$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: p7ojcQ2k7RgOVh4dazmmzhPGgg3/0M56J3ZYT71iOpk= Subject key identifier: A9:C1:6C:8A:49:0A:33:A8:5E:14:F3:74:39:65:CF:DE:81:97:4A:0C Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 3DC64848A2E2AD8AF29DFD1716DBA3AF7A56CBE2 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 04 Jul 2025 16:08:38 +0000 ROA not before: Fri 04 Jul 2025 16:03:38 +0000 ROA not after: Fri 03 Jul 2026 16:08:38 +0000 asID: 212049 IP address blocks: 2a06:1283:b334::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c6:48:48:a2:e2:ad:8a:f2:9d:fd:17:16:db:a3:af:7a:56:cb:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:38 2025 GMT Not After : Jul 3 16:08:38 2026 GMT Subject: CN=A9C16C8A490A33A85E14F3743965CFDE81974A0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1e:45:b1:31:c4:ee:af:12:37:98:ad:9f:5c: 40:de:dc:c3:18:ab:a4:b5:43:dc:7f:fe:d1:70:ad: bd:6e:76:d9:7b:27:cc:d7:23:d5:7b:a1:e1:96:ef: 0f:63:b1:40:d8:38:a3:15:68:1d:d1:5e:91:b8:9a: bd:c2:28:25:db:10:d0:cf:2d:60:db:cd:ba:71:fd: bc:7d:b3:94:0c:34:7d:df:24:42:6c:d0:a7:e1:34: a4:3c:37:e8:98:a1:2b:94:cb:ad:ca:02:16:ae:b8: 8b:dc:b4:29:ac:1d:b5:cb:79:78:71:d3:81:48:d7: d3:a5:9a:82:09:51:db:ba:b5:cd:2c:14:b5:a1:c7: d2:f5:53:bb:f0:3f:97:7d:b8:db:a8:8a:48:6f:2e: 6f:85:c0:70:48:0f:5e:d5:53:04:64:a6:7c:41:d7: ba:17:22:fc:12:fa:01:45:52:f4:2f:b0:01:f5:11: bc:2a:62:f7:d2:c0:e3:b1:a9:6f:ca:46:2d:ad:93: 19:aa:e6:05:ef:22:3f:3e:0d:bb:cc:32:fd:fe:1c: 7d:85:6f:96:f0:ba:32:af:30:71:16:b8:b5:1d:11: 87:94:82:56:f1:f2:87:b1:bf:66:f0:b7:2c:27:44: 29:25:f0:ca:9b:33:7d:29:6a:9f:65:0e:59:58:d3: 9f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C1:6C:8A:49:0A:33:A8:5E:14:F3:74:39:65:CF:DE:81:97:4A:0C X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333343a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b334::/48 Signature Algorithm: sha256WithRSAEncryption 61:7a:63:8d:47:65:3c:5c:b8:c6:ab:86:83:5f:13:0c:c3:5a: e9:f5:33:c8:04:c7:e0:98:83:7c:e0:98:05:df:d0:6f:c3:84: 41:ac:29:d0:54:a5:2e:43:05:d1:1a:93:e9:fd:ba:02:83:64: e6:7a:1e:7c:48:2b:88:55:ae:82:2c:38:e1:3b:ac:33:9a:c5: ad:b4:28:54:cd:03:e5:bb:c3:54:92:b0:89:93:cd:19:40:b8: 35:bc:05:99:57:51:b1:87:40:88:7d:a6:1b:77:c1:79:42:86: d1:16:a4:12:6b:0f:61:e6:6c:e9:17:a2:79:66:51:20:20:e0: 50:e1:96:96:ef:ad:e5:a0:6a:bc:72:dd:c8:08:22:c5:64:88: e5:a4:11:ee:59:4e:8d:fe:55:7f:b5:a1:a9:7d:33:6d:00:5c: ce:89:0d:6a:55:45:8d:fb:3a:27:10:8c:30:b2:94:2a:93:3f: aa:c2:e4:2c:ae:e7:4e:37:b5:f0:ab:78:3f:df:b1:6e:e1:6e: 78:b9:2b:50:06:51:30:3e:65:fd:75:c7:a2:f3:74:33:7c:86: 0a:33:e5:4d:64:af:d6:55:9b:ac:d5:ab:29:85:d8:d7:fc:bf: 57:b5:f8:e4:b0:92:be:2a:48:49:88:ca:0a:81:fa:ac:a7:26: 79:6f:3e:af -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUPcZISKLirYrynf0XFtujr3pWy+IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzhaFw0yNjA3MDMxNjA4MzhaMDMxMTAvBgNV BAMTKEE5QzE2QzhBNDkwQTMzQTg1RTE0RjM3NDM5NjVDRkRFODE5NzRBMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyHkWxMcTurxI3mK2fXEDe3MMY q6S1Q9x//tFwrb1udtl7J8zXI9V7oeGW7w9jsUDYOKMVaB3RXpG4mr3CKCXbENDP LWDbzbpx/bx9s5QMNH3fJEJs0KfhNKQ8N+iYoSuUy63KAhauuIvctCmsHbXLeXhx 04FI19OlmoIJUdu6tc0sFLWhx9L1U7vwP5d9uNuoikhvLm+FwHBID17VUwRkpnxB 17oXIvwS+gFFUvQvsAH1EbwqYvfSwOOxqW/KRi2tkxmq5gXvIj8+DbvMMv3+HH2F b5bwujKvMHEWuLUdEYeUglbx8oexv2bwtywnRCkl8MqbM30pap9lDllY059VAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUqcFsikkKM6heFPN0OWXP3oGXSgwwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNDANBgkqhkiG9w0BAQsFAAOCAQEAYXpjjUdlPFy4xquG g18TDMNa6fUzyATH4JiDfOCYBd/Qb8OEQawp0FSlLkMF0RqT6f26AoNk5noefEgr iFWugiw44TusM5rFrbQoVM0D5bvDVJKwiZPNGUC4NbwFmVdRsYdAiH2mG3fBeUKG 0RakEmsPYeZs6ReieWZRICDgUOGWlu+t5aBqvHLdyAgixWSI5aQR7llOjf5Vf7Wh qX0zbQBczokNalVFjfs6JxCMMLKUKpM/qsLkLK7nTje18Kt4P9+xbuFueLkrUAZR MD5l/XXHovN0M3yGCjPlTWSv1lWbrNWrKYXY1/y/V7X45LCSvipISYjKCoH6rKcm eW8+rw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:54:26 2025 by rpki-client