$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3334203d3e20313937343737.roa File: 326130363a313238333a3a2f33332d3334203d3e20313937343737.roa (raw, json) Hash identifier: xMaSaL+WFr5YSwuBlDQCy4wcqzyZN4ZfdFfWkgYjPd4= Subject key identifier: 25:91:44:9A:7D:69:AE:CB:95:69:16:EF:C4:DC:34:D5:46:35:90:5D Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 36DF957B5118EA90785527D8CBCF261ECA7D6F2B Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3334203d3e20313937343737.roa Signing time: Fri 04 Jul 2025 16:08:40 +0000 ROA not before: Fri 04 Jul 2025 16:03:40 +0000 ROA not after: Fri 03 Jul 2026 16:08:40 +0000 asID: 197477 IP address blocks: 2a06:1283::/33 maxlen: 34 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:df:95:7b:51:18:ea:90:78:55:27:d8:cb:cf:26:1e:ca:7d:6f:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:40 2025 GMT Not After : Jul 3 16:08:40 2026 GMT Subject: CN=2591449A7D69AECB956916EFC4DC34D54635905D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ba:4c:72:46:fa:ad:89:7e:53:4f:3e:21:2a: 5f:45:02:cb:2e:c1:41:81:9d:d7:43:aa:88:e4:d1: 60:c7:5c:b2:5c:d9:d1:6f:e6:56:34:b8:f4:37:e6: b3:50:2e:ff:21:4f:5b:31:2d:c2:d3:dd:eb:35:e1: 1e:8e:bd:51:8e:e4:9a:fe:e2:e9:97:e1:b1:f3:f4: 97:7f:fa:e1:c7:7a:bd:b4:10:16:07:6d:79:a7:0d: 96:e5:55:27:ab:d1:f5:7c:cc:4b:7f:0f:d8:5a:cb: 2a:7a:15:bb:38:db:96:03:9e:c3:e1:af:53:a8:16: 45:26:aa:34:99:1c:52:de:56:04:b9:c1:22:76:f9: 5c:12:70:37:da:65:4b:50:42:8d:48:e1:fb:d8:80: e6:18:b3:02:13:c1:4b:b2:95:03:66:31:88:56:55: c4:da:25:0b:f3:eb:91:dc:93:5b:93:98:1f:a3:97: e0:eb:34:99:7e:b7:1f:1e:bb:a7:f1:66:34:40:a8: 0d:32:41:a8:a1:24:1c:e1:ce:ba:d6:13:95:80:d7: 8e:df:eb:a0:c7:7a:41:69:00:e8:0d:d0:34:72:2b: b7:e2:23:39:af:7a:7b:be:cb:83:69:17:27:d1:cb: e7:d6:3f:3f:51:fb:ae:6c:f6:1b:74:b8:d9:86:0b: 68:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:91:44:9A:7D:69:AE:CB:95:69:16:EF:C4:DC:34:D5:46:35:90:5D X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33332d3334203d3e20313937343737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/33 Signature Algorithm: sha256WithRSAEncryption 26:40:9c:3d:63:91:5e:81:5d:b2:66:d9:a2:d3:eb:57:f4:d0: d1:02:6c:7f:84:c5:be:29:3b:81:73:eb:bd:bf:ca:71:29:a8: 9a:63:5b:ef:5f:3c:c3:35:ab:a8:ce:59:e9:86:51:14:53:17: d3:f0:95:aa:55:91:b2:f4:d4:04:c3:41:99:f1:36:00:3a:a1: de:f8:18:6e:f1:eb:6f:4c:de:c2:f1:18:1b:aa:e5:55:81:ad: 5f:c6:2e:c1:fb:1f:64:c8:74:b6:86:15:42:65:65:40:d5:96: 26:de:45:8d:d2:40:07:c4:b1:41:e0:5a:66:64:ec:58:a8:04: 46:cb:1a:7e:35:43:01:df:d1:73:24:cd:40:df:7b:b8:a0:47: 11:0b:74:d4:33:b1:b1:55:62:21:71:90:29:df:8b:b7:f3:7b: d2:29:45:e9:7c:05:68:9c:c0:5c:53:58:27:10:4d:da:04:1d: a7:3b:04:78:0b:fc:1d:7f:de:ee:9f:c8:8d:d1:c1:b8:f8:a1: 57:08:0e:03:db:38:ae:9c:42:25:9d:46:01:7f:26:76:a3:3e: dc:66:80:9c:ec:02:cd:28:3f:17:88:7d:8c:08:18:c4:7d:d8: de:1d:0a:59:42:2e:3f:b0:08:b9:d0:3e:ea:ff:93:26:3b:01: 2d:d1:e6:37 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgIUNt+Ve1EY6pB4VSfYy88mHsp9byswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDBaFw0yNjA3MDMxNjA4NDBaMDMxMTAvBgNV BAMTKDI1OTE0NDlBN0Q2OUFFQ0I5NTY5MTZFRkM0REMzNEQ1NDYzNTkwNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSukxyRvqtiX5TTz4hKl9FAssu wUGBnddDqojk0WDHXLJc2dFv5lY0uPQ35rNQLv8hT1sxLcLT3es14R6OvVGO5Jr+ 4umX4bHz9Jd/+uHHer20EBYHbXmnDZblVSer0fV8zEt/D9hayyp6Fbs425YDnsPh r1OoFkUmqjSZHFLeVgS5wSJ2+VwScDfaZUtQQo1I4fvYgOYYswITwUuylQNmMYhW VcTaJQvz65Hck1uTmB+jl+DrNJl+tx8eu6fxZjRAqA0yQaihJBzhzrrWE5WA147f 66DHekFpAOgN0DRyK7fiIzmvenu+y4NpFyfRy+fWPz9R+65s9ht0uNmGC2gXAgMB AAGjggJvMIICazAdBgNVHQ4EFgQUJZFEmn1prsuVaRbvxNw01UY1kF0wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMzJkMzMzNDIwM2QzZTIwMzEzOTM3MzQzNzM3LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYH KgYSgwAwDQYJKoZIhvcNAQELBQADggEBACZAnD1jkV6BXbJm2aLT61f00NECbH+E xb4pO4Fz672/ynEpqJpjW+9fPMM1q6jOWemGURRTF9PwlapVkbL01ATDQZnxNgA6 od74GG7x629M3sLxGBuq5VWBrV/GLsH7H2TIdLaGFUJlZUDVlibeRY3SQAfEsUHg WmZk7FioBEbLGn41QwHf0XMkzUDfe7igRxELdNQzsbFVYiFxkCnfi7fze9IpRel8 BWicwFxTWCcQTdoEHac7BHgL/B1/3u6fyI3Rwbj4oVcIDgPbOK6cQiWdRgF/Jnaj PtxmgJzsAs0oPxeIfYwIGMR92N4dCllCLj+wCLnQPur/kyY7AS3R5jc= -----END CERTIFICATE-----Generated at Sat Jul 5 08:50:06 2025 by rpki-client