$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa File: 326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa (raw, json) Hash identifier: eXVCemDmONV15C52gD5uieDCPXBK962v/14gFWdt93I= Subject key identifier: 50:69:CA:23:86:95:D5:33:BC:9F:C9:B0:D2:7A:98:B9:A5:54:BF:E2 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 0E3D434E65C173F85C3CA84D86EACE7BF3329C53 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa Signing time: Fri 04 Jul 2025 16:08:43 +0000 ROA not before: Fri 04 Jul 2025 16:03:43 +0000 ROA not after: Fri 03 Jul 2026 16:08:43 +0000 asID: 215147 IP address blocks: 2a06:1283:c110::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3d:43:4e:65:c1:73:f8:5c:3c:a8:4d:86:ea:ce:7b:f3:32:9c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:43 2025 GMT Not After : Jul 3 16:08:43 2026 GMT Subject: CN=5069CA238695D533BC9FC9B0D27A98B9A554BFE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a1:a7:58:b7:0b:12:14:0a:09:c1:95:17:43: dd:b0:b9:5d:6a:84:5a:5b:1e:81:9c:a7:ea:58:ac: 76:0f:ff:f2:5b:35:b1:b9:c3:53:bd:0e:cb:79:5b: 21:69:0a:42:49:73:71:62:ce:80:19:7e:a4:86:74: ae:af:4d:63:2a:3e:e1:58:b9:a4:cb:2c:12:97:11: 9a:cc:bf:f6:eb:53:35:3f:15:cb:c2:c5:46:02:0f: c1:91:bf:2b:31:a9:60:06:45:a6:13:d6:12:ad:8c: 7c:01:93:06:b7:5d:09:b3:c8:47:c1:de:ae:78:14: c3:26:43:f3:83:47:94:4c:c2:69:fd:11:9c:6c:4a: 2d:a3:85:d5:39:d7:7b:d7:ef:1a:9f:ee:bb:77:64: 78:d5:02:5a:8d:67:a4:85:bb:a3:19:80:25:db:c7: 2c:f5:82:f9:f8:e5:0e:27:3d:b4:b2:72:4f:3f:ef: 4e:a9:01:ed:40:36:87:6b:ad:9c:06:5d:e0:26:eb: 35:8d:23:84:a9:0e:2a:a3:3d:3b:f2:97:f4:56:29: bc:de:c4:48:3d:d6:25:e7:e3:01:18:99:82:e4:a0: e3:62:44:43:26:e5:b4:3d:f5:c9:69:07:21:df:d2: 1d:30:ea:ad:c4:72:5e:3e:5b:d6:e6:28:04:a4:62: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:69:CA:23:86:95:D5:33:BC:9F:C9:B0:D2:7A:98:B9:A5:54:BF:E2 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633131303a3a2f34342d3434203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c110::/44 Signature Algorithm: sha256WithRSAEncryption 61:5e:20:cc:81:d2:0f:d9:93:11:ec:74:c1:5d:94:5d:d0:5e: d2:b8:6f:5a:ca:2b:b9:c9:09:34:3d:1b:fb:3c:d0:1e:f5:1e: d9:2c:31:be:cf:c5:25:7a:59:03:18:d6:ad:17:3b:f5:2b:e8: e8:6f:c4:d0:0c:3c:a2:ca:60:85:88:4c:49:b1:6e:ef:5f:65: 13:02:bf:0b:d7:b3:4a:b6:44:01:7c:37:4a:10:9b:b2:03:6b: a8:6c:d8:56:37:82:cc:ad:df:73:17:d6:de:64:e0:d2:c3:46: 1f:17:fd:67:71:59:88:87:e6:a1:f8:0e:fa:a9:85:fc:31:8d: a7:f8:99:b3:90:92:14:78:58:1f:ca:eb:64:8b:14:bf:cd:f3: db:a5:7f:8e:b0:1c:7c:9c:ca:5d:a5:c5:b9:f9:c3:17:09:72: 4a:8f:9b:54:03:11:b9:8a:9a:d2:3f:49:a7:fd:8a:d5:8a:b8: cc:cc:7b:ce:61:f7:00:2d:50:97:a1:06:69:ce:9d:f3:4b:d1: cb:e8:0f:84:8c:b5:0b:cd:05:ed:a8:ec:1a:6a:63:8e:a6:74: 91:02:6a:7c:31:57:72:dd:0c:a2:8b:6d:51:05:9e:83:54:90: c6:14:dd:10:45:44:7d:bb:f8:e5:a0:20:d7:c7:99:96:4a:c2: e8:25:6e:e6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUDj1DTmXBc/hcPKhNhurOe/MynFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDNaFw0yNjA3MDMxNjA4NDNaMDMxMTAvBgNV BAMTKDUwNjlDQTIzODY5NUQ1MzNCQzlGQzlCMEQyN0E5OEI5QTU1NEJGRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhoadYtwsSFAoJwZUXQ92wuV1q hFpbHoGcp+pYrHYP//JbNbG5w1O9Dst5WyFpCkJJc3FizoAZfqSGdK6vTWMqPuFY uaTLLBKXEZrMv/brUzU/FcvCxUYCD8GRvysxqWAGRaYT1hKtjHwBkwa3XQmzyEfB 3q54FMMmQ/ODR5RMwmn9EZxsSi2jhdU513vX7xqf7rt3ZHjVAlqNZ6SFu6MZgCXb xyz1gvn45Q4nPbSyck8/706pAe1ANodrrZwGXeAm6zWNI4SpDiqjPTvyl/RWKbze xEg91iXn4wEYmYLkoONiREMm5bQ99clpByHf0h0w6q3Ecl4+W9bmKASkYulvAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUUGnKI4aV1TO8n8mw0nqYuaVUv+IwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNTMxMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPBEDANBgkqhkiG9w0BAQsFAAOCAQEAYV4gzIHSD9mTEex0 wV2UXdBe0rhvWsoruckJND0b+zzQHvUe2Swxvs/FJXpZAxjWrRc79Svo6G/E0Aw8 ospghYhMSbFu719lEwK/C9ezSrZEAXw3ShCbsgNrqGzYVjeCzK3fcxfW3mTg0sNG Hxf9Z3FZiIfmofgO+qmF/DGNp/iZs5CSFHhYH8rrZIsUv83z26V/jrAcfJzKXaXF ufnDFwlySo+bVAMRuYqa0j9Jp/2K1Yq4zMx7zmH3AC1Ql6EGac6d80vRy+gPhIy1 C80F7ajsGmpjjqZ0kQJqfDFXct0MoottUQWeg1SQxhTdEEVEfbv45aAg18eZlkrC 6CVu5g== -----END CERTIFICATE-----Generated at Sat Jul 5 08:46:24 2025 by rpki-client