$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323136313133.roa File: 326130363a313238333a623030623a3a2f34382d3438203d3e20323136313133.roa (raw, json) Hash identifier: 4sNpvCDpmLQp2mPXp2Ksgv7uyg8pxayLVvTTtKN/kGA= Subject key identifier: 8B:6E:2A:2A:14:45:54:13:CC:A4:D3:DB:79:0D:00:E4:3A:65:18:62 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 09B1959F9C150B28D06D1B281E587E57C06CDC6A Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323136313133.roa Signing time: Fri 04 Jul 2025 16:08:40 +0000 ROA not before: Fri 04 Jul 2025 16:03:40 +0000 ROA not after: Fri 03 Jul 2026 16:08:40 +0000 asID: 216113 IP address blocks: 2a06:1283:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b1:95:9f:9c:15:0b:28:d0:6d:1b:28:1e:58:7e:57:c0:6c:dc:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:40 2025 GMT Not After : Jul 3 16:08:40 2026 GMT Subject: CN=8B6E2A2A14455413CCA4D3DB790D00E43A651862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9f:59:b7:d3:f7:97:6b:e5:90:42:e9:ab:4f: 82:47:16:fc:df:24:6f:07:a2:0c:be:f0:d9:db:3b: 20:4a:70:d4:6d:ac:73:47:a6:83:e0:de:ee:61:e4: 21:0b:cc:46:55:82:08:d5:3d:46:c0:22:8b:19:a3: 33:71:d3:87:e8:95:35:9b:ec:66:80:3f:20:84:18: e8:32:42:7b:35:0a:ef:5b:c6:b9:1f:46:0b:96:8e: e5:8f:32:eb:00:6f:a9:cf:43:6a:e3:9f:da:79:2c: 15:8b:cc:93:4f:9e:e8:67:9f:b9:c9:60:6c:00:ac: 03:eb:34:5c:fd:c2:8f:2a:57:30:d4:3d:9a:f0:ae: a0:98:63:b1:a6:90:8d:aa:2e:bd:f9:75:33:2f:80: ac:9b:b1:8d:a6:f8:35:0e:94:92:40:d7:b4:23:3e: 3f:2b:90:b4:a4:11:4f:a9:8d:f8:d3:8f:6d:61:e4: 49:30:93:23:e6:92:11:60:03:7e:1c:fd:77:21:46: 04:09:4d:c8:6a:4d:4a:72:ea:37:ea:b6:ed:77:4f: 66:b1:1f:46:40:d3:62:e0:0d:ee:4c:8b:71:c3:fa: 72:8b:00:c4:83:0d:a0:e0:bb:78:42:23:29:f8:31: a3:8e:7a:18:77:03:3b:68:a8:8d:e6:be:1f:46:0e: ba:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6E:2A:2A:14:45:54:13:CC:A4:D3:DB:79:0D:00:E4:3A:65:18:62 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623030623a3a2f34382d3438203d3e20323136313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 26:61:17:0d:b1:92:99:50:6b:d7:07:38:1e:76:96:1d:16:ff: 1b:3b:2a:a6:e3:27:4b:ce:cd:4b:68:2b:4a:a6:64:56:30:eb: 2d:4b:af:7f:b1:23:a1:0f:93:05:7f:c5:53:8c:b8:96:fa:0c: 28:d0:a9:8b:28:a9:00:22:c3:a9:5a:54:ae:62:67:12:3a:dc: 1e:bf:b4:94:4d:6e:58:14:18:3d:c0:52:ef:33:4c:84:75:0e: e9:51:9e:43:37:3a:c1:b7:92:47:8a:c1:a1:e4:89:0e:2e:92: fe:5a:a0:8c:04:79:ba:f4:2a:4f:c5:35:90:17:d5:37:2d:9e: 51:9f:04:dc:19:61:5f:42:f9:2e:7a:6f:ae:3b:99:91:27:31: 0a:0c:2c:55:54:28:9f:78:3a:53:41:fc:5c:55:93:3f:8f:1d: b7:ac:f7:d7:fc:2e:5c:20:73:a4:03:93:39:11:76:0c:9d:4c: 34:d4:11:4a:cb:dc:ce:f4:2d:a4:73:35:f1:16:68:e2:9a:25: 62:1c:7e:6f:47:7a:00:de:f9:d3:e1:bc:c0:0a:c1:14:f1:b4: 97:cb:aa:b7:c5:bf:58:4f:ec:ad:d4:68:e9:a5:38:14:a8:0c: 43:2c:69:8d:2c:8b:d6:19:ba:22:a1:71:c4:7d:67:10:45:a2: 43:af:55:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUCbGVn5wVCyjQbRsoHlh+V8Bs3GowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDBaFw0yNjA3MDMxNjA4NDBaMDMxMTAvBgNV BAMTKDhCNkUyQTJBMTQ0NTU0MTNDQ0E0RDNEQjc5MEQwMEU0M0E2NTE4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2n1m30/eXa+WQQumrT4JHFvzf JG8Hogy+8NnbOyBKcNRtrHNHpoPg3u5h5CELzEZVggjVPUbAIosZozNx04folTWb 7GaAPyCEGOgyQns1Cu9bxrkfRguWjuWPMusAb6nPQ2rjn9p5LBWLzJNPnuhnn7nJ YGwArAPrNFz9wo8qVzDUPZrwrqCYY7GmkI2qLr35dTMvgKybsY2m+DUOlJJA17Qj Pj8rkLSkEU+pjfjTj21h5EkwkyPmkhFgA34c/XchRgQJTchqTUpy6jfqtu13T2ax H0ZA02LgDe5Mi3HD+nKLAMSDDaDgu3hCIyn4MaOOehh3AztoqI3mvh9GDroZAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUi24qKhRFVBPMpNPbeQ0A5DplGGIwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMxMzEzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOwCzANBgkqhkiG9w0BAQsFAAOCAQEAJmEXDbGSmVBr1wc4 HnaWHRb/GzsqpuMnS87NS2grSqZkVjDrLUuvf7EjoQ+TBX/FU4y4lvoMKNCpiyip ACLDqVpUrmJnEjrcHr+0lE1uWBQYPcBS7zNMhHUO6VGeQzc6wbeSR4rBoeSJDi6S /lqgjAR5uvQqT8U1kBfVNy2eUZ8E3BlhX0L5LnpvrjuZkScxCgwsVVQon3g6U0H8 XFWTP48dt6z31/wuXCBzpAOTORF2DJ1MNNQRSsvczvQtpHM18RZo4polYhx+b0d6 AN750+G8wArBFPG0l8uqt8W/WE/srdRo6aU4FKgMQyxpjSyL1hm6IqFxxH1nEEWi Q69Vnw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:47:33 2025 by rpki-client