$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa File: 326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa (raw, json) Hash identifier: ESVrZCT3XwjgXR2Szp+nqlJGDXB7sN1x2clKFyOMoCo= Subject key identifier: 89:96:AB:F1:20:39:0D:C1:07:E7:D0:E2:D2:D5:69:C7:62:90:1E:EB Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 68E7D368FF1418C2FA72055BCFF174FF4F0F54FB Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa Signing time: Fri 05 Jun 2026 16:35:05 +0000 ROA not before: Fri 05 Jun 2026 16:30:05 +0000 ROA not after: Fri 04 Jun 2027 16:35:05 +0000 asID: 216079 IP address blocks: 2a06:1283:c070::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:e7:d3:68:ff:14:18:c2:fa:72:05:5b:cf:f1:74:ff:4f:0f:54:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:05 2026 GMT Not After : Jun 4 16:35:05 2027 GMT Subject: CN=8996ABF120390DC107E7D0E2D2D569C762901EEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:76:dc:cd:a9:a5:5d:09:63:e1:04:cb:77:b3: 3c:93:4b:f9:24:74:c5:cf:9a:bd:cd:4c:fb:ca:ed: 7b:2e:00:a7:7b:c7:54:ea:82:9d:c5:76:85:20:95: 45:c9:75:46:70:92:27:0a:b9:e5:36:36:25:dc:7b: 6d:c8:46:05:6a:46:47:a7:31:95:d5:0e:62:54:98: bf:1e:dc:6c:c4:45:7b:01:37:fb:f4:7f:1e:ad:2c: ba:24:09:66:d0:02:69:79:f8:32:fc:64:d1:58:97: 85:d6:f7:0c:65:d9:81:b0:7c:38:34:23:a0:15:89: d3:bb:4c:76:a6:32:4c:5c:6e:63:14:d0:53:fa:6e: 0d:06:40:5e:94:cc:d9:5f:c0:a8:d5:a3:60:3e:84: a6:82:09:b9:3b:7e:d8:17:00:7f:ce:b0:b9:3e:ca: af:07:4e:dd:80:98:96:50:81:0d:16:59:fa:ce:33: 72:b3:2c:c0:0b:52:ea:0c:4d:4d:53:0a:f2:d2:77: 64:40:83:26:76:e4:5c:e8:94:0a:eb:d1:1d:54:f7: 42:0c:f4:84:d2:e2:29:b9:3f:1e:1e:9a:dd:c3:e8: 35:a3:8d:ab:a6:24:51:ee:24:6d:d9:63:27:70:36: 27:24:86:a1:5f:63:71:e2:88:88:70:79:98:e7:d4: b0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:96:AB:F1:20:39:0D:C1:07:E7:D0:E2:D2:D5:69:C7:62:90:1E:EB X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633037303a3a2f34342d3434203d3e20323136303739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c070::/44 Signature Algorithm: sha256WithRSAEncryption 97:de:7f:6a:df:4b:9a:d2:6d:5c:72:4d:c1:3d:71:c0:cb:94: ad:2c:24:b5:b5:40:96:b2:54:f6:63:63:a2:b0:4b:27:22:df: 9c:15:ac:20:bf:16:b4:5d:91:71:7c:f4:54:8f:05:49:3c:64: a7:bf:f5:2f:94:d3:9c:f1:e8:ac:2d:de:8c:6c:77:2f:94:a2: 1b:98:8c:82:cf:d4:31:fa:a3:f5:e4:3a:88:44:d8:25:54:05: c6:6c:b1:31:69:04:cc:d2:29:06:06:e2:21:66:6e:9f:19:c9: b9:09:ab:38:70:a1:e6:3c:a3:67:41:a5:63:c6:e7:54:c5:20: e8:12:8c:69:ae:27:88:84:73:2d:7d:08:de:45:4a:f4:83:17: 93:32:8d:44:76:1a:a5:56:42:db:95:54:5c:3c:95:79:7c:1d: 8b:9a:9a:44:b3:73:50:cb:37:d4:45:a9:ca:bf:dd:ee:bd:90: 43:6e:99:11:c9:09:02:c0:8c:17:b6:48:34:00:e6:d6:4e:f8: a2:b2:a5:e7:20:10:ee:32:3c:fe:65:f5:36:86:d0:d2:d0:3e: e6:64:c0:f7:fa:39:eb:c3:2c:ac:a7:36:96:d7:52:9b:18:1d: 01:cd:64:c2:2a:92:79:e8:6a:5a:ac:f2:3e:07:c8:2e:00:fe: 3d:9f:75:33 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUaOfTaP8UGML6cgVbz/F0/08PVPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDVaFw0yNzA2MDQxNjM1MDVaMDMxMTAvBgNV BAMTKDg5OTZBQkYxMjAzOTBEQzEwN0U3RDBFMkQyRDU2OUM3NjI5MDFFRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOdtzNqaVdCWPhBMt3szyTS/kk dMXPmr3NTPvK7XsuAKd7x1Tqgp3FdoUglUXJdUZwkicKueU2NiXce23IRgVqRken MZXVDmJUmL8e3GzERXsBN/v0fx6tLLokCWbQAml5+DL8ZNFYl4XW9wxl2YGwfDg0 I6AVidO7THamMkxcbmMU0FP6bg0GQF6UzNlfwKjVo2A+hKaCCbk7ftgXAH/OsLk+ yq8HTt2AmJZQgQ0WWfrOM3KzLMALUuoMTU1TCvLSd2RAgyZ25FzolArr0R1U90IM 9ITS4im5Px4emt3D6DWjjaumJFHuJG3ZYydwNickhqFfY3HiiIhweZjn1LAFAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUiZar8SA5DcEH59Di0tVpx2KQHuswHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMwMzczMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEzNjMwMzczOS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHBCoGEoPAcDANBgkqhkiG9w0BAQsFAAOCAQEAl95/at9LmtJtXHJN wT1xwMuUrSwktbVAlrJU9mNjorBLJyLfnBWsIL8WtF2RcXz0VI8FSTxkp7/1L5TT nPHorC3ejGx3L5SiG5iMgs/UMfqj9eQ6iETYJVQFxmyxMWkEzNIpBgbiIWZunxnJ uQmrOHCh5jyjZ0GlY8bnVMUg6BKMaa4niIRzLX0I3kVK9IMXkzKNRHYapVZC25VU XDyVeXwdi5qaRLNzUMs31EWpyr/d7r2QQ26ZEckJAsCMF7ZINADm1k74orKl5yAQ 7jI8/mX1NobQ0tA+5mTA9/o568MsrKc2ltdSmxgdAc1kwiqSeehqWqzyPgfILgD+ PZ91Mw== -----END CERTIFICATE-----Generated at Sun Jun 14 03:31:00 2026 by rpki-client