$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa File: 326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: jzjfLKSOGAN4cdNFv5OjXLTzBjRIXHX15OXoMKXd6Cs= Subject key identifier: AD:C2:3B:E5:65:6F:81:6E:D2:44:27:76:28:B6:FD:63:1E:66:C0:40 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 6D36E29985D3CF53A4F302CB47F3385C4817E032 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa Signing time: Fri 04 Jul 2025 16:08:45 +0000 ROA not before: Fri 04 Jul 2025 16:03:45 +0000 ROA not after: Fri 03 Jul 2026 16:08:45 +0000 asID: 0 IP address blocks: 2a06:1283:c120::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:36:e2:99:85:d3:cf:53:a4:f3:02:cb:47:f3:38:5c:48:17:e0:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:45 2025 GMT Not After : Jul 3 16:08:45 2026 GMT Subject: CN=ADC23BE5656F816ED244277628B6FD631E66C040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:1d:33:69:34:e5:97:39:27:47:39:55:aa: f7:18:22:d2:43:a0:8e:6c:31:b7:73:be:97:2d:87: ad:b0:5e:48:b0:95:46:ee:69:6c:1f:a0:1e:71:21: b0:b0:9c:85:d1:d4:7c:5b:3f:e8:4b:ed:20:7a:d0: 5f:47:56:5d:96:40:54:0d:8f:bd:64:11:b9:cc:9d: ce:b8:ff:c3:ad:aa:55:7b:ac:60:42:73:9a:2d:60: e9:ac:ef:72:42:03:5a:f6:f9:d2:92:f2:a7:33:a0: 86:56:23:9c:7a:fc:d8:20:1a:e3:ab:43:01:e7:b2: 16:5b:c6:68:d6:c7:6a:05:95:ee:d3:78:d9:82:1e: 17:c9:fe:43:5c:00:56:f9:cf:e9:e2:70:64:e1:c3: d4:ec:06:27:c7:4f:bf:43:c1:d7:6b:15:72:dd:95: aa:ad:13:37:ab:e1:46:be:47:93:36:45:a4:2a:59: 42:6a:c6:87:3c:d6:76:87:cf:c0:0b:2e:64:16:40: d3:c4:62:0e:86:c6:fe:33:c9:ae:06:13:91:41:e7: 82:e8:43:3b:eb:97:5b:dd:34:8e:6c:86:41:ea:f2: 86:71:d0:2f:6c:fb:35:11:de:32:9e:e9:f6:00:6a: 84:a5:73:f2:05:dc:6e:be:24:bf:ae:12:24:db:92: d0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C2:3B:E5:65:6F:81:6E:D2:44:27:76:28:B6:FD:63:1E:66:C0:40 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c120::/44 Signature Algorithm: sha256WithRSAEncryption 05:63:47:47:eb:57:47:be:33:2d:69:1d:b1:ee:09:af:c2:c9: 46:cb:31:3c:85:8d:dd:c0:0e:2d:26:df:e1:e5:62:29:dc:78: 22:9a:16:7c:68:db:f4:6a:6a:f6:fd:70:81:f7:8a:96:23:f4: ab:a9:42:de:1c:c5:89:39:29:3e:d4:92:bd:31:98:a4:a0:c2: 6d:e8:35:94:07:a5:3b:42:14:45:db:42:e2:0d:94:af:46:78: e3:a0:15:cc:15:0c:bc:35:7d:c7:85:23:40:18:90:f4:dc:62: bc:9b:3e:8d:28:59:08:8b:d8:a0:b2:07:29:5c:dd:1e:7a:36: 01:57:04:c3:ea:bd:92:29:bd:96:51:39:cc:87:27:77:26:78: c4:28:f9:82:ad:77:d8:f8:2e:55:df:3d:e4:4f:7b:73:aa:c2: 5e:3f:c8:5b:c3:62:f5:23:a7:c4:ab:ae:5e:98:2e:ac:a7:d4: 49:65:9c:32:35:45:5e:19:af:ea:cb:14:5f:9d:3a:d0:1a:a9: 8f:60:fb:81:bd:db:eb:b2:04:7a:98:6e:13:73:10:30:cb:bc: 7e:00:d2:71:d3:4d:10:74:f3:6e:cb:73:a4:26:36:c2:66:fd: bb:77:0d:54:84:6e:ff:f5:e6:77:bb:50:70:1c:a1:32:cb:be: c0:2a:59:a1 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUbTbimYXTz1Ok8wLLR/M4XEgX4DIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDVaFw0yNjA3MDMxNjA4NDVaMDMxMTAvBgNV BAMTKEFEQzIzQkU1NjU2RjgxNkVEMjQ0Mjc3NjI4QjZGRDYzMUU2NkMwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvpR0zaTTllzknRzlVqvcYItJD oI5sMbdzvpcth62wXkiwlUbuaWwfoB5xIbCwnIXR1HxbP+hL7SB60F9HVl2WQFQN j71kEbnMnc64/8OtqlV7rGBCc5otYOms73JCA1r2+dKS8qczoIZWI5x6/NggGuOr QwHnshZbxmjWx2oFle7TeNmCHhfJ/kNcAFb5z+nicGThw9TsBifHT79DwddrFXLd laqtEzer4Ua+R5M2RaQqWUJqxoc81naHz8ALLmQWQNPEYg6Gxv4zya4GE5FB54Lo Qzvrl1vdNI5shkHq8oZx0C9s+zUR3jKe6fYAaoSlc/IF3G6+JL+uEiTbktCpAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUrcI75WVvgW7SRCd2KLb9Yx5mwEAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgYSg8EgMA0GCSqGSIb3DQEBCwUAA4IBAQAFY0dH61dHvjMtaR2x7gmvwslGyzE8 hY3dwA4tJt/h5WIp3HgimhZ8aNv0amr2/XCB94qWI/SrqULeHMWJOSk+1JK9MZik oMJt6DWUB6U7QhRF20LiDZSvRnjjoBXMFQy8NX3HhSNAGJD03GK8mz6NKFkIi9ig sgcpXN0eejYBVwTD6r2SKb2WUTnMhyd3JnjEKPmCrXfY+C5V3z3kT3tzqsJeP8hb w2L1I6fEq65emC6sp9RJZZwyNUVeGa/qyxRfnTrQGqmPYPuBvdvrsgR6mG4TcxAw y7x+ANJx000QdPNuy3OkJjbCZv27dw1UhG7/9eZ3u1BwHKEyy77AKlmh -----END CERTIFICATE-----Generated at Sat Jul 5 08:39:52 2025 by rpki-client