$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: QCHMHLQWYr2QggSTnnNK6+69ylckjqWniE1c24ILrx4= Subject key identifier: C7:F3:AB:43:DF:14:47:E3:59:B4:FA:BF:B8:0D:DA:DE:A4:22:69:5A Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 1DC58F06A277FFC0B9F361FB6E6BBB10ACF812C8 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 212049 IP address blocks: 2a06:1283:b330::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 14:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c5:8f:06:a2:77:ff:c0:b9:f3:61:fb:6e:6b:bb:10:ac:f8:12:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=C7F3AB43DF1447E359B4FABFB80DDADEA422695A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:72:58:1c:ce:fb:e3:5e:f7:fc:dc:2d:3b: d2:80:30:c1:2c:d8:e1:9b:57:63:a8:e8:dc:9d:b6: 5a:7b:eb:b0:4f:e3:a4:e4:53:56:25:b7:b2:fe:6c: e1:d5:1a:b4:55:06:54:b4:c7:e5:b6:ae:6b:14:a1: d7:59:28:f0:7f:84:50:c0:9b:2e:30:6f:c2:a9:a0: e3:c8:25:36:ee:af:d1:92:58:6b:97:51:53:59:81: 50:50:38:96:2e:61:4e:a7:82:be:1b:27:5f:5c:40: 28:0d:28:cc:1d:5b:9c:c3:30:cf:28:9e:b8:d4:5c: 19:91:1b:d1:e4:04:ab:1a:ca:5c:1e:50:95:7e:99: bf:e3:53:8f:7f:22:d3:ae:8e:7f:f6:cd:2c:49:53: e8:8f:ef:a3:fd:0b:9f:96:97:06:ca:76:37:06:80: 3a:31:85:b0:3b:a4:d4:9c:a7:f4:27:d3:d3:f6:fd: ac:84:b0:2f:ab:e8:94:ca:0e:ad:fd:b1:8a:d6:dc: 4c:2d:4a:e5:71:4c:13:0f:b7:3b:a9:5e:fb:8c:87: 94:eb:20:df:3f:de:a4:1c:08:cd:72:31:c8:01:ae: f7:e6:e5:d3:a5:8e:c6:7f:d1:51:e6:23:d9:85:8a: fd:ce:9b:f9:d3:db:45:ef:88:41:d8:a8:55:0c:57: 26:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F3:AB:43:DF:14:47:E3:59:B4:FA:BF:B8:0D:DA:DE:A4:22:69:5A X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333303a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b330::/48 Signature Algorithm: sha256WithRSAEncryption 25:99:e5:18:fb:f9:1c:30:ee:86:9b:8c:18:f9:2a:f6:c3:d0: 6f:7a:33:2a:fc:0b:83:21:10:d6:2d:70:98:1d:3a:75:c9:37: 67:28:a3:6e:04:dc:75:50:20:a4:3d:ab:7a:ae:97:ba:37:54: 46:34:ea:ba:74:fd:c5:34:00:2e:13:22:72:a9:e0:d7:d1:6b: 98:ba:93:c0:08:85:60:21:ae:5e:fd:19:fd:5c:8e:dc:31:45: 12:14:68:9e:15:81:af:20:80:bb:60:e8:9a:e2:7a:62:a8:6c: f7:57:99:7f:95:3c:ff:84:74:10:0a:6d:57:94:ee:42:ac:3e: f0:66:66:12:ab:0e:34:4a:27:a8:17:4a:7d:ea:5b:a3:f0:0f: 37:02:26:6c:c8:b9:7c:f5:b0:27:2f:4b:39:eb:cc:ce:13:a8: bc:0c:37:b4:72:02:90:cb:aa:f0:87:19:fa:65:c7:d0:8b:3a: 2d:7a:12:2f:31:83:9e:21:36:ff:1b:77:e4:7c:5e:7f:05:52: 6a:26:5b:50:83:06:39:60:2c:20:6c:db:d6:3f:29:e3:3e:e6: 5c:ff:08:d9:ea:d3:f1:56:1d:58:a9:34:2d:bc:4d:49:be:52: 32:27:23:fb:b7:7d:e5:91:92:d9:dc:d5:4c:92:8e:cc:63:39: e2:6a:39:39 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUHcWPBqJ3/8C582H7bmu7EKz4EsgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKEM3RjNBQjQzREYxNDQ3RTM1OUI0RkFCRkI4MEREQURFQTQyMjY5NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwfHJYHM774173/NwtO9KAMMEs 2OGbV2Oo6Nydtlp767BP46TkU1Ylt7L+bOHVGrRVBlS0x+W2rmsUoddZKPB/hFDA my4wb8KpoOPIJTbur9GSWGuXUVNZgVBQOJYuYU6ngr4bJ19cQCgNKMwdW5zDMM8o nrjUXBmRG9HkBKsaylweUJV+mb/jU49/ItOujn/2zSxJU+iP76P9C5+WlwbKdjcG gDoxhbA7pNScp/Qn09P2/ayEsC+r6JTKDq39sYrW3EwtSuVxTBMPtzupXvuMh5Tr IN8/3qQcCM1yMcgBrvfm5dOljsZ/0VHmI9mFiv3Om/nT20XviEHYqFUMVyZ5AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUx/OrQ98UR+NZtPq/uA3a3qQiaVowHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzMDANBgkqhkiG9w0BAQsFAAOCAQEAJZnlGPv5HDDuhpuM GPkq9sPQb3ozKvwLgyEQ1i1wmB06dck3ZyijbgTcdVAgpD2req6XujdURjTqunT9 xTQALhMicqng19FrmLqTwAiFYCGuXv0Z/VyO3DFFEhRonhWBryCAu2DomuJ6Yqhs 91eZf5U8/4R0EAptV5TuQqw+8GZmEqsONEonqBdKfepbo/APNwImbMi5fPWwJy9L OevMzhOovAw3tHICkMuq8IcZ+mXH0Is6LXoSLzGDniE2/xt35HxefwVSaiZbUIMG OWAsIGzb1j8p4z7mXP8I2erT8VYdWKk0LbxNSb5SMicj+7d95ZGS2dzVTJKOzGM5 4mo5OQ== -----END CERTIFICATE-----Generated at Thu Jun 11 23:57:24 2026 by rpki-client