$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa File: 326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa (raw, json) Hash identifier: iVNEZgOpMFlEdOoV4epTUxFj6KWFxX6+5w3Fhp7PsYE= Subject key identifier: 7C:52:CA:4D:1A:31:68:9F:6F:BA:42:F9:13:FD:37:6C:6A:59:2B:8D Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4874FA9E48400AF3CACF726A83E4556098154C04 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa Signing time: Fri 04 Jul 2025 16:08:42 +0000 ROA not before: Fri 04 Jul 2025 16:03:42 +0000 ROA not after: Fri 03 Jul 2026 16:08:42 +0000 asID: 216052 IP address blocks: 2a06:1283:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:74:fa:9e:48:40:0a:f3:ca:cf:72:6a:83:e4:55:60:98:15:4c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:42 2025 GMT Not After : Jul 3 16:08:42 2026 GMT Subject: CN=7C52CA4D1A31689F6FBA42F913FD376C6A592B8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:fb:30:d8:e0:15:be:3d:20:d2:13:6a:db:49: d0:ea:c9:81:ae:13:07:52:90:c4:ae:96:eb:88:12: ed:36:fa:e3:df:04:ed:ca:af:d7:a7:41:80:1d:ea: 4a:a6:0b:e3:5b:24:d0:27:7c:dd:05:c5:81:6f:a6: b1:8e:77:fa:62:0c:f0:28:23:2e:45:3b:a4:67:26: 4c:3a:b2:b8:cb:b4:c0:f9:b3:a9:0b:ca:c0:d8:4d: 0a:74:74:dc:e9:d2:4b:b8:7e:c2:73:d9:c0:48:8a: c2:99:6a:54:39:bc:52:ad:ca:cf:ae:3a:cb:18:b4: 23:f9:36:53:e7:f5:42:a2:b8:30:6c:fc:a5:89:92: cf:1a:bc:a7:9d:58:6e:14:b8:a2:74:47:de:dc:4f: c2:cc:3d:23:be:57:75:ae:6e:e9:73:54:26:d3:17: 50:0f:1b:b5:f7:5d:f7:84:d2:7f:81:15:e3:a1:9b: b6:97:ad:ae:97:05:0a:09:b8:0c:ed:05:49:f9:d4: 9c:ab:85:3a:62:0e:65:59:5d:b6:eb:8b:8b:f1:63: 07:d1:59:92:5e:2c:06:53:ef:d9:c0:c4:d7:90:d6: dc:6d:4f:53:fa:0d:53:25:1d:bc:b7:15:5d:11:4b: 5a:f2:e9:db:c5:76:21:49:d1:f6:a9:0d:15:b6:bb: fe:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:52:CA:4D:1A:31:68:9F:6F:BA:42:F9:13:FD:37:6C:6A:59:2B:8D X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623130303a3a2f34302d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b100::/40 Signature Algorithm: sha256WithRSAEncryption 74:85:03:f3:b4:52:67:38:f0:fc:e3:f7:c1:4b:7e:a4:b1:9a: 8a:d9:aa:c3:a0:a5:30:f7:06:2c:6d:bc:89:a1:b0:ee:47:2d: 7f:07:ca:55:66:7b:98:b1:58:51:40:19:37:08:9b:87:83:35: c6:e8:30:6c:79:3c:91:43:a2:01:85:1a:74:19:83:01:00:39: 9e:11:27:4b:3a:2e:61:3d:4f:ea:e3:a8:24:38:fc:ad:0e:d9: 3b:4f:ef:e4:08:e3:33:d4:56:77:d7:92:80:5a:0e:1d:c8:4b: ef:29:e1:dd:2a:25:0f:03:98:8d:14:73:b2:c1:01:95:2c:48: 94:92:dc:5f:62:60:51:3b:3f:06:c6:a2:d7:b7:86:7a:56:62: ee:2a:e7:98:21:d4:e5:7c:28:91:b0:d0:5e:90:2a:df:46:f1: 80:30:1d:a8:1f:7e:12:91:db:e0:d1:1c:b7:27:28:e6:c1:a9: ba:db:fe:8b:1d:6f:84:d8:23:9f:65:9b:26:89:ab:38:5e:97: 32:97:64:8e:a1:af:9b:60:52:47:ab:c9:9d:84:e5:ec:79:9e: 0b:9a:35:da:aa:98:38:1d:06:29:34:d3:4e:0b:74:fe:65:e7: 88:7c:08:6b:93:e8:6d:c3:f4:aa:91:ef:55:52:c6:e1:e0:e5: 7d:a2:a9:f5 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUSHT6nkhACvPKz3Jqg+RVYJgVTAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDJaFw0yNjA3MDMxNjA4NDJaMDMxMTAvBgNV BAMTKDdDNTJDQTREMUEzMTY4OUY2RkJBNDJGOTEzRkQzNzZDNkE1OTJCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV+zDY4BW+PSDSE2rbSdDqyYGu EwdSkMSuluuIEu02+uPfBO3Kr9enQYAd6kqmC+NbJNAnfN0FxYFvprGOd/piDPAo Iy5FO6RnJkw6srjLtMD5s6kLysDYTQp0dNzp0ku4fsJz2cBIisKZalQ5vFKtys+u OssYtCP5NlPn9UKiuDBs/KWJks8avKedWG4UuKJ0R97cT8LMPSO+V3WubulzVCbT F1APG7X3XfeE0n+BFeOhm7aXra6XBQoJuAztBUn51JyrhTpiDmVZXbbri4vxYwfR WZJeLAZT79nAxNeQ1txtT1P6DVMlHby3FV0RS1ry6dvFdiFJ0fapDRW2u/5rAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUfFLKTRoxaJ9vukL5E/03bGpZK40wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOxMA0GCSqGSIb3DQEBCwUAA4IBAQB0hQPztFJnOPD84/fB S36ksZqK2arDoKUw9wYsbbyJobDuRy1/B8pVZnuYsVhRQBk3CJuHgzXG6DBseTyR Q6IBhRp0GYMBADmeESdLOi5hPU/q46gkOPytDtk7T+/kCOMz1FZ315KAWg4dyEvv KeHdKiUPA5iNFHOywQGVLEiUktxfYmBROz8GxqLXt4Z6VmLuKueYIdTlfCiRsNBe kCrfRvGAMB2oH34Skdvg0Ry3Jyjmwam62/6LHW+E2COfZZsmias4Xpcyl2SOoa+b YFJHq8mdhOXseZ4LmjXaqpg4HQYpNNNOC3T+ZeeIfAhrk+htw/Sqke9VUsbh4OV9 oqn1 -----END CERTIFICATE-----Generated at Sat Jul 5 08:51:23 2025 by rpki-client