$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034303a3a2f34342d3434203d3e20323037323532.roa File: 326130363a313238333a633034303a3a2f34342d3434203d3e20323037323532.roa (raw, json) Hash identifier: KKXlwvhQJqWcwFRoeiL4Ai77EOga92r6EnYIMF156v4= Subject key identifier: 0D:F3:56:52:17:F5:90:D6:0E:64:E3:44:33:64:6F:74:29:07:42:9D Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 3804D7F94728BD5045453BC41C33C7DCA58829DC Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034303a3a2f34342d3434203d3e20323037323532.roa Signing time: Fri 04 Jul 2025 16:08:39 +0000 ROA not before: Fri 04 Jul 2025 16:03:39 +0000 ROA not after: Fri 03 Jul 2026 16:08:39 +0000 asID: 207252 IP address blocks: 2a06:1283:c040::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 03:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:04:d7:f9:47:28:bd:50:45:45:3b:c4:1c:33:c7:dc:a5:88:29:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:39 2025 GMT Not After : Jul 3 16:08:39 2026 GMT Subject: CN=0DF3565217F590D60E64E34433646F742907429D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:32:6b:db:bc:1f:45:3c:79:eb:a6:f4:3e: a3:02:3e:f4:80:93:54:e8:95:e1:32:8c:46:33:d1: 43:98:0a:e5:03:b2:cf:4c:db:b3:6d:15:ef:49:2f: da:f3:05:2e:b3:d8:8b:f3:76:8b:6b:62:08:1d:fe: 4c:0a:5f:10:b1:be:f0:43:00:0e:9e:22:f2:ec:0b: 24:26:9b:00:1f:75:5c:b2:fe:21:aa:23:26:cb:9c: 11:8e:3b:dc:13:29:d9:65:84:f9:73:bf:9c:00:ff: 33:5f:10:5d:75:4f:03:07:af:b4:6d:12:e1:60:48: 5c:25:43:29:df:1e:ec:4f:22:f2:4e:27:3b:a1:80: ae:19:3b:31:68:20:e3:3a:ff:76:88:e7:a4:c6:4b: 33:77:cd:7a:54:55:d5:b0:69:e4:0a:ce:6c:7f:43: 78:44:73:a4:1d:2e:2a:bb:00:4d:cb:26:33:9e:12: 2e:c7:99:02:1c:61:ae:0f:5f:68:84:0f:87:7a:2b: f9:f1:81:44:63:c6:08:f9:e5:b8:77:4d:49:2b:c9: 64:11:3e:36:bc:66:d9:32:17:52:54:53:68:fe:4b: 85:59:d6:e8:14:79:93:92:0f:24:47:6b:de:89:6e: 01:92:81:13:e9:51:49:03:96:f8:7f:55:51:25:97: eb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F3:56:52:17:F5:90:D6:0E:64:E3:44:33:64:6F:74:29:07:42:9D X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633034303a3a2f34342d3434203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c040::/44 Signature Algorithm: sha256WithRSAEncryption 55:b5:0b:f8:e0:5b:72:dd:78:b5:ef:55:16:14:b4:76:81:d0: fb:06:f8:61:5f:a9:2d:8e:87:67:0c:e1:80:8b:79:5c:5f:ff: c9:dd:92:59:65:9e:06:18:7c:eb:d8:d8:b8:ef:58:32:8a:77: 33:bc:37:bb:80:a6:d5:ce:c7:a3:ea:e8:85:94:41:2a:ae:b1: c9:12:af:56:10:d3:c7:ef:27:dd:9d:7d:16:b1:20:54:d9:24: 1a:59:18:46:26:c6:fe:e5:96:20:a5:d4:8d:b9:95:db:41:74: 95:c6:bc:b1:de:9c:1e:ac:60:c3:de:bf:79:27:c8:3b:0d:a0: 52:f6:49:2d:99:eb:d0:3e:92:d9:df:64:8f:c1:5a:76:b1:5c: 05:12:b0:92:b8:6a:72:35:b3:9c:76:69:46:0e:30:9a:ba:92: b3:e1:fb:44:3d:e5:e4:2d:28:40:c1:02:65:c3:56:0c:ac:10: 93:e4:6b:18:40:83:c7:5e:6a:82:77:03:74:d7:44:e5:54:81: 86:dd:cc:e7:71:37:aa:9b:68:81:6d:ce:c0:27:5a:ab:0b:3b: 47:ca:64:46:4f:6e:85:99:e7:05:79:ab:85:6a:6c:ee:16:c3: f4:aa:3d:20:25:bb:66:3d:94:ea:53:fd:c9:f8:a0:4b:2a:c2: a7:d6:1c:50 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUOATX+UcovVBFRTvEHDPH3KWIKdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzMzlaFw0yNjA3MDMxNjA4MzlaMDMxMTAvBgNV BAMTKDBERjM1NjUyMTdGNTkwRDYwRTY0RTM0NDMzNjQ2Rjc0MjkwNzQyOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC86TJr27wfRTx566b0PqMCPvSA k1ToleEyjEYz0UOYCuUDss9M27NtFe9JL9rzBS6z2IvzdotrYggd/kwKXxCxvvBD AA6eIvLsCyQmmwAfdVyy/iGqIybLnBGOO9wTKdllhPlzv5wA/zNfEF11TwMHr7Rt EuFgSFwlQynfHuxPIvJOJzuhgK4ZOzFoIOM6/3aI56TGSzN3zXpUVdWwaeQKzmx/ Q3hEc6QdLiq7AE3LJjOeEi7HmQIcYa4PX2iED4d6K/nxgURjxgj55bh3TUkryWQR Pja8ZtkyF1JUU2j+S4VZ1ugUeZOSDyRHa96JbgGSgRPpUUkDlvh/VVEll+sPAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUDfNWUhf1kNYOZONEM2RvdCkHQp0wHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzQzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzAzNzMyMzUzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAQDANBgkqhkiG9w0BAQsFAAOCAQEAVbUL+OBbct14te9V FhS0doHQ+wb4YV+pLY6HZwzhgIt5XF//yd2SWWWeBhh869jYuO9YMop3M7w3u4Cm 1c7Ho+rohZRBKq6xyRKvVhDTx+8n3Z19FrEgVNkkGlkYRibG/uWWIKXUjbmV20F0 lca8sd6cHqxgw96/eSfIOw2gUvZJLZnr0D6S2d9kj8FadrFcBRKwkrhqcjWznHZp Rg4wmrqSs+H7RD3l5C0oQMECZcNWDKwQk+RrGECDx15qgncDdNdE5VSBht3M53E3 qptogW3OwCdaqws7R8pkRk9uhZnnBXmrhWps7hbD9Ko9ICW7Zj2U6lP9yfigSyrC p9YcUA== -----END CERTIFICATE-----Generated at Wed Nov 5 12:43:43 2025 by rpki-client