$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa File: 326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa (raw, json) Hash identifier: 3zDJJzIy+SjBKUnaDlwIxYf9YXHGzV1g+hM4bFoucIk= Subject key identifier: 4C:A4:1F:67:CE:6D:70:D1:3F:33:04:D3:C7:DC:9D:09:86:66:1F:37 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 4BA08448A694870EEA8B38603333BA186D201104 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa Signing time: Fri 04 Jul 2025 16:08:36 +0000 ROA not before: Fri 04 Jul 2025 16:03:36 +0000 ROA not after: Fri 03 Jul 2026 16:08:36 +0000 asID: 216065 IP address blocks: 2a06:1283:c02f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 12:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a0:84:48:a6:94:87:0e:ea:8b:38:60:33:33:ba:18:6d:20:11:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:36 2025 GMT Not After : Jul 3 16:08:36 2026 GMT Subject: CN=4CA41F67CE6D70D13F3304D3C7DC9D0986661F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a9:bf:3d:17:6b:df:18:5d:12:77:69:ee:4e: d8:1c:54:29:d2:ae:1a:83:6f:af:45:6a:65:e9:ec: bd:b4:30:9e:70:87:53:83:e6:69:73:41:ef:eb:36: 3e:b6:3c:2e:4e:91:e4:76:62:87:1c:26:d6:ab:36: 03:04:71:11:50:8d:3a:72:f4:38:2c:99:e1:1f:13: fb:9e:b1:16:fd:de:9e:cd:a6:0a:10:43:93:1e:fd: bb:3b:20:47:dd:19:41:21:15:bf:fe:fe:76:61:f6: 2b:49:31:c4:1d:2a:4d:bb:4f:cc:fb:55:eb:18:6a: ec:00:29:b6:3c:78:95:50:6f:ca:d1:53:b1:17:6b: a2:01:b9:db:6c:5a:00:0e:35:db:5d:25:f4:18:29: 28:db:a7:2f:00:4b:32:60:ff:3a:fa:60:df:b8:7c: ce:44:bb:40:3f:ab:44:0c:d4:a6:81:8f:49:03:58: 84:07:8a:26:f8:2b:94:38:4f:8a:ab:1f:a5:af:92: f2:eb:f0:db:89:b1:b2:64:be:85:12:fa:3b:59:39: b8:ff:75:3c:d8:61:71:0b:e3:dd:1d:fd:ff:22:b3: 6d:b3:d2:b4:f9:34:4c:cb:03:f5:46:82:ff:6b:47: 60:40:65:d3:ea:03:ba:fc:bf:ac:a5:b2:8a:b7:b8: 34:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A4:1F:67:CE:6D:70:D1:3F:33:04:D3:C7:DC:9D:09:86:66:1F:37 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633032663a3a2f34382d3438203d3e20323136303635.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c02f::/48 Signature Algorithm: sha256WithRSAEncryption 51:99:72:62:5e:28:dd:c1:c0:30:da:4d:12:1b:5b:75:60:2e: b5:3a:7c:9e:8a:20:59:38:6d:6e:d9:4b:47:76:85:1e:3b:61: 5f:fc:a4:c2:2c:a5:02:aa:9d:f5:0f:03:9f:ca:03:4e:8a:e7: 6c:2c:67:40:ab:ea:4b:a1:a8:50:ef:ae:02:82:fc:a0:e2:f7: f9:1f:00:a9:39:08:08:8a:75:37:ac:d3:37:05:4d:2e:69:b5: 2f:03:22:f9:e7:74:4e:18:22:fe:1f:8f:ce:5d:8f:97:65:5e: bc:88:cd:3d:93:6f:a2:1f:84:23:bb:07:9a:15:d2:ed:88:e9: c3:6d:85:cd:d4:3a:27:96:dc:f1:e5:02:cf:18:90:ee:81:ca: 2e:3e:e0:58:d8:4b:4c:a9:fe:af:4b:41:de:44:7f:13:82:42: 59:7d:b3:6a:20:ea:18:02:5d:b5:03:6b:24:b2:0b:ec:db:e0: e5:0e:cc:d9:20:8d:2f:b5:30:a2:94:13:de:ac:06:e8:7f:cd: a0:3b:71:4d:6c:3f:0b:aa:58:28:b8:2c:cc:c8:91:c2:95:91: c2:d5:6c:4d:68:2a:3e:50:90:54:28:14:b3:0a:c2:27:13:14: 3e:71:55:3a:7a:0d:23:8a:42:4a:e4:06:d1:56:80:e6:0c:43: fb:89:5f:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUS6CESKaUhw7qizhgMzO6GG0gEQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzZaFw0yNjA3MDMxNjA4MzZaMDMxMTAvBgNV BAMTKDRDQTQxRjY3Q0U2RDcwRDEzRjMzMDREM0M3REM5RDA5ODY2NjFGMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZqb89F2vfGF0Sd2nuTtgcVCnS rhqDb69FamXp7L20MJ5wh1OD5mlzQe/rNj62PC5OkeR2YoccJtarNgMEcRFQjTpy 9DgsmeEfE/uesRb93p7NpgoQQ5Me/bs7IEfdGUEhFb/+/nZh9itJMcQdKk27T8z7 VesYauwAKbY8eJVQb8rRU7EXa6IBudtsWgAONdtdJfQYKSjbpy8ASzJg/zr6YN+4 fM5Eu0A/q0QM1KaBj0kDWIQHiib4K5Q4T4qrH6WvkvLr8NuJsbJkvoUS+jtZObj/ dTzYYXEL490d/f8is22z0rT5NEzLA/VGgv9rR2BAZdPqA7r8v6ylsoq3uDT/AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUTKQfZ85tcNE/MwTTx9ydCYZmHzcwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzI2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNjMwMzYzNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGEoPALzANBgkqhkiG9w0BAQsFAAOCAQEAUZlyYl4o3cHAMNpN EhtbdWAutTp8noogWThtbtlLR3aFHjthX/ykwiylAqqd9Q8Dn8oDTornbCxnQKvq S6GoUO+uAoL8oOL3+R8AqTkICIp1N6zTNwVNLmm1LwMi+ed0Thgi/h+Pzl2Pl2Ve vIjNPZNvoh+EI7sHmhXS7Yjpw22FzdQ6J5bc8eUCzxiQ7oHKLj7gWNhLTKn+r0tB 3kR/E4JCWX2zaiDqGAJdtQNrJLIL7Nvg5Q7M2SCNL7UwopQT3qwG6H/NoDtxTWw/ C6pYKLgszMiRwpWRwtVsTWgqPlCQVCgUswrCJxMUPnFVOnoNI4pCSuQG0VaA5gxD +4lfTA== -----END CERTIFICATE-----Generated at Wed Nov 5 03:03:07 2025 by rpki-client