$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa File: 326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa (raw, json) Hash identifier: 9bzXBq65v2uKCqQUSEdD7VkwusMemNbVnPl7hG1ygA4= Subject key identifier: C5:41:74:36:FE:69:8B:E9:71:B4:23:4A:CE:14:FC:97:E8:3F:13:52 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 079F26650B0E9C3F9D2F692C93ECCD78FC1574A1 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa Signing time: Fri 04 Jul 2025 16:08:38 +0000 ROA not before: Fri 04 Jul 2025 16:03:38 +0000 ROA not after: Fri 03 Jul 2026 16:08:38 +0000 asID: 216267 IP address blocks: 2a06:1283:b200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 12:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:9f:26:65:0b:0e:9c:3f:9d:2f:69:2c:93:ec:cd:78:fc:15:74:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:38 2025 GMT Not After : Jul 3 16:08:38 2026 GMT Subject: CN=C5417436FE698BE971B4234ACE14FC97E83F1352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d7:06:8d:ba:81:80:12:80:31:3b:ce:33:ab: c4:b9:58:26:ee:19:3f:c3:ee:c7:db:ed:96:99:e9: 05:c0:4d:6b:60:d6:a4:b8:5c:3b:a3:9d:41:fc:8d: 12:e3:17:f8:ad:83:91:50:80:56:4a:91:a7:d7:ed: 4e:95:d7:00:ee:68:96:1f:a6:9b:02:6d:62:42:a6: 8d:87:f9:e1:09:07:de:85:d9:39:97:0e:f0:93:3a: ea:7d:22:15:9d:30:a7:28:d8:7f:29:73:78:cb:b7: a5:8a:07:2b:51:e8:ca:33:98:07:c5:80:0f:86:a5: a6:16:9c:20:3d:88:93:54:e7:99:7a:12:44:d6:e3: 38:e7:02:4b:22:fc:d3:11:e9:eb:7d:b4:36:46:83: ac:38:fb:c8:57:bf:fc:61:f4:a6:22:7e:a9:4b:2c: 85:a0:3e:eb:a6:6a:5e:49:42:77:09:a7:55:9c:f7: 2c:96:eb:dc:03:cb:0a:33:f2:8b:e0:cd:66:1a:6a: 8e:1c:fb:a4:a8:50:7d:57:b0:cc:ee:4d:55:0b:ca: fc:24:dc:cf:f6:a2:7c:d0:fe:b3:d5:2d:95:fb:16: 08:fe:9e:f2:fa:4d:7c:51:64:ae:d8:c4:45:4e:a6: 72:e3:2e:c2:ee:f6:26:4c:67:5f:7a:0e:2e:52:b9: 7a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:41:74:36:FE:69:8B:E9:71:B4:23:4A:CE:14:FC:97:E8:3F:13:52 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a623230303a3a2f34302d3438203d3e20323136323637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:b200::/40 Signature Algorithm: sha256WithRSAEncryption 2b:aa:d6:c1:8c:c3:98:ec:c3:85:8d:84:a5:53:0e:54:01:6f: 9a:db:b8:6f:7d:db:f2:9d:60:72:c7:d2:6c:6e:4d:90:25:da: 2f:60:e8:4b:fd:bf:a1:8c:43:b8:15:e4:67:2f:7c:40:38:64: 28:e9:2c:7a:2c:b9:55:69:97:39:44:14:72:90:0c:21:8d:25: d2:37:7a:d1:f3:1d:8a:62:c6:30:07:1b:d0:d0:9c:a0:fb:d8: 7f:5e:16:8f:62:62:6e:50:26:51:8f:0e:1a:40:b1:17:44:b3: 3b:2b:c1:c2:9d:ac:1b:0b:08:e7:ac:d3:e2:88:7d:59:90:81: af:bb:5a:9d:c7:52:03:63:36:14:3e:a3:16:7f:55:2a:88:c3: ee:7a:6f:cf:30:f0:a2:ff:d5:f3:13:18:c0:dc:8e:46:c2:5d: e9:3b:a0:3f:c3:b1:81:61:b9:86:ff:90:e8:52:43:62:d9:87: 9e:39:ce:3f:1b:21:9f:81:da:c9:dc:f3:5d:2c:91:48:cc:47: dc:13:02:96:74:c2:ca:93:eb:3d:5d:08:a5:ee:ce:ec:69:9a: f2:04:b4:5d:3d:0b:90:4a:ca:0c:fe:71:92:bb:a3:23:70:16: 32:04:cc:0b:95:a1:de:1d:06:00:9e:c4:34:86:f1:26:59:45: b3:23:40:0d -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUB58mZQsOnD+dL2ksk+zNePwVdKEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzhaFw0yNjA3MDMxNjA4MzhaMDMxMTAvBgNV BAMTKEM1NDE3NDM2RkU2OThCRTk3MUI0MjM0QUNFMTRGQzk3RTgzRjEzNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc1waNuoGAEoAxO84zq8S5WCbu GT/D7sfb7ZaZ6QXATWtg1qS4XDujnUH8jRLjF/itg5FQgFZKkafX7U6V1wDuaJYf ppsCbWJCpo2H+eEJB96F2TmXDvCTOup9IhWdMKco2H8pc3jLt6WKBytR6MozmAfF gA+GpaYWnCA9iJNU55l6EkTW4zjnAksi/NMR6et9tDZGg6w4+8hXv/xh9KYifqlL LIWgPuumal5JQncJp1Wc9yyW69wDywoz8ovgzWYaao4c+6SoUH1XsMzuTVULyvwk 3M/2onzQ/rPVLZX7Fgj+nvL6TXxRZK7YxEVOpnLjLsLu9iZMZ196Di5SuXq1AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUxUF0Nv5pi+lxtCNKzhT8l+g/E1IwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MjMyMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEzNjMyMzYzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGACoGEoOyMA0GCSqGSIb3DQEBCwUAA4IBAQArqtbBjMOY7MOFjYSl Uw5UAW+a27hvfdvynWByx9Jsbk2QJdovYOhL/b+hjEO4FeRnL3xAOGQo6Sx6LLlV aZc5RBRykAwhjSXSN3rR8x2KYsYwBxvQ0Jyg+9h/XhaPYmJuUCZRjw4aQLEXRLM7 K8HCnawbCwjnrNPiiH1ZkIGvu1qdx1IDYzYUPqMWf1UqiMPuem/PMPCi/9XzExjA 3I5Gwl3pO6A/w7GBYbmG/5DoUkNi2YeeOc4/GyGfgdrJ3PNdLJFIzEfcEwKWdMLK k+s9XQil7s7saZryBLRdPQuQSsoM/nGSu6MjcBYyBMwLlaHeHQYAnsQ0hvEmWUWz I0AN -----END CERTIFICATE-----Generated at Wed Nov 5 02:50:59 2025 by rpki-client