$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3333203d3e20323134393239.roa File: 326130363a313238333a3a2f33332d3333203d3e20323134393239.roa (raw, json) Hash identifier: U1f90ad8aIP4fGwvw7tgGsDF5gZ1M2Z90G+INQISxMc= Subject key identifier: 67:1B:CB:21:72:66:DA:26:80:DD:D7:75:DC:7E:B2:8D:EC:08:56:FA Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 51FEC066EF55BDBA860F0B0B79DAE08636B3C91A Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3333203d3e20323134393239.roa Signing time: Sat 30 Aug 2025 15:16:59 +0000 ROA not before: Sat 30 Aug 2025 15:11:59 +0000 ROA not after: Sat 29 Aug 2026 15:16:59 +0000 asID: 214929 IP address blocks: 2a06:1283::/33 maxlen: 33 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Sep 2025 21:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:fe:c0:66:ef:55:bd:ba:86:0f:0b:0b:79:da:e0:86:36:b3:c9:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Aug 30 15:11:59 2025 GMT Not After : Aug 29 15:16:59 2026 GMT Subject: CN=671BCB217266DA2680DDD775DC7EB28DEC0856FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:98:5c:86:19:95:5e:61:02:0f:41:7e:4e:47: 09:73:8a:df:63:45:91:c8:56:8f:63:bb:d3:01:db: 35:3b:6d:2f:35:15:0b:6a:e8:3c:4c:1b:b2:89:03: 87:dd:62:37:9e:ba:61:f8:40:5c:03:fd:2a:46:f7: 68:4a:82:32:40:e4:68:60:9f:02:bb:0e:f1:c8:b3: 8a:a7:62:d2:48:14:76:a8:5c:04:f2:31:fc:e7:f1: d1:26:d5:b1:6d:fc:cd:f0:24:40:53:ce:d5:49:0c: 6e:a9:07:c0:59:5a:c1:13:cb:0f:90:8a:69:a0:f6: 33:f8:cd:7f:1d:e6:d9:0a:b9:86:15:c6:10:e4:e2: a1:83:d5:5a:60:72:2e:87:4b:0f:fa:cc:a4:f9:77: 55:51:4c:7d:6b:3d:20:8d:7e:f2:b9:a4:0d:b2:0a: 8f:b7:ed:2c:90:6e:25:9a:85:95:4a:21:c5:b3:55: 1f:31:ec:c8:e7:3d:2f:35:36:9d:5e:1a:8d:ee:de: 13:5d:b1:48:df:0b:46:82:24:e5:20:d3:7f:ed:78: aa:4a:1f:c8:c0:45:13:59:fa:49:f8:3c:a7:84:1c: e9:02:58:62:fa:3d:1d:88:34:7c:f5:8d:57:58:59: a6:eb:ac:ad:75:42:c5:6f:c1:84:ac:a0:4a:10:2b: 3c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1B:CB:21:72:66:DA:26:80:DD:D7:75:DC:7E:B2:8D:EC:08:56:FA X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3333203d3e20323134393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/33 Signature Algorithm: sha256WithRSAEncryption 76:d9:f4:44:70:c2:84:d3:8b:da:10:32:ce:fa:41:25:a9:56: d8:2c:06:b6:bc:76:3e:ba:83:cc:15:bb:35:0a:6a:b1:0f:f3: c1:af:60:87:6c:68:75:b7:f1:74:e1:9a:94:17:24:79:89:68: 9a:30:3c:1f:66:c9:fb:0c:e3:55:d4:4d:cc:20:6b:cc:f9:87: f8:12:46:92:a5:91:b4:21:3a:df:d8:9b:6f:0a:45:9e:d2:ec: 4f:a8:02:58:a2:c1:3b:9c:f1:5e:d4:c5:d7:ac:a9:20:17:d8: b8:0b:11:e7:55:87:18:23:d2:a9:c7:1d:ef:90:66:6f:7f:69: aa:82:c1:e7:b7:53:a7:8e:66:5c:e5:e1:a0:24:b2:9b:14:4b: 26:bf:a4:59:a2:ee:03:68:53:bd:a1:9f:fb:64:23:34:d0:71: 5c:0f:4e:0f:15:9e:fe:37:b1:b1:d7:1d:ff:2f:15:3e:34:d2: 24:a5:08:1d:28:51:e1:3c:05:ab:b6:88:2e:16:0b:b2:7f:60: f0:6c:1f:86:70:1d:41:5c:e0:76:fa:60:25:4a:bd:20:29:bf: 5c:24:83:d4:04:8d:e9:fe:5f:71:0f:33:26:62:da:d4:86:73: dc:e9:55:f3:fc:cb:51:63:b1:c4:90:4b:9e:b9:09:cd:fe:77: c5:72:b4:01 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUUf7AZu9VvbqGDwsLedrghjazyRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA4MzAxNTExNTlaFw0yNjA4MjkxNTE2NTlaMDMxMTAvBgNV BAMTKDY3MUJDQjIxNzI2NkRBMjY4MERERDc3NURDN0VCMjhERUMwODU2RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjmFyGGZVeYQIPQX5ORwlzit9j RZHIVo9ju9MB2zU7bS81FQtq6DxMG7KJA4fdYjeeumH4QFwD/SpG92hKgjJA5Ghg nwK7DvHIs4qnYtJIFHaoXATyMfzn8dEm1bFt/M3wJEBTztVJDG6pB8BZWsETyw+Q immg9jP4zX8d5tkKuYYVxhDk4qGD1Vpgci6HSw/6zKT5d1VRTH1rPSCNfvK5pA2y Co+37SyQbiWahZVKIcWzVR8x7MjnPS81Np1eGo3u3hNdsUjfC0aCJOUg03/teKpK H8jARRNZ+kn4PKeEHOkCWGL6PR2INHz1jVdYWabrrK11QsVvwYSsoEoQKzx5AgMB AAGjggJvMIICazAdBgNVHQ4EFgQUZxvLIXJm2iaA3dd13H6yjewIVvowHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMzJkMzMzMzIwM2QzZTIwMzIzMTM0MzkzMjM5LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYH KgYSgwAwDQYJKoZIhvcNAQELBQADggEBAHbZ9ERwwoTTi9oQMs76QSWpVtgsBra8 dj66g8wVuzUKarEP88GvYIdsaHW38XThmpQXJHmJaJowPB9myfsM41XUTcwga8z5 h/gSRpKlkbQhOt/Ym28KRZ7S7E+oAliiwTuc8V7UxdesqSAX2LgLEedVhxgj0qnH He+QZm9/aaqCwee3U6eOZlzl4aAkspsUSya/pFmi7gNoU72hn/tkIzTQcVwPTg8V nv43sbHXHf8vFT400iSlCB0oUeE8Bau2iC4WC7J/YPBsH4ZwHUFc4Hb6YCVKvSAp v1wkg9QEjen+X3EPMyZi2tSGc9zpVfP8y1FjscSQS565Cc3+d8VytAE= -----END CERTIFICATE-----Generated at Sat Sep 6 14:44:15 2025 by rpki-client