$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323037343234.roa File: 326130363a313238333a623030623a3a2f34382d3438203d3e20323037343234.roa (raw, json) Hash identifier: 46s55ubn5d3syu1JbUaOFkMdM1SbsGOMWMhdQ+Kpt6c= Subject key identifier: AA:7E:12:6F:3D:20:C5:29:76:61:FF:29:41:01:A7:90:0D:6E:5B:6F Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 7D74BA1DE9AC1AA0F3406323C35E963B31964BD7 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323037343234.roa Signing time: Fri 04 Jul 2025 16:08:42 +0000 ROA not before: Fri 04 Jul 2025 16:03:42 +0000 ROA not after: Fri 03 Jul 2026 16:08:42 +0000 asID: 207424 IP address blocks: 2a06:1283:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:74:ba:1d:e9:ac:1a:a0:f3:40:63:23:c3:5e:96:3b:31:96:4b:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:42 2025 GMT Not After : Jul 3 16:08:42 2026 GMT Subject: CN=AA7E126F3D20C5297661FF294101A7900D6E5B6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:cc:96:ed:eb:fd:18:54:86:56:01:b3:11: 02:84:07:4a:97:ac:69:63:a8:ad:92:62:60:6f:80: 17:ce:92:68:11:47:73:8c:bf:6d:ed:3f:cf:70:59: 7b:da:bc:a6:91:87:a4:5b:e6:0f:2c:11:2f:62:e5: 37:5b:f4:ea:10:cb:2d:6f:86:52:19:77:d6:16:b2: b7:e8:9c:b4:07:66:0b:38:1a:7c:88:c5:d3:e3:34: 39:94:06:e2:72:81:11:5c:1b:75:0a:ff:38:62:88: ac:8b:3a:06:f6:d3:89:ae:43:02:40:6e:d4:cd:a2: b7:44:19:53:2c:3d:9e:81:ea:2e:bd:12:90:6d:79: 13:61:6f:a0:35:51:b6:91:01:59:06:8b:a6:d7:80: dc:d2:a4:51:b1:55:17:68:55:d6:87:c1:22:e8:05: 66:b7:77:c2:5c:ca:f2:83:37:4c:85:0c:c4:50:89: e7:c2:d5:b5:3a:8c:5e:ef:32:f2:6b:4f:3a:51:0e: e3:d7:19:9a:ad:3b:e5:c3:7a:67:7a:82:14:18:ed: 67:2c:35:ab:f8:91:6f:62:3f:15:de:89:f4:1b:cd: 1b:5f:66:bb:ea:46:87:c6:f3:9b:be:9a:2d:9f:21: 94:26:d6:8a:89:fa:4e:77:44:0d:a6:8f:75:27:b1: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:7E:12:6F:3D:20:C5:29:76:61:FF:29:41:01:A7:90:0D:6E:5B:6F X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323037343234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 0f:bb:fb:24:a8:54:f0:ae:5b:bd:89:94:15:e9:df:d1:2e:32: e4:4d:f0:03:ac:ba:b6:e9:3a:70:d6:38:14:47:08:17:b8:bd: d7:92:2e:ec:12:1b:c7:80:4c:88:e7:8f:45:8b:a2:64:ad:5a: 63:ae:0c:62:f9:f9:d1:0d:bc:c2:c8:22:97:99:bc:43:3b:f2: 05:d8:49:c8:39:75:ea:85:87:28:f8:b0:69:00:e8:09:d0:ac: a9:06:09:4a:92:3b:93:88:da:b0:64:3f:9c:63:0c:01:a2:b1: 44:7b:6f:e1:39:75:3e:82:b6:dc:31:cc:e9:de:96:b2:79:ce: 58:0c:7a:74:bf:c2:21:32:f0:03:c1:64:35:3c:ec:b6:df:f0: e9:bf:c0:70:36:78:96:19:42:01:20:ae:b5:f8:9a:03:53:b3: 0e:dc:95:a5:ac:9f:68:de:64:96:fc:00:0d:96:da:c5:95:0f: 93:eb:02:85:70:e3:d0:61:05:b3:4b:50:5e:0b:d8:e8:ac:fd: 62:6e:af:2b:c3:ad:fc:63:d1:7d:22:72:77:47:9f:a9:58:23: 92:24:47:3a:6a:ec:1b:e0:63:9b:ce:1b:45:6f:36:5e:8c:ea: 9c:9b:e1:10:82:59:21:04:24:be:86:7a:d6:b8:97:1d:5f:7b: 1f:02:e4:37 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUfXS6HemsGqDzQGMjw16WOzGWS9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDJaFw0yNjA3MDMxNjA4NDJaMDMxMTAvBgNV BAMTKEFBN0UxMjZGM0QyMEM1Mjk3NjYxRkYyOTQxMDFBNzkwMEQ2RTVCNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmO8yW7ev9GFSGVgGzEQKEB0qX rGljqK2SYmBvgBfOkmgRR3OMv23tP89wWXvavKaRh6Rb5g8sES9i5Tdb9OoQyy1v hlIZd9YWsrfonLQHZgs4GnyIxdPjNDmUBuJygRFcG3UK/zhiiKyLOgb204muQwJA btTNordEGVMsPZ6B6i69EpBteRNhb6A1UbaRAVkGi6bXgNzSpFGxVRdoVdaHwSLo BWa3d8JcyvKDN0yFDMRQiefC1bU6jF7vMvJrTzpRDuPXGZqtO+XDemd6ghQY7Wcs Nav4kW9iPxXeifQbzRtfZrvqRofG85u+mi2fIZQm1oqJ+k53RA2mj3UnsaC9AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUqn4Sbz0gxSl2Yf8pQQGnkA1uW28wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzM0MzIzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOwCzANBgkqhkiG9w0BAQsFAAOCAQEAD7v7JKhU8K5bvYmU Fenf0S4y5E3wA6y6tuk6cNY4FEcIF7i915Iu7BIbx4BMiOePRYuiZK1aY64MYvn5 0Q28wsgil5m8QzvyBdhJyDl16oWHKPiwaQDoCdCsqQYJSpI7k4jasGQ/nGMMAaKx RHtv4Tl1PoK23DHM6d6WsnnOWAx6dL/CITLwA8FkNTzstt/w6b/AcDZ4lhlCASCu tfiaA1OzDtyVpayfaN5klvwADZbaxZUPk+sChXDj0GEFs0tQXgvY6Kz9Ym6vK8Ot /GPRfSJyd0efqVgjkiRHOmrsG+Bjm84bRW82XozqnJvhEIJZIQQkvoZ61riXHV97 HwLkNw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:49:24 2025 by rpki-client