$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa File: 326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa (raw, json) Hash identifier: 5BFYHRXmYKA9gHu6mPcVCDh9HrSZ8CVU1FVvLwXz1Mc= Subject key identifier: C4:13:5E:DC:73:96:A3:CA:4F:2A:47:1F:A6:35:81:AD:F1:8C:30:78 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 15A50CDF44967440BD8FC437C5CF28732F51BCE8 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa Signing time: Fri 05 Jun 2026 16:35:05 +0000 ROA not before: Fri 05 Jun 2026 16:30:05 +0000 ROA not after: Fri 04 Jun 2027 16:35:05 +0000 asID: 212049 IP address blocks: 2a06:1283:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 14:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a5:0c:df:44:96:74:40:bd:8f:c4:37:c5:cf:28:73:2f:51:bc:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:05 2026 GMT Not After : Jun 4 16:35:05 2027 GMT Subject: CN=C4135EDC7396A3CA4F2A471FA63581ADF18C3078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ed:ea:b4:ae:e7:89:1f:44:92:de:44:0b:49: ea:1c:12:07:88:60:0a:e8:e0:98:05:7b:ad:1f:80: 5a:6e:e9:f7:ae:b8:5f:af:26:e1:3d:d8:15:d3:d2: c5:d3:ab:ab:60:3c:10:69:05:8c:48:f1:ac:53:b0: 1e:d2:ac:03:7a:0a:db:a0:8c:a4:3b:9d:77:3e:1a: b7:ff:20:60:ef:38:d1:72:ee:11:4a:a5:b2:a1:e6: 51:02:57:b9:8f:00:7f:09:c4:45:9b:3c:cd:dc:c1: 7c:e1:ec:3e:b3:58:dd:60:a2:c1:42:b6:51:40:d0: bb:29:b4:a4:a4:ca:61:7f:90:a5:77:53:0c:dd:9c: bc:e6:26:ce:8e:4b:73:2f:b8:76:23:a3:6c:f3:d6: 80:8e:11:3b:8d:8e:a1:fc:8b:6f:18:7e:7e:ef:3e: fd:48:5d:1f:48:85:9d:47:7f:1a:56:c2:ea:32:76: b9:0c:b8:84:a0:cd:8d:a3:93:12:e8:8e:63:dd:c4: c8:f1:07:da:ef:95:86:ae:00:13:87:52:8a:21:cf: cb:e3:4c:b8:d0:d4:27:9c:1d:e1:88:a3:15:ad:6a: 4f:db:4b:0a:88:21:01:b6:1c:cc:f1:9c:4b:62:19: 81:d3:e5:e6:cb:43:3e:18:02:a7:11:ab:33:e0:8a: c7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:13:5E:DC:73:96:A3:CA:4F:2A:47:1F:A6:35:81:AD:F1:8C:30:78 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b300::/40 Signature Algorithm: sha256WithRSAEncryption 59:3f:9d:22:85:19:97:bb:60:29:70:34:30:ee:d5:90:3f:c0: 9b:da:4c:d8:a2:25:ad:cb:8d:bf:2c:36:ec:a0:d3:22:6f:16: 4d:64:95:5c:33:58:09:28:55:f4:45:b5:35:35:74:39:92:e2: 70:23:9b:66:8f:57:7f:ce:0d:61:c3:59:d5:4d:f1:ff:e9:98: 4f:2a:43:c6:33:39:4c:1d:eb:8d:b2:75:c2:d3:19:8e:ac:d0: 1f:bc:8a:db:db:40:7d:c9:a1:7b:c8:3e:63:7a:0d:b4:6e:dc: 1b:de:bb:b7:fb:79:0c:ea:0d:06:65:87:57:d7:b2:97:39:6e: cf:0d:66:6f:8e:a8:68:ed:34:1c:89:1d:b2:f2:c8:1d:1f:11: af:7f:d1:df:ee:16:77:c1:fa:12:6c:bb:b4:94:42:1e:1e:72: 21:6c:9a:90:d1:81:00:7e:34:6e:37:07:12:b4:5b:69:71:7f: 13:a4:89:fa:f1:06:12:83:fd:64:19:84:29:55:f6:14:a6:82: 7e:ee:f9:27:45:a1:70:1f:ec:38:fe:e1:54:3f:fa:ae:82:41: 3a:a4:0d:a1:fb:47:12:a6:e7:c6:e9:8a:4e:ca:af:bc:28:91: 93:96:b3:a0:b1:3a:ff:eb:c0:65:6e:ae:9b:ee:b4:53:97:8d: 3a:fa:32:85 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUFaUM30SWdEC9j8Q3xc8ocy9RvOgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDVaFw0yNzA2MDQxNjM1MDVaMDMxMTAvBgNV BAMTKEM0MTM1RURDNzM5NkEzQ0E0RjJBNDcxRkE2MzU4MUFERjE4QzMwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm7eq0rueJH0SS3kQLSeocEgeI YAro4JgFe60fgFpu6feuuF+vJuE92BXT0sXTq6tgPBBpBYxI8axTsB7SrAN6Ctug jKQ7nXc+Grf/IGDvONFy7hFKpbKh5lECV7mPAH8JxEWbPM3cwXzh7D6zWN1gosFC tlFA0LsptKSkymF/kKV3UwzdnLzmJs6OS3MvuHYjo2zz1oCOETuNjqH8i28Yfn7v Pv1IXR9IhZ1HfxpWwuoydrkMuISgzY2jkxLojmPdxMjxB9rvlYauABOHUoohz8vj TLjQ1CecHeGIoxWtak/bSwqIIQG2HMzxnEtiGYHT5ebLQz4YAqcRqzPgisdrAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUxBNe3HOWo8pPKkcfpjWBrfGMMHgwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOzMA0GCSqGSIb3DQEBCwUAA4IBAQBZP50ihRmXu2ApcDQw 7tWQP8Cb2kzYoiWty42/LDbsoNMibxZNZJVcM1gJKFX0RbU1NXQ5kuJwI5tmj1d/ zg1hw1nVTfH/6ZhPKkPGMzlMHeuNsnXC0xmOrNAfvIrb20B9yaF7yD5jeg20btwb 3ru3+3kM6g0GZYdX17KXOW7PDWZvjqho7TQciR2y8sgdHxGvf9Hf7hZ3wfoSbLu0 lEIeHnIhbJqQ0YEAfjRuNwcStFtpcX8TpIn68QYSg/1kGYQpVfYUpoJ+7vknRaFw H+w4/uFUP/qugkE6pA2h+0cSpufG6YpOyq+8KJGTlrOgsTr/68Blbq6b7rRTl406 +jKF -----END CERTIFICATE-----Generated at Thu Jun 11 23:57:23 2026 by rpki-client