$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa File: 326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa (raw, json) Hash identifier: O3DYGHuZQ+m/X5cxLlrsv+I5NrH5jV9V4XCtoD0Nd2k= Subject key identifier: C0:CE:F5:AD:85:C8:6F:04:F2:BF:E3:95:37:88:82:AB:B0:6D:E4:06 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 50D4CC1EFBC9D9A27532DFB2B430DF350D687609 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa Signing time: Fri 04 Jul 2025 16:08:42 +0000 ROA not before: Fri 04 Jul 2025 16:03:42 +0000 ROA not after: Fri 03 Jul 2026 16:08:42 +0000 asID: 216052 IP address blocks: 2a06:1283:b1b0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d4:cc:1e:fb:c9:d9:a2:75:32:df:b2:b4:30:df:35:0d:68:76:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:42 2025 GMT Not After : Jul 3 16:08:42 2026 GMT Subject: CN=C0CEF5AD85C86F04F2BFE395378882ABB06DE406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:77:8d:0a:49:4a:fd:c9:94:72:7d:12:7c:41: c0:8d:74:cc:7e:12:05:7f:ac:d0:1c:b6:f2:6c:32: 4a:a9:67:2a:fb:dd:46:e7:dc:ea:83:1d:3d:cb:f9: ff:d7:0b:ad:5c:d9:62:31:54:62:84:cd:ea:4b:89: f2:e4:fd:d0:1f:d8:08:88:e1:42:95:7b:f5:5a:b4: b9:a5:68:d6:2d:ba:b2:03:47:36:3d:04:a7:2d:1a: 90:43:c4:8c:38:80:15:fb:62:db:3a:42:f2:71:ee: 22:bb:a0:e4:25:61:ac:62:e7:0c:32:c2:b0:76:d2: af:ab:70:08:42:ef:a8:8b:16:44:1e:df:d8:50:16: f4:41:5a:23:4c:f9:a2:f9:51:7d:cc:15:a9:8b:88: 43:ea:4b:e1:5c:33:14:f1:12:2e:c0:a3:57:08:80: 4f:2c:75:7b:99:bd:46:c5:e6:ec:c1:d8:eb:03:7b: 43:64:39:66:b2:d2:ac:87:b7:07:d6:4f:a7:aa:bc: a4:71:78:62:41:19:17:d8:59:59:b8:00:d4:07:d7: d7:0d:f7:bb:e8:48:3e:be:76:21:a4:53:c5:e3:4c: e4:7b:db:29:67:6b:35:c3:a2:25:d5:4e:8a:fe:17: 06:c6:e1:c0:01:cb:76:79:d2:55:e0:c5:52:61:55: 48:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CE:F5:AD:85:C8:6F:04:F2:BF:E3:95:37:88:82:AB:B0:6D:E4:06 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623162303a3a2f34342d3434203d3e20323136303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b1b0::/44 Signature Algorithm: sha256WithRSAEncryption 28:8c:b8:db:15:67:a3:70:4c:65:1e:c7:21:eb:7a:cb:96:0e: b5:ad:1a:02:48:3c:c9:2b:f4:2f:4c:a4:a2:3d:45:64:20:33: 79:ba:2a:5f:f3:be:09:dd:41:bd:94:f5:1d:7f:d9:9b:43:cd: 0d:2d:37:1d:27:b8:fc:f6:7e:d5:65:1c:7d:d7:56:69:c0:04: 1b:08:68:ad:61:b9:86:57:f5:02:e8:4d:e2:c2:33:a5:08:5a: 2a:ae:be:aa:84:f3:dc:ba:de:db:24:bf:2b:2a:b3:c2:b4:94: 4d:7a:46:74:ec:5d:e6:c4:33:24:c5:1f:84:8b:0c:d0:fb:65: 6e:e2:ee:97:cf:53:8f:d3:56:a2:ce:ff:59:ea:46:11:08:c6: 8f:29:ad:33:5a:3f:92:43:f9:cb:32:64:ac:85:0e:7b:da:52: 33:bb:05:6f:53:35:8d:06:0b:cd:58:a7:c3:40:d1:5c:a7:3b: 17:6b:60:e7:fb:b7:d1:be:80:f5:0e:7a:1d:79:15:38:3d:52: 5a:21:4c:1c:f2:c2:88:cb:5a:3d:5a:f2:30:5d:2a:ea:45:f3: fd:e9:f8:f8:47:d8:6f:13:5c:c9:69:e8:69:66:bb:fc:87:36: a1:02:43:53:63:e9:f8:d2:08:18:a2:3e:75:b7:75:c3:a2:49: 92:54:2b:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUUNTMHvvJ2aJ1Mt+ytDDfNQ1odgkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDJaFw0yNjA3MDMxNjA4NDJaMDMxMTAvBgNV BAMTKEMwQ0VGNUFEODVDODZGMDRGMkJGRTM5NTM3ODg4MkFCQjA2REU0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDd40KSUr9yZRyfRJ8QcCNdMx+ EgV/rNActvJsMkqpZyr73Ubn3OqDHT3L+f/XC61c2WIxVGKEzepLifLk/dAf2AiI 4UKVe/VatLmlaNYturIDRzY9BKctGpBDxIw4gBX7Yts6QvJx7iK7oOQlYaxi5wwy wrB20q+rcAhC76iLFkQe39hQFvRBWiNM+aL5UX3MFamLiEPqS+FcMxTxEi7Ao1cI gE8sdXuZvUbF5uzB2OsDe0NkOWay0qyHtwfWT6eqvKRxeGJBGRfYWVm4ANQH19cN 97voSD6+diGkU8XjTOR72ylnazXDoiXVTor+FwbG4cABy3Z50lXgxVJhVUjzAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUwM71rYXIbwTyv+OVN4iCq7Bt5AYwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMxNjIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoOxsDANBgkqhkiG9w0BAQsFAAOCAQEAKIy42xVno3BMZR7H Iet6y5YOta0aAkg8ySv0L0ykoj1FZCAzeboqX/O+Cd1BvZT1HX/Zm0PNDS03HSe4 /PZ+1WUcfddWacAEGwhorWG5hlf1AuhN4sIzpQhaKq6+qoTz3Lre2yS/KyqzwrSU TXpGdOxd5sQzJMUfhIsM0PtlbuLul89Tj9NWos7/WepGEQjGjymtM1o/kkP5yzJk rIUOe9pSM7sFb1M1jQYLzVinw0DRXKc7F2tg5/u30b6A9Q56HXkVOD1SWiFMHPLC iMtaPVryMF0q6kXz/en4+EfYbxNcyWnoaWa7/Ic2oQJDU2Pp+NIIGKI+dbd1w6JJ klQr5Q== -----END CERTIFICATE-----Generated at Sat Jul 5 08:48:35 2025 by rpki-client