$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa File: 326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa (raw, json) Hash identifier: /eQcc3bAu0HXOQt2Ubpfxq3rdFnxWQ7Z7lY/KZzUgcE= Subject key identifier: F5:6D:8C:1E:8C:4B:31:FC:1B:96:98:D9:03:71:43:A3:DC:9E:94:D0 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 17828CAFF3EFFF4DEE321AA46E824676393A4269 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa Signing time: Fri 04 Jul 2025 16:08:41 +0000 ROA not before: Fri 04 Jul 2025 16:03:41 +0000 ROA not after: Fri 03 Jul 2026 16:08:41 +0000 asID: 215738 IP address blocks: 2a06:1283:c0a0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:82:8c:af:f3:ef:ff:4d:ee:32:1a:a4:6e:82:46:76:39:3a:42:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:41 2025 GMT Not After : Jul 3 16:08:41 2026 GMT Subject: CN=F56D8C1E8C4B31FC1B9698D9037143A3DC9E94D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:3d:fc:e4:12:25:91:17:2f:1e:2d:fe:3a: 03:d2:40:5c:2c:08:d8:ad:8e:89:1c:bd:35:cb:4b: ee:18:d6:73:e3:93:20:07:0f:1a:b8:82:1e:0c:47: c9:87:63:90:84:cf:8f:20:5d:df:bf:08:8f:84:ef: 3c:36:d2:94:53:f0:80:d8:6b:6c:2e:16:71:28:48: 20:b0:65:6d:15:c3:46:90:38:0e:2b:19:09:66:41: a2:c7:b8:4f:1d:6a:f3:a2:24:0c:7d:99:4f:e8:d7: ec:d6:cf:d3:fe:eb:56:88:1c:3e:0a:99:2c:60:b2: eb:30:80:c5:f0:5a:12:47:d7:c3:da:04:41:16:6b: bd:7b:d8:70:2e:c2:e1:d2:66:9a:32:89:f6:8e:02: c8:b9:c8:d1:c6:43:b8:f9:1f:f1:ad:18:9a:ee:23: 16:f1:74:e5:68:66:95:26:d3:d9:7f:dc:42:6a:da: 48:a3:d8:1d:4b:25:25:51:d3:68:62:4f:b1:8c:b4: 88:18:12:c6:d8:9b:1a:c6:00:6b:5d:cb:9e:26:10: 82:23:fb:7d:03:16:1c:e8:51:c4:24:7b:15:27:95: 1c:58:64:40:b6:58:0d:34:35:1a:27:6a:9b:23:3f: 16:88:67:8a:3c:d4:9a:ab:2c:9c:b0:06:8d:15:2b: 84:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:6D:8C:1E:8C:4B:31:FC:1B:96:98:D9:03:71:43:A3:DC:9E:94:D0 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633061303a3a2f34342d3438203d3e20323135373338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c0a0::/44 Signature Algorithm: sha256WithRSAEncryption 18:5d:85:4c:86:c3:9b:48:88:3b:39:23:2c:14:19:c6:27:68: e0:15:4d:a4:84:0e:17:41:ea:46:18:af:24:df:a0:4b:46:b3: b8:a4:16:32:55:10:0c:9b:41:94:32:74:9d:80:93:65:aa:16: f9:9a:35:b8:60:01:a6:53:63:1a:a6:49:3e:bd:68:f5:ca:40: 24:b0:22:42:03:b0:b9:ba:96:5b:9d:8b:fa:1e:71:d9:a0:88: 6b:4d:91:2b:29:5e:f6:80:66:65:87:bb:d2:8e:72:6e:a9:3a: bd:c5:e7:81:65:0e:b8:d8:57:1b:d2:66:c2:f4:df:a2:65:60: 3d:58:1a:d8:db:d7:d1:3f:b3:5e:3b:f8:b5:65:11:5b:76:8f: 6a:7b:b9:cf:97:16:2e:83:d8:8f:66:ad:3f:0d:f6:87:28:d2: a9:46:4d:7e:d4:c6:f7:43:ae:25:b4:1e:82:ca:c6:f2:54:4f: a7:fd:ae:6a:ef:1c:37:71:a1:64:7f:cd:e1:8a:b5:1c:f6:50: a8:ab:4f:4e:22:94:7b:7e:ed:d4:27:31:8e:f1:3a:af:76:b2: 2b:4c:cd:f7:61:ea:f6:5f:3d:1d:e3:94:d9:19:f8:d8:22:6b: 28:4b:2c:b5:49:ff:0e:22:aa:bc:d2:06:72:71:fc:ea:3d:5b: 94:2f:18:5c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUF4KMr/Pv/03uMhqkboJGdjk6QmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDFaFw0yNjA3MDMxNjA4NDFaMDMxMTAvBgNV BAMTKEY1NkQ4QzFFOEM0QjMxRkMxQjk2OThEOTAzNzE0M0EzREM5RTk0RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDUT385BIlkRcvHi3+OgPSQFws CNitjokcvTXLS+4Y1nPjkyAHDxq4gh4MR8mHY5CEz48gXd+/CI+E7zw20pRT8IDY a2wuFnEoSCCwZW0Vw0aQOA4rGQlmQaLHuE8davOiJAx9mU/o1+zWz9P+61aIHD4K mSxgsuswgMXwWhJH18PaBEEWa7172HAuwuHSZpoyifaOAsi5yNHGQ7j5H/GtGJru IxbxdOVoZpUm09l/3EJq2kij2B1LJSVR02hiT7GMtIgYEsbYmxrGAGtdy54mEIIj +30DFhzoUcQkexUnlRxYZEC2WA00NRonapsjPxaIZ4o81JqrLJywBo0VK4TLAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU9W2MHoxLMfwblpjZA3FDo9yelNAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwNjEzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzNTM3MzMzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAoDANBgkqhkiG9w0BAQsFAAOCAQEAGF2FTIbDm0iIOzkj LBQZxido4BVNpIQOF0HqRhivJN+gS0azuKQWMlUQDJtBlDJ0nYCTZaoW+Zo1uGAB plNjGqZJPr1o9cpAJLAiQgOwubqWW52L+h5x2aCIa02RKyle9oBmZYe70o5ybqk6 vcXngWUOuNhXG9JmwvTfomVgPVga2NvX0T+zXjv4tWURW3aPanu5z5cWLoPYj2at Pw32hyjSqUZNftTG90OuJbQegsrG8lRPp/2uau8cN3GhZH/N4Yq1HPZQqKtPTiKU e37t1CcxjvE6r3ayK0zN92Hq9l89HeOU2Rn42CJrKEsstUn/DiKqvNIGcnH86j1b lC8YXA== -----END CERTIFICATE-----Generated at Sat Jul 5 08:49:25 2025 by rpki-client