$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633035303a3a2f34342d3434203d3e20313937363334.roa File: 326130363a313238333a633035303a3a2f34342d3434203d3e20313937363334.roa (raw, json) Hash identifier: oeOpStq+yTIhXAbkO6LdiaaohylU6oHXOIb1McpnccE= Subject key identifier: 95:33:BB:28:29:EC:DC:7C:B7:EB:62:1E:7F:48:B4:9B:65:4B:63:D8 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 1E578F0E412B92FD328F66AA3F4F7BDAC223B668 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633035303a3a2f34342d3434203d3e20313937363334.roa Signing time: Fri 04 Jul 2025 16:08:44 +0000 ROA not before: Fri 04 Jul 2025 16:03:44 +0000 ROA not after: Fri 03 Jul 2026 16:08:44 +0000 asID: 197634 IP address blocks: 2a06:1283:c050::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:57:8f:0e:41:2b:92:fd:32:8f:66:aa:3f:4f:7b:da:c2:23:b6:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jul 4 16:03:44 2025 GMT Not After : Jul 3 16:08:44 2026 GMT Subject: CN=9533BB2829ECDC7CB7EB621E7F48B49B654B63D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:07:f7:2f:f8:cd:62:1a:8e:64:f0:5d:f1:cd: 10:3f:a1:c5:d9:77:a9:da:44:59:fd:91:17:da:33: d8:72:59:c0:83:e4:e2:aa:53:67:2f:3d:f8:bd:40: ae:88:d2:c4:6a:41:15:b7:9c:c1:50:0d:b6:be:d0: 73:e8:71:d8:5d:f2:52:6a:5f:b8:64:4a:88:1e:c3: 4b:7e:f9:99:86:71:c8:07:4e:1c:9c:f9:e0:1a:91: 0d:ec:b9:57:f1:83:7f:32:2e:f3:43:c6:4a:95:2d: fd:a4:d0:51:79:bf:9e:6a:e1:af:f2:9f:d0:f7:e2: d4:ac:89:a6:19:47:68:4e:7c:1e:aa:0b:40:1b:bd: f2:b6:b7:03:5e:07:f4:1a:04:d9:23:bd:c6:9d:62: fb:c1:7a:ae:69:17:e3:bc:e1:1a:94:24:0e:3a:85: ad:a1:70:e6:8e:0c:92:7d:02:e9:6a:a4:de:11:c4: b0:4c:d5:60:5f:e2:34:96:e5:42:fe:1f:5a:0f:07: f2:9c:10:33:6c:2a:d3:51:6f:63:d0:3e:0f:e6:f7: ba:0f:81:32:14:17:46:f1:ff:c1:0c:d4:6b:7a:11: 3d:31:09:99:9b:ec:6a:c9:f8:7d:fb:12:1a:f2:22: 2f:cc:d2:44:2a:56:dd:dd:9c:da:cf:11:a8:ca:7e: 6d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:33:BB:28:29:EC:DC:7C:B7:EB:62:1E:7F:48:B4:9B:65:4B:63:D8 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633035303a3a2f34342d3434203d3e20313937363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c050::/44 Signature Algorithm: sha256WithRSAEncryption 13:0c:67:18:93:4b:b6:4d:99:49:a8:8b:16:c7:1c:78:5e:4a: d8:0f:fe:24:f0:e0:f3:65:d8:17:1c:cb:fd:f5:32:a5:da:b9: 44:05:06:e0:33:c9:5d:15:73:5c:6c:80:db:66:14:1b:c4:d1: 73:c5:0a:18:5d:d1:04:14:61:0a:14:65:e8:e9:bb:3e:ef:a0: 20:b8:f3:ef:be:c0:c7:27:4d:9a:be:d3:86:49:94:e3:37:fb: c7:66:7d:c0:21:ce:63:df:f2:33:a1:75:57:8f:44:1d:37:44: fe:72:ba:5d:5d:54:d1:f0:c5:d7:90:31:c5:64:a3:b4:ce:9b: 23:ae:63:54:fa:d2:f0:2c:4f:e5:4d:26:63:39:61:cd:c9:51: f4:1e:43:78:17:e6:9e:ee:b3:35:54:ce:97:d8:92:27:18:e0: 0a:36:56:8f:02:6b:da:62:5e:c6:df:95:5b:6a:a7:87:65:41: 42:3d:db:16:fa:9e:33:fa:ce:9e:ff:38:38:52:dc:d9:af:82: 57:37:29:57:29:a8:57:c5:eb:ee:98:b6:b6:56:62:e6:85:ef: ad:a6:e8:65:16:d6:e2:13:c9:39:58:9d:b5:e1:3f:48:f7:1a: 8b:85:ce:68:7d:4a:f8:43:c7:c5:4a:4a:85:06:97:04:b0:11: d8:f0:a0:f1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUHlePDkErkv0yj2aqP0972sIjtmgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNTA3MDQxNjAzNDRaFw0yNjA3MDMxNjA4NDRaMDMxMTAvBgNV BAMTKDk1MzNCQjI4MjlFQ0RDN0NCN0VCNjIxRTdGNDhCNDlCNjU0QjYzRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkB/cv+M1iGo5k8F3xzRA/ocXZ d6naRFn9kRfaM9hyWcCD5OKqU2cvPfi9QK6I0sRqQRW3nMFQDba+0HPocdhd8lJq X7hkSogew0t++ZmGccgHThyc+eAakQ3suVfxg38yLvNDxkqVLf2k0FF5v55q4a/y n9D34tSsiaYZR2hOfB6qC0AbvfK2twNeB/QaBNkjvcadYvvBeq5pF+O84RqUJA46 ha2hcOaODJJ9AulqpN4RxLBM1WBf4jSW5UL+H1oPB/KcEDNsKtNRb2PQPg/m97oP gTIUF0bx/8EM1Gt6ET0xCZmb7GrJ+H37EhryIi/M0kQqVt3dnNrPEajKfm21AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUlTO7KCns3Hy362Ief0i0m2VLY9gwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzUzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzkzNzM2MzMzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAUDANBgkqhkiG9w0BAQsFAAOCAQEAEwxnGJNLtk2ZSaiL FscceF5K2A/+JPDg82XYFxzL/fUypdq5RAUG4DPJXRVzXGyA22YUG8TRc8UKGF3R BBRhChRl6Om7Pu+gILjz777AxydNmr7ThkmU4zf7x2Z9wCHOY9/yM6F1V49EHTdE /nK6XV1U0fDF15AxxWSjtM6bI65jVPrS8CxP5U0mYzlhzclR9B5DeBfmnu6zNVTO l9iSJxjgCjZWjwJr2mJext+VW2qnh2VBQj3bFvqeM/rOnv84OFLc2a+CVzcpVymo V8Xr7pi2tlZi5oXvraboZRbW4hPJOVidteE/SPcai4XOaH1K+EPHxUpKhQaXBLAR 2PCg8Q== -----END CERTIFICATE-----Generated at Wed Nov 5 07:31:40 2025 by rpki-client