$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: snY4Ta6RuGK+BYVIvxiTToKWxR/e+68OpgJnyZhDOlg= Subject key identifier: 2E:B2:C3:3B:F9:67:D7:27:2D:7F:46:B1:CA:23:F2:75:10:8A:43:15 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 226563CBB79BF9F1A52F623DE0C0E0EC37015F6B Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 04 Jul 2025 16:08:43 +0000 ROA not before: Fri 04 Jul 2025 16:03:43 +0000 ROA not after: Fri 03 Jul 2026 16:08:43 +0000 asID: 212049 IP address blocks: 2a06:1283:b335::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:65:63:cb:b7:9b:f9:f1:a5:2f:62:3d:e0:c0:e0:ec:37:01:5f:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:43 2025 GMT Not After : Jul 3 16:08:43 2026 GMT Subject: CN=2EB2C33BF967D7272D7F46B1CA23F275108A4315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3c:82:29:69:a1:d4:0d:c8:b8:78:31:ba:06: 41:cb:8d:4b:0f:17:6f:04:7b:21:f9:90:80:f3:38: 60:4a:6e:da:11:ba:e3:6e:8a:fe:11:ac:ec:16:f4: ae:5a:79:2b:b3:10:35:fb:fd:54:d4:e9:ce:8d:99: 41:eb:17:8f:d7:c5:cb:25:69:1f:01:bf:66:79:2b: 90:1f:bd:41:ba:54:f3:a8:68:0d:98:9b:3e:ea:18: ac:29:36:6b:e2:c4:e4:6c:60:80:23:d9:8c:e0:07: f1:73:ba:e0:a2:56:d6:41:bc:f2:6b:70:40:9c:e6: 56:94:66:79:60:ac:d2:7a:44:6b:b2:29:8f:fa:52: 0f:b6:ba:1e:8d:9a:e9:78:9d:87:d0:c2:ab:6d:c2: df:e5:bb:c9:9a:d9:71:ab:f0:c4:4f:b6:ce:6a:8e: 3c:de:34:7b:37:76:50:34:5a:ac:20:1f:5b:6d:27: b2:a1:76:70:56:f7:04:aa:2f:18:4c:28:e1:91:66: 0e:ec:b8:5b:90:66:3c:fe:c0:91:1c:d1:de:d1:25: bd:ca:6b:d2:00:3b:0d:58:e2:a1:0d:20:cf:de:1c: 8b:ca:3c:de:4d:c3:96:72:80:06:fc:9f:b6:8f:83: 62:0a:9f:87:06:58:5d:0c:da:a9:ab:07:a9:5d:e8: ff:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B2:C3:3B:F9:67:D7:27:2D:7F:46:B1:CA:23:F2:75:10:8A:43:15 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b335::/48 Signature Algorithm: sha256WithRSAEncryption 0d:68:ec:ed:aa:27:fe:07:96:a5:cf:4d:69:04:fa:b1:ea:9d: 0d:65:1f:74:09:aa:14:99:12:fb:48:05:69:2b:1f:84:c9:96: bf:cf:b4:67:14:f9:c0:d2:f5:95:70:ad:92:59:98:35:b2:e1: 8e:ee:f0:03:9c:19:0a:ee:fb:aa:e1:b8:7b:ad:7e:40:c8:8c: c0:26:62:e4:cd:6e:8c:38:90:78:de:f8:9c:02:c4:fe:c8:80: 7d:47:d3:b4:fc:10:49:89:45:52:8e:1d:47:f6:d0:89:19:ad: 10:48:91:c1:05:96:87:11:4d:54:8f:d1:84:c3:9f:5b:5c:a1: 94:00:b1:53:47:cc:c7:31:ba:2c:d5:1d:1c:99:de:76:8d:51: 70:51:43:04:ae:89:9f:9d:b8:69:27:bc:6f:80:20:94:9d:ab: 0f:86:ec:7c:30:1b:9a:3e:5a:2c:21:ec:31:1a:83:27:bc:74: ce:e5:da:e1:66:3c:94:d1:2d:97:5b:a5:b9:cd:7e:b5:54:47: 5e:3b:88:5c:5c:15:f7:5a:0a:44:1c:04:7a:dc:f6:a1:b3:68: a5:c8:94:71:ce:aa:ad:7d:a8:1b:64:70:35:7d:5a:cc:d6:54: 97:8e:44:13:10:f2:23:c6:84:4d:c4:90:06:c1:5f:1e:8c:52: dd:1f:db:07 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUImVjy7eb+fGlL2I94MDg7DcBX2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDNaFw0yNjA3MDMxNjA4NDNaMDMxMTAvBgNV BAMTKDJFQjJDMzNCRjk2N0Q3MjcyRDdGNDZCMUNBMjNGMjc1MTA4QTQzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChPIIpaaHUDci4eDG6BkHLjUsP F28EeyH5kIDzOGBKbtoRuuNuiv4RrOwW9K5aeSuzEDX7/VTU6c6NmUHrF4/Xxcsl aR8Bv2Z5K5AfvUG6VPOoaA2Ymz7qGKwpNmvixORsYIAj2YzgB/FzuuCiVtZBvPJr cECc5laUZnlgrNJ6RGuyKY/6Ug+2uh6Nmul4nYfQwqttwt/lu8ma2XGr8MRPts5q jjzeNHs3dlA0WqwgH1ttJ7KhdnBW9wSqLxhMKOGRZg7suFuQZjz+wJEc0d7RJb3K a9IAOw1Y4qENIM/eHIvKPN5Nw5ZygAb8n7aPg2IKn4cGWF0M2qmrB6ld6P+nAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQULrLDO/ln1yctf0axyiPydRCKQxUwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNTANBgkqhkiG9w0BAQsFAAOCAQEADWjs7aon/geWpc9N aQT6seqdDWUfdAmqFJkS+0gFaSsfhMmWv8+0ZxT5wNL1lXCtklmYNbLhju7wA5wZ Cu77quG4e61+QMiMwCZi5M1ujDiQeN74nALE/siAfUfTtPwQSYlFUo4dR/bQiRmt EEiRwQWWhxFNVI/RhMOfW1yhlACxU0fMxzG6LNUdHJnedo1RcFFDBK6Jn524aSe8 b4AglJ2rD4bsfDAbmj5aLCHsMRqDJ7x0zuXa4WY8lNEtl1uluc1+tVRHXjuIXFwV 91oKRBwEetz2obNopciUcc6qrX2oG2RwNX1azNZUl45EExDyI8aETcSQBsFfHoxS 3R/bBw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:57:51 2025 by rpki-client