$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: Kt/l33sg5Y3ocVyNgNOeTMWu3DIkMM7XX4gb61bKDRg= Subject key identifier: 4B:C3:17:19:E0:0F:6D:93:42:08:65:C0:7A:7A:41:0D:96:08:DC:15 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 5A02D526A26B5DE89E910295E54BBAB9DFB254E0 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 04 Jul 2025 16:08:41 +0000 ROA not before: Fri 04 Jul 2025 16:03:41 +0000 ROA not after: Fri 03 Jul 2026 16:08:41 +0000 asID: 216065 IP address blocks: 2a06:1283:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:02:d5:26:a2:6b:5d:e8:9e:91:02:95:e5:4b:ba:b9:df:b2:54:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:41 2025 GMT Not After : Jul 3 16:08:41 2026 GMT Subject: CN=4BC31719E00F6D93420865C07A7A410D9608DC15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:f1:8f:83:c1:86:53:b5:4c:4d:d5:9c:64: 97:f9:bb:78:1c:8a:46:98:96:78:f4:b4:90:44:f7: 38:2a:f5:69:f4:a7:2f:bd:ab:80:b5:7b:45:3f:00: fe:ac:ab:3f:ec:82:2f:55:7e:d8:d2:3c:77:81:1a: ac:30:5f:47:3d:15:54:bd:50:68:0e:2f:6f:b7:6c: da:53:2a:8a:d5:84:f9:5a:a5:76:e2:dd:5b:b9:c6: e7:64:c6:70:0d:44:99:67:3b:e3:27:0b:33:2b:9d: ac:99:ec:85:bb:f4:ec:65:36:44:4f:8c:c3:10:6f: f9:ab:93:46:ff:64:3d:13:ee:fd:5e:29:f4:06:eb: 16:63:a6:82:2d:96:ec:17:17:44:95:39:13:0d:4f: 6e:07:f1:da:17:e0:77:1a:5f:00:47:9b:e9:bf:ca: b5:c9:50:a6:7b:d9:16:5c:71:75:ed:26:9e:b2:e1: 81:88:2c:d1:f3:72:b0:da:0b:e4:0b:62:72:f8:6e: 1a:8c:37:a5:42:24:ef:0c:9c:29:b7:1a:de:6b:5a: 7e:ae:b8:c8:ae:3b:70:f3:b1:0e:f9:dd:fc:c9:9b: 0f:2b:0f:7f:dc:be:f1:fd:5d:7e:b2:11:c2:df:48: 9e:63:41:13:a4:16:bf:7a:ef:0d:a3:8c:0b:a2:ed: 64:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C3:17:19:E0:0F:6D:93:42:08:65:C0:7A:7A:41:0D:96:08:DC:15 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c020::/48 Signature Algorithm: sha256WithRSAEncryption 2d:5d:95:d2:b0:fd:bb:a1:00:a1:c1:a0:6e:90:3a:13:98:5a: a3:a0:28:b2:32:95:4a:9d:90:17:d5:c3:ca:ae:0c:bc:e7:fa: d0:8f:67:90:bd:39:df:de:3b:a8:89:da:c5:32:2a:d2:f3:63: a6:61:d6:f2:2d:37:4e:0f:1d:bf:fc:50:c4:03:0c:5a:e0:66: 5e:fe:5e:d9:3a:36:4c:fd:57:ff:6d:07:c2:cc:7f:f1:cc:f3: 2f:a2:9b:f7:eb:7d:77:01:65:cc:35:08:f5:ac:e4:fa:f4:9b: d8:39:9a:83:65:70:12:7e:5d:7c:31:56:40:4d:19:25:63:31: 29:2b:56:84:60:40:eb:b0:22:44:03:89:f9:41:c2:dc:bf:a6: 0f:f4:25:f2:b1:5d:46:1f:d9:2e:84:80:de:98:cd:21:d8:f9: 9f:e8:02:93:b5:fd:44:8f:ec:3e:f0:ad:c1:16:66:0d:8f:e8: 2e:12:e9:d5:b0:20:10:2b:1e:51:09:66:cc:55:f3:92:9e:96: f7:6c:e9:94:6b:9f:f8:dc:e3:c0:3f:a9:24:2d:bf:82:7d:20: 45:63:62:8e:4e:f3:41:3b:37:ab:a8:e7:72:57:f4:19:ec:a6: 56:24:49:d2:2c:3b:04:bd:b2:52:8f:c2:6c:95:ba:2a:01:73: e4:23:57:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUWgLVJqJrXeiekQKV5Uu6ud+yVOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDFaFw0yNjA3MDMxNjA4NDFaMDMxMTAvBgNV BAMTKDRCQzMxNzE5RTAwRjZEOTM0MjA4NjVDMDdBN0E0MTBEOTYwOERDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkvGPg8GGU7VMTdWcZJf5u3gc ikaYlnj0tJBE9zgq9Wn0py+9q4C1e0U/AP6sqz/sgi9VftjSPHeBGqwwX0c9FVS9 UGgOL2+3bNpTKorVhPlapXbi3Vu5xudkxnANRJlnO+MnCzMrnayZ7IW79OxlNkRP jMMQb/mrk0b/ZD0T7v1eKfQG6xZjpoItluwXF0SVORMNT24H8doX4HcaXwBHm+m/ yrXJUKZ72RZccXXtJp6y4YGILNHzcrDaC+QLYnL4bhqMN6VCJO8MnCm3Gt5rWn6u uMiuO3DzsQ753fzJmw8rD3/cvvH9XX6yEcLfSJ5jQROkFr967w2jjAui7WSxAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUS8MXGeAPbZNCCGXAenpBDZYI3BUwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIDANBgkqhkiG9w0BAQsFAAOCAQEALV2V0rD9u6EAocGg bpA6E5hao6AosjKVSp2QF9XDyq4MvOf60I9nkL053947qInaxTIq0vNjpmHW8i03 Tg8dv/xQxAMMWuBmXv5e2To2TP1X/20Hwsx/8czzL6Kb9+t9dwFlzDUI9azk+vSb 2Dmag2VwEn5dfDFWQE0ZJWMxKStWhGBA67AiRAOJ+UHC3L+mD/Ql8rFdRh/ZLoSA 3pjNIdj5n+gCk7X9RI/sPvCtwRZmDY/oLhLp1bAgECseUQlmzFXzkp6W92zplGuf +NzjwD+pJC2/gn0gRWNijk7zQTs3q6jnclf0GeymViRJ0iw7BL2yUo/CbJW6KgFz 5CNXtg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:53:11 2025 by rpki-client