$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: wwivCuvPCkoKESB8PeeALihF//ZOYMCGFD6H6Y5SckA= Subject key identifier: 88:E1:7B:B7:E1:4D:57:C2:02:C4:4C:09:84:ED:F5:C2:19:04:CF:65 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 404F4A53FE0C5E8B063F3661F6AE74B7E6E61374 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 05 Jun 2026 16:35:05 +0000 ROA not before: Fri 05 Jun 2026 16:30:05 +0000 ROA not after: Fri 04 Jun 2027 16:35:05 +0000 asID: 216065 IP address blocks: 2a06:1283:c02f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 14:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4f:4a:53:fe:0c:5e:8b:06:3f:36:61:f6:ae:74:b7:e6:e6:13:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:05 2026 GMT Not After : Jun 4 16:35:05 2027 GMT Subject: CN=88E17BB7E14D57C202C44C0984EDF5C21904CF65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:8c:2f:c4:f3:d8:af:f1:24:63:3f:48:68: e2:0f:42:d4:d8:0a:0e:5d:24:15:df:b8:37:29:45: 61:9b:42:00:f8:32:6d:0a:a6:02:7e:17:14:6c:bb: 16:1e:14:ae:2f:a0:8e:c3:d0:c3:fb:00:19:c0:62: f5:5d:c6:0d:0b:8f:e9:a6:83:01:a8:14:93:da:7d: 3e:b6:82:76:32:f1:76:35:23:e2:d2:92:90:54:85: ee:03:1d:0f:09:72:91:80:1a:6c:4d:cd:25:57:be: 31:f2:e0:73:92:d9:28:73:b8:5c:d2:af:dd:6d:91: 0d:28:e5:bc:6a:61:eb:90:8e:ed:1c:bd:d8:ca:36: 40:a6:c9:10:00:15:79:75:f4:2a:42:6a:75:74:0e: 7d:72:03:77:70:c2:b8:01:84:6e:d4:05:d1:cc:99: c2:ee:18:ea:44:cc:a7:d8:89:fc:ef:53:36:61:1d: 16:b6:69:a3:af:09:9f:02:49:72:61:91:cf:3a:63: a9:5c:7f:f9:82:60:18:4d:10:10:97:cb:a4:a8:cf: 2a:b0:3d:0f:02:df:1e:ac:61:6e:63:ed:9b:f2:35: e2:15:74:ee:4d:85:c3:e1:95:9b:7c:c9:e3:88:7a: 37:07:66:db:fb:70:8a:25:2e:1a:a9:94:bf:d3:a4: d7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E1:7B:B7:E1:4D:57:C2:02:C4:4C:09:84:ED:F5:C2:19:04:CF:65 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c02f::/48 Signature Algorithm: sha256WithRSAEncryption 89:5e:b7:45:5f:c6:a4:f6:63:25:a6:1f:b8:1b:c6:d9:92:4c: 17:d7:f4:6d:12:b6:7c:88:41:f9:86:1f:b8:04:7c:c1:25:42: 33:94:54:8a:7e:a6:33:93:5a:f8:7f:92:e8:1c:c5:20:89:02: 37:9d:58:07:d9:b2:67:5e:2a:88:3e:6b:bc:99:ba:85:f2:3b: 9d:41:e6:db:1c:2c:ba:a6:50:86:03:21:20:08:09:12:7d:a3: 24:e5:c8:9f:27:51:8d:7e:99:d4:1c:0f:85:b0:78:04:16:d8: 83:34:55:e7:c9:1f:66:b0:47:a7:70:66:12:b5:5e:fb:c8:76: 2f:33:46:ad:f6:90:07:c4:ee:97:1e:f3:25:aa:0e:30:3a:c5: 03:f6:d4:f3:24:77:03:c1:c4:b0:d3:01:d1:61:60:61:93:5e: 74:74:6a:b2:d7:55:be:8d:3b:23:82:0e:01:54:e1:09:fe:6b: 24:d3:35:78:58:97:1c:90:a9:e7:81:dd:ee:fa:ce:f2:c1:62: f2:88:c2:6f:16:f0:71:45:9e:82:b4:7c:af:31:23:fd:9e:9e: 07:63:d4:ce:ae:2a:42:d5:63:f0:50:9a:75:0e:f5:31:de:e4: 86:f5:bc:b2:93:b4:4a:ec:6f:2d:40:43:59:6f:22:d4:5f:40: 05:75:95:39 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUQE9KU/4MXosGPzZh9q50t+bmE3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDVaFw0yNzA2MDQxNjM1MDVaMDMxMTAvBgNV BAMTKDg4RTE3QkI3RTE0RDU3QzIwMkM0NEMwOTg0RURGNUMyMTkwNENGNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC9YwvxPPYr/EkYz9IaOIPQtTY Cg5dJBXfuDcpRWGbQgD4Mm0KpgJ+FxRsuxYeFK4voI7D0MP7ABnAYvVdxg0Lj+mm gwGoFJPafT62gnYy8XY1I+LSkpBUhe4DHQ8JcpGAGmxNzSVXvjHy4HOS2ShzuFzS r91tkQ0o5bxqYeuQju0cvdjKNkCmyRAAFXl19CpCanV0Dn1yA3dwwrgBhG7UBdHM mcLuGOpEzKfYifzvUzZhHRa2aaOvCZ8CSXJhkc86Y6lcf/mCYBhNEBCXy6Sozyqw PQ8C3x6sYW5j7ZvyNeIVdO5NhcPhlZt8yeOIejcHZtv7cIolLhqplL/TpNcbAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUiOF7t+FNV8ICxEwJhO31whkEz2UwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzI2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPALzANBgkqhkiG9w0BAQsFAAOCAQEAiV63RV/GpPZjJaYf uBvG2ZJMF9f0bRK2fIhB+YYfuAR8wSVCM5RUin6mM5Na+H+S6BzFIIkCN51YB9my Z14qiD5rvJm6hfI7nUHm2xwsuqZQhgMhIAgJEn2jJOXInydRjX6Z1BwPhbB4BBbY gzRV58kfZrBHp3BmErVe+8h2LzNGrfaQB8Tulx7zJaoOMDrFA/bU8yR3A8HEsNMB 0WFgYZNedHRqstdVvo07I4IOAVThCf5rJNM1eFiXHJCp54Hd7vrO8sFi8ojCbxbw cUWegrR8rzEj/Z6eB2PUzq4qQtVj8FCadQ71Md7khvW8spO0SuxvLUBDWW8i1F9A BXWVOQ== -----END CERTIFICATE-----Generated at Sat Jun 13 23:22:47 2026 by rpki-client