$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa File: 326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa (raw, json) Hash identifier: C9VygPMz1kCJjZPsH7ebFvgFHWmWa4oZ2yT5qoQ5ZX4= Subject key identifier: 6E:85:37:CB:57:2B:F7:A0:68:2B:95:4D:5D:D7:67:CA:B1:C2:60:80 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 3DEC848E51F665EC1AE578FE2A848D873A922B22 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa Signing time: Fri 04 Jul 2025 16:08:36 +0000 ROA not before: Fri 04 Jul 2025 16:03:36 +0000 ROA not after: Fri 03 Jul 2026 16:08:36 +0000 asID: 212049 IP address blocks: 2a06:1283:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:ec:84:8e:51:f6:65:ec:1a:e5:78:fe:2a:84:8d:87:3a:92:2b:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:36 2025 GMT Not After : Jul 3 16:08:36 2026 GMT Subject: CN=6E8537CB572BF7A0682B954D5DD767CAB1C26080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b2:06:cf:34:43:1e:53:72:33:e8:0c:6f:58: 1f:83:c2:14:eb:ce:8a:fc:cc:0e:96:28:eb:c5:94: af:42:82:02:a2:11:c4:ee:d8:a1:30:46:8e:83:6e: 52:87:4c:cd:02:e1:26:89:d1:8c:6d:e8:28:f6:f6: 16:5b:7d:11:a7:03:c2:93:50:6a:28:35:d0:ee:0f: 41:f1:f4:dd:08:f9:f8:f9:d6:93:3f:f0:48:74:f6: ff:5d:b6:e3:9f:a4:48:42:f5:67:e5:f8:cc:b4:07: 57:b8:13:78:4c:4a:23:40:c9:df:ca:37:c7:8a:a4: 99:69:aa:af:a2:24:dd:d2:cb:1f:42:a4:17:a7:ed: c5:97:54:95:c1:d7:ad:a8:a5:da:af:64:29:33:9f: 29:20:15:ce:93:ef:83:4a:ba:1f:88:27:56:2e:3d: 26:d7:65:cd:4a:9c:6c:d7:a5:d5:4c:03:22:fb:67: f8:6f:a2:2f:2b:1b:c3:f0:3f:67:d5:83:3f:01:0b: 57:d4:3a:9e:ad:5a:2e:2b:c8:b8:08:14:a9:bc:e8: 79:9a:ca:68:09:00:f6:36:28:62:4b:43:d7:2d:50: 41:1e:20:52:33:4e:d7:a7:28:74:08:26:dc:d0:83: 17:2f:70:e7:f2:4a:3f:bb:a5:e5:1d:f3:87:56:76: 47:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:85:37:CB:57:2B:F7:A0:68:2B:95:4D:5D:D7:67:CA:B1:C2:60:80 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623330303a3a2f34302d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b300::/40 Signature Algorithm: sha256WithRSAEncryption 75:24:a2:9b:b5:70:4f:07:82:56:ce:34:3b:9b:51:49:94:68: fb:8a:76:36:d9:15:56:26:02:b0:8d:49:33:29:e2:f4:13:19: 42:39:e7:9b:39:26:87:a0:1a:95:3d:c2:3b:2a:4c:cb:4e:49: e9:71:15:80:55:19:8c:c3:39:c0:bd:8a:96:85:f7:b3:dd:ee: 59:cb:aa:e3:26:ef:60:3c:7c:6e:ef:1b:d9:f9:8e:cd:08:36: fc:59:5c:fb:ec:f1:35:18:b7:48:00:6c:f5:f5:1c:b1:d2:73: 70:3f:b3:8e:e9:6e:69:94:a5:39:7d:95:47:6b:64:94:7c:fe: 4d:dd:89:f3:2d:2d:fe:a4:c9:7d:01:ff:1c:8c:96:35:7e:6d: c8:68:18:ab:b2:43:94:e3:cf:98:c7:95:72:ef:0b:40:6a:66: af:a3:3b:56:1b:67:d1:56:45:73:0f:18:c5:8d:09:6e:e5:d7: 2a:08:31:f8:31:32:6b:e5:bb:0e:a9:6e:3e:4f:34:88:34:7d: 43:b7:e0:dc:25:c8:b6:98:b5:c0:95:ca:eb:4c:16:17:87:32: a6:c8:f5:00:03:12:d1:e2:de:41:00:78:03:44:52:41:07:0b: 8f:f9:4b:5d:b0:0c:de:02:b2:2a:26:90:23:0f:61:af:13:49: 12:cc:81:6e -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUPeyEjlH2Zewa5Xj+KoSNhzqSKyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzZaFw0yNjA3MDMxNjA4MzZaMDMxMTAvBgNV BAMTKDZFODUzN0NCNTcyQkY3QTA2ODJCOTU0RDVERDc2N0NBQjFDMjYwODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXsgbPNEMeU3Iz6AxvWB+DwhTr zor8zA6WKOvFlK9CggKiEcTu2KEwRo6DblKHTM0C4SaJ0Yxt6Cj29hZbfRGnA8KT UGooNdDuD0Hx9N0I+fj51pM/8Eh09v9dtuOfpEhC9Wfl+My0B1e4E3hMSiNAyd/K N8eKpJlpqq+iJN3Syx9CpBen7cWXVJXB162opdqvZCkznykgFc6T74NKuh+IJ1Yu PSbXZc1KnGzXpdVMAyL7Z/hvoi8rG8PwP2fVgz8BC1fUOp6tWi4ryLgIFKm86Hma ymgJAPY2KGJLQ9ctUEEeIFIzTtenKHQIJtzQgxcvcOfySj+7peUd84dWdkcZAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUboU3y1cr96BoK5VNXddnyrHCYIAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOzMA0GCSqGSIb3DQEBCwUAA4IBAQB1JKKbtXBPB4JWzjQ7 m1FJlGj7inY22RVWJgKwjUkzKeL0ExlCOeebOSaHoBqVPcI7KkzLTknpcRWAVRmM wznAvYqWhfez3e5Zy6rjJu9gPHxu7xvZ+Y7NCDb8WVz77PE1GLdIAGz19Ryx0nNw P7OO6W5plKU5fZVHa2SUfP5N3YnzLS3+pMl9Af8cjJY1fm3IaBirskOU48+Yx5Vy 7wtAamavoztWG2fRVkVzDxjFjQlu5dcqCDH4MTJr5bsOqW4+TzSINH1Dt+DcJci2 mLXAlcrrTBYXhzKmyPUAAxLR4t5BAHgDRFJBBwuP+UtdsAzeArIqJpAjD2GvE0kS zIFu -----END CERTIFICATE-----Generated at Sat Jul 5 08:58:41 2025 by rpki-client