$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: Y1ntaNzDkw4cYAPpDRBmMDcy9D0olFyf+JjbLcEG7SY= Subject key identifier: 30:AE:FA:BF:16:4C:8A:F2:B3:98:07:48:90:7D:24:52:B0:B7:B6:78 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 0AB7BE0D8D3A4677E884DA65D49A40DA10257160 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 04 Jul 2025 16:08:38 +0000 ROA not before: Fri 04 Jul 2025 16:03:38 +0000 ROA not after: Fri 03 Jul 2026 16:08:38 +0000 asID: 212049 IP address blocks: 2a06:1283:b330::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b7:be:0d:8d:3a:46:77:e8:84:da:65:d4:9a:40:da:10:25:71:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:38 2025 GMT Not After : Jul 3 16:08:38 2026 GMT Subject: CN=30AEFABF164C8AF2B3980748907D2452B0B7B678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:60:a4:fa:fc:61:af:fc:f6:2a:29:c1:53:d0: 44:20:1d:5b:c5:65:63:8c:97:bb:0f:a2:ed:8b:9e: bc:23:16:3d:1a:71:3d:d3:95:68:9b:ef:46:1e:6f: c5:f5:11:d5:7b:57:8d:68:57:16:22:7b:b1:9b:31: 45:d6:7f:3c:3b:df:4e:62:bd:6b:89:3b:55:2e:59: fa:78:ca:1a:2a:db:c0:b8:fa:c8:80:18:c6:11:12: 2f:70:7a:b5:aa:3e:bb:fd:b5:af:d2:91:50:f4:28: 0e:b4:3c:7f:5d:d4:96:06:23:1c:03:e4:2f:67:35: e7:d2:3c:46:50:38:2f:7d:a3:01:a9:45:6d:19:4b: 70:8d:23:fb:0f:73:4d:eb:00:24:f4:f9:66:04:f0: 83:a6:5f:c8:a8:22:e2:de:81:8a:b7:aa:13:70:4a: f1:04:ba:d2:35:65:38:11:6f:e1:08:ce:0f:08:a5: b2:d8:80:9b:4e:5b:e0:ba:7b:5a:2a:b1:a3:c8:8f: ca:1f:bd:52:04:5c:ac:d1:3e:fd:2a:81:81:4a:b6: 67:6d:ad:a9:77:60:79:23:86:49:f4:8f:be:c9:23: 0e:6c:dd:5a:fc:15:0b:b0:b0:d6:dd:71:e1:29:23: 5d:2f:db:c3:bb:64:a2:9a:4d:f2:a0:c1:cc:57:86: de:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AE:FA:BF:16:4C:8A:F2:B3:98:07:48:90:7D:24:52:B0:B7:B6:78 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b330::/48 Signature Algorithm: sha256WithRSAEncryption 3e:96:0e:e4:b1:5d:f5:0a:cb:03:73:a3:29:d1:ac:d9:30:c4: 04:81:3c:8e:5b:e2:da:a1:26:8d:bc:10:ce:c0:ae:5b:82:ab: f7:d3:7a:86:b8:08:fd:32:1a:76:46:9a:51:3a:5e:df:19:70: 6e:f4:d2:97:88:19:77:18:c5:04:3c:19:07:1c:22:5b:b9:a5: f2:17:b4:f9:3b:3d:3d:17:97:0d:4a:f5:52:6e:91:32:76:7b: f8:22:55:4a:24:ca:47:28:e2:3a:8f:c5:9f:7e:32:11:21:a3: f6:af:44:e6:b1:d1:3b:92:44:41:97:af:91:12:fc:0a:0f:8d: 1d:a5:79:a0:e9:8a:67:96:40:15:bf:9b:a6:81:6c:ab:bf:aa: 91:16:f8:f9:4a:13:53:5f:ee:90:05:9c:6d:17:25:e7:4f:c0: bb:44:41:d8:4f:df:23:2e:95:48:e7:40:8f:11:1d:0b:2c:48: 7f:60:79:21:7f:47:db:70:64:eb:b3:84:cc:ed:e6:5f:ba:0a: 98:72:e9:87:97:c9:34:76:53:d6:60:d9:f0:c9:29:e3:61:33: c6:9a:51:63:25:a9:c3:5b:12:1a:2c:e7:00:b3:51:5b:f8:e4: 6e:e0:b3:20:96:c0:f3:7d:1e:cd:50:6e:13:95:77:ad:a8:ee: 48:fa:4b:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUCre+DY06RnfohNpl1JpA2hAlcWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzhaFw0yNjA3MDMxNjA4MzhaMDMxMTAvBgNV BAMTKDMwQUVGQUJGMTY0QzhBRjJCMzk4MDc0ODkwN0QyNDUyQjBCN0I2NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqYKT6/GGv/PYqKcFT0EQgHVvF ZWOMl7sPou2LnrwjFj0acT3TlWib70Yeb8X1EdV7V41oVxYie7GbMUXWfzw7305i vWuJO1UuWfp4yhoq28C4+siAGMYREi9werWqPrv9ta/SkVD0KA60PH9d1JYGIxwD 5C9nNefSPEZQOC99owGpRW0ZS3CNI/sPc03rACT0+WYE8IOmX8ioIuLegYq3qhNw SvEEutI1ZTgRb+EIzg8IpbLYgJtOW+C6e1oqsaPIj8ofvVIEXKzRPv0qgYFKtmdt ral3YHkjhkn0j77JIw5s3Vr8FQuwsNbdceEpI10v28O7ZKKaTfKgwcxXht7hAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUMK76vxZMivKzmAdIkH0kUrC3tngwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzMDANBgkqhkiG9w0BAQsFAAOCAQEAPpYO5LFd9QrLA3Oj KdGs2TDEBIE8jlvi2qEmjbwQzsCuW4Kr99N6hrgI/TIadkaaUTpe3xlwbvTSl4gZ dxjFBDwZBxwiW7ml8he0+Ts9PReXDUr1Um6RMnZ7+CJVSiTKRyjiOo/Fn34yESGj 9q9E5rHRO5JEQZevkRL8Cg+NHaV5oOmKZ5ZAFb+bpoFsq7+qkRb4+UoTU1/ukAWc bRcl50/Au0RB2E/fIy6VSOdAjxEdCyxIf2B5IX9H23Bk67OEzO3mX7oKmHLph5fJ NHZT1mDZ8Mkp42EzxppRYyWpw1sSGiznALNRW/jkbuCzIJbA830ezVBuE5V3raju SPpL9Q== -----END CERTIFICATE-----Generated at Sat Jul 5 09:02:17 2025 by rpki-client