$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034663a3a2f34382d3438203d3e20323037323532.roa File: 326130363a313238333a633034663a3a2f34382d3438203d3e20323037323532.roa (raw, json) Hash identifier: BsDYhwB961Qyz3SUa8v0S6G15dbxVZ499UCKo/7aoPI= Subject key identifier: 87:83:9F:0C:94:67:8F:DA:89:BD:32:2A:77:BE:66:E3:0B:90:CE:04 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4E643039C275B3940D00E3019D8BDBEB922E0736 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034663a3a2f34382d3438203d3e20323037323532.roa Signing time: Fri 04 Jul 2025 16:08:39 +0000 ROA not before: Fri 04 Jul 2025 16:03:39 +0000 ROA not after: Fri 03 Jul 2026 16:08:39 +0000 asID: 207252 IP address blocks: 2a06:1283:c04f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:64:30:39:c2:75:b3:94:0d:00:e3:01:9d:8b:db:eb:92:2e:07:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:39 2025 GMT Not After : Jul 3 16:08:39 2026 GMT Subject: CN=87839F0C94678FDA89BD322A77BE66E30B90CE04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:8d:a4:c9:92:2b:97:76:75:37:85:67:64: d2:11:98:87:f2:df:78:61:20:8f:db:5b:49:10:8f: de:4b:7e:67:41:3d:07:11:0a:d6:af:ed:42:ae:49: 82:0c:7f:9d:5a:38:c4:cd:51:ce:96:76:ec:47:c8: 00:07:73:e4:6f:41:89:94:58:0b:f0:7c:7f:62:cf: 8c:17:0c:29:49:85:1c:39:b5:97:1e:36:84:91:b1: bc:0a:05:a1:7b:93:b9:8a:ee:4b:ed:d7:2c:8f:1d: 92:0a:ec:59:d3:ae:84:f8:ef:2f:a2:97:5b:60:8d: 57:90:94:bc:c5:af:5c:41:db:5a:e2:40:3b:7e:4d: 6d:69:d3:b6:37:07:4c:7a:6b:35:23:7a:d4:81:8e: 44:a3:92:ae:df:3a:c9:40:b8:00:d7:a6:00:25:2d: 2f:0c:30:84:50:4b:3b:25:da:8b:b8:44:4a:8e:87: 2a:b6:68:d7:de:69:6f:38:4b:ce:8a:18:4b:63:86: 58:94:94:ae:49:a4:ad:48:5f:30:d3:f5:5c:72:62: 51:2a:55:c4:f8:b1:27:b7:02:71:7a:46:8c:f6:61: bc:88:50:af:af:ac:b8:47:a0:77:0a:dc:c3:ae:2d: 90:0a:3e:b5:2b:55:11:ba:03:05:a2:da:7d:50:66: 84:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:83:9F:0C:94:67:8F:DA:89:BD:32:2A:77:BE:66:E3:0B:90:CE:04 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034663a3a2f34382d3438203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c04f::/48 Signature Algorithm: sha256WithRSAEncryption 8f:18:56:23:5c:af:6a:ef:be:05:29:5f:8a:e7:93:7c:9c:30: 95:1f:11:49:6f:52:be:f7:d9:89:c7:5b:c1:ec:38:09:82:da: 90:91:d3:1c:76:76:7a:59:93:41:a2:ba:3c:72:63:e8:23:5e: 24:87:47:18:ad:6c:5d:b1:f9:97:a7:8c:ce:26:a0:52:91:8a: aa:52:39:19:8c:66:46:0d:22:d7:68:9d:f4:44:02:d5:35:60: 92:00:4a:57:5e:08:e2:68:81:d9:fa:25:90:e7:fb:75:fe:b1: 70:7c:d5:0c:99:43:52:10:11:dd:9a:fa:6b:e4:62:d4:13:b4: ed:f0:aa:8c:c9:42:1c:3f:36:42:0a:a7:de:2b:72:49:9a:2f: f6:1f:56:c7:e3:a1:a1:e1:d1:69:2e:15:12:33:49:1b:ad:20: f4:1a:4c:80:13:00:ab:b6:15:07:05:46:bc:e6:f8:07:6a:df: bf:db:3a:39:bf:c0:1c:ab:75:6b:35:79:f3:83:8a:73:60:6a: de:a0:06:0d:db:4b:70:63:ca:07:c6:51:03:b6:ed:54:2f:43: d8:6c:71:97:5a:b0:e6:3d:40:ea:89:24:00:f6:c9:6b:72:25: b9:82:06:6f:83:a5:68:66:1c:98:7d:60:1b:84:0a:da:9c:a6: b4:8e:57:da -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUTmQwOcJ1s5QNAOMBnYvb65IuBzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzlaFw0yNjA3MDMxNjA4MzlaMDMxMTAvBgNV BAMTKDg3ODM5RjBDOTQ2NzhGREE4OUJEMzIyQTc3QkU2NkUzMEI5MENFMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAUY2kyZIrl3Z1N4VnZNIRmIfy 33hhII/bW0kQj95LfmdBPQcRCtav7UKuSYIMf51aOMTNUc6WduxHyAAHc+RvQYmU WAvwfH9iz4wXDClJhRw5tZceNoSRsbwKBaF7k7mK7kvt1yyPHZIK7FnTroT47y+i l1tgjVeQlLzFr1xB21riQDt+TW1p07Y3B0x6azUjetSBjkSjkq7fOslAuADXpgAl LS8MMIRQSzsl2ou4REqOhyq2aNfeaW84S86KGEtjhliUlK5JpK1IXzDT9VxyYlEq VcT4sSe3AnF6Roz2YbyIUK+vrLhHoHcK3MOuLZAKPrUrVRG6AwWi2n1QZoTjAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUh4OfDJRnj9qJvTIqd75m4wuQzgQwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzQ2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzMyMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPATzANBgkqhkiG9w0BAQsFAAOCAQEAjxhWI1yvau++BSlf iueTfJwwlR8RSW9SvvfZicdbwew4CYLakJHTHHZ2elmTQaK6PHJj6CNeJIdHGK1s XbH5l6eMziagUpGKqlI5GYxmRg0i12id9EQC1TVgkgBKV14I4miB2folkOf7df6x cHzVDJlDUhAR3Zr6a+Ri1BO07fCqjMlCHD82Qgqn3itySZov9h9Wx+OhoeHRaS4V EjNJG60g9BpMgBMAq7YVBwVGvOb4B2rfv9s6Ob/AHKt1azV584OKc2Bq3qAGDdtL cGPKB8ZRA7btVC9D2Gxxl1qw5j1A6okkAPbJa3IluYIGb4OlaGYcmH1gG4QK2pym tI5X2g== -----END CERTIFICATE-----Generated at Sat Jul 5 08:54:25 2025 by rpki-client