$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: FI6+lnt7wYKf/koajd7leuAGrgnOrTyLUbLsPKITY1A= Subject key identifier: 7E:1E:D3:AB:6B:59:08:71:C2:BF:C8:C9:67:65:64:3D:00:34:A9:32 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 77C362E0760E3C70675FB3294F903DA05FB66517 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa Signing time: Fri 04 Jul 2025 16:08:43 +0000 ROA not before: Fri 04 Jul 2025 16:03:43 +0000 ROA not after: Fri 03 Jul 2026 16:08:43 +0000 asID: 216043 IP address blocks: 2a06:1283:c01a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c3:62:e0:76:0e:3c:70:67:5f:b3:29:4f:90:3d:a0:5f:b6:65:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:43 2025 GMT Not After : Jul 3 16:08:43 2026 GMT Subject: CN=7E1ED3AB6B590871C2BFC8C96765643D0034A932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3c:33:0d:d7:55:86:1c:3c:fe:66:dd:34:df: bb:37:0f:5d:ea:b4:d0:7e:37:d6:63:04:96:48:54: 95:bc:fd:69:f5:e8:e8:32:5a:d3:a1:5f:9e:df:27: a5:fb:cf:28:13:71:dc:0f:0c:0e:68:41:b6:f9:e6: e8:72:93:58:aa:4d:92:43:bb:a4:f0:8e:aa:81:a4: 99:5a:eb:66:5b:46:0d:68:95:31:7c:a5:bc:39:8f: 77:bc:b3:b9:a5:ec:2d:86:2b:50:34:61:6a:d7:a4: 11:f4:aa:a1:1a:ed:b9:77:de:b5:cb:55:6a:d2:e3: 76:69:20:7a:f0:ec:49:4c:9d:41:e6:ae:17:43:ab: ca:c6:f9:a9:19:05:82:e2:f2:6d:6c:d9:be:07:83: 24:76:49:81:5e:4c:dc:3e:d2:cf:f8:9f:80:50:ab: 97:b4:6c:20:35:26:30:1c:fb:fe:7a:57:0f:ba:31: 01:35:7a:2e:f3:fc:c7:aa:82:4c:35:1f:55:69:aa: c2:5b:81:76:f0:6b:eb:f3:98:0d:d8:0b:d0:58:4a: a5:f6:82:17:d2:e7:8d:7d:f9:0c:0c:40:79:43:1c: cf:e3:e7:b8:05:ab:58:b7:f3:79:51:bc:dd:ac:9f: 98:eb:1d:00:85:7f:10:b8:3a:05:49:09:78:b6:21: 6e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1E:D3:AB:6B:59:08:71:C2:BF:C8:C9:67:65:64:3D:00:34:A9:32 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031613a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01a::/48 Signature Algorithm: sha256WithRSAEncryption 2b:42:5c:19:83:74:95:8a:f0:b1:96:31:c2:f9:9b:17:72:60: 68:40:a5:66:4f:c3:3a:9d:a5:b4:a3:94:5a:f6:50:39:29:f3: 8e:8a:48:82:56:14:ab:66:6b:46:02:01:7d:11:0c:3a:a9:ec: b0:b1:f1:f6:1c:6f:4f:41:55:ef:08:57:fd:e0:a8:dd:5c:53: 02:b9:a4:32:9a:b9:d3:3c:a8:42:2e:39:9d:f7:86:15:8c:a6: c4:69:4d:00:a4:1b:30:e1:67:59:42:eb:3d:d0:1a:ab:02:0e: 02:c8:cc:8d:fe:52:b8:d0:9d:96:93:48:cc:7a:7d:6d:6a:f2: 2d:e7:e0:a3:82:9c:75:83:d9:ae:17:42:90:93:45:03:9d:06: d6:c3:09:3e:4f:fd:1d:89:c6:39:91:43:a7:47:a7:e8:0e:1d: d0:73:5f:95:9f:56:ad:5f:52:46:e9:a0:ed:2c:90:76:c5:c0: cd:9e:01:b7:71:56:d9:75:89:2c:e7:ca:a0:a4:f4:47:b0:e5: 4e:de:fb:98:df:e1:ec:eb:c2:39:af:7a:74:e5:e7:c6:73:98: 8f:8d:83:2b:15:12:3c:9d:d1:f2:6e:4e:4a:33:bc:f5:b9:e3: d9:4e:c5:e2:fc:4d:37:c9:5f:df:8c:c9:77:41:1f:64:e0:5d: 28:d9:5e:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUd8Ni4HYOPHBnX7MpT5A9oF+2ZRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDNaFw0yNjA3MDMxNjA4NDNaMDMxMTAvBgNV BAMTKDdFMUVEM0FCNkI1OTA4NzFDMkJGQzhDOTY3NjU2NDNEMDAzNEE5MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpPDMN11WGHDz+Zt0037s3D13q tNB+N9ZjBJZIVJW8/Wn16OgyWtOhX57fJ6X7zygTcdwPDA5oQbb55uhyk1iqTZJD u6TwjqqBpJla62ZbRg1olTF8pbw5j3e8s7ml7C2GK1A0YWrXpBH0qqEa7bl33rXL VWrS43ZpIHrw7ElMnUHmrhdDq8rG+akZBYLi8m1s2b4HgyR2SYFeTNw+0s/4n4BQ q5e0bCA1JjAc+/56Vw+6MQE1ei7z/Meqgkw1H1VpqsJbgXbwa+vzmA3YC9BYSqX2 ghfS5419+QwMQHlDHM/j57gFq1i383lRvN2sn5jrHQCFfxC4OgVJCXi2IW7vAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUfh7Tq2tZCHHCv8jJZ2VkPQA0qTIwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAGjANBgkqhkiG9w0BAQsFAAOCAQEAK0JcGYN0lYrwsZYx wvmbF3JgaEClZk/DOp2ltKOUWvZQOSnzjopIglYUq2ZrRgIBfREMOqnssLHx9hxv T0FV7whX/eCo3VxTArmkMpq50zyoQi45nfeGFYymxGlNAKQbMOFnWULrPdAaqwIO AsjMjf5SuNCdlpNIzHp9bWryLefgo4KcdYPZrhdCkJNFA50G1sMJPk/9HYnGOZFD p0en6A4d0HNflZ9WrV9SRumg7SyQdsXAzZ4Bt3FW2XWJLOfKoKT0R7DlTt77mN/h 7OvCOa96dOXnxnOYj42DKxUSPJ3R8m5OSjO89bnj2U7F4vxNN8lf34zJd0EfZOBd KNlekg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:50:41 2025 by rpki-client