$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa File: 326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa (raw, json) Hash identifier: pDH3/3Dk1Fq980Em9CqMToFDUz3enDEGYm53t1F1Sc0= Subject key identifier: 3A:58:89:53:6B:5F:73:F9:1C:D2:F2:77:E4:08:3E:21:3F:06:52:90 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 2EF2333F969315139CF24D721CFF5F73DCFBA188 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa Signing time: Fri 04 Jul 2025 16:08:43 +0000 ROA not before: Fri 04 Jul 2025 16:03:43 +0000 ROA not after: Fri 03 Jul 2026 16:08:43 +0000 asID: 209668 IP address blocks: 2a06:1283:ba00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f2:33:3f:96:93:15:13:9c:f2:4d:72:1c:ff:5f:73:dc:fb:a1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:43 2025 GMT Not After : Jul 3 16:08:43 2026 GMT Subject: CN=3A5889536B5F73F91CD2F277E4083E213F065290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:90:a8:d0:d6:1e:99:b9:a0:bf:43:1b:40:40: 50:a5:22:86:83:5e:d8:e4:8f:47:35:33:2a:8e:a1: 10:78:c7:53:ad:19:d9:ba:fe:be:1f:d5:3f:be:d7: f1:c8:2f:67:ac:e0:0b:ab:78:a3:cf:44:01:ec:98: e5:11:42:47:11:a2:97:36:7e:9a:f4:9b:fa:51:4d: 4f:6d:10:d2:4c:5b:16:82:38:df:b1:21:a8:4b:fd: 9c:2c:89:7b:24:bb:0f:a2:44:dc:29:12:3e:83:53: 83:45:8a:18:dd:13:3f:83:d8:cd:59:53:7c:93:7f: c6:48:ca:be:18:6e:7e:a8:72:a3:db:f4:64:aa:04: f1:cc:12:f7:20:1b:51:f5:1a:25:02:2a:0e:61:a7: a3:38:01:59:ae:b4:14:05:2d:01:69:e0:81:bb:7a: 58:f8:3c:d3:13:bb:60:65:be:66:24:fb:19:fc:c3: da:37:f9:dd:66:a6:62:bc:76:40:af:fd:9d:36:7d: a1:d3:ab:0d:87:ba:db:f6:76:d4:f2:76:0b:8e:9e: 32:07:01:18:68:e8:34:b9:db:d1:75:65:8e:ec:4e: f1:21:f1:79:8d:a3:3e:08:36:84:b3:a2:3d:c3:b0: e3:dc:8d:c1:16:43:a4:9f:b3:1f:d5:67:45:d5:e9: fe:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:58:89:53:6B:5F:73:F9:1C:D2:F2:77:E4:08:3E:21:3F:06:52:90 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626130303a3a2f34302d3438203d3e20323039363638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:ba00::/40 Signature Algorithm: sha256WithRSAEncryption 3b:05:ac:48:7d:14:f6:b1:ae:ca:fb:8d:ff:f8:aa:e3:a0:9a: 4b:32:4a:8c:f8:5a:de:4d:13:f6:3f:90:da:d9:8c:ec:5c:9c: 34:4a:58:76:92:e3:1c:18:2b:ca:47:c8:76:f8:39:df:3f:15: 13:0f:8b:ec:75:d2:00:62:4f:d3:2e:14:27:d2:43:d2:93:e3: 2a:9b:67:15:78:04:42:b0:23:cf:dd:3c:3d:d3:c7:5f:65:8a: 60:a1:47:fc:34:12:4d:ff:1b:61:2d:99:1d:b0:c7:e4:7e:3b: 00:dc:0b:4a:63:58:7b:ba:ca:ff:e0:6f:15:aa:2b:33:4f:08: 2b:26:5e:89:64:1b:96:4a:c3:5b:1c:40:a8:b9:d0:d7:03:66: 25:13:54:ce:60:04:da:9e:a3:36:08:14:02:44:b9:2b:8d:88: ac:cd:85:6b:d1:51:43:13:27:76:89:c0:4c:66:b8:f9:c8:43: 43:07:7b:02:34:7f:8c:b6:28:b2:01:5f:73:01:6b:7e:1e:4f: 09:b8:88:f0:ce:c4:20:4e:d6:c3:2d:a8:45:12:c2:9c:38:92: ea:a4:2b:a3:79:69:1b:a4:66:81:ac:61:9e:f2:f3:14:99:7a: a9:7c:de:b7:49:a4:dd:6a:94:c4:1e:52:f4:4f:dd:1d:5a:26: 8e:6c:4d:1b -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIULvIzP5aTFROc8k1yHP9fc9z7oYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDNaFw0yNjA3MDMxNjA4NDNaMDMxMTAvBgNV BAMTKDNBNTg4OTUzNkI1RjczRjkxQ0QyRjI3N0U0MDgzRTIxM0YwNjUyOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClkKjQ1h6ZuaC/QxtAQFClIoaD Xtjkj0c1MyqOoRB4x1OtGdm6/r4f1T++1/HIL2es4AureKPPRAHsmOURQkcRopc2 fpr0m/pRTU9tENJMWxaCON+xIahL/ZwsiXskuw+iRNwpEj6DU4NFihjdEz+D2M1Z U3yTf8ZIyr4Ybn6ocqPb9GSqBPHMEvcgG1H1GiUCKg5hp6M4AVmutBQFLQFp4IG7 elj4PNMTu2BlvmYk+xn8w9o3+d1mpmK8dkCv/Z02faHTqw2Hutv2dtTydguOnjIH ARho6DS529F1ZY7sTvEh8XmNoz4INoSzoj3DsOPcjcEWQ6Sfsx/VZ0XV6f4dAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUOliJU2tfc/kc0vJ35Ag+IT8GUpAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjYxMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzAzOTM2MzYzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoO6MA0GCSqGSIb3DQEBCwUAA4IBAQA7BaxIfRT2sa7K+43/ +KrjoJpLMkqM+FreTRP2P5Da2YzsXJw0Slh2kuMcGCvKR8h2+DnfPxUTD4vsddIA Yk/TLhQn0kPSk+Mqm2cVeARCsCPP3Tw908dfZYpgoUf8NBJN/xthLZkdsMfkfjsA 3AtKY1h7usr/4G8VqiszTwgrJl6JZBuWSsNbHECoudDXA2YlE1TOYATanqM2CBQC RLkrjYiszYVr0VFDEyd2icBMZrj5yENDB3sCNH+MtiiyAV9zAWt+Hk8JuIjwzsQg TtbDLahFEsKcOJLqpCujeWkbpGaBrGGe8vMUmXqpfN63SaTdapTEHlL0T90dWiaO bE0b -----END CERTIFICATE-----Generated at Sat Jul 5 09:00:57 2025 by rpki-client