$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646566663a3a2f34382d3438203d3e20313939363839.roa File: 326130363a313238333a646566663a3a2f34382d3438203d3e20313939363839.roa (raw, json) Hash identifier: EdRNEC2NhNz1dR3GdTaOVDmAQ8sskRvEiM6mgrxdX1A= Subject key identifier: F0:72:03:0A:89:90:A3:67:50:BB:7A:C0:93:75:D4:68:A6:C7:F9:3D Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 0C3B03BB7E5A04FAB2A81C0E07237345840A3BD9 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646566663a3a2f34382d3438203d3e20313939363839.roa Signing time: Fri 04 Jul 2025 16:08:39 +0000 ROA not before: Fri 04 Jul 2025 16:03:39 +0000 ROA not after: Fri 03 Jul 2026 16:08:39 +0000 asID: 199689 IP address blocks: 2a06:1283:deff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:3b:03:bb:7e:5a:04:fa:b2:a8:1c:0e:07:23:73:45:84:0a:3b:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:39 2025 GMT Not After : Jul 3 16:08:39 2026 GMT Subject: CN=F072030A8990A36750BB7AC09375D468A6C7F93D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:6c:9d:16:45:7d:6c:7e:5e:86:1f:ef:28:7d: cd:1c:fa:c1:94:25:ba:0a:18:f8:f5:5c:0f:7b:aa: c0:a0:b1:0e:1b:ca:9c:ac:b5:5d:16:7d:9d:9a:e7: 6a:c5:ae:7e:d3:38:a3:7f:76:1d:21:bd:3d:30:cb: 0c:f6:d3:44:d9:f0:a0:a1:38:74:e5:4b:f6:59:c9: 8c:2e:12:68:cc:5e:94:2b:cd:b3:3b:05:86:a8:a3: 60:df:d9:f1:76:15:e1:7d:ac:56:f5:80:8e:a3:b8: 1d:9c:8a:bc:6f:1b:12:fd:14:0d:6c:23:c6:1d:48: e8:60:90:7e:76:93:ca:fb:b4:14:97:68:cd:a1:f9: 7b:60:58:45:b6:f1:c4:34:2c:79:fe:ed:ef:66:2f: 27:cb:46:19:be:dc:da:7e:64:01:a4:5b:ab:a5:b5: 8c:07:5c:42:02:ac:a8:30:8b:1f:5d:d3:35:e6:2c: 55:78:f9:45:88:ed:99:45:a7:ac:8b:28:c8:72:59: b1:75:96:6d:ed:7b:ea:9b:ff:9b:6e:31:76:08:1a: 43:d9:17:fa:ed:01:72:0a:1e:68:35:5a:f9:1b:13: c4:77:2c:7b:1c:15:34:b0:e3:10:13:b2:3b:db:ac: 09:a8:7d:bd:12:c6:85:77:86:5f:8a:56:a4:b5:f7: 8f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:72:03:0A:89:90:A3:67:50:BB:7A:C0:93:75:D4:68:A6:C7:F9:3D X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a646566663a3a2f34382d3438203d3e20313939363839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:deff::/48 Signature Algorithm: sha256WithRSAEncryption 3b:d3:2a:df:ea:d9:e5:91:49:e1:0f:1f:38:16:1c:08:67:28: fc:08:56:d4:d6:0a:bf:5e:77:fc:a7:fd:5a:52:10:e5:c9:90: 1b:1e:1f:a0:3d:88:ab:6d:01:ce:ad:ed:6a:f7:b5:97:d0:b8: c3:dc:4c:8f:b7:a4:f9:ec:88:df:32:51:e7:e2:21:30:74:eb: 08:1f:17:cf:88:21:5e:83:1b:88:52:c5:77:8e:c7:27:44:a2: bb:6e:20:95:a4:4b:e2:81:39:cd:98:5d:4e:68:bd:60:27:e2: 9d:fc:99:6a:88:95:ba:61:86:7e:e4:f1:4b:6c:ae:8f:d4:91: 53:af:e5:66:ec:3c:28:fa:68:a2:fe:a6:84:72:c2:34:6e:5c: 45:ab:d6:1e:fd:0a:d7:b0:ff:f9:c6:44:da:5b:64:3a:9d:bd: f1:d1:e4:ba:99:ab:61:66:1e:7e:90:81:f1:00:7a:ad:21:12: 0a:01:a1:f5:cc:12:92:68:d3:99:83:5f:db:55:16:5c:72:c3: 5f:ee:d9:be:2a:70:67:8b:09:f2:d6:02:31:5e:aa:b3:2d:09: 2a:54:c4:d1:32:5a:54:ec:49:2a:ff:0a:e5:74:a0:48:16:65: 7e:fb:30:41:14:02:b5:94:ba:74:37:e0:ed:e6:4e:c8:83:dc: a5:8e:59:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUDDsDu35aBPqyqBwOByNzRYQKO9kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzlaFw0yNjA3MDMxNjA4MzlaMDMxMTAvBgNV BAMTKEYwNzIwMzBBODk5MEEzNjc1MEJCN0FDMDkzNzVENDY4QTZDN0Y5M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxbJ0WRX1sfl6GH+8ofc0c+sGU JboKGPj1XA97qsCgsQ4bypystV0WfZ2a52rFrn7TOKN/dh0hvT0wywz200TZ8KCh OHTlS/ZZyYwuEmjMXpQrzbM7BYaoo2Df2fF2FeF9rFb1gI6juB2cirxvGxL9FA1s I8YdSOhgkH52k8r7tBSXaM2h+XtgWEW28cQ0LHn+7e9mLyfLRhm+3Np+ZAGkW6ul tYwHXEICrKgwix9d0zXmLFV4+UWI7ZlFp6yLKMhyWbF1lm3te+qb/5tuMXYIGkPZ F/rtAXIKHmg1WvkbE8R3LHscFTSw4xATsjvbrAmofb0SxoV3hl+KVqS194/fAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU8HIDComQo2dQu3rAk3XUaKbH+T0wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2NDY1NjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzkzOTM2MzgzOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPe/zANBgkqhkiG9w0BAQsFAAOCAQEAO9Mq3+rZ5ZFJ4Q8f OBYcCGco/AhW1NYKv153/Kf9WlIQ5cmQGx4foD2Iq20Bzq3tave1l9C4w9xMj7ek +eyI3zJR5+IhMHTrCB8Xz4ghXoMbiFLFd47HJ0Siu24glaRL4oE5zZhdTmi9YCfi nfyZaoiVumGGfuTxS2yuj9SRU6/lZuw8KPpoov6mhHLCNG5cRavWHv0K17D/+cZE 2ltkOp298dHkupmrYWYefpCB8QB6rSESCgGh9cwSkmjTmYNf21UWXHLDX+7Zvipw Z4sJ8tYCMV6qsy0JKlTE0TJaVOxJKv8K5XSgSBZlfvswQRQCtZS6dDfg7eZOyIPc pY5ZFw== -----END CERTIFICATE-----Generated at Sat Jul 5 08:58:43 2025 by rpki-client