$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: ruK85AjjWhlS693Y4dvHuHGq0Q3TZQwI2Ys7rCaxHBc= Subject key identifier: 37:39:86:7A:C2:B6:F0:12:5D:B8:B3:51:80:22:14:6F:43:53:18:E9 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 779821ABF5D4C29FAAF60BF9C4D64BA491DF49E1 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa Signing time: Fri 04 Jul 2025 16:08:44 +0000 ROA not before: Fri 04 Jul 2025 16:03:44 +0000 ROA not after: Fri 03 Jul 2026 16:08:44 +0000 asID: 216043 IP address blocks: 2a06:1283:c01b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:98:21:ab:f5:d4:c2:9f:aa:f6:0b:f9:c4:d6:4b:a4:91:df:49:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:44 2025 GMT Not After : Jul 3 16:08:44 2026 GMT Subject: CN=3739867AC2B6F0125DB8B3518022146F435318E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:52:c3:50:6b:27:af:b6:65:bf:b8:c6:da:3b: a5:8b:22:bc:4d:81:69:95:07:5d:6d:94:9e:e0:b0: 9c:d4:00:08:f3:48:b1:2b:40:c7:fd:4f:49:4e:b5: dc:8c:c2:fd:35:9d:25:c0:92:61:a6:6d:e2:9f:ce: dc:a4:53:01:3b:ae:98:12:f9:60:44:f9:be:c0:d2: dc:33:68:28:9d:ce:e8:a3:5a:d3:ab:97:d3:fc:3a: aa:7d:c7:0c:ca:bd:e6:8c:88:20:e2:61:20:08:df: 04:93:91:5a:8e:33:be:82:ee:b6:00:48:76:34:3c: e3:0f:05:67:35:37:b6:d3:4a:a4:61:b6:2d:00:f6: 22:e2:e6:96:11:2c:d0:0e:74:a0:ce:fe:06:09:5a: 2d:47:4f:85:b5:76:82:4d:fb:be:ba:d7:f6:81:6b: 77:af:4d:1d:39:10:dc:cb:57:07:78:ee:2b:9d:c2: 0a:cf:9f:c4:1f:11:2f:0f:34:7f:a6:8d:25:50:28: 00:8b:da:5e:df:a7:28:3c:5f:cc:37:a4:36:89:ad: 9b:ab:8d:46:61:7b:2e:84:87:87:66:e0:0a:35:20: fe:9c:88:68:f1:d0:c2:d9:5b:e3:fb:c7:36:eb:6d: 9f:16:7f:44:7d:19:8b:f3:2b:94:d7:dc:4f:47:86: ad:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:39:86:7A:C2:B6:F0:12:5D:B8:B3:51:80:22:14:6F:43:53:18:E9 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031623a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01b::/48 Signature Algorithm: sha256WithRSAEncryption 41:44:e6:8d:68:bc:dd:fd:e9:a6:0a:70:55:18:2b:16:0c:c9: 89:2e:f3:69:08:47:ae:2c:99:85:7e:53:c3:91:e4:f4:00:fa: 00:0b:1d:82:6b:96:8b:b5:40:57:2e:fd:e3:cd:a3:47:ea:18: d8:2b:0d:83:19:65:da:1f:a4:55:74:c9:96:8e:a5:50:1d:54: 66:b4:7a:cb:17:cb:03:7d:2c:04:2d:56:93:4e:de:0a:3d:e6: e5:85:e5:42:55:9b:32:dc:5b:be:b9:e8:60:13:aa:62:f4:46: 5f:27:40:c6:2b:bd:93:00:cf:c9:fe:3a:07:4b:c6:93:d0:04: c1:8d:24:13:c5:80:8a:61:f3:96:54:13:15:8c:1c:45:fb:f9: 32:ab:bb:5d:75:ce:06:4b:6e:9b:00:24:a9:a7:9e:8d:ae:f0: f6:8c:9f:b8:dd:8f:39:62:b9:93:49:53:37:68:ae:e1:f2:18: ed:c3:9e:97:dd:75:21:2b:a4:dd:38:b5:bf:76:cd:f5:98:91: ec:ad:fa:d4:c5:4a:62:bb:9e:02:55:ef:eb:58:6b:50:60:25: ad:06:51:f1:eb:84:8f:99:d6:a7:00:d3:af:ba:d9:3d:b2:5d: 4e:9a:5c:df:8d:3c:0b:44:6f:5b:18:54:d5:1a:d5:3e:33:f2: a8:f6:91:f6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUd5ghq/XUwp+q9gv5xNZLpJHfSeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDRaFw0yNjA3MDMxNjA4NDRaMDMxMTAvBgNV BAMTKDM3Mzk4NjdBQzJCNkYwMTI1REI4QjM1MTgwMjIxNDZGNDM1MzE4RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9UsNQayevtmW/uMbaO6WLIrxN gWmVB11tlJ7gsJzUAAjzSLErQMf9T0lOtdyMwv01nSXAkmGmbeKfztykUwE7rpgS +WBE+b7A0twzaCidzuijWtOrl9P8Oqp9xwzKveaMiCDiYSAI3wSTkVqOM76C7rYA SHY0POMPBWc1N7bTSqRhti0A9iLi5pYRLNAOdKDO/gYJWi1HT4W1doJN+7661/aB a3evTR05ENzLVwd47iudwgrPn8QfES8PNH+mjSVQKACL2l7fpyg8X8w3pDaJrZur jUZhey6Eh4dm4Ao1IP6ciGjx0MLZW+P7xzbrbZ8Wf0R9GYvzK5TX3E9Hhq25AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUNzmGesK28BJduLNRgCIUb0NTGOkwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAGzANBgkqhkiG9w0BAQsFAAOCAQEAQUTmjWi83f3ppgpw VRgrFgzJiS7zaQhHriyZhX5Tw5Hk9AD6AAsdgmuWi7VAVy79482jR+oY2CsNgxll 2h+kVXTJlo6lUB1UZrR6yxfLA30sBC1Wk07eCj3m5YXlQlWbMtxbvrnoYBOqYvRG XydAxiu9kwDPyf46B0vGk9AEwY0kE8WAimHzllQTFYwcRfv5Mqu7XXXOBktumwAk qaeeja7w9oyfuN2POWK5k0lTN2iu4fIY7cOel911ISuk3Ti1v3bN9ZiR7K361MVK YrueAlXv61hrUGAlrQZR8euEj5nWpwDTr7rZPbJdTppc3408C0RvWxhU1RrVPjPy qPaR9g== -----END CERTIFICATE-----Generated at Sat Jul 5 08:48:39 2025 by rpki-client