$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623161303a3a2f34342d3434203d3e20323136303532.roa File: 326130363a313238333a623161303a3a2f34342d3434203d3e20323136303532.roa (raw, json) Hash identifier: Q8On4WL66IdXjRv1t12y4sNhUP/kV36vSGwez0oeklU= Subject key identifier: 13:28:4C:64:10:0B:CB:60:55:6C:39:29:DE:8E:15:71:20:0A:44:68 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4FA3B0827F2ADEE9C9EF948D44995F15DE826FB1 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623161303a3a2f34342d3434203d3e20323136303532.roa Signing time: Fri 04 Jul 2025 16:08:37 +0000 ROA not before: Fri 04 Jul 2025 16:03:37 +0000 ROA not after: Fri 03 Jul 2026 16:08:37 +0000 asID: 216052 IP address blocks: 2a06:1283:b1a0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a3:b0:82:7f:2a:de:e9:c9:ef:94:8d:44:99:5f:15:de:82:6f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:37 2025 GMT Not After : Jul 3 16:08:37 2026 GMT Subject: CN=13284C64100BCB60556C3929DE8E1571200A4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:60:ad:92:39:60:4a:06:8a:c9:f8:d1:bd:cc: 75:d1:48:8c:62:9e:1a:e1:33:47:c7:4a:d4:66:bc: c6:77:36:cc:bd:87:f9:3e:47:97:f4:04:10:8e:80: 20:c1:fe:e6:96:1f:90:fc:c9:74:f7:f6:8d:36:10: df:3c:70:e5:cc:5d:93:13:b8:28:f2:ec:26:9b:d4: a9:9a:a1:63:52:4a:7b:94:4d:d0:27:7a:9c:a6:1a: a6:80:45:23:32:7b:9e:86:b8:81:74:b0:44:26:68: 7e:06:78:6e:37:b4:38:9c:72:20:60:4f:4f:99:ba: e9:f2:62:a6:17:e3:5c:b2:9e:52:29:f9:8e:de:1d: db:c2:7f:bb:8b:f4:c7:bb:67:7f:a0:c3:de:a5:71: 21:10:0f:09:0e:e1:a6:48:13:5c:57:0b:31:17:0a: 0b:18:39:2f:6f:59:d9:1b:b3:83:57:c5:0c:5a:cc: f2:3d:03:43:66:1c:97:11:bf:43:f8:87:92:86:59: 60:0e:8f:3d:e7:d5:49:32:6c:7d:04:05:f5:d9:db: 21:df:55:8f:ad:ec:ec:17:4d:8e:25:c7:19:2f:e3: 64:98:4b:cd:a3:0f:47:0d:8a:fb:20:bf:8b:f6:49: ca:f9:d5:a8:7b:15:40:d8:05:bc:af:bb:88:e4:40: eb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:28:4C:64:10:0B:CB:60:55:6C:39:29:DE:8E:15:71:20:0A:44:68 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623161303a3a2f34342d3434203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b1a0::/44 Signature Algorithm: sha256WithRSAEncryption 26:c9:9a:89:d8:ab:81:ca:b3:b5:f5:fe:76:d7:85:a4:d0:eb: 9d:bb:19:be:d9:70:cc:32:30:9a:f1:8f:39:0b:9d:32:d1:7e: 19:b2:38:74:71:52:2b:70:ac:4b:cd:60:f3:1c:73:44:09:1b: 14:19:8b:a9:49:4b:c8:85:b2:d8:6c:94:5d:ca:1c:f0:d2:f5: c0:20:5d:64:b7:b9:81:4a:42:9f:a1:3d:5c:e7:02:62:3d:40: 10:09:b4:04:36:07:cd:7c:73:63:f4:b1:22:cb:41:e7:b5:67: 1b:b8:15:cb:99:dd:e5:6d:b9:66:ea:8a:08:dd:92:98:c2:0d: 19:37:1f:1a:34:9e:d5:58:f8:b2:b2:d3:d3:32:87:ef:6f:70: f3:d8:ec:aa:ba:85:e5:48:e1:65:c2:92:86:5f:52:01:06:be: 06:e1:ff:0d:f1:9b:9e:40:e6:80:31:8d:cc:01:68:f1:3e:f5: a9:2e:56:9b:38:67:ce:4a:3a:47:0d:22:55:9c:e3:c2:7b:32: 86:6c:b7:e7:a8:09:4e:d2:fc:cf:06:29:03:04:0a:fe:02:4f: 14:df:02:5d:0d:f9:b3:78:48:64:b8:c4:73:c5:bc:59:d8:51: c3:ff:0c:f5:dd:27:de:18:23:0a:5e:34:3b:61:fa:c0:de:8b: 53:10:31:b0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUT6Owgn8q3unJ75SNRJlfFd6Cb7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzdaFw0yNjA3MDMxNjA4MzdaMDMxMTAvBgNV BAMTKDEzMjg0QzY0MTAwQkNCNjA1NTZDMzkyOURFOEUxNTcxMjAwQTQ0NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtYK2SOWBKBorJ+NG9zHXRSIxi nhrhM0fHStRmvMZ3Nsy9h/k+R5f0BBCOgCDB/uaWH5D8yXT39o02EN88cOXMXZMT uCjy7Cab1KmaoWNSSnuUTdAnepymGqaARSMye56GuIF0sEQmaH4GeG43tDicciBg T0+ZuunyYqYX41yynlIp+Y7eHdvCf7uL9Me7Z3+gw96lcSEQDwkO4aZIE1xXCzEX CgsYOS9vWdkbs4NXxQxazPI9A0NmHJcRv0P4h5KGWWAOjz3n1UkybH0EBfXZ2yHf VY+t7OwXTY4lxxkv42SYS82jD0cNivsgv4v2Scr51ah7FUDYBbyvu4jkQOsTAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUEyhMZBALy2BVbDkp3o4VcSAKRGgwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxNjEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoOxoDANBgkqhkiG9w0BAQsFAAOCAQEAJsmaidirgcqztfX+ dteFpNDrnbsZvtlwzDIwmvGPOQudMtF+GbI4dHFSK3CsS81g8xxzRAkbFBmLqUlL yIWy2GyUXcoc8NL1wCBdZLe5gUpCn6E9XOcCYj1AEAm0BDYHzXxzY/SxIstB57Vn G7gVy5nd5W25ZuqKCN2SmMINGTcfGjSe1Vj4srLT0zKH729w89jsqrqF5UjhZcKS hl9SAQa+BuH/DfGbnkDmgDGNzAFo8T71qS5Wmzhnzko6Rw0iVZzjwnsyhmy356gJ TtL8zwYpAwQK/gJPFN8CXQ35s3hIZLjEc8W8WdhRw/8M9d0n3hgjCl40O2H6wN6L UxAxsA== -----END CERTIFICATE-----Generated at Sat Jul 5 08:49:28 2025 by rpki-client