$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa File: 326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa (raw, json) Hash identifier: h0vT/prOx9vwiaveGRIgx6hYlS5pRm7loFEHoMt0gjM= Subject key identifier: 56:14:28:63:3C:BE:12:DF:B5:F2:9D:C1:A3:0F:05:1A:47:70:3F:6C Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4D0F4D6504859378F8F3F5AFEFC68F381D12776A Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa Signing time: Fri 04 Jul 2025 16:08:39 +0000 ROA not before: Fri 04 Jul 2025 16:03:39 +0000 ROA not after: Fri 03 Jul 2026 16:08:39 +0000 asID: 207252 IP address blocks: 2a06:1283:c010::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0f:4d:65:04:85:93:78:f8:f3:f5:af:ef:c6:8f:38:1d:12:77:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:39 2025 GMT Not After : Jul 3 16:08:39 2026 GMT Subject: CN=561428633CBE12DFB5F29DC1A30F051A47703F6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:41:38:05:e3:03:14:b1:e2:a4:39:5a:ba:50: a2:55:02:91:c8:03:87:e1:b3:68:64:3c:0d:b2:5a: 80:f4:56:0f:54:95:53:3e:cf:33:2e:e5:f5:7e:57: c0:d1:36:3b:a7:21:1e:1a:c1:a5:0e:5c:b9:6b:b3: cc:f8:16:6e:05:60:6d:76:31:5a:66:d1:55:88:27: d5:70:97:cc:26:da:8a:90:c8:1a:cd:02:39:0f:fd: b2:d0:5f:74:97:e8:b9:ed:a4:a3:7a:0d:e9:0b:94: a8:9c:c1:f7:e4:1d:71:3b:ac:86:0e:14:cb:0c:d9: 2d:e0:1f:6f:a2:9c:4c:23:70:b2:83:af:b1:94:d0: 00:cd:68:1b:b2:3f:49:58:ca:3b:64:98:9e:c5:ff: 91:45:e6:25:e0:68:7b:ab:02:fc:a2:d0:3a:3b:39: b6:65:76:29:0c:8a:84:08:53:6a:82:5b:22:ec:22: 97:d5:7f:18:9e:a3:e0:59:d5:fd:03:fb:2b:7b:ed: 64:f5:b7:a1:22:45:5c:bb:00:00:cd:a1:34:b5:4f: 4b:38:0b:16:5a:cf:d2:7f:64:08:50:e9:fa:03:99: aa:de:2a:a5:ba:33:ff:f8:a1:4c:6e:5a:e6:7e:f6: 8b:1f:4d:d2:97:7f:4c:97:88:1e:ba:bf:45:ba:a8: 32:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:14:28:63:3C:BE:12:DF:B5:F2:9D:C1:A3:0F:05:1A:47:70:3F:6C X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031303a3a2f34342d3434203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c010::/44 Signature Algorithm: sha256WithRSAEncryption 5f:74:3c:cb:e8:c7:27:1c:90:03:c9:ff:d4:99:18:f1:cd:5e: 14:94:61:4f:03:5b:cf:5c:2f:05:ef:bc:74:0a:f0:6b:84:9a: 10:1d:62:47:52:67:2b:5b:46:39:0c:d3:e0:ad:51:68:d2:5e: be:f2:92:fc:6e:2a:4c:69:71:1b:a7:16:9b:fc:81:4d:2f:79: 05:4a:a4:23:52:aa:3e:36:8b:18:cc:e2:ef:6b:4d:fc:7a:52: 15:f4:b4:51:31:6f:33:cf:c9:fe:36:b4:40:99:34:29:34:8c: 49:4c:ed:0e:fd:d3:a2:d3:42:40:1e:1b:1e:6e:08:df:fa:91: 59:4f:b4:5a:43:d4:4b:87:dc:bd:5b:3c:07:d2:a0:cd:53:5d: 39:99:3b:71:1b:3b:21:20:7a:4c:05:8f:8f:d3:5b:77:d3:d6: 30:b1:a7:c4:1c:90:5b:8f:e5:fe:1c:f4:22:85:88:0e:51:8d: ce:8e:88:0c:d3:1d:3d:39:f4:10:f1:80:4b:2e:b8:0e:3a:cf: 0b:c1:f3:d4:59:37:40:d2:c0:c5:6a:8b:91:ac:d5:cf:a5:13: 8e:3e:23:49:68:aa:2b:b2:4e:da:34:23:a6:30:d1:74:d5:71: 6a:6c:56:6a:13:14:d1:eb:4c:ae:f0:67:af:cb:b1:48:a9:b0: ca:3a:93:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUTQ9NZQSFk3j48/Wv78aPOB0Sd2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzlaFw0yNjA3MDMxNjA4MzlaMDMxMTAvBgNV BAMTKDU2MTQyODYzM0NCRTEyREZCNUYyOURDMUEzMEYwNTFBNDc3MDNGNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQTgF4wMUseKkOVq6UKJVApHI A4fhs2hkPA2yWoD0Vg9UlVM+zzMu5fV+V8DRNjunIR4awaUOXLlrs8z4Fm4FYG12 MVpm0VWIJ9Vwl8wm2oqQyBrNAjkP/bLQX3SX6LntpKN6DekLlKicwffkHXE7rIYO FMsM2S3gH2+inEwjcLKDr7GU0ADNaBuyP0lYyjtkmJ7F/5FF5iXgaHurAvyi0Do7 ObZldikMioQIU2qCWyLsIpfVfxieo+BZ1f0D+yt77WT1t6EiRVy7AADNoTS1T0s4 CxZaz9J/ZAhQ6foDmareKqW6M//4oUxuWuZ+9osfTdKXf0yXiB66v0W6qDJhAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUVhQoYzy+Et+18p3Bow8FGkdwP2wwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzAzNzMyMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAEDANBgkqhkiG9w0BAQsFAAOCAQEAX3Q8y+jHJxyQA8n/ 1JkY8c1eFJRhTwNbz1wvBe+8dArwa4SaEB1iR1JnK1tGOQzT4K1RaNJevvKS/G4q TGlxG6cWm/yBTS95BUqkI1KqPjaLGMzi72tN/HpSFfS0UTFvM8/J/ja0QJk0KTSM SUztDv3TotNCQB4bHm4I3/qRWU+0WkPUS4fcvVs8B9KgzVNdOZk7cRs7ISB6TAWP j9Nbd9PWMLGnxByQW4/l/hz0IoWIDlGNzo6IDNMdPTn0EPGASy64DjrPC8Hz1Fk3 QNLAxWqLkazVz6UTjj4jSWiqK7JO2jQjpjDRdNVxamxWahMU0etMrvBnr8uxSKmw yjqTtQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:59:21 2025 by rpki-client