$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33322d3438203d3e203438373030.roa File: 326130363a313238333a3a2f33322d3438203d3e203438373030.roa (raw, json) Hash identifier: Wr4akw4KZeTvVblVoL8Jt+it3/yUvt7V4gxMtbASZUM= Subject key identifier: C8:A6:B3:BE:A0:23:68:99:26:00:B8:0E:2B:3B:EC:F4:EA:1E:14:8E Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4C25B6DF1C69E7E697E262D773BFE349AABEA020 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33322d3438203d3e203438373030.roa Signing time: Fri 04 Jul 2025 16:08:37 +0000 ROA not before: Fri 04 Jul 2025 16:03:37 +0000 ROA not after: Fri 03 Jul 2026 16:08:37 +0000 asID: 48700 IP address blocks: 2a06:1283::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 12:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:25:b6:df:1c:69:e7:e6:97:e2:62:d7:73:bf:e3:49:aa:be:a0:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:37 2025 GMT Not After : Jul 3 16:08:37 2026 GMT Subject: CN=C8A6B3BEA02368992600B80E2B3BECF4EA1E148E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:aa:aa:74:b9:6e:2b:a6:fd:2d:7c:b0:2a:2e: 14:7b:dd:88:8f:48:88:76:bf:64:09:ad:42:f7:80: d2:14:19:c9:5a:6c:df:b1:17:cb:89:c4:ff:d8:e0: 3b:21:37:da:10:c8:24:91:b6:bf:cd:8c:b0:3d:39: e5:1c:ec:02:6c:4f:6e:d3:a9:bb:71:ef:74:e0:c2: 75:43:f6:a3:57:bd:1d:d2:04:b7:37:3d:2f:01:a5: 46:16:d1:06:3f:f3:c2:6a:62:8d:a9:57:a8:ef:98: ac:5c:bd:43:b6:a2:7f:9b:56:2d:ac:2a:74:f4:49: e1:6d:60:d9:5e:7d:e4:dd:f5:36:49:76:30:4b:03: 2e:5b:93:fb:1a:1c:e7:ce:ff:0d:fd:09:91:93:84: 56:c0:08:8b:28:b2:c3:62:a1:56:cb:6b:0d:d3:9c: 70:11:10:a9:01:25:4d:8c:84:a3:8b:38:85:05:bd: 3c:82:90:8a:32:ca:dd:83:35:01:15:70:ed:cd:5f: 97:5c:96:a2:7b:ac:43:98:4f:0c:72:4d:d5:65:35: 17:2d:58:46:49:21:cd:bf:6a:2a:ca:66:78:d8:bf: ff:9f:d9:ac:7b:e0:ea:11:9f:a4:eb:fa:07:56:12: c4:79:63:aa:fa:b1:bb:8f:d0:d9:a2:17:92:2a:9d: 65:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A6:B3:BE:A0:23:68:99:26:00:B8:0E:2B:3B:EC:F4:EA:1E:14:8E X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a3a2f33322d3438203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283::/32 Signature Algorithm: sha256WithRSAEncryption 4b:c0:09:37:a8:bd:43:4b:5a:65:9d:6a:7a:50:5a:ea:5b:6f: 7d:fc:d5:5e:9c:c0:16:83:f0:0d:03:b4:35:16:11:d0:5e:bd: 6c:d2:e7:b3:65:eb:f2:b5:51:2f:2c:0e:a3:02:7e:99:d9:3d: aa:71:b3:86:71:44:e4:a6:c4:00:36:5b:56:e3:42:4b:18:64: 20:c7:5f:fd:a1:48:bf:0d:0d:40:23:a5:5d:e7:c3:80:88:da: 16:36:59:6f:2e:5a:2c:ee:62:76:4b:98:d8:2d:64:ef:94:ac: 94:fa:35:5c:92:6e:16:3c:4e:7e:88:92:b7:86:a6:03:88:e7: 2c:a5:92:81:54:85:01:f5:e4:50:b9:27:53:7b:43:2b:8c:16: 08:af:c1:79:d3:f2:5b:30:21:57:e4:2f:d2:41:1b:f1:1c:c3: c6:04:00:fc:b0:38:82:8d:54:84:56:3f:3b:3b:5d:8b:f0:b8: ed:bc:8a:27:a3:cf:65:5b:1f:98:8b:63:65:37:4c:51:c5:38: b5:1b:b9:e5:ae:51:0e:5f:ef:3e:bc:5b:26:4b:86:c9:50:bc: 00:14:bb:ee:d5:3b:15:e2:99:f7:6f:97:77:73:fd:5b:51:ca: 17:7c:2f:1c:a2:90:ea:c9:40:bb:be:ad:32:61:15:18:0d:fd: 3b:ef:80:a8 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgIUTCW23xxp5+aX4mLXc7/jSaq+oCAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzdaFw0yNjA3MDMxNjA4MzdaMDMxMTAvBgNV BAMTKEM4QTZCM0JFQTAyMzY4OTkyNjAwQjgwRTJCM0JFQ0Y0RUExRTE0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxqqp0uW4rpv0tfLAqLhR73YiP SIh2v2QJrUL3gNIUGclabN+xF8uJxP/Y4DshN9oQyCSRtr/NjLA9OeUc7AJsT27T qbtx73TgwnVD9qNXvR3SBLc3PS8BpUYW0QY/88JqYo2pV6jvmKxcvUO2on+bVi2s KnT0SeFtYNlefeTd9TZJdjBLAy5bk/saHOfO/w39CZGThFbACIsossNioVbLaw3T nHAREKkBJU2MhKOLOIUFvTyCkIoyyt2DNQEVcO3NX5dclqJ7rEOYTwxyTdVlNRct WEZJIc2/airKZnjYv/+f2ax74OoRn6Tr+gdWEsR5Y6r6sbuP0NmiF5IqnWUfAgMB AAGjggJsMIICaDAdBgNVHQ4EFgQUyKazvqAjaJkmALgOKzvs9OoeFI4wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgasGCCsGAQUFBwELBIGeMIGbMIGYBggrBgEFBQcwC4aBi3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzQzODM3MzAzMC5yb2EwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACoG EoMwDQYJKoZIhvcNAQELBQADggEBAEvACTeovUNLWmWdanpQWupbb3381V6cwBaD 8A0DtDUWEdBevWzS57Nl6/K1US8sDqMCfpnZPapxs4ZxROSmxAA2W1bjQksYZCDH X/2hSL8NDUAjpV3nw4CI2hY2WW8uWizuYnZLmNgtZO+UrJT6NVySbhY8Tn6IkreG pgOI5yylkoFUhQH15FC5J1N7QyuMFgivwXnT8lswIVfkL9JBG/Ecw8YEAPywOIKN VIRWPzs7XYvwuO28iiejz2VbH5iLY2U3TFHFOLUbueWuUQ5f7z68WyZLhslQvAAU u+7VOxXimfdvl3dz/VtRyhd8LxyikOrJQLu+rTJhFRgN/TvvgKg= -----END CERTIFICATE-----Generated at Wed Nov 5 04:33:40 2025 by rpki-client