$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa File: 326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa (raw, json) Hash identifier: 1vUksbfO2VgM8s9eyGll/IRDJ6yjHVXK/mSUzrUqjuw= Subject key identifier: D8:A6:F2:7E:46:3C:E0:A0:B2:91:7F:AC:7B:FA:79:4B:45:61:C7:DA Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 2A247A6D47FA59F44907B307C1E387047BD4381C Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 212049 IP address blocks: 2a06:1283:b336::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 14:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:24:7a:6d:47:fa:59:f4:49:07:b3:07:c1:e3:87:04:7b:d4:38:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=D8A6F27E463CE0A0B2917FAC7BFA794B4561C7DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:15:43:a5:49:a5:65:0e:4a:5f:27:b2:3c:7e: a5:b5:95:cc:90:d2:a8:aa:ae:68:23:b0:cd:ce:f4: cf:2e:52:4b:c6:b2:01:55:d6:3b:83:7a:9f:7b:1c: d8:e2:f7:81:c5:9f:28:5f:7f:06:01:e2:ee:dd:7e: e1:d2:3f:5d:78:7e:46:ac:0d:48:fe:48:da:8b:05: 29:10:23:1c:84:67:42:03:5f:fb:1f:5b:39:77:58: c3:52:84:e5:9d:62:d7:9e:f3:28:47:96:a5:76:03: 16:f4:31:7e:d6:33:d6:e6:f6:c0:4f:de:ab:49:3c: 88:d9:66:c6:1b:5c:94:2f:3a:bf:c5:ea:f1:18:40: 22:8e:9a:42:a6:33:bb:25:f2:a1:7b:3a:14:54:cb: 8a:63:32:73:d5:59:87:32:a0:37:31:1c:5f:41:18: 3a:7e:32:8b:17:8e:de:e9:d4:d0:4e:f4:05:2e:05: 2a:e7:aa:05:52:66:10:ef:6f:c6:8a:c4:1c:fd:03: 6d:78:8e:8b:56:57:8d:65:94:b5:24:36:1a:9a:eb: ae:38:87:79:60:5c:ee:fc:00:14:1e:9b:6e:16:ad: 59:36:15:ee:ac:8e:0c:d7:89:65:0f:4a:cb:61:05: 8a:93:1a:1c:99:36:6f:72:3d:f4:23:3e:48:16:1b: 6a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A6:F2:7E:46:3C:E0:A0:B2:91:7F:AC:7B:FA:79:4B:45:61:C7:DA X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623333363a3a2f34382d3438203d3e20323132303439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b336::/48 Signature Algorithm: sha256WithRSAEncryption 26:40:a3:24:90:aa:c9:0d:e0:75:b5:c3:21:23:e3:13:3c:63: 2b:d5:52:a4:8e:a9:e6:5d:51:47:41:58:1e:85:e8:c0:cf:ae: 0d:dd:1c:93:35:8c:eb:29:a9:8a:0d:c9:5a:ad:aa:1e:1c:db: 57:b6:6c:f4:c6:69:e7:98:25:b5:8a:a5:44:9e:b4:95:c7:15: b0:34:31:7f:11:2b:4a:e3:ca:0d:f8:81:d3:61:ee:fb:f1:14: 75:b0:5d:cc:69:72:17:eb:5e:0f:b6:3d:dc:d3:6e:cf:2f:48: 0a:c4:e2:ab:1f:ba:96:1b:d6:37:7f:d5:d0:af:26:ba:34:df: d7:5b:82:08:2f:c1:5d:cb:70:c2:ea:2f:61:fe:44:0a:3c:d9: 8a:39:e6:a4:26:67:2d:ac:26:2d:12:25:aa:bb:b8:c8:75:28: 18:51:fb:cc:18:12:19:f0:9a:fd:bc:28:86:6d:dd:8e:99:d7: 70:bc:d3:e9:d4:43:f0:40:74:8c:b4:cb:89:b8:26:c3:24:48: 82:ac:2a:03:78:25:38:b2:4d:ad:48:42:3f:9b:c9:de:04:3c: 46:1e:86:3b:5a:3a:73:fb:b5:9b:34:96:31:c1:fa:e2:8d:57: 85:ab:dd:ac:33:2f:1c:51:28:b4:f5:48:32:65:95:e0:2b:1e: dc:54:0e:ab -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKiR6bUf6WfRJB7MHweOHBHvUOBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKEQ4QTZGMjdFNDYzQ0UwQTBCMjkxN0ZBQzdCRkE3OTRCNDU2MUM3REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZFUOlSaVlDkpfJ7I8fqW1lcyQ 0qiqrmgjsM3O9M8uUkvGsgFV1juDep97HNji94HFnyhffwYB4u7dfuHSP114fkas DUj+SNqLBSkQIxyEZ0IDX/sfWzl3WMNShOWdYtee8yhHlqV2Axb0MX7WM9bm9sBP 3qtJPIjZZsYbXJQvOr/F6vEYQCKOmkKmM7sl8qF7OhRUy4pjMnPVWYcyoDcxHF9B GDp+MosXjt7p1NBO9AUuBSrnqgVSZhDvb8aKxBz9A214jotWV41llLUkNhqa6644 h3lgXO78ABQem24WrVk2Fe6sjgzXiWUPSsthBYqTGhyZNm9yPfQjPkgWG2qvAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU2KbyfkY84KCykX+se/p5S0Vhx9owHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMzMzMzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzMjMwMzQzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoOzNjANBgkqhkiG9w0BAQsFAAOCAQEAJkCjJJCqyQ3gdbXD ISPjEzxjK9VSpI6p5l1RR0FYHoXowM+uDd0ckzWM6ympig3JWq2qHhzbV7Zs9MZp 55gltYqlRJ60lccVsDQxfxErSuPKDfiB02Hu+/EUdbBdzGlyF+teD7Y93NNuzy9I CsTiqx+6lhvWN3/V0K8mujTf11uCCC/BXctwwuovYf5ECjzZijnmpCZnLawmLRIl qru4yHUoGFH7zBgSGfCa/bwohm3djpnXcLzT6dRD8EB0jLTLibgmwyRIgqwqA3gl OLJNrUhCP5vJ3gQ8Rh6GO1o6c/u1mzSWMcH64o1XhavdrDMvHFEotPVIMmWV4Cse 3FQOqw== -----END CERTIFICATE-----Generated at Thu Jun 11 23:57:29 2026 by rpki-client