$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: d6qHjIqS+NQlJJC4fgewHy8RhS3xafbvkXvQ4DSoLBk= Subject key identifier: 17:B7:33:5E:36:33:CA:F5:47:CF:02:69:5D:3C:2F:49:24:C5:B9:F7 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 3D29C14B0A73208132D56DE152823F0FC6DABD4A Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 04 Jul 2025 16:08:39 +0000 ROA not before: Fri 04 Jul 2025 16:03:39 +0000 ROA not after: Fri 03 Jul 2026 16:08:39 +0000 asID: 216065 IP address blocks: 2a06:1283:c022::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:29:c1:4b:0a:73:20:81:32:d5:6d:e1:52:82:3f:0f:c6:da:bd:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:39 2025 GMT Not After : Jul 3 16:08:39 2026 GMT Subject: CN=17B7335E3633CAF547CF02695D3C2F4924C5B9F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:02:55:e9:7d:cb:eb:a3:49:6c:09:b3:7d: dd:79:fe:1a:da:7f:f0:0a:25:4c:fa:ef:f9:48:e3: 44:cb:cd:45:29:fb:a7:c3:69:25:89:61:dd:47:9f: 75:6e:53:2c:be:94:9b:60:b5:a0:70:68:c5:05:af: b6:92:9f:73:74:5e:8b:f8:c0:48:09:bb:89:24:a8: f0:2e:d6:0b:4e:bc:5f:de:d7:f7:96:80:69:d0:5e: a4:a3:51:87:e0:6d:9f:33:e3:9f:17:63:47:09:86: 1f:ac:83:38:6e:3b:c3:96:32:bd:81:47:c6:39:b7: 76:c0:16:87:4d:9e:1e:1d:5e:55:cc:78:1f:02:44: 2c:f3:31:a3:80:c5:52:61:8a:fa:6b:11:b1:b0:35: 6b:b8:e2:e0:2f:b4:ae:37:0d:c2:d4:3f:d2:db:d1: fb:85:67:9d:e4:b7:22:e4:1c:d9:92:2b:1f:5d:58: b4:87:2c:6e:89:57:d0:39:af:fb:21:5a:7c:08:b0: d7:a7:2d:e4:ee:05:da:59:bf:8a:26:82:c5:41:f4: 4d:dc:17:6e:81:77:85:d2:6b:48:c3:2f:92:98:a4: 3f:9e:ec:b7:6e:63:ff:9f:ac:82:e8:6d:65:88:81: 1a:0a:1f:6d:f2:78:52:b1:2e:3e:1d:d3:d5:83:cc: 22:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B7:33:5E:36:33:CA:F5:47:CF:02:69:5D:3C:2F:49:24:C5:B9:F7 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032323a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c022::/48 Signature Algorithm: sha256WithRSAEncryption 0b:82:e1:92:93:c7:e0:2b:12:b6:46:75:08:42:95:d8:ef:f1: 9a:ec:7c:07:f9:29:03:b4:d3:8e:61:a2:3a:e4:05:3c:68:9a: 37:f2:d9:ee:bb:ee:8d:80:c0:31:7a:ed:44:77:63:46:72:07: 2a:cd:80:b3:f6:ef:29:b0:e1:b3:46:4d:41:cf:2c:93:5b:69: c8:a2:0a:72:0b:d5:8d:f6:0a:3d:ca:55:d1:0e:d8:2b:85:12: 86:53:84:ca:c3:96:d0:97:d3:69:8d:ba:0c:71:a5:2d:79:fd: 8a:6f:5a:d0:e5:4f:0f:6d:f5:81:35:c6:cd:98:88:de:cb:28: 60:0c:b4:22:70:a1:ee:37:3f:84:fd:65:1d:81:e8:ab:c3:3a: b5:95:6e:db:03:16:81:2e:0c:57:dc:d6:67:43:28:37:5e:6d: f1:15:f5:31:6d:50:ac:5f:53:1b:7c:3e:1c:3d:47:69:22:51: 15:04:fa:2f:47:93:42:95:ab:05:22:12:75:6f:43:1b:b7:ce: a9:a2:50:26:9c:0e:02:9c:98:50:e4:62:8f:90:2b:e3:0a:ce: 6f:36:cd:90:48:88:0d:a0:82:2c:96:07:21:00:fd:f0:66:f1: b3:f0:bb:6d:f9:e4:78:fe:88:9a:cf:f0:28:d4:07:0a:df:4c: 66:64:4c:c7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUPSnBSwpzIIEy1W3hUoI/D8bavUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzlaFw0yNjA3MDMxNjA4MzlaMDMxMTAvBgNV BAMTKDE3QjczMzVFMzYzM0NBRjU0N0NGMDI2OTVEM0MyRjQ5MjRDNUI5RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWQgJV6X3L66NJbAmzfd15/hra f/AKJUz67/lI40TLzUUp+6fDaSWJYd1Hn3VuUyy+lJtgtaBwaMUFr7aSn3N0Xov4 wEgJu4kkqPAu1gtOvF/e1/eWgGnQXqSjUYfgbZ8z458XY0cJhh+sgzhuO8OWMr2B R8Y5t3bAFodNnh4dXlXMeB8CRCzzMaOAxVJhivprEbGwNWu44uAvtK43DcLUP9Lb 0fuFZ53ktyLkHNmSKx9dWLSHLG6JV9A5r/shWnwIsNenLeTuBdpZv4omgsVB9E3c F26Bd4XSa0jDL5KYpD+e7LduY/+frILobWWIgRoKH23yeFKxLj4d09WDzCKLAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUF7czXjYzyvVHzwJpXTwvSSTFufcwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIjANBgkqhkiG9w0BAQsFAAOCAQEAC4LhkpPH4CsStkZ1 CEKV2O/xmux8B/kpA7TTjmGiOuQFPGiaN/LZ7rvujYDAMXrtRHdjRnIHKs2As/bv KbDhs0ZNQc8sk1tpyKIKcgvVjfYKPcpV0Q7YK4UShlOEysOW0JfTaY26DHGlLXn9 im9a0OVPD231gTXGzZiI3ssoYAy0InCh7jc/hP1lHYHoq8M6tZVu2wMWgS4MV9zW Z0MoN15t8RX1MW1QrF9TG3w+HD1HaSJRFQT6L0eTQpWrBSISdW9DG7fOqaJQJpwO ApyYUORij5Ar4wrObzbNkEiIDaCCLJYHIQD98Gbxs/C7bfnkeP6Ims/wKNQHCt9M ZmRMxw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:50:43 2025 by rpki-client