$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a393030303a3a2f33382d3338203d3e20323135333635.roa File: 326130363a313238333a393030303a3a2f33382d3338203d3e20323135333635.roa (raw, json) Hash identifier: 020HnR9rIKfuV2n6hd7OAHR/9d46/KnFYyVNUfcKfZI= Subject key identifier: 24:DF:29:E1:3F:C8:8C:5F:CB:AD:76:92:CA:62:40:33:65:27:A5:26 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4BE94F7ABB7A58C3AFD2F708D6046CF0D543AC25 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a393030303a3a2f33382d3338203d3e20323135333635.roa Signing time: Sat 30 Aug 2025 11:39:07 +0000 ROA not before: Sat 30 Aug 2025 11:34:07 +0000 ROA not after: Sat 29 Aug 2026 11:39:07 +0000 asID: 215365 IP address blocks: 2a06:1283:9000::/38 maxlen: 38 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 Oct 2025 13:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:e9:4f:7a:bb:7a:58:c3:af:d2:f7:08:d6:04:6c:f0:d5:43:ac:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Aug 30 11:34:07 2025 GMT Not After : Aug 29 11:39:07 2026 GMT Subject: CN=24DF29E13FC88C5FCBAD7692CA6240336527A526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:02:75:c5:08:37:e6:ae:ce:36:21:6a:6e:6c: 44:9d:9e:56:2e:c3:91:0d:03:8b:98:b4:55:a6:44: db:7b:e4:08:08:cb:07:8b:50:e1:b6:5c:a4:d6:41: 03:18:94:ee:2a:7d:f0:d7:6c:4e:78:01:82:02:0c: 8e:f8:af:7e:a3:ca:28:ff:cf:39:db:a5:4f:32:ef: 75:24:e3:aa:5f:c5:44:85:70:36:a9:ac:17:50:77: c5:44:47:b1:21:72:26:0b:69:5b:6c:6f:07:15:6d: 2d:56:38:51:2f:87:6f:90:36:20:3a:b1:27:0b:33: 0f:8b:a1:40:b7:38:d1:84:89:35:12:7c:ef:80:fc: 73:c4:bb:46:5a:ea:97:1d:69:bf:2f:db:1b:88:e4: 42:12:92:c4:69:cc:00:de:9b:38:73:0f:5f:8a:23: ab:f3:2e:5e:7b:12:aa:35:a8:7b:d0:fb:85:d1:ee: d5:ed:cd:88:de:32:00:ff:5f:83:2d:d3:b7:37:e9: 8b:62:2c:07:5c:cd:a5:2d:e2:d2:70:1a:f3:e1:12: a9:07:3d:cb:a0:c0:be:7c:68:70:f5:4c:b5:b8:bc: 6a:bf:4e:c8:25:ad:84:af:d1:ef:ed:95:8b:99:1b: 5e:b9:e7:d5:3d:57:10:b8:24:41:08:4b:1f:1f:b3: 8f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DF:29:E1:3F:C8:8C:5F:CB:AD:76:92:CA:62:40:33:65:27:A5:26 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a393030303a3a2f33382d3338203d3e20323135333635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:9000::/38 Signature Algorithm: sha256WithRSAEncryption 90:29:ca:02:83:87:aa:32:53:2d:7d:3e:ad:b1:b7:73:8b:dd: 9b:20:83:f4:89:83:db:45:91:3b:ac:44:f7:ab:dd:3b:c0:00: b0:56:86:80:cf:d9:f3:91:86:cc:38:c6:1f:dc:a2:56:67:a9: 71:98:d5:43:a2:32:c6:d1:9c:09:ff:cd:8e:d0:a6:91:a5:ac: 73:98:15:a7:0a:90:72:71:9b:d3:f1:2b:2c:93:88:c2:d5:12: 47:98:7e:2b:87:dd:ab:fa:47:bb:8a:a0:c0:ed:fe:b4:76:3b: a6:0e:02:8f:3e:0f:ec:2c:ba:11:ca:d2:86:97:af:e0:e1:51: 49:37:4a:8f:71:98:c8:0e:43:0b:70:ef:6a:95:b2:fa:61:95: ee:54:d2:a2:69:8c:04:61:2c:fe:cc:d5:29:77:0c:17:ee:9e: a5:38:92:c8:35:dc:82:a5:70:9b:24:f0:9f:ab:8d:8a:1d:1f: 1b:6d:4b:f9:5c:21:dc:ec:b5:03:8d:7f:8b:ca:da:df:ea:db: 5b:f8:a6:dd:05:94:4e:40:55:04:6b:b2:a0:90:29:c1:77:75: b3:80:80:03:90:bf:fb:d4:cb:85:86:e8:0a:75:07:ad:89:e4: 78:47:d4:e1:d1:4f:d1:ca:50:4e:0f:78:1a:82:02:81:69:85: bd:3c:66:11 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUS+lPert6WMOv0vcI1gRs8NVDrCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA4MzAxMTM0MDdaFw0yNjA4MjkxMTM5MDdaMDMxMTAvBgNV BAMTKDI0REYyOUUxM0ZDODhDNUZDQkFENzY5MkNBNjI0MDMzNjUyN0E1MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvAnXFCDfmrs42IWpubESdnlYu w5ENA4uYtFWmRNt75AgIyweLUOG2XKTWQQMYlO4qffDXbE54AYICDI74r36jyij/ zznbpU8y73Uk46pfxUSFcDaprBdQd8VER7EhciYLaVtsbwcVbS1WOFEvh2+QNiA6 sScLMw+LoUC3ONGEiTUSfO+A/HPEu0Za6pcdab8v2xuI5EISksRpzADemzhzD1+K I6vzLl57Eqo1qHvQ+4XR7tXtzYjeMgD/X4Mt07c36YtiLAdczaUt4tJwGvPhEqkH PcugwL58aHD1TLW4vGq/TsglrYSv0e/tlYuZG16559U9VxC4JEEISx8fs49RAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUJN8p4T/IjF/LrXaSymJAM2UnpSYwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2EzOTMwMzAzMDNhM2EyZjMzMzgyZDMzMzgyMDNkM2UyMDMyMzEzNTMzMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAioGEoOQMA0GCSqGSIb3DQEBCwUAA4IBAQCQKcoCg4eqMlMtfT6t sbdzi92bIIP0iYPbRZE7rET3q907wACwVoaAz9nzkYbMOMYf3KJWZ6lxmNVDojLG 0ZwJ/82O0KaRpaxzmBWnCpBycZvT8Sssk4jC1RJHmH4rh92r+ke7iqDA7f60djum DgKPPg/sLLoRytKGl6/g4VFJN0qPcZjIDkMLcO9qlbL6YZXuVNKiaYwEYSz+zNUp dwwX7p6lOJLINdyCpXCbJPCfq42KHR8bbUv5XCHc7LUDjX+Lytrf6ttb+KbdBZRO QFUEa7KgkCnBd3WzgIADkL/71MuFhugKdQetieR4R9Th0U/RylBOD3gaggKBaYW9 PGYR -----END CERTIFICATE-----Generated at Wed Oct 8 17:19:33 2025 by rpki-client