$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633133303a3a2f34342d3438203d3e20323131303636.roa File: 326130363a313238333a633133303a3a2f34342d3438203d3e20323131303636.roa (raw, json) Hash identifier: m4Luo9xGitfq3ojwlUfNtYjEMDVGY86VY8ZKFo2fqeE= Subject key identifier: 54:F3:35:07:A3:9E:80:32:B8:71:4A:2A:50:AD:F7:E4:73:06:AC:6D Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 57BF5C94A341CFF67169B5B07154092C37FFB3B4 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633133303a3a2f34342d3438203d3e20323131303636.roa Signing time: Fri 04 Jul 2025 16:08:37 +0000 ROA not before: Fri 04 Jul 2025 16:03:37 +0000 ROA not after: Fri 03 Jul 2026 16:08:37 +0000 asID: 211066 IP address blocks: 2a06:1283:c130::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:bf:5c:94:a3:41:cf:f6:71:69:b5:b0:71:54:09:2c:37:ff:b3:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:37 2025 GMT Not After : Jul 3 16:08:37 2026 GMT Subject: CN=54F33507A39E8032B8714A2A50ADF7E47306AC6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9c:24:49:5f:f6:3b:39:13:07:45:3c:da:21: 58:cf:38:43:60:51:45:2b:dd:95:ce:65:47:d1:2b: 16:60:6a:ad:be:71:21:59:c8:bb:64:80:8a:54:72: e1:8d:b2:cf:f8:36:89:95:45:94:40:ac:ac:97:8c: 35:7e:82:fd:19:31:ab:5a:85:6b:f4:5a:5b:99:d5: 5a:d2:ca:01:8b:16:22:6d:54:79:53:b1:0b:bb:5e: 56:a8:02:ed:fc:d3:09:9d:b3:54:f6:e3:ce:87:13: 60:c5:e5:93:50:9d:95:17:0e:2b:2c:16:f8:b3:ae: d0:64:3c:69:3c:4c:4c:3e:53:92:03:47:3a:ae:84: 10:a2:b6:ee:77:48:1f:dd:d6:93:28:b0:a0:b3:f8: af:06:b8:a4:9c:6f:94:b6:77:87:6b:c8:b0:2a:9d: ef:ce:a3:7e:b5:23:04:0a:4e:37:b4:e9:e0:aa:10: b2:f9:4f:a0:7e:5d:c5:68:ca:66:a7:9b:da:d5:a3: 1a:95:78:27:76:80:b6:ae:40:9f:3a:d6:38:e3:c7: 94:a9:b7:9f:0d:12:d7:29:dc:08:8d:e7:65:fe:80: 3d:2b:33:f3:cb:fe:51:a2:e4:57:92:fa:c7:23:8d: da:a0:ff:7d:f6:9d:1b:9e:79:19:fb:3a:0b:8c:8c: 34:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:F3:35:07:A3:9E:80:32:B8:71:4A:2A:50:AD:F7:E4:73:06:AC:6D X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633133303a3a2f34342d3438203d3e20323131303636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c130::/44 Signature Algorithm: sha256WithRSAEncryption 34:cc:45:6d:27:fd:d0:2f:ab:fa:5e:4c:fe:00:06:b4:1d:4c: 7c:6e:f3:2c:7b:d6:c3:57:a6:ae:f9:f4:58:8e:d0:e0:c7:f7: 7f:a6:4a:39:76:8f:80:ef:f4:5f:04:52:23:54:a3:0d:8b:fe: 9f:53:b9:fc:fc:97:a6:90:d1:70:0c:17:68:cc:86:6c:f0:81: e8:de:c9:e6:35:77:6a:29:0e:12:17:f0:f3:c6:f8:8f:9a:2a: 82:58:cc:7a:7b:e9:40:53:5e:98:03:eb:d8:8d:da:60:fc:61: ba:ed:dc:43:44:3f:ff:53:f1:76:6a:02:15:1e:2c:a0:34:68: 10:87:00:59:f7:b4:fb:fb:ca:22:84:6f:87:4a:fa:70:e6:f5: f7:f8:76:c2:c0:8f:25:2e:29:2a:83:64:6b:ab:3a:98:23:32: 22:7d:f4:88:b3:3e:59:77:ff:36:5b:37:2b:64:df:b3:6a:4f: 13:ab:d9:e5:1c:2f:aa:f5:7e:f1:47:9e:fc:ee:09:17:0e:89: 2a:9c:6e:fb:1c:08:eb:ed:35:46:e2:29:b8:29:94:be:3c:ef: f9:75:d2:c7:24:7e:77:54:af:b6:dc:bb:f2:50:51:40:3d:84: 12:fa:1b:a9:e9:20:05:ab:d3:e6:a6:eb:7a:91:44:a8:f8:af: 20:17:f5:fe -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUV79clKNBz/ZxabWwcVQJLDf/s7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzdaFw0yNjA3MDMxNjA4MzdaMDMxMTAvBgNV BAMTKDU0RjMzNTA3QTM5RTgwMzJCODcxNEEyQTUwQURGN0U0NzMwNkFDNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNnCRJX/Y7ORMHRTzaIVjPOENg UUUr3ZXOZUfRKxZgaq2+cSFZyLtkgIpUcuGNss/4NomVRZRArKyXjDV+gv0ZMata hWv0WluZ1VrSygGLFiJtVHlTsQu7XlaoAu380wmds1T2486HE2DF5ZNQnZUXDiss FvizrtBkPGk8TEw+U5IDRzquhBCitu53SB/d1pMosKCz+K8GuKScb5S2d4dryLAq ne/Oo361IwQKTje06eCqELL5T6B+XcVoymanm9rVoxqVeCd2gLauQJ861jjjx5Sp t58NEtcp3AiN52X+gD0rM/PL/lGi5FeS+scjjdqg/332nRueeRn7OguMjDSNAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUVPM1B6OegDK4cUoqUK335HMGrG0wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzMzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMyMzEzMTMwMzYzNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPBMDANBgkqhkiG9w0BAQsFAAOCAQEANMxFbSf90C+r+l5M /gAGtB1MfG7zLHvWw1emrvn0WI7Q4Mf3f6ZKOXaPgO/0XwRSI1SjDYv+n1O5/PyX ppDRcAwXaMyGbPCB6N7J5jV3aikOEhfw88b4j5oqgljMenvpQFNemAPr2I3aYPxh uu3cQ0Q//1PxdmoCFR4soDRoEIcAWfe0+/vKIoRvh0r6cOb19/h2wsCPJS4pKoNk a6s6mCMyIn30iLM+WXf/Nls3K2Tfs2pPE6vZ5RwvqvV+8Uee/O4JFw6JKpxu+xwI 6+01RuIpuCmUvjzv+XXSxyR+d1Svtty78lBRQD2EEvobqekgBavT5qbrepFEqPiv IBf1/g== -----END CERTIFICATE-----Generated at Sat Jul 5 09:03:07 2025 by rpki-client