$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646561643a3a2f34382d3438203d3e20313939363839.roa File: 326130363a313238333a646561643a3a2f34382d3438203d3e20313939363839.roa (raw, json) Hash identifier: SG5JNgdnMjm2OKXYddSy6anR6u3fmHQbGoT1LncLqwo= Subject key identifier: DD:F3:0F:B7:08:2C:9D:12:6A:C8:18:B7:3C:51:9A:20:FB:D4:15:4A Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 55F9FFF927104ABBF812216A1039AD5E8DDC5026 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646561643a3a2f34382d3438203d3e20313939363839.roa Signing time: Fri 04 Jul 2025 16:08:45 +0000 ROA not before: Fri 04 Jul 2025 16:03:45 +0000 ROA not after: Fri 03 Jul 2026 16:08:45 +0000 asID: 199689 IP address blocks: 2a06:1283:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:f9:ff:f9:27:10:4a:bb:f8:12:21:6a:10:39:ad:5e:8d:dc:50:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:45 2025 GMT Not After : Jul 3 16:08:45 2026 GMT Subject: CN=DDF30FB7082C9D126AC818B73C519A20FBD4154A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:6f:51:73:99:61:dd:83:4e:5a:14:75:e4: fc:b6:91:cc:aa:9f:13:0f:75:1d:e9:78:4b:64:7f: dc:72:5c:3e:38:f8:4c:ef:7d:08:17:69:8f:0a:5d: 4f:08:a7:26:2a:6f:10:40:1c:ff:2e:74:ea:38:f6: ca:17:44:ba:ca:d7:48:a5:5e:92:b8:7d:73:c6:59: 17:eb:82:09:de:ac:fc:39:96:fc:ca:8a:32:19:19: 9f:aa:94:57:2c:23:db:b1:f3:b1:7f:c9:03:0a:36: b5:9d:46:9c:69:33:35:ce:a0:c7:01:ac:28:1f:db: a2:a1:e2:72:b1:4d:3a:4c:d9:5b:3d:7f:cc:c4:c3: a9:40:c5:9e:89:f1:c6:e2:ea:2d:6b:f8:b1:18:01: 3a:41:99:24:c7:44:11:8a:1e:5b:ce:4d:2b:64:84: 5b:19:86:f9:8e:68:53:27:3d:33:ef:45:4a:3f:0e: 1c:67:c6:d7:90:18:2d:50:13:26:26:bd:d7:62:7c: 39:2c:87:e1:74:30:03:25:c9:7f:53:8f:8a:21:f5: 3e:df:18:63:e8:eb:02:c1:72:87:61:a8:1a:20:51: ca:47:07:07:b9:f5:37:ee:c3:b8:79:9a:7e:23:ba: dc:b0:f4:3f:00:f2:1a:cd:38:8d:54:db:01:5c:71: e3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F3:0F:B7:08:2C:9D:12:6A:C8:18:B7:3C:51:9A:20:FB:D4:15:4A X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646561643a3a2f34382d3438203d3e20313939363839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:dead::/48 Signature Algorithm: sha256WithRSAEncryption 0d:c3:08:b4:e7:c5:e2:79:ae:37:a1:c8:2a:6a:bd:8c:3d:ab: 1c:91:27:15:3b:77:aa:a4:ae:67:10:bd:01:07:2a:60:d0:a0: 18:20:35:46:7d:f2:47:8c:70:70:29:bc:cb:d1:28:5f:55:8e: d0:67:82:b8:f3:8f:dd:15:10:05:a3:78:c5:48:2f:61:a3:8f: c6:01:83:c9:3d:6b:c1:02:1b:0f:33:6a:dc:13:e5:2f:25:2f: f7:de:88:b5:e2:53:28:5f:4c:db:c5:84:c7:11:74:e4:62:60: 68:d1:5a:98:ad:9e:5e:bb:ae:c6:d2:89:38:f8:00:b4:2b:71: 72:bf:e7:30:d5:67:3b:d1:cd:8c:81:dd:b1:17:cf:18:6a:d6: 0a:ec:da:d3:41:d1:4c:f8:6c:b8:21:50:20:4e:14:f4:b8:8a: df:19:d9:e2:f5:4c:b8:24:3a:a6:e1:5f:13:42:5d:ef:fa:93: 3b:01:f1:cc:b5:49:56:9c:9a:62:bb:b7:6c:e2:7e:0c:0a:0a: 56:65:ea:ad:2d:2a:32:eb:ce:09:a5:51:a9:89:34:ad:0d:ca: eb:db:7b:d7:c7:b3:6c:5b:3a:7f:3f:99:2b:c4:24:6d:7f:43: 32:a4:70:b4:6f:af:a6:19:f5:3f:43:3f:d7:93:2d:13:cc:3e: 07:c2:ed:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUVfn/+ScQSrv4EiFqEDmtXo3cUCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDVaFw0yNjA3MDMxNjA4NDVaMDMxMTAvBgNV BAMTKERERjMwRkI3MDgyQzlEMTI2QUM4MThCNzNDNTE5QTIwRkJENDE1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3nG9Rc5lh3YNOWhR15Py2kcyq nxMPdR3peEtkf9xyXD44+EzvfQgXaY8KXU8IpyYqbxBAHP8udOo49soXRLrK10il XpK4fXPGWRfrggnerPw5lvzKijIZGZ+qlFcsI9ux87F/yQMKNrWdRpxpMzXOoMcB rCgf26Kh4nKxTTpM2Vs9f8zEw6lAxZ6J8cbi6i1r+LEYATpBmSTHRBGKHlvOTStk hFsZhvmOaFMnPTPvRUo/DhxnxteQGC1QEyYmvddifDksh+F0MAMlyX9Tj4oh9T7f GGPo6wLBcodhqBogUcpHBwe59Tfuw7h5mn4jutyw9D8A8hrNOI1U2wFcceNVAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU3fMPtwgsnRJqyBi3PFGaIPvUFUowHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2NDY1NjE2NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzkzOTM2MzgzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPerTANBgkqhkiG9w0BAQsFAAOCAQEADcMItOfF4nmuN6HI Kmq9jD2rHJEnFTt3qqSuZxC9AQcqYNCgGCA1Rn3yR4xwcCm8y9EoX1WO0GeCuPOP 3RUQBaN4xUgvYaOPxgGDyT1rwQIbDzNq3BPlLyUv996IteJTKF9M28WExxF05GJg aNFamK2eXruuxtKJOPgAtCtxcr/nMNVnO9HNjIHdsRfPGGrWCuza00HRTPhsuCFQ IE4U9LiK3xnZ4vVMuCQ6puFfE0Jd7/qTOwHxzLVJVpyaYru3bOJ+DAoKVmXqrS0q MuvOCaVRqYk0rQ3K69t718ezbFs6fz+ZK8QkbX9DMqRwtG+vphn1P0M/15MtE8w+ B8Ltkg== -----END CERTIFICATE-----Generated at Sat Jul 5 08:52:04 2025 by rpki-client