$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: MWkjh+C6yRRwFKBpnqdG8SBLHIzQHv7ECeX/vSWVEwk= Subject key identifier: 3A:E5:5C:05:F4:6B:BC:6A:73:F8:18:43:A7:2F:4A:2B:3D:5A:4D:F3 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4715B7944DA44C1ED035B2272EC7B8854AF6B79D Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 216065 IP address blocks: 2a06:1283:c021::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 14:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:15:b7:94:4d:a4:4c:1e:d0:35:b2:27:2e:c7:b8:85:4a:f6:b7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=3AE55C05F46BBC6A73F81843A72F4A2B3D5A4DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e4:a7:cb:d8:bc:b1:fb:22:e0:f6:7f:e2:a7: 18:a1:b6:33:8f:f6:22:dc:83:ea:25:ac:7b:4e:06: 90:e7:25:c2:20:c4:2f:61:b5:94:e5:f3:fa:97:6d: a0:98:7d:19:0f:1e:66:f1:6e:60:98:a5:b2:77:33: a8:cd:da:cc:4f:5d:a1:06:20:53:8a:51:2b:c2:04: 69:85:c2:b4:98:4c:44:6c:d9:97:03:31:5e:0f:f5: 44:cc:10:1a:d4:e8:b2:57:12:ae:af:57:f4:0a:09: 72:93:3e:3b:58:9d:75:eb:c6:51:7f:ca:5a:4d:9a: 28:8c:99:3c:d0:79:c9:d5:d4:25:dc:d1:5c:0b:28: ea:bb:57:e9:3f:af:68:3a:a9:7a:d8:f0:da:3f:f1: 29:b5:b3:fe:95:e4:06:ca:2b:90:39:f6:24:80:c9: 84:16:09:2d:9e:ab:14:36:21:35:73:41:29:02:12: 2b:96:20:17:22:7e:ab:0f:65:7a:da:29:58:30:33: ff:8c:52:94:fa:73:82:1b:3d:3c:94:4b:f9:ab:bb: d6:44:e0:e9:19:38:02:27:95:eb:90:2d:2b:95:ef: 21:fb:45:b2:03:64:57:aa:af:99:56:be:3d:9c:74: 72:03:b2:5c:14:87:2a:eb:2d:cb:c9:0e:04:d4:01: 06:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E5:5C:05:F4:6B:BC:6A:73:F8:18:43:A7:2F:4A:2B:3D:5A:4D:F3 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032313a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c021::/48 Signature Algorithm: sha256WithRSAEncryption 74:ba:9a:be:81:29:3f:9e:0b:69:ae:52:97:d9:5b:b9:0a:f8: 9c:90:a8:4a:56:de:f6:73:ed:4f:25:c7:cd:51:16:42:06:f0: 40:5d:fa:d4:2d:6f:34:08:73:22:80:e0:f3:90:d2:c7:32:d5: a6:85:09:4a:2f:33:2c:e6:79:ed:6c:25:96:a9:ca:19:71:e5: 5e:c4:0e:8e:89:99:b8:b0:76:ea:27:ae:bf:f9:25:8d:27:72: 87:2f:1f:9f:61:a2:7a:cf:00:98:78:ec:1f:fd:ca:f4:0e:63: 3d:27:eb:02:8d:0a:f2:17:1f:28:24:6e:47:2b:26:d0:1a:63: 8c:1d:a9:c5:bb:81:ba:e3:e3:51:e1:ee:62:d6:a4:fc:6f:b8: e0:16:f9:c6:1a:d8:b9:47:ca:db:6d:c1:a0:37:d5:b9:7a:b7: 67:23:9d:ce:01:fe:3b:31:ee:30:8a:02:4e:69:2a:d3:cc:90: 5e:1b:52:5a:77:6b:b7:35:b0:04:89:aa:82:58:66:1c:1e:f7: 3c:e7:df:14:39:09:79:5d:2c:6b:d1:06:46:73:87:3c:3d:69: 22:38:4e:0d:b1:6c:3d:54:54:49:7b:1d:5e:c0:82:e6:e7:f8: 16:27:1b:63:27:c0:ac:c3:30:ac:5e:f4:60:6c:d6:90:10:5d: 1f:19:09:46 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIURxW3lE2kTB7QNbInLse4hUr2t50wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKDNBRTU1QzA1RjQ2QkJDNkE3M0Y4MTg0M0E3MkY0QTJCM0Q1QTRERjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+5KfL2Lyx+yLg9n/ipxihtjOP 9iLcg+olrHtOBpDnJcIgxC9htZTl8/qXbaCYfRkPHmbxbmCYpbJ3M6jN2sxPXaEG IFOKUSvCBGmFwrSYTERs2ZcDMV4P9UTMEBrU6LJXEq6vV/QKCXKTPjtYnXXrxlF/ ylpNmiiMmTzQecnV1CXc0VwLKOq7V+k/r2g6qXrY8No/8Sm1s/6V5AbKK5A59iSA yYQWCS2eqxQ2ITVzQSkCEiuWIBcifqsPZXraKVgwM/+MUpT6c4IbPTyUS/mru9ZE 4OkZOAInleuQLSuV7yH7RbIDZFeqr5lWvj2cdHIDslwUhyrrLcvJDgTUAQaLAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUOuVcBfRrvGpz+BhDpy9KKz1aTfMwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzIzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPAITANBgkqhkiG9w0BAQsFAAOCAQEAdLqavoEpP54Laa5S l9lbuQr4nJCoSlbe9nPtTyXHzVEWQgbwQF361C1vNAhzIoDg85DSxzLVpoUJSi8z LOZ57WwllqnKGXHlXsQOjomZuLB26ieuv/kljSdyhy8fn2Gies8AmHjsH/3K9A5j PSfrAo0K8hcfKCRuRysm0BpjjB2pxbuBuuPjUeHuYtak/G+44Bb5xhrYuUfK223B oDfVuXq3ZyOdzgH+OzHuMIoCTmkq08yQXhtSWndrtzWwBImqglhmHB73POffFDkJ eV0sa9EGRnOHPD1pIjhODbFsPVRUSXsdXsCC5uf4FicbYyfArMMwrF70YGzWkBBd HxkJRg== -----END CERTIFICATE-----Generated at Sat Jun 13 23:37:50 2026 by rpki-client