$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: 7/FToXp/FsYBjq45qMRRkhEFf8jAacrZ9IkW51/pnTg= Subject key identifier: FE:F3:15:01:08:2B:62:91:F7:29:71:AB:48:D7:77:7F:C7:F3:30:2F Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 195A2372046E5BAA10749EBDAEE88B40B58381F0 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 216065 IP address blocks: 2a06:1283:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5a:23:72:04:6e:5b:aa:10:74:9e:bd:ae:e8:8b:40:b5:83:81:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=FEF31501082B6291F72971AB48D7777FC7F3302F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b0:e4:53:5c:25:63:78:48:f4:8e:2e:40:49: 14:cb:3a:3d:ba:c9:0d:19:75:52:a5:36:66:26:40: 04:06:f9:44:52:c2:45:48:83:2f:81:ca:3e:6c:3a: ac:e6:5b:d1:05:ed:00:46:4c:40:b8:76:92:ae:03: 1b:a4:66:c3:df:03:54:d6:a2:fe:22:85:02:f9:18: 01:ff:27:25:88:6d:c4:57:46:f9:9a:3b:fa:c9:c8: 62:b8:68:ed:e8:03:20:3f:ce:ac:3b:0f:35:d0:65: 7a:0a:c6:3d:a5:3a:ee:7d:a0:d7:91:7b:62:08:a0: 22:14:25:88:2f:5b:38:91:2d:41:e6:12:e9:9a:af: fd:17:20:c4:23:8e:9a:5a:d8:b0:55:25:c5:3c:b0: b7:3e:1c:15:0e:72:f6:99:b2:06:ee:31:23:52:da: 34:01:4c:d8:92:40:92:9f:73:e0:aa:66:5e:db:e1: f8:0c:4e:fd:b9:a5:14:b5:40:ed:fa:d1:e4:91:86: 06:de:95:95:8e:c0:51:7e:e3:32:88:0f:d8:bc:0d: 64:dc:61:0b:20:da:8e:6f:0c:50:ac:99:86:8e:e7: ef:78:e2:83:4c:f6:77:d0:24:61:f0:b8:2c:82:c6: 72:6b:fc:d5:5c:f9:70:1f:f3:a0:d1:3a:1b:cb:43: d1:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F3:15:01:08:2B:62:91:F7:29:71:AB:48:D7:77:7F:C7:F3:30:2F X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032303a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c020::/48 Signature Algorithm: sha256WithRSAEncryption 0c:f9:1c:e0:15:4f:98:a8:51:8d:b4:a2:a0:8a:c8:bc:6d:0f: a9:bc:63:30:25:06:d8:a9:2f:d0:87:31:28:c8:5a:b3:94:57: b8:84:04:1f:8a:66:32:e1:cd:78:ef:74:1d:a1:c3:d3:e0:d5: f7:4b:98:fb:2a:3c:08:94:82:90:b4:de:59:e9:ed:db:4b:14: 5b:9b:63:ad:41:0c:78:69:ec:7b:d5:ba:05:cf:5b:1a:7d:9a: f1:f2:cc:58:6a:03:ec:a8:b9:20:85:c7:44:04:77:ab:e5:fa: ae:9a:94:21:c3:98:93:e1:15:cb:cf:0e:df:57:01:08:cc:1c: de:9b:8f:23:b5:80:e0:26:d4:81:e6:e0:40:dd:a4:7c:74:96: 69:04:f9:43:f4:27:34:91:c6:8a:a0:a4:1f:df:e5:1c:80:8f: ff:7a:5a:27:ab:59:e3:be:24:2f:08:f5:04:c8:ea:0d:8e:ff: 6b:fa:53:a0:a5:5a:f9:f3:f5:dd:12:21:61:60:31:66:5f:93: 7b:66:39:33:ee:7e:55:18:fd:23:7f:64:e4:69:eb:53:f0:d4: b2:a5:21:c0:f5:d9:d2:5a:03:ce:d7:69:42:fc:20:7c:99:12: 03:64:50:eb:2f:02:e9:fc:d0:ca:80:e1:c5:c8:58:d5:ac:eb: 22:e6:69:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUGVojcgRuW6oQdJ69ruiLQLWDgfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKEZFRjMxNTAxMDgyQjYyOTFGNzI5NzFBQjQ4RDc3NzdGQzdGMzMwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXsORTXCVjeEj0ji5ASRTLOj26 yQ0ZdVKlNmYmQAQG+URSwkVIgy+Byj5sOqzmW9EF7QBGTEC4dpKuAxukZsPfA1TW ov4ihQL5GAH/JyWIbcRXRvmaO/rJyGK4aO3oAyA/zqw7DzXQZXoKxj2lOu59oNeR e2IIoCIUJYgvWziRLUHmEumar/0XIMQjjppa2LBVJcU8sLc+HBUOcvaZsgbuMSNS 2jQBTNiSQJKfc+CqZl7b4fgMTv25pRS1QO360eSRhgbelZWOwFF+4zKID9i8DWTc YQsg2o5vDFCsmYaO5+944oNM9nfQJGHwuCyCxnJr/NVc+XAf86DROhvLQ9H1AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU/vMVAQgrYpH3KXGrSNd3f8fzMC8wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAIDANBgkqhkiG9w0BAQsFAAOCAQEADPkc4BVPmKhRjbSi oIrIvG0PqbxjMCUG2Kkv0IcxKMhas5RXuIQEH4pmMuHNeO90HaHD0+DV90uY+yo8 CJSCkLTeWent20sUW5tjrUEMeGnse9W6Bc9bGn2a8fLMWGoD7Ki5IIXHRAR3q+X6 rpqUIcOYk+EVy88O31cBCMwc3puPI7WA4CbUgebgQN2kfHSWaQT5Q/QnNJHGiqCk H9/lHICP/3paJ6tZ474kLwj1BMjqDY7/a/pToKVa+fP13RIhYWAxZl+Te2Y5M+5+ VRj9I39k5GnrU/DUsqUhwPXZ0loDztdpQvwgfJkSA2RQ6y8C6fzQyoDhxchY1azr IuZpTA== -----END CERTIFICATE-----Generated at Sun Jun 14 01:39:58 2026 by rpki-client