$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: N8mf63hWqpJO+0bcOeR9TPEpzawlCLyuIigTkiFhntY= Subject key identifier: 86:7A:8A:A0:80:B6:38:48:5F:87:3A:B9:BC:C8:5B:C5:9E:C6:77:20 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 14E09C94F4E414B3420AB7E4A3D6AC6A83000192 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa Signing time: Fri 04 Jul 2025 16:08:37 +0000 ROA not before: Fri 04 Jul 2025 16:03:37 +0000 ROA not after: Fri 03 Jul 2026 16:08:37 +0000 asID: 216043 IP address blocks: 2a06:1283:c01c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e0:9c:94:f4:e4:14:b3:42:0a:b7:e4:a3:d6:ac:6a:83:00:01:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:37 2025 GMT Not After : Jul 3 16:08:37 2026 GMT Subject: CN=867A8AA080B638485F873AB9BCC85BC59EC67720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:e9:ac:f6:3e:bf:01:80:f5:c1:5f:6c:a7: 4d:f4:1e:42:f6:81:7f:b3:29:79:61:39:45:5b:20: 08:6f:8f:50:88:46:63:eb:56:83:8d:e7:d7:97:83: e1:6b:68:81:ac:6f:9b:73:f6:1a:0c:36:60:29:89: f8:b2:b2:6a:e3:44:47:98:7e:39:bf:0c:56:cd:58: 9a:59:5f:35:db:a0:5a:9d:e2:3c:33:2d:3d:41:23: 98:21:9b:b3:0e:f2:31:b4:78:22:dc:ac:46:0e:72: 84:7d:2e:a5:fb:44:63:be:5b:14:20:a4:03:59:4f: e1:2e:34:1e:b5:8f:19:8b:03:80:7c:13:ea:4c:54: 9e:eb:3d:64:09:25:d5:a4:89:6f:dd:80:37:29:af: f4:cd:06:bd:70:14:8f:e8:a2:86:9d:9a:eb:11:bb: 92:5b:b1:a0:72:fc:6d:05:53:7b:3e:2d:b9:54:50: 93:f2:2c:41:78:8d:f1:fb:92:80:2a:ae:a8:94:5f: 08:21:b9:70:05:8d:cb:70:0c:fd:d3:ff:6d:4d:cd: 2f:4a:39:26:9a:02:99:f0:df:ff:f5:8a:40:6d:75: d8:b8:0d:9e:b7:5d:8c:01:35:b8:93:1f:be:1a:19: 56:45:98:ba:fd:82:a2:f4:89:9b:e1:71:93:9b:09: fa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:7A:8A:A0:80:B6:38:48:5F:87:3A:B9:BC:C8:5B:C5:9E:C6:77:20 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031633a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01c::/48 Signature Algorithm: sha256WithRSAEncryption 87:58:b9:4d:f1:bf:49:da:86:1e:18:2b:d8:8d:5e:a1:56:01: 48:02:22:d6:79:78:99:22:8b:70:2f:38:ba:b5:5b:4d:6e:f7: f6:52:c3:03:e9:a7:80:f5:07:83:8f:09:4a:7f:a1:ce:11:3a: af:1b:4e:10:ba:55:9b:62:90:60:8b:a4:9c:38:8f:e0:8f:60: f1:e6:b4:d9:0e:2c:64:6c:6e:42:09:25:55:e4:28:06:ae:46: cf:16:e3:af:b5:65:8e:ec:a4:10:bf:0b:bb:ad:05:89:46:78: 11:b2:18:00:14:bc:d9:1f:87:71:b7:39:98:a0:70:62:b4:8b: 14:05:b7:61:d2:ff:02:ce:4d:fc:cf:08:e3:55:75:d5:f7:70: 2d:d9:39:bb:4c:89:85:38:67:88:86:24:ae:18:18:b2:92:71: e7:66:a5:5f:07:2e:e3:63:c4:3c:dc:8e:91:83:84:2e:d6:70: 91:b5:5f:fc:9c:92:d4:ab:4b:12:65:de:3e:6a:e4:d5:94:8b: 81:c1:27:a9:7a:9d:dc:e7:72:ed:d3:f7:a8:0b:85:d0:84:8c: ce:c0:6b:9a:bc:95:28:2d:4c:20:af:77:2f:fc:05:23:0c:f5: d2:9d:27:5f:19:47:cc:86:49:ad:ff:68:32:b4:fd:e7:6d:7d: b5:6b:7b:6d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUFOCclPTkFLNCCrfko9asaoMAAZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzdaFw0yNjA3MDMxNjA4MzdaMDMxMTAvBgNV BAMTKDg2N0E4QUEwODBCNjM4NDg1Rjg3M0FCOUJDQzg1QkM1OUVDNjc3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gOms9j6/AYD1wV9sp030HkL2 gX+zKXlhOUVbIAhvj1CIRmPrVoON59eXg+FraIGsb5tz9hoMNmApifiysmrjREeY fjm/DFbNWJpZXzXboFqd4jwzLT1BI5ghm7MO8jG0eCLcrEYOcoR9LqX7RGO+WxQg pANZT+EuNB61jxmLA4B8E+pMVJ7rPWQJJdWkiW/dgDcpr/TNBr1wFI/oooadmusR u5JbsaBy/G0FU3s+LblUUJPyLEF4jfH7koAqrqiUXwghuXAFjctwDP3T/21NzS9K OSaaApnw3//1ikBtddi4DZ63XYwBNbiTH74aGVZFmLr9gqL0iZvhcZObCfrdAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUhnqKoIC2OEhfhzq5vMhbxZ7GdyAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHDANBgkqhkiG9w0BAQsFAAOCAQEAh1i5TfG/SdqGHhgr 2I1eoVYBSAIi1nl4mSKLcC84urVbTW739lLDA+mngPUHg48JSn+hzhE6rxtOELpV m2KQYIuknDiP4I9g8ea02Q4sZGxuQgklVeQoBq5Gzxbjr7VljuykEL8Lu60FiUZ4 EbIYABS82R+Hcbc5mKBwYrSLFAW3YdL/As5N/M8I41V11fdwLdk5u0yJhThniIYk rhgYspJx52alXwcu42PEPNyOkYOELtZwkbVf/JyS1KtLEmXePmrk1ZSLgcEnqXqd 3Ody7dP3qAuF0ISMzsBrmryVKC1MIK93L/wFIwz10p0nXxlHzIZJrf9oMrT95219 tWt7bQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:49:23 2025 by rpki-client