$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: 4/ka7ifCzic1cggPNooOTtZhw7zW/yZ+MZkomdGiZ2k= Subject key identifier: D2:25:49:13:07:22:59:13:5F:A6:A4:CE:8E:64:27:59:1A:EC:66:F2 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 462B8276C70283EBA74729F2A63BA8BE22BE4EDD Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa Signing time: Fri 04 Jul 2025 16:08:43 +0000 ROA not before: Fri 04 Jul 2025 16:03:43 +0000 ROA not after: Fri 03 Jul 2026 16:08:43 +0000 asID: 216043 IP address blocks: 2a06:1283:c01d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:2b:82:76:c7:02:83:eb:a7:47:29:f2:a6:3b:a8:be:22:be:4e:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:43 2025 GMT Not After : Jul 3 16:08:43 2026 GMT Subject: CN=D2254913072259135FA6A4CE8E6427591AEC66F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:71:57:59:c9:8f:9a:7d:52:04:28:6a:be:38: 92:f8:80:da:a5:6a:98:5d:25:ba:50:ab:67:5f:59: a9:e9:34:41:28:be:dd:43:95:28:d3:c6:c5:6b:4e: bd:96:7a:a3:6c:03:9d:c7:dd:93:83:df:66:50:91: 97:4d:bc:10:40:ea:c7:6e:97:a4:d0:39:e7:6f:e2: 95:fa:6a:cb:61:13:fb:29:36:36:4f:69:e7:49:93: 21:19:2f:ea:c7:a0:3e:b0:b6:fb:99:4c:05:fc:ed: ed:5e:4e:1a:f0:98:e1:cf:43:f2:5e:e1:67:b0:d8: b1:2a:c9:93:8b:4f:e7:1b:4a:71:d1:4a:07:20:96: 08:e5:81:eb:47:13:a2:59:18:b8:0e:dc:7d:4c:c5: 8a:ca:29:fe:1f:4e:9c:5e:94:71:92:6d:e1:e4:6a: eb:8a:85:eb:03:65:91:d2:db:28:f0:21:86:9a:8b: ec:0d:b9:13:4a:5a:9b:f4:fe:37:06:66:31:47:d5: a8:8e:6a:ec:24:f6:34:cb:29:d4:ee:61:74:ae:3c: 77:91:06:ca:48:a9:56:8c:e9:0b:96:f4:a6:b2:59: e6:a4:54:7f:bf:63:08:2a:94:13:ce:d0:c7:4e:cc: 7b:9a:21:9c:48:ff:15:31:2c:44:80:85:af:f0:8c: af:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:25:49:13:07:22:59:13:5F:A6:A4:CE:8E:64:27:59:1A:EC:66:F2 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031643a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01d::/48 Signature Algorithm: sha256WithRSAEncryption 1f:0f:f6:7f:3b:9d:87:15:cc:bb:3c:1f:b5:e5:74:b3:83:b8: 75:e2:89:17:6c:a0:46:db:a7:19:58:0f:53:07:76:2a:2f:ce: 07:c9:e6:f6:38:00:40:42:f3:af:65:40:ea:52:fa:2f:3f:a0: 5c:d4:53:08:b5:60:c1:5f:81:99:88:00:0e:7f:35:95:7b:10: 7c:7b:d9:33:13:64:dd:36:56:f0:8f:c0:a5:86:1d:34:10:7f: 67:cc:96:31:19:dc:d5:b6:75:59:8c:ad:56:0f:06:f6:de:a8: cf:1c:e9:db:7e:44:fd:46:e0:ce:4a:3e:21:0b:68:e0:01:a9: 71:a3:d6:1c:3f:82:27:80:99:93:c7:fb:94:d9:1b:1f:4d:59: 9e:d1:58:95:4c:8f:1c:d9:f4:b5:06:5d:30:87:2a:1a:63:fd: 6f:89:5a:0d:70:75:dc:9e:0b:ae:57:2e:35:5c:3e:1a:f0:e8: 50:8e:04:27:be:f4:51:9e:46:fa:d1:11:48:93:85:0b:f2:bd: 87:92:7e:87:9b:6a:74:b5:e4:ff:44:0a:9f:c4:90:eb:7b:e9: a6:7d:64:ee:2e:61:0e:db:ca:0f:6f:b2:8f:be:99:e0:ab:92: 70:54:59:c3:87:a5:d5:91:cb:99:f2:39:c0:23:4f:4b:57:fd: 49:a6:7f:f0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIURiuCdscCg+unRynypjuoviK+Tt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDNaFw0yNjA3MDMxNjA4NDNaMDMxMTAvBgNV BAMTKEQyMjU0OTEzMDcyMjU5MTM1RkE2QTRDRThFNjQyNzU5MUFFQzY2RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtcVdZyY+afVIEKGq+OJL4gNql aphdJbpQq2dfWanpNEEovt1DlSjTxsVrTr2WeqNsA53H3ZOD32ZQkZdNvBBA6sdu l6TQOedv4pX6asthE/spNjZPaedJkyEZL+rHoD6wtvuZTAX87e1eThrwmOHPQ/Je 4Wew2LEqyZOLT+cbSnHRSgcglgjlgetHE6JZGLgO3H1MxYrKKf4fTpxelHGSbeHk auuKhesDZZHS2yjwIYaai+wNuRNKWpv0/jcGZjFH1aiOauwk9jTLKdTuYXSuPHeR BspIqVaM6QuW9KayWeakVH+/YwgqlBPO0MdOzHuaIZxI/xUxLESAha/wjK9lAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU0iVJEwciWRNfpqTOjmQnWRrsZvIwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHTANBgkqhkiG9w0BAQsFAAOCAQEAHw/2fzudhxXMuzwf teV0s4O4deKJF2ygRtunGVgPUwd2Ki/OB8nm9jgAQELzr2VA6lL6Lz+gXNRTCLVg wV+BmYgADn81lXsQfHvZMxNk3TZW8I/ApYYdNBB/Z8yWMRnc1bZ1WYytVg8G9t6o zxzp235E/Ubgzko+IQto4AGpcaPWHD+CJ4CZk8f7lNkbH01ZntFYlUyPHNn0tQZd MIcqGmP9b4laDXB13J4LrlcuNVw+GvDoUI4EJ770UZ5G+tERSJOFC/K9h5J+h5tq dLXk/0QKn8SQ63vppn1k7i5hDtvKD2+yj76Z4KuScFRZw4el1ZHLmfI5wCNPS1f9 SaZ/8A== -----END CERTIFICATE-----Generated at Sat Jul 5 08:50:39 2025 by rpki-client