$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa File: 326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa (raw, json) Hash identifier: YfRqMDl6s+4JSCaAcmvegq7IRtuPvW7QvSJIZIs7gLk= Subject key identifier: D6:9D:FE:6C:E7:AB:1F:ED:07:F6:F2:33:65:D5:79:39:86:6A:7B:54 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4EE5551F3FD066DE631DE10686C1FAE5D60A44AC Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa Signing time: Fri 05 Jun 2026 16:35:05 +0000 ROA not before: Fri 05 Jun 2026 16:30:05 +0000 ROA not after: Fri 04 Jun 2027 16:35:05 +0000 asID: 214915 IP address blocks: 2a06:1283:d000::/38 maxlen: 38 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 22:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:e5:55:1f:3f:d0:66:de:63:1d:e1:06:86:c1:fa:e5:d6:0a:44:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:05 2026 GMT Not After : Jun 4 16:35:05 2027 GMT Subject: CN=D69DFE6CE7AB1FED07F6F23365D57939866A7B54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:78:20:d8:c9:0b:99:ac:67:c1:2b:21:ab:02: 99:dd:30:07:f9:ea:01:8b:46:46:cd:ae:c1:77:ae: 80:09:4f:bd:40:d2:4f:e1:af:cb:5b:85:ef:b3:2d: 02:26:f6:53:af:ef:9b:a4:44:f0:ff:ad:6d:c1:4a: c2:36:88:ab:be:6b:5b:1d:86:20:be:f4:8e:72:19: 08:35:e4:ee:5f:d5:ee:9b:bd:e8:1d:ea:3f:33:30: 7c:b9:30:09:60:09:af:3c:dc:ef:f3:84:ac:d1:ab: ad:84:f1:fe:28:92:28:f1:9d:78:30:57:c0:8f:da: 01:74:b0:23:54:16:a7:c5:cb:85:e4:06:19:81:8b: d7:80:b8:b9:3c:f8:1d:72:b8:b2:ec:93:0e:e6:0f: 04:d4:7b:fe:cc:0c:f4:d9:13:e6:ab:78:7f:e5:30: ce:25:ca:fc:bb:29:74:c8:77:c8:06:17:ec:15:66: 3a:12:58:8a:2a:d0:2b:48:5c:90:83:a4:6d:d2:f5: af:be:eb:34:06:72:9c:75:30:ab:71:60:24:38:2f: 62:99:62:85:09:7f:60:8c:08:cb:3a:2d:00:ea:15: fe:d6:e8:12:30:a4:61:32:9f:b2:84:ac:bb:96:1b: d8:0d:8b:3c:82:6e:5a:53:c7:d8:88:3e:79:9b:ee: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:9D:FE:6C:E7:AB:1F:ED:07:F6:F2:33:65:D5:79:39:86:6A:7B:54 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a643030303a3a2f33382d3338203d3e20323134393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:d000::/38 Signature Algorithm: sha256WithRSAEncryption 12:d2:84:27:2c:60:0e:68:d3:01:81:72:55:59:b8:fe:ce:32: 00:4e:d1:76:ea:d2:48:89:c1:d0:50:9b:d3:b1:e3:e6:8a:e9: 17:e0:8b:3d:b3:f6:3f:0b:a8:85:04:07:da:de:86:63:b0:e4: 3d:83:87:0a:15:39:ff:12:d5:40:a7:64:99:dd:47:79:d2:b0: a7:da:98:4f:cb:58:c9:46:f6:90:b3:33:41:48:53:3c:82:16: c4:57:34:3a:ee:e3:63:7e:bf:74:38:5e:6c:6b:95:c6:7e:08: 49:39:e8:8a:29:1f:b9:86:cb:45:b3:85:51:7b:ca:ae:52:63: 2f:1f:80:ca:57:94:4e:90:b3:6f:4d:79:9e:b8:cd:42:9f:10: 28:96:ed:ae:7c:6d:02:11:84:54:65:a5:47:a0:b0:01:31:80: 0e:27:3c:55:9b:a0:23:2f:96:91:29:8a:e8:e2:b1:c0:ce:65: b2:ec:37:3a:cc:d5:a5:5d:05:39:be:df:cb:a3:67:bf:00:49: bc:08:69:f8:c9:2c:47:4a:e9:3d:a7:93:64:2f:90:0f:50:cb: 0a:38:95:44:2d:8b:f0:e3:f8:1a:07:0e:c6:4f:cf:d0:0d:66: bc:08:67:35:a9:37:43:0d:a0:c6:ba:e0:4f:cf:97:13:6b:1e: 36:fb:28:dd -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUTuVVHz/QZt5jHeEGhsH65dYKRKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDVaFw0yNzA2MDQxNjM1MDVaMDMxMTAvBgNV BAMTKEQ2OURGRTZDRTdBQjFGRUQwN0Y2RjIzMzY1RDU3OTM5ODY2QTdCNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0eCDYyQuZrGfBKyGrApndMAf5 6gGLRkbNrsF3roAJT71A0k/hr8tbhe+zLQIm9lOv75ukRPD/rW3BSsI2iKu+a1sd hiC+9I5yGQg15O5f1e6bvegd6j8zMHy5MAlgCa883O/zhKzRq62E8f4okijxnXgw V8CP2gF0sCNUFqfFy4XkBhmBi9eAuLk8+B1yuLLskw7mDwTUe/7MDPTZE+areH/l MM4lyvy7KXTId8gGF+wVZjoSWIoq0CtIXJCDpG3S9a++6zQGcpx1MKtxYCQ4L2KZ YoUJf2CMCMs6LQDqFf7W6BIwpGEyn7KErLuWG9gNizyCblpTx9iIPnmb7umXAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQU1p3+bOerH+0H9vIzZdV5OYZqe1QwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2NDMwMzAzMDNhM2EyZjMzMzgyZDMzMzgyMDNkM2UyMDMyMzEzNDM5MzEzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAioGEoPQMA0GCSqGSIb3DQEBCwUAA4IBAQAS0oQnLGAOaNMBgXJV Wbj+zjIATtF26tJIicHQUJvTsePmiukX4Is9s/Y/C6iFBAfa3oZjsOQ9g4cKFTn/ EtVAp2SZ3Ud50rCn2phPy1jJRvaQszNBSFM8ghbEVzQ67uNjfr90OF5sa5XGfghJ OeiKKR+5hstFs4VRe8quUmMvH4DKV5ROkLNvTXmeuM1CnxAolu2ufG0CEYRUZaVH oLABMYAOJzxVm6AjL5aRKYro4rHAzmWy7Dc6zNWlXQU5vt/Lo2e/AEm8CGn4ySxH Suk9p5NkL5APUMsKOJVELYvw4/gaBw7GT8/QDWa8CGc1qTdDDaDGuuBPz5cTax42 +yjd -----END CERTIFICATE-----Generated at Fri Jun 12 07:30:55 2026 by rpki-client