$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: KgK/s7YcGzFUWJMW5IeSycArSyGlw1j42I4Yf8lcrCM= Subject key identifier: 73:0D:33:40:D1:14:AB:20:47:A7:6E:F4:F7:F2:37:4B:39:25:44:3A Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 17C1B8333AE06BBF1F4CD3F69A5C62D0C08ECE80 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 04 Jul 2025 16:08:44 +0000 ROA not before: Fri 04 Jul 2025 16:03:44 +0000 ROA not after: Fri 03 Jul 2026 16:08:44 +0000 asID: 216065 IP address blocks: 2a06:1283:c021::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c1:b8:33:3a:e0:6b:bf:1f:4c:d3:f6:9a:5c:62:d0:c0:8e:ce:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:44 2025 GMT Not After : Jul 3 16:08:44 2026 GMT Subject: CN=730D3340D114AB2047A76EF4F7F2374B3925443A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ec:a8:84:ee:47:fd:3b:5d:f5:d6:fe:82:58: 33:6e:7f:2d:f1:28:73:96:01:b0:33:0d:c8:dd:40: 04:7e:1f:98:8e:3a:e9:a9:05:8e:3f:c8:e5:02:ac: b1:8a:ff:fa:20:86:8a:be:fe:b5:67:d6:ca:3b:09: ca:9e:9d:e3:de:4b:bd:58:03:aa:d1:60:54:aa:70: f4:1b:e1:9f:77:e5:19:42:3f:b8:b2:8f:80:a6:1b: ab:c8:d7:79:2d:9e:c9:9d:bf:af:56:7a:20:4c:51: dd:cc:06:62:29:dd:8c:48:98:6a:8c:f7:42:0f:bd: 50:05:cf:99:cc:ef:fd:94:13:3f:50:e3:b6:1d:04: 50:02:6a:71:32:e2:bf:30:2d:42:5c:14:5d:71:a9: 84:2b:1c:4f:ad:e3:2a:e9:22:d9:31:11:a9:47:94: b8:91:c9:0a:33:45:dd:ff:fd:92:1e:ae:fa:a7:0b: 12:fa:74:7c:48:f9:cc:da:b4:4e:e1:05:d2:ec:21: bd:63:63:c6:54:de:e2:b8:47:36:2a:51:13:94:80: 5b:0d:7f:5c:bd:7c:5a:ae:19:35:b0:f2:e1:7c:8b: 16:62:bd:08:70:0c:5c:95:e3:5c:99:b7:8f:3c:62: 8c:e9:cd:a0:60:e5:23:d0:7c:6b:e8:61:c9:06:14: 1a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0D:33:40:D1:14:AB:20:47:A7:6E:F4:F7:F2:37:4B:39:25:44:3A X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c021::/48 Signature Algorithm: sha256WithRSAEncryption 02:89:f6:34:4e:45:4c:98:dd:e5:61:99:19:7a:8b:09:39:61: 8b:51:b6:e4:72:1b:79:5e:b7:eb:87:e8:c9:bd:58:ff:f3:ba: 32:bb:58:e6:ab:72:9e:53:64:6e:d4:9a:c5:f1:00:f3:4d:43: 4a:3f:56:d9:22:ec:04:aa:d4:99:6b:71:32:40:88:8b:f4:cd: 07:5a:b5:5f:77:4f:8e:4c:62:bb:39:22:c2:6e:53:bb:fe:10: af:74:60:10:e0:21:fa:59:5a:8d:b3:4e:12:f5:99:78:5f:97: c2:93:a1:c4:0b:b4:cc:49:f3:2a:a5:81:39:fc:24:33:dd:fd: b7:17:0d:27:7c:e5:b1:c4:fd:51:aa:e0:d0:da:5d:2b:44:ee: e2:05:f6:1d:00:48:aa:aa:4f:e9:97:ed:93:52:4d:3f:7c:8e: 3a:22:99:b7:a1:9c:0f:43:32:3d:e1:13:ba:80:26:45:78:f7: a4:7d:f9:c6:cc:e8:7c:4f:05:25:7a:09:d4:ed:8c:31:56:c3: 15:0f:cf:60:73:4b:5c:e4:c6:67:31:08:e6:9a:8e:a1:5a:e7: 49:21:69:9c:2f:89:8d:c1:80:fb:72:b3:26:ae:a4:29:17:80: bf:d1:4e:30:25:59:68:25:22:f6:db:c5:3f:06:0c:1a:01:c0: 4c:72:75:29 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUF8G4Mzrga78fTNP2mlxi0MCOzoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDRaFw0yNjA3MDMxNjA4NDRaMDMxMTAvBgNV BAMTKDczMEQzMzQwRDExNEFCMjA0N0E3NkVGNEY3RjIzNzRCMzkyNTQ0M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm7KiE7kf9O1311v6CWDNufy3x KHOWAbAzDcjdQAR+H5iOOumpBY4/yOUCrLGK//oghoq+/rVn1so7CcqenePeS71Y A6rRYFSqcPQb4Z935RlCP7iyj4CmG6vI13ktnsmdv69WeiBMUd3MBmIp3YxImGqM 90IPvVAFz5nM7/2UEz9Q47YdBFACanEy4r8wLUJcFF1xqYQrHE+t4yrpItkxEalH lLiRyQozRd3//ZIervqnCxL6dHxI+czatE7hBdLsIb1jY8ZU3uK4RzYqUROUgFsN f1y9fFquGTWw8uF8ixZivQhwDFyV41yZt488YozpzaBg5SPQfGvoYckGFBqpAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUcw0zQNEUqyBHp2709/I3SzklRDowHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAITANBgkqhkiG9w0BAQsFAAOCAQEAAon2NE5FTJjd5WGZ GXqLCTlhi1G25HIbeV6364foyb1Y//O6MrtY5qtynlNkbtSaxfEA801DSj9W2SLs BKrUmWtxMkCIi/TNB1q1X3dPjkxiuzkiwm5Tu/4Qr3RgEOAh+llajbNOEvWZeF+X wpOhxAu0zEnzKqWBOfwkM939txcNJ3zlscT9Uarg0NpdK0Tu4gX2HQBIqqpP6Zft k1JNP3yOOiKZt6GcD0MyPeETuoAmRXj3pH35xszofE8FJXoJ1O2MMVbDFQ/PYHNL XOTGZzEI5pqOoVrnSSFpnC+JjcGA+3KzJq6kKReAv9FOMCVZaCUi9tvFPwYMGgHA THJ1KQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:46:57 2025 by rpki-client