$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: d+45dfTq4IAM7+cGtAS5eJ1pzeSk2j0GS5rLrf0H/EM= Subject key identifier: 76:18:7F:96:86:65:E3:D4:E8:37:EA:8C:A6:35:38:97:B2:06:1E:EB Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 55CCE9DB1B399B3EB2B0D2169725ADAB1E5B71B2 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 212049 IP address blocks: 2a06:1283:b335::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 14:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:cc:e9:db:1b:39:9b:3e:b2:b0:d2:16:97:25:ad:ab:1e:5b:71:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=76187F968665E3D4E837EA8CA6353897B2061EEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f9:69:4d:11:34:5a:f1:52:d8:a4:ad:be:5c: 24:71:0e:ae:a6:7d:03:1f:23:01:84:56:53:e8:2a: 26:21:46:2e:79:7d:64:81:28:10:9a:a1:13:8d:3d: 3b:7e:05:2d:16:5d:ce:52:92:93:40:d7:02:fa:02: 56:14:25:f1:f7:b5:76:67:da:c7:da:45:db:2c:84: ef:96:5f:1c:26:f1:08:7a:a2:ae:c5:87:7c:ed:c6: 1a:ec:5c:42:0d:27:c2:1b:be:6c:7a:17:86:12:a3: 47:cb:b7:74:89:bf:89:00:d6:77:08:a0:37:41:1d: ad:b4:4a:5d:c6:f9:99:4e:41:c5:73:c5:1a:ee:7a: 76:09:7a:46:27:36:70:6e:3a:fb:bd:fc:a4:93:97: 15:58:50:46:0f:4f:6c:3d:e0:48:27:2c:ff:d0:86: 85:80:f8:93:fd:1c:f6:5a:f5:8a:72:40:6a:97:d3: 6a:68:f5:d3:ac:19:60:75:4f:5b:df:44:fe:ba:42: 3d:84:63:3b:e8:b1:31:af:e6:a1:f8:28:80:f5:97: b5:77:eb:24:3a:d4:17:b0:22:ee:07:a9:35:97:fb: 91:c0:44:53:d3:c6:ef:31:a4:b4:66:16:7f:65:ca: 7a:d7:84:49:b0:f3:69:4e:50:13:5f:16:0c:c4:18: b2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:18:7F:96:86:65:E3:D4:E8:37:EA:8C:A6:35:38:97:B2:06:1E:EB X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333353a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b335::/48 Signature Algorithm: sha256WithRSAEncryption 52:f4:19:74:f0:13:11:f1:1f:b9:09:10:75:cd:3d:69:e4:0e: c8:37:6d:00:5d:9f:6d:18:e4:8c:99:11:59:7d:32:b7:06:8c: 29:bb:27:16:a1:34:f4:34:b4:c2:cb:2d:a9:b9:cc:d9:c8:10: 01:cc:a5:3e:98:ee:bf:86:76:de:0b:6d:36:07:98:45:fb:fb: 4a:7e:5a:f2:32:b8:85:23:9a:83:e1:82:48:a0:d2:03:79:16: 2a:cc:88:e5:07:42:25:ea:8c:4d:a9:fe:02:04:44:21:74:30: b3:24:d3:03:71:ec:8d:b7:7a:9c:24:35:26:aa:28:d5:f2:34: 00:85:48:47:14:51:4c:f2:21:b1:08:02:05:c3:d1:a0:9a:03: 38:d5:39:46:1f:91:b6:07:8d:3b:23:60:de:91:34:ae:25:b8: 23:dd:bf:c5:be:2d:1c:25:31:02:ea:8c:c4:c7:3f:21:e8:45: 0d:4c:c6:42:b1:26:66:a2:6e:40:83:dc:2a:21:92:8c:8d:46: 3e:cb:67:78:1c:cc:6c:61:ae:6e:e4:62:28:b3:69:67:05:f6: dc:49:13:7a:83:e2:96:a6:b6:2b:46:c5:b3:eb:ae:a5:1e:e9: 43:00:02:58:9c:7e:fb:3d:4c:ec:cb:ce:1b:7a:d2:1f:8c:9f: b3:25:9b:32 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUVczp2xs5mz6ysNIWlyWtqx5bcbIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKDc2MTg3Rjk2ODY2NUUzRDRFODM3RUE4Q0E2MzUzODk3QjIwNjFFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo+WlNETRa8VLYpK2+XCRxDq6m fQMfIwGEVlPoKiYhRi55fWSBKBCaoRONPTt+BS0WXc5SkpNA1wL6AlYUJfH3tXZn 2sfaRdsshO+WXxwm8Qh6oq7Fh3ztxhrsXEINJ8Ibvmx6F4YSo0fLt3SJv4kA1ncI oDdBHa20Sl3G+ZlOQcVzxRruenYJekYnNnBuOvu9/KSTlxVYUEYPT2w94EgnLP/Q hoWA+JP9HPZa9YpyQGqX02po9dOsGWB1T1vfRP66Qj2EYzvosTGv5qH4KID1l7V3 6yQ61BewIu4HqTWX+5HARFPTxu8xpLRmFn9lynrXhEmw82lOUBNfFgzEGLLnAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUdhh/loZl49ToN+qMpjU4l7IGHuswHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNTANBgkqhkiG9w0BAQsFAAOCAQEAUvQZdPATEfEfuQkQ dc09aeQOyDdtAF2fbRjkjJkRWX0ytwaMKbsnFqE09DS0wsstqbnM2cgQAcylPpju v4Z23gttNgeYRfv7Sn5a8jK4hSOag+GCSKDSA3kWKsyI5QdCJeqMTan+AgREIXQw syTTA3Hsjbd6nCQ1Jqoo1fI0AIVIRxRRTPIhsQgCBcPRoJoDONU5Rh+RtgeNOyNg 3pE0riW4I92/xb4tHCUxAuqMxMc/IehFDUzGQrEmZqJuQIPcKiGSjI1GPstneBzM bGGubuRiKLNpZwX23EkTeoPilqa2K0bFs+uupR7pQwACWJx++z1M7MvOG3rSH4yf syWbMg== -----END CERTIFICATE-----Generated at Thu Jun 11 23:57:28 2026 by rpki-client