$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa File: 326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa (raw, json) Hash identifier: RbV8aV1hwdgLoFTBB5o9XuJZhQN2G66eOV/RA0BgHQM= Subject key identifier: E5:2E:99:23:21:B4:AB:02:30:7C:AF:FA:CD:DF:E4:7C:D7:04:A8:22 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 7B5C51023DA9355D7C39F7201BE04E60E9DE74BA Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa Signing time: Fri 04 Jul 2025 16:08:44 +0000 ROA not before: Fri 04 Jul 2025 16:03:44 +0000 ROA not after: Fri 03 Jul 2026 16:08:44 +0000 asID: 216043 IP address blocks: 2a06:1283:c01e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:5c:51:02:3d:a9:35:5d:7c:39:f7:20:1b:e0:4e:60:e9:de:74:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:44 2025 GMT Not After : Jul 3 16:08:44 2026 GMT Subject: CN=E52E992321B4AB02307CAFFACDDFE47CD704A822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:47:5d:3c:49:9e:fc:ec:7e:0b:2c:69:7c:a3: 60:48:26:b0:76:bf:5f:24:18:f5:76:26:90:8d:ca: 33:eb:14:d5:48:5f:c3:15:4b:a8:e6:16:f2:98:56: af:d8:a3:73:70:e0:c5:5c:fe:7e:cf:99:cd:7a:cd: f1:78:a9:d2:ba:a9:64:84:9b:a1:29:59:1e:54:6e: 77:57:c4:cb:9f:30:75:ca:d6:c0:c0:93:0a:f9:77: 60:fc:83:df:46:75:4c:48:82:de:03:54:54:6b:79: 0d:90:ba:81:b9:b7:aa:fd:da:45:b1:5c:4b:b6:b1: 79:e9:37:b8:4f:2b:a2:3b:4d:e0:25:c2:7a:6b:9b: 54:c1:77:b9:d4:0d:df:b7:3f:21:c4:08:ab:0d:1d: 32:e1:1b:13:ab:d0:86:18:4c:e8:3c:0d:fe:7c:51: 2f:f3:57:c4:ac:d9:23:ac:47:4f:d2:dc:12:ba:b1: 37:40:33:6a:55:29:53:69:ee:28:e6:28:d8:5c:4c: f4:17:17:f2:b6:96:5b:19:cb:c2:67:6c:0f:b9:83: 7e:64:cd:bb:6b:a2:ea:3e:c5:f2:96:f4:bc:21:fe: f9:93:2c:e7:8d:11:e2:8e:d9:8f:c5:83:1d:c8:eb: 57:24:a4:7e:7d:da:0b:da:6e:c3:bc:9d:a2:b9:80: 26:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2E:99:23:21:B4:AB:02:30:7C:AF:FA:CD:DF:E4:7C:D7:04:A8:22 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633031653a3a2f34382d3438203d3e20323136303433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c01e::/48 Signature Algorithm: sha256WithRSAEncryption 36:62:8a:b5:04:33:a0:8d:ea:40:f2:67:c2:f5:4f:07:51:00: b8:d1:f5:b2:94:0d:4b:ca:d5:73:10:ea:6e:70:e3:6d:e7:05: 38:01:a7:0d:89:47:70:0c:ef:48:b0:c4:8e:52:02:c6:27:de: 4f:e3:5d:be:09:c8:37:78:c5:21:ff:d6:a9:72:7d:03:39:3f: 1b:81:88:66:c3:5e:ca:b5:ef:84:5d:31:50:40:f9:bc:2a:5e: dd:3c:eb:bf:1e:c5:7d:37:fb:71:e1:91:a0:03:f9:56:dc:d1: 2b:5b:18:e7:02:8d:7a:12:da:aa:26:1b:22:34:73:8b:33:ab: 6a:d6:1e:a6:09:44:09:7f:ed:64:a0:0f:a6:a7:4a:46:2f:2d: 96:f0:3c:96:de:e5:19:78:2f:09:86:8a:92:6c:9e:e1:86:cd: 41:ef:c3:0c:3c:75:37:b8:b2:a8:ec:6c:74:71:2c:51:9c:48: 9f:ce:5a:89:c0:46:12:22:23:69:2c:62:90:51:f0:49:90:7f: 4c:1f:63:43:c4:8b:22:60:70:24:3b:44:20:b4:a1:24:3c:79: 14:12:c7:5b:6c:2c:91:b6:5c:19:38:e1:b1:86:88:6c:53:a2: 8d:21:e5:03:1d:7f:b1:cb:e0:b9:c2:7a:ca:8f:37:79:f0:08: 78:cf:b1:3d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUe1xRAj2pNV18OfcgG+BOYOnedLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDRaFw0yNjA3MDMxNjA4NDRaMDMxMTAvBgNV BAMTKEU1MkU5OTIzMjFCNEFCMDIzMDdDQUZGQUNEREZFNDdDRDcwNEE4MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCNR108SZ787H4LLGl8o2BIJrB2 v18kGPV2JpCNyjPrFNVIX8MVS6jmFvKYVq/Yo3Nw4MVc/n7Pmc16zfF4qdK6qWSE m6EpWR5UbndXxMufMHXK1sDAkwr5d2D8g99GdUxIgt4DVFRreQ2QuoG5t6r92kWx XEu2sXnpN7hPK6I7TeAlwnprm1TBd7nUDd+3PyHECKsNHTLhGxOr0IYYTOg8Df58 US/zV8Ss2SOsR0/S3BK6sTdAM2pVKVNp7ijmKNhcTPQXF/K2llsZy8JnbA+5g35k zbtrouo+xfKW9Lwh/vmTLOeNEeKO2Y/Fgx3I61ckpH592gvabsO8naK5gCb3AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU5S6ZIyG0qwIwfK/6zd/kfNcEqCIwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzE2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzQzMy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAHjANBgkqhkiG9w0BAQsFAAOCAQEANmKKtQQzoI3qQPJn wvVPB1EAuNH1spQNS8rVcxDqbnDjbecFOAGnDYlHcAzvSLDEjlICxifeT+NdvgnI N3jFIf/WqXJ9Azk/G4GIZsNeyrXvhF0xUED5vCpe3Tzrvx7FfTf7ceGRoAP5VtzR K1sY5wKNehLaqiYbIjRzizOratYepglECX/tZKAPpqdKRi8tlvA8lt7lGXgvCYaK kmye4YbNQe/DDDx1N7iyqOxsdHEsUZxIn85aicBGEiIjaSxikFHwSZB/TB9jQ8SL ImBwJDtEILShJDx5FBLHW2wskbZcGTjhsYaIbFOijSHlAx1/scvgucJ6yo83efAI eM+xPQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:53:09 2025 by rpki-client