$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626530303a3a2f34302d3438203d3e20313938393131.roa File: 326130363a313238333a626530303a3a2f34302d3438203d3e20313938393131.roa (raw, json) Hash identifier: neXl9WJI5tkOb5+mDS2JaJ7yqweaAywxackQcQOiQoQ= Subject key identifier: 9F:73:58:7D:02:8D:C8:86:83:86:E4:CB:3C:BF:AC:6D:E2:19:D2:D1 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 22524A86E27D5F8231F5308A1554C42032E272D5 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626530303a3a2f34302d3438203d3e20313938393131.roa Signing time: Fri 15 May 2026 11:43:02 +0000 ROA not before: Fri 15 May 2026 11:38:02 +0000 ROA not after: Fri 14 May 2027 11:43:02 +0000 asID: 198911 IP address blocks: 2a06:1283:be00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jun 2026 04:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:52:4a:86:e2:7d:5f:82:31:f5:30:8a:15:54:c4:20:32:e2:72:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: May 15 11:38:02 2026 GMT Not After : May 14 11:43:02 2027 GMT Subject: CN=9F73587D028DC8868386E4CB3CBFAC6DE219D2D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f2:58:bd:50:c8:c2:63:4f:2b:f9:ca:cb:ec: 15:3b:93:b0:f6:03:c8:0d:80:e6:c6:1f:86:b6:f3: cd:a1:94:0e:39:63:13:47:17:8a:53:72:51:1f:d9: 94:47:1d:5d:0a:74:58:da:e7:40:34:e8:a1:a8:3f: 2c:59:c5:40:c8:d3:59:0b:57:a9:b7:e7:3c:54:f2: 33:d4:48:09:59:61:55:de:16:5c:2d:47:35:a9:b2: cc:9d:58:c7:4a:f5:7c:48:11:50:ca:60:0c:3b:04: 1b:8e:77:ff:26:01:5e:79:58:a8:27:a9:d4:3b:3f: 6a:7d:85:f2:e0:4d:8f:f0:a9:be:9d:e6:4f:94:6f: 1c:a4:e8:17:03:4e:0e:ae:da:42:3c:17:54:d2:ad: 99:2e:79:3b:dd:c4:a1:6e:96:ea:5c:f2:ac:ca:e1: 86:f9:c7:d2:61:0e:60:0b:3a:dc:e5:0e:bd:b3:27: a4:5f:35:80:f5:d9:15:7c:57:b1:c9:21:eb:ac:51: 90:76:7b:db:ad:03:ea:b0:35:76:f7:f8:89:0c:cc: 1a:32:5a:fb:d6:c1:ed:3d:fa:11:c9:7c:eb:7f:1d: 6f:e1:78:2b:e6:04:18:8a:75:4d:3a:af:76:fb:74: 0b:17:c6:40:61:54:42:f3:20:49:12:91:56:f1:7d: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:73:58:7D:02:8D:C8:86:83:86:E4:CB:3C:BF:AC:6D:E2:19:D2:D1 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a626530303a3a2f34302d3438203d3e20313938393131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:be00::/40 Signature Algorithm: sha256WithRSAEncryption 4b:67:49:ca:da:0f:03:7d:c7:a6:14:aa:55:1b:87:97:f0:20: 0a:75:26:31:2a:c3:fb:66:00:b5:3e:ce:94:9e:2a:e6:0f:67: 10:f1:13:76:78:de:bf:07:7d:59:67:d8:d1:c4:25:12:af:a5: 9c:ce:ed:c6:a9:01:9e:5c:a5:41:e6:d8:31:30:ba:dc:27:a2: bb:76:a5:0d:a8:75:d5:88:85:5e:e0:98:47:8b:86:6e:40:80: 56:e9:0c:4e:4f:09:44:fb:f4:33:a1:9a:06:27:39:33:24:67: 8b:28:92:27:fd:9f:38:81:77:36:4d:85:da:6a:02:87:22:db: 03:ac:ca:5a:1a:8c:d8:d9:94:14:2e:3c:04:0b:b7:14:73:41: fb:28:af:0a:dc:59:8c:90:e0:9e:07:13:e7:f5:9b:52:a0:5c: da:08:e5:37:17:b8:d6:c3:93:67:12:0b:4a:22:b7:a5:44:f8: 70:aa:6e:60:56:3f:73:54:fb:c5:cd:4f:b0:a9:ae:02:fd:5d: 13:52:da:62:05:71:06:27:13:23:64:8a:25:98:43:8d:c6:8f: 11:e6:1f:ba:94:b9:06:9f:bc:87:5d:3b:f9:ee:26:a2:33:e6: 69:7f:40:6b:36:19:4f:2c:d8:cd:09:2c:6a:65:d9:2b:6e:4f: 58:63:30:85 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUIlJKhuJ9X4Ix9TCKFVTEIDLictUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA1MTUxMTM4MDJaFw0yNzA1MTQxMTQzMDJaMDMxMTAvBgNV BAMTKDlGNzM1ODdEMDI4REM4ODY4Mzg2RTRDQjNDQkZBQzZERTIxOUQyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA8li9UMjCY08r+crL7BU7k7D2 A8gNgObGH4a2882hlA45YxNHF4pTclEf2ZRHHV0KdFja50A06KGoPyxZxUDI01kL V6m35zxU8jPUSAlZYVXeFlwtRzWpssydWMdK9XxIEVDKYAw7BBuOd/8mAV55WKgn qdQ7P2p9hfLgTY/wqb6d5k+Ubxyk6BcDTg6u2kI8F1TSrZkueTvdxKFulupc8qzK 4Yb5x9JhDmALOtzlDr2zJ6RfNYD12RV8V7HJIeusUZB2e9utA+qwNXb3+IkMzBoy WvvWwe09+hHJfOt/HW/heCvmBBiKdU06r3b7dAsXxkBhVELzIEkSkVbxfbr5AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUn3NYfQKNyIaDhuTLPL+sbeIZ0tEwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjY1MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMxMzkzODM5MzEzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoO+MA0GCSqGSIb3DQEBCwUAA4IBAQBLZ0nK2g8DfcemFKpV G4eX8CAKdSYxKsP7ZgC1Ps6UnirmD2cQ8RN2eN6/B31ZZ9jRxCUSr6Wczu3GqQGe XKVB5tgxMLrcJ6K7dqUNqHXViIVe4JhHi4ZuQIBW6QxOTwlE+/QzoZoGJzkzJGeL KJIn/Z84gXc2TYXaagKHItsDrMpaGozY2ZQULjwEC7cUc0H7KK8K3FmMkOCeBxPn 9ZtSoFzaCOU3F7jWw5NnEgtKIrelRPhwqm5gVj9zVPvFzU+wqa4C/V0TUtpiBXEG JxMjZIolmEONxo8R5h+6lLkGn7yHXTv57iaiM+Zpf0BrNhlPLNjNCSxqZdkrbk9Y YzCF -----END CERTIFICATE-----Generated at Sun May 31 11:17:27 2026 by rpki-client