65:14:f2:1c:c3:06:04:37:c9: ee:fd:9c:4c:58:98:ad:1e:e7:a4:99:af:21:11:d1:e1:03:7d: 90:03:86:88:38:3a:86:74:0d:08:99:ca:c0:c4:18:63:5e:35: bb:54:9d:49:6a:4a:ac:eb:0b:4b:34:d1:1e:9c:e2:be:a4:60: e8:10:39:92:d8:a9:25:98:87:a7:b8:9b:79:06:3f:ed:a6:98: 82:53:56:12 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIULgV9Zf64zehqKWmwWyJb+W4e2UMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjAzMTAxOTUxMjhaFw0yNzAzMDkxOTU2MjhaMDMxMTAvBgNV BAMTKEY3OEEwNEE3Nzg4REQ1MEI5M0NBNEJCQzEyNEU4QjAxMEU1M0NGMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoEO/EzVO5WYJXGsC/uVM35Nsb z+SN9JP6PQbeApsUxxkhrUJoU9TuxFWfh8rOgshoNtUCyy3qAyLtW4BTZM37Aqgs rmWJyOH3VTXouNCO79JldziH/AhoHtfEmzSHiAg58XjOpiuX+NKb3bwgNLptoOHm PitvJNc9uQJhV8vtU6QoueBiTU19hE0yLaawtDHlXDmHnKZfhMEEkRaZPdqnyUFy 4lV3wu+J+EwAy0JZQlc1kjfHKd/NKY2pWyGfQAHurK+s1HkajoHeGxN6i8mC6qKc iMWYnyqnTWqYwJhJ+GgGJqsLefB6wGE2r648aINL7frSu2NMIz/sG2oFzOd7AgMB AAGjggJtMIICaTAdBgNVHQ4EFgQU94oEp3iN1QuTyku8Ek6LAQ5Tzy4wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzEzMDMzMmUzNjM4MmUzMTMx MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNDM4MzczMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA Z0RvMA0GCSqGSIb3DQEBCwUAA4IBAQBHCZ/B3Jh2PkYNqUV8aC3oK54KTzETqzwU Fnf2TbCZ7Fuemkjex+22zKRYajWCvYQreFLFLazaxEedgCwdRmeVcIZaLvfqeVca lpCaI4NDrfX2Ue0rzk9nGzyH2CGSSQH1qjIcTmt+nqIyFK1dFwfv4NkKK3/bX+67 Vuq1jX4kVEmRdBoNBWRuvXpJDl2xQpgGfpVXFHSiSEsyUtpD4Nc/nlGYusNy1Z2z 7uJlFPIcwwYEN8nu/ZxMWJitHuekma8hEdHhA32QA4aIODqGdA0ImcrAxBhjXjW7 VJ1Jakqs6wtLNNEenOK+pGDoEDmS2KklmIenuJt5Bj/tppiCU1YS -----END CERTIFICATE-----Generated at Mon Mar 16 08:57:17 2026 by rpki-client