$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa File: 326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa (raw, json) Hash identifier: amvWzbPaO2f46MbzaiK4ChMLXza28cfiXMhX8ZNFmCw= Subject key identifier: 7B:BF:CD:FF:83:F0:81:1C:B6:6E:F3:3C:85:3D:0A:9F:D4:11:D0:F4 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 66C84D9215E484C5CB4E335ECD236CFB6B926546 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa Signing time: Fri 04 Jul 2025 16:08:44 +0000 ROA not before: Fri 04 Jul 2025 16:03:44 +0000 ROA not after: Fri 03 Jul 2026 16:08:44 +0000 asID: 216052 IP address blocks: 2a06:1283:b121::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:c8:4d:92:15:e4:84:c5:cb:4e:33:5e:cd:23:6c:fb:6b:92:65:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:44 2025 GMT Not After : Jul 3 16:08:44 2026 GMT Subject: CN=7BBFCDFF83F0811CB66EF33C853D0A9FD411D0F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6a:7f:45:2f:f1:f9:75:9f:e6:77:4a:5b:79: 5e:0b:26:a7:74:b4:8b:87:f3:81:3b:f8:11:2d:64: 12:d2:60:c7:27:8f:e8:02:1e:b9:10:3a:65:3c:dc: 88:f5:95:bf:9d:1f:b4:e3:b9:6c:31:75:60:19:67: 76:84:f5:04:10:99:10:c1:7b:5e:f4:44:b8:21:23: 22:43:13:25:a2:21:30:71:6f:de:f1:22:3d:c8:98: cd:1e:2e:2b:8c:a6:45:23:36:40:46:10:ed:bf:ed: b3:7f:81:54:72:a9:de:67:45:c2:fa:85:60:3f:b7: 30:af:2e:c7:17:4c:5c:91:5f:cd:c3:ff:ff:aa:f5: 6b:bf:49:7d:05:ae:5c:93:bf:f8:4f:72:1d:c0:4d: 7d:95:fc:e4:b6:af:71:d1:35:51:6c:36:92:62:f4: ce:65:83:bf:45:34:9b:92:f4:68:14:96:05:1f:3f: 46:39:ec:5f:28:28:b6:71:39:02:b5:40:df:f5:26: 3c:09:bc:1d:37:0e:d1:68:2d:97:53:b9:8e:ef:7d: ba:57:f1:e7:1d:7e:f8:b4:c4:dd:9a:db:a2:8f:70: 78:ed:f9:f4:91:20:25:4e:ef:69:4d:a5:0b:a0:e7: 5d:91:21:0d:f6:90:30:8d:89:3e:34:0b:0d:65:1c: d7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BF:CD:FF:83:F0:81:1C:B6:6E:F3:3C:85:3D:0A:9F:D4:11:D0:F4 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623132313a3a2f34382d3438203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b121::/48 Signature Algorithm: sha256WithRSAEncryption 3b:b7:d5:af:9b:85:e0:e0:b0:bf:92:fb:0b:fa:1a:06:cc:ec: c4:38:58:bb:9e:90:f4:25:f3:93:a3:82:1d:9d:c7:0d:4a:04: 71:da:57:9f:09:56:bb:c5:c5:0e:7e:13:af:46:b4:fc:6a:f7: 38:c9:7d:3e:4d:ea:f3:d2:31:8f:d2:8a:72:49:35:d8:75:24: f6:99:11:2a:ae:2b:b1:6e:2a:3e:22:0e:71:60:a9:bd:75:5c: 62:96:98:56:2b:d5:2f:04:54:9c:23:47:9f:46:12:4c:d0:46: e0:f1:30:dd:30:97:7e:17:33:e6:30:25:b5:67:7b:b5:3c:21: 8e:aa:bf:b4:52:c1:e8:1d:8b:4e:b5:e1:6f:32:a0:c7:c1:9f: fc:10:e0:50:bc:46:00:d4:fd:ab:34:7a:42:f2:c9:00:b4:5b: 13:01:95:00:63:c2:14:b7:4e:4e:39:f6:e5:a9:87:da:ff:04: 5a:15:c5:ad:98:03:29:28:90:c4:f1:50:fd:85:82:52:d4:fb: e6:29:c6:42:75:79:d9:94:1b:e4:a9:5a:c8:c6:d7:32:44:0c: d4:03:b8:3b:a1:4a:fe:ac:f9:43:29:c0:fb:82:29:2f:fd:a1: 8a:ce:4e:04:9e:00:70:b3:9c:ec:16:a3:cf:18:4a:81:61:84: 1b:31:75:e1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUZshNkhXkhMXLTjNezSNs+2uSZUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDRaFw0yNjA3MDMxNjA4NDRaMDMxMTAvBgNV BAMTKDdCQkZDREZGODNGMDgxMUNCNjZFRjMzQzg1M0QwQTlGRDQxMUQwRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCran9FL/H5dZ/md0pbeV4LJqd0 tIuH84E7+BEtZBLSYMcnj+gCHrkQOmU83Ij1lb+dH7TjuWwxdWAZZ3aE9QQQmRDB e170RLghIyJDEyWiITBxb97xIj3ImM0eLiuMpkUjNkBGEO2/7bN/gVRyqd5nRcL6 hWA/tzCvLscXTFyRX83D//+q9Wu/SX0FrlyTv/hPch3ATX2V/OS2r3HRNVFsNpJi 9M5lg79FNJuS9GgUlgUfP0Y57F8oKLZxOQK1QN/1JjwJvB03DtFoLZdTuY7vfbpX 8ecdfvi0xN2a26KPcHjt+fSRICVO72lNpQug512RIQ32kDCNiT40Cw1lHNcXAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUe7/N/4PwgRy2bvM8hT0Kn9QR0PQwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxMzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOxITANBgkqhkiG9w0BAQsFAAOCAQEAO7fVr5uF4OCwv5L7 C/oaBszsxDhYu56Q9CXzk6OCHZ3HDUoEcdpXnwlWu8XFDn4Tr0a0/Gr3OMl9Pk3q 89Ixj9KKckk12HUk9pkRKq4rsW4qPiIOcWCpvXVcYpaYVivVLwRUnCNHn0YSTNBG 4PEw3TCXfhcz5jAltWd7tTwhjqq/tFLB6B2LTrXhbzKgx8Gf/BDgULxGANT9qzR6 QvLJALRbEwGVAGPCFLdOTjn25amH2v8EWhXFrZgDKSiQxPFQ/YWCUtT75inGQnV5 2ZQb5KlayMbXMkQM1AO4O6FK/qz5QynA+4IpL/2his5OBJ4AcLOc7BajzxhKgWGE GzF14Q== -----END CERTIFICATE-----Generated at Sat Jul 5 08:42:53 2025 by rpki-client