$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47326.roa File: AS47326.roa (raw, json) Hash identifier: ni0LA0WRWw1Vv1AlUQ4IEp6r4X1yILnFA3qihCTqtcM= Subject key identifier: E0:3C:21:E1:32:46:49:49:C6:D1:C5:B0:85:E1:CC:D5:D1:A2:32:AB Certificate issuer: /CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Certificate serial: 45890A74C151C41AFB772FD8B04CBD32731D86AC Authority key identifier: 6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47326.roa Signing time: Fri 04 Jul 2025 07:51:28 +0000 ROA not before: Fri 04 Jul 2025 07:46:28 +0000 ROA not after: Fri 03 Jul 2026 07:51:28 +0000 asID: 47326 IP address blocks: 2a07:54c6::/32 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Jul 2025 17:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:89:0a:74:c1:51:c4:1a:fb:77:2f:d8:b0:4c:bd:32:73:1d:86:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FF76AC421894FD5CCD6332FA2A9CF330312CEA8 Validity Not Before: Jul 4 07:46:28 2025 GMT Not After : Jul 3 07:51:28 2026 GMT Subject: CN=E03C21E132464949C6D1C5B085E1CCD5D1A232AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:08:a6:37:a9:73:c1:69:d6:67:09:d1:f5: f2:64:f9:5e:39:e5:69:cd:83:0c:0a:b0:42:70:2f: f0:01:47:1e:12:db:40:bc:26:fe:2a:1c:9e:13:3e: da:81:ba:4c:71:64:82:d4:1c:25:c3:2a:fb:e7:c2: 5c:3f:6f:54:3d:5e:ae:69:bf:35:e6:90:ca:57:07: 7c:69:62:eb:f5:ab:d5:cc:ef:b1:5c:21:ae:b1:b7: d5:e7:ff:3e:bb:9f:16:e7:f2:5b:41:1c:97:79:92: df:91:61:47:61:0d:4f:57:e2:63:d1:de:d8:80:62: 9c:b0:35:27:16:19:a0:af:84:02:53:f2:ec:dd:34: eb:eb:2f:41:5a:42:11:fb:ad:ed:f3:8c:ff:b1:3b: 72:8d:3c:c2:da:2f:6b:ac:21:dd:b9:e9:0a:4e:90: b5:56:2f:1e:11:91:7e:20:88:ea:e0:56:3d:19:c3: 6b:ca:5c:f0:1d:a8:ae:56:bb:e8:26:15:53:2e:a4: df:da:50:01:c6:3c:c5:fb:7b:9e:64:59:9a:e1:71: 02:5b:fe:d1:e8:6f:ab:f9:82:de:99:3d:ce:59:54: 34:5c:db:ac:ca:8b:9d:84:b6:03:e6:ec:d0:a6:a9: 84:74:e1:94:2e:bc:a4:89:77:9e:5d:44:59:c3:b4: 64:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3C:21:E1:32:46:49:49:C6:D1:C5:B0:85:E1:CC:D5:D1:A2:32:AB X509v3 Authority Key Identifier: keyid:6F:F7:6A:C4:21:89:4F:D5:CC:D6:33:2F:A2:A9:CF:33:03:12:CE:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/AS47326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c6::/32 Signature Algorithm: sha256WithRSAEncryption aa:eb:cb:df:6b:d9:1c:10:bc:fd:2f:38:b9:f3:76:a7:ca:51: ba:2e:71:46:79:4c:db:3c:3f:85:b8:aa:4a:51:5e:7f:3f:e2: f5:6b:ad:e9:44:2f:fe:11:97:0e:ef:fc:98:1d:87:58:9c:8c: 5c:a3:9e:e2:92:94:33:28:26:44:29:3c:27:3e:5b:5f:a9:f3: f2:2a:bb:13:7f:de:d9:fd:26:6c:07:c3:b1:69:7b:24:89:f7: fc:aa:c3:25:2f:b9:08:6f:83:2f:79:4c:e6:96:a0:71:f7:41: 23:cc:bc:1c:28:61:ff:ad:ba:2c:d8:1e:8f:e2:d1:99:de:aa: 92:e3:85:77:71:19:21:fc:35:9d:3e:0d:f9:3f:f2:9b:c4:61: b0:b0:51:62:e6:ef:cc:d5:73:e5:40:ad:a3:30:e3:f3:e5:25: 8b:7a:ac:dc:23:eb:a7:cf:0d:88:89:30:63:d0:e1:32:6f:af: 50:e8:0b:d3:29:be:96:b0:f2:90:d3:30:62:e0:2d:ee:37:03: 40:aa:82:54:73:3b:43:58:60:fa:63:97:14:26:48:97:74:37: 2c:22:e4:fa:8a:3f:2c:f1:7e:eb:c7:39:d3:a8:66:b0:6c:b5: 8d:d7:b3:37:3a:5e:4b:e7:57:f3:f9:06:bd:0a:ad:8c:5e:43: 93:d5:40:24 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIURYkKdMFRxBr7dy/YsEy9MnMdhqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMw MzEyQ0VBODAeFw0yNTA3MDQwNzQ2MjhaFw0yNjA3MDMwNzUxMjhaMDMxMTAvBgNV BAMTKEUwM0MyMUUxMzI0NjQ5NDlDNkQxQzVCMDg1RTFDQ0Q1RDFBMjMyQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxWgimN6lzwWnWZwnR9fJk+V45 5WnNgwwKsEJwL/ABRx4S20C8Jv4qHJ4TPtqBukxxZILUHCXDKvvnwlw/b1Q9Xq5p vzXmkMpXB3xpYuv1q9XM77FcIa6xt9Xn/z67nxbn8ltBHJd5kt+RYUdhDU9X4mPR 3tiAYpywNScWGaCvhAJT8uzdNOvrL0FaQhH7re3zjP+xO3KNPMLaL2usId256QpO kLVWLx4RkX4giOrgVj0Zw2vKXPAdqK5Wu+gmFVMupN/aUAHGPMX7e55kWZrhcQJb /tHob6v5gt6ZPc5ZVDRc26zKi52EtgPm7NCmqYR04ZQuvKSJd55dRFnDtGSBAgMB AAGjggI6MIICNjAdBgNVHQ4EFgQU4Dwh4TJGSUnG0cWwheHM1dGiMqswHwYDVR0j BBgwFoAUb/dqxCGJT9XM1jMvoqnPMwMSzqgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzQvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEyQ0VBOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNkZGNzZBQzQyMTg5NEZENUNDRDYzMzJGQTJBOUNGMzMwMzEy Q0VBOC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWIt NGRiNS1iYmQzLTVjY2E2MzNjYWUzZi80L0FTNDczMjYucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAqB1TG MA0GCSqGSIb3DQEBCwUAA4IBAQCq68vfa9kcELz9Lzi583anylG6LnFGeUzbPD+F uKpKUV5/P+L1a63pRC/+EZcO7/yYHYdYnIxco57ikpQzKCZEKTwnPltfqfPyKrsT f97Z/SZsB8OxaXskiff8qsMlL7kIb4MveUzmlqBx90EjzLwcKGH/rbos2B6P4tGZ 3qqS44V3cRkh/DWdPg35P/KbxGGwsFFi5u/M1XPlQK2jMOPz5SWLeqzcI+unzw2I iTBj0OEyb69Q6AvTKb6WsPKQ0zBi4C3uNwNAqoJUcztDWGD6Y5cUJkiXdDcsIuT6 ij8s8X7rxznTqGawbLWN17M3Ol5L51fz+Qa9Cq2MXkOT1UAk -----END CERTIFICATE-----Generated at Sat Jul 5 08:26:07 2025 by rpki-client