$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa File: 326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa (raw, json) Hash identifier: px1fI/XgIjBMCMd4K5kckwwrPVsoYaMf6QYTfTPcDLE= Subject key identifier: 07:BB:ED:52:A8:36:D1:DA:6D:68:17:9B:09:23:7D:BF:67:73:C9:7A Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 55A78DD9AD7E35BACD1FB1645BE650D8BAC53254 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa Signing time: Fri 04 Jul 2025 16:08:37 +0000 ROA not before: Fri 04 Jul 2025 16:03:37 +0000 ROA not after: Fri 03 Jul 2026 16:08:37 +0000 asID: 214915 IP address blocks: 2a06:1283:d000::/38 maxlen: 38 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a7:8d:d9:ad:7e:35:ba:cd:1f:b1:64:5b:e6:50:d8:ba:c5:32:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:37 2025 GMT Not After : Jul 3 16:08:37 2026 GMT Subject: CN=07BBED52A836D1DA6D68179B09237DBF6773C97A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:32:e7:ba:29:62:00:6e:87:a9:b8:c5:18:10: f4:dd:be:dc:ea:36:e0:d4:fa:fc:a5:14:28:89:2a: eb:58:bd:56:0f:3c:ba:74:b3:9e:ad:c5:80:76:d7: ad:46:f5:1e:a1:ca:63:7f:fd:3c:03:3b:b9:b9:3c: 32:16:63:a0:5c:71:17:fb:cb:94:22:7f:04:49:2b: a1:f0:83:a4:70:e0:48:b0:5b:82:20:31:d7:36:7c: 8e:9f:f6:d3:8c:d4:a0:76:ee:32:20:1c:26:15:78: b6:aa:3a:60:e2:29:25:9d:7f:52:70:02:57:9c:4b: 40:6e:8b:de:2c:99:e8:ea:06:fd:ff:a0:ba:4e:09: 25:cd:f5:da:8f:13:68:9f:af:1c:58:4d:e9:49:74: 13:3a:87:c0:6d:fc:a5:74:0e:a3:9e:02:1c:74:7e: c4:75:76:96:b0:23:6b:ca:8b:a0:1f:51:30:e4:21: 7b:66:04:88:f3:16:72:ae:1b:3e:5d:59:a6:2c:70: e0:05:e7:71:48:b7:04:c3:d3:70:4d:a8:e6:56:be: dd:1d:c7:b5:ad:21:d3:56:30:29:ce:74:22:65:ea: 56:64:8c:ec:88:c4:70:d1:1a:27:f0:27:88:fd:83: 31:8a:b3:a7:66:0c:d8:6e:6a:2c:f2:eb:88:66:42: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BB:ED:52:A8:36:D1:DA:6D:68:17:9B:09:23:7D:BF:67:73:C9:7A X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:d000::/38 Signature Algorithm: sha256WithRSAEncryption 0d:7d:7c:51:34:7b:1a:91:14:f7:fb:7f:15:7c:7e:3a:37:9e: 47:b3:e1:35:70:e4:a9:ce:5d:29:08:22:0b:a1:25:ae:1d:c8: 85:a1:a6:f2:7a:26:09:e0:af:07:3f:22:be:69:33:73:fb:bc: e7:a3:70:6a:11:83:a8:93:ab:4a:d5:f0:4d:56:1f:29:ee:34: a2:7e:30:67:88:6a:fe:8b:33:1a:17:24:e4:ec:b4:c8:2b:9a: 72:a0:f1:59:a9:f3:ea:4f:4f:48:72:23:b8:01:f9:d4:7a:0a: 15:e8:e2:8e:71:b3:66:2d:08:29:4c:7f:03:c3:3d:de:93:1a: 0d:57:be:29:c1:99:6a:57:9f:b3:b3:5c:c9:27:45:af:10:d1: 2a:7e:48:2d:c8:5d:03:93:8a:46:51:54:c1:8e:33:0e:17:58: 80:00:ef:67:e9:b6:a5:74:e3:32:9a:35:e4:f9:14:9d:7e:f1: 70:f5:86:51:d8:ce:48:e3:c2:c0:c6:c2:63:76:5d:74:c7:70: 65:04:fb:12:02:d9:9f:45:5e:41:36:9c:ae:da:79:9d:1a:ba: 73:8c:e6:04:83:71:07:b0:7d:e9:84:96:ac:1f:ce:6f:dc:70: 6e:a1:a7:7e:b5:08:a5:0a:a7:71:88:a3:84:2b:ac:57:69:59: f4:11:2e:d6 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUVaeN2a1+NbrNH7FkW+ZQ2LrFMlQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzdaFw0yNjA3MDMxNjA4MzdaMDMxMTAvBgNV BAMTKDA3QkJFRDUyQTgzNkQxREE2RDY4MTc5QjA5MjM3REJGNjc3M0M5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrMue6KWIAboepuMUYEPTdvtzq NuDU+vylFCiJKutYvVYPPLp0s56txYB2161G9R6hymN//TwDO7m5PDIWY6BccRf7 y5QifwRJK6Hwg6Rw4EiwW4IgMdc2fI6f9tOM1KB27jIgHCYVeLaqOmDiKSWdf1Jw AlecS0Bui94smejqBv3/oLpOCSXN9dqPE2ifrxxYTelJdBM6h8Bt/KV0DqOeAhx0 fsR1dpawI2vKi6AfUTDkIXtmBIjzFnKuGz5dWaYscOAF53FItwTD03BNqOZWvt0d x7WtIdNWMCnOdCJl6lZkjOyIxHDRGifwJ4j9gzGKs6dmDNhuaizy64hmQolJAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUB7vtUqg20dptaBebCSN9v2dzyXowHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2NDMwMzAzMDNhM2EyZjMzMzgyZDMzMzgyMDNkM2UyMDMyMzEzNDM5MzEzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAioGEoPQMA0GCSqGSIb3DQEBCwUAA4IBAQANfXxRNHsakRT3+38V fH46N55Hs+E1cOSpzl0pCCILoSWuHciFoabyeiYJ4K8HPyK+aTNz+7zno3BqEYOo k6tK1fBNVh8p7jSifjBniGr+izMaFyTk7LTIK5pyoPFZqfPqT09IciO4AfnUegoV 6OKOcbNmLQgpTH8Dwz3ekxoNV74pwZlqV5+zs1zJJ0WvENEqfkgtyF0Dk4pGUVTB jjMOF1iAAO9n6baldOMymjXk+RSdfvFw9YZR2M5I48LAxsJjdl10x3BlBPsSAtmf RV5BNpyu2nmdGrpzjOYEg3EHsH3phJasH85v3HBuoad+tQilCqdxiKOEK6xXaVn0 ES7W -----END CERTIFICATE-----Generated at Sat Jul 5 08:55:01 2025 by rpki-client