$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: YqdEVY7SOTNAO11FQbD+th1qujzrUObpLGS5PUruVeA= Subject key identifier: A3:79:DE:4A:A8:00:09:D7:01:77:3E:18:81:AC:92:53:1A:94:BF:BB Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 77B12D5E4007809C92B158E8FE17AE25A86B3C25 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 04 Jul 2025 16:08:40 +0000 ROA not before: Fri 04 Jul 2025 16:03:40 +0000 ROA not after: Fri 03 Jul 2026 16:08:40 +0000 asID: 212049 IP address blocks: 2a06:1283:b336::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b1:2d:5e:40:07:80:9c:92:b1:58:e8:fe:17:ae:25:a8:6b:3c:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:40 2025 GMT Not After : Jul 3 16:08:40 2026 GMT Subject: CN=A379DE4AA80009D701773E1881AC92531A94BFBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d6:1f:42:a2:7b:09:43:c2:c3:3b:e6:50:4d: dd:34:d7:8c:3a:1a:1d:1e:29:49:ca:37:b4:30:8c: e1:87:1c:66:80:74:a6:0e:50:87:69:13:4c:93:54: f3:ae:1c:e4:e6:14:1e:b8:c7:e4:26:c7:f4:d6:fb: 62:45:74:ac:d7:ed:77:68:9a:88:da:91:a4:da:9c: 6e:bf:d3:97:aa:79:2c:d0:7b:d5:2b:fc:cf:52:ac: 0e:8f:88:3e:ea:2f:a3:9b:6d:d3:ff:42:f3:bf:13: 05:4d:91:38:ee:e5:c1:bc:5f:e1:fd:72:7d:ca:69: fa:69:e5:ff:1c:54:6d:e2:30:03:36:42:34:f7:6d: 4b:79:90:dc:b3:c0:ca:58:0b:bf:7b:32:7c:74:23: c3:46:7c:61:c5:1d:c4:18:29:8e:a0:6b:78:69:10: dc:49:27:a5:3a:5c:46:93:b2:0e:f4:c1:14:4c:fd: e7:14:a8:6f:35:0b:66:1f:12:b7:95:aa:36:e1:d4: eb:b2:14:ce:99:82:95:f2:64:b5:3f:80:fe:8b:e4: 87:ac:06:06:17:c6:8c:88:40:35:87:65:c6:6b:08: 59:46:30:de:f3:a0:cf:ac:fd:cd:0c:52:1d:7e:5d: 55:c2:87:e1:c4:04:ee:85:c4:2b:f1:d6:00:38:32: 19:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:79:DE:4A:A8:00:09:D7:01:77:3E:18:81:AC:92:53:1A:94:BF:BB X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b336::/48 Signature Algorithm: sha256WithRSAEncryption 43:2a:a7:3d:7a:dc:dc:a9:92:98:34:b3:07:be:f1:d6:99:84: 8e:73:ef:b0:40:d5:f0:66:73:e0:30:85:bc:d6:e4:b2:b3:cd: d0:49:ed:2e:f9:0c:60:4e:a6:1e:88:6c:ff:b0:05:46:37:74: ed:9d:dd:ac:39:65:c0:b8:5e:08:48:18:e6:fc:58:49:b8:17: 39:7c:d6:9f:2d:b4:1a:6f:ec:81:df:3b:72:5a:32:fe:46:6f: ff:d7:a1:34:89:4b:ee:fd:21:d9:16:f2:5d:14:88:2c:30:c7: 08:d4:24:81:96:2d:48:48:9a:52:26:23:ce:3a:8d:33:d9:db: 73:56:89:77:73:4c:1e:25:84:97:6b:9d:91:74:31:91:2a:e1: bb:a1:b7:f5:c2:26:68:31:74:62:9a:6b:48:3e:2c:77:9e:5e: d7:74:61:54:4b:22:85:33:c3:3b:09:ed:23:49:f7:5c:32:85: f2:39:24:c1:cf:95:82:78:88:da:46:dd:d2:19:3a:83:d1:fb: 86:b8:ba:af:63:e2:20:ba:4c:c0:0f:af:3c:17:fb:2f:16:b8: 6c:a1:41:fb:03:65:cc:3f:1e:2b:52:d4:b3:dd:8d:73:b9:7b: 9b:36:79:4f:08:4e:e1:cb:c8:80:cb:72:37:0d:ba:0a:7d:7b: f5:40:ca:4b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUd7EtXkAHgJySsVjo/heuJahrPCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDBaFw0yNjA3MDMxNjA4NDBaMDMxMTAvBgNV BAMTKEEzNzlERTRBQTgwMDA5RDcwMTc3M0UxODgxQUM5MjUzMUE5NEJGQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM1h9ConsJQ8LDO+ZQTd0014w6 Gh0eKUnKN7QwjOGHHGaAdKYOUIdpE0yTVPOuHOTmFB64x+Qmx/TW+2JFdKzX7Xdo mojakaTanG6/05eqeSzQe9Ur/M9SrA6PiD7qL6ObbdP/QvO/EwVNkTju5cG8X+H9 cn3Kafpp5f8cVG3iMAM2QjT3bUt5kNyzwMpYC797Mnx0I8NGfGHFHcQYKY6ga3hp ENxJJ6U6XEaTsg70wRRM/ecUqG81C2YfEreVqjbh1OuyFM6ZgpXyZLU/gP6L5Ies BgYXxoyIQDWHZcZrCFlGMN7zoM+s/c0MUh1+XVXCh+HEBO6FxCvx1gA4MhnXAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUo3neSqgACdcBdz4YgaySUxqUv7swHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNjANBgkqhkiG9w0BAQsFAAOCAQEAQyqnPXrc3KmSmDSz B77x1pmEjnPvsEDV8GZz4DCFvNbksrPN0EntLvkMYE6mHohs/7AFRjd07Z3drDll wLheCEgY5vxYSbgXOXzWny20Gm/sgd87cloy/kZv/9ehNIlL7v0h2RbyXRSILDDH CNQkgZYtSEiaUiYjzjqNM9nbc1aJd3NMHiWEl2udkXQxkSrhu6G39cImaDF0Yppr SD4sd55e13RhVEsihTPDOwntI0n3XDKF8jkkwc+VgniI2kbd0hk6g9H7hri6r2Pi ILpMwA+vPBf7Lxa4bKFB+wNlzD8eK1LUs92Nc7l7mzZ5TwhO4cvIgMtyNw26Cn17 9UDKSw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:55:05 2025 by rpki-client