$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa File: 326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: k95r9jiamKYaX80EBj4DF5yv/3CvSwbnNXtQLgKL+lw= Subject key identifier: 19:55:CB:B1:D4:FD:CD:08:BD:E9:26:46:DF:70:1F:4F:3F:E3:EC:00 Certificate issuer: /CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Certificate serial: 3E36630AA87B4F44F1073E456684422F237ABA21 Authority key identifier: 48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa Signing time: Fri 05 Jun 2026 16:35:04 +0000 ROA not before: Fri 05 Jun 2026 16:30:04 +0000 ROA not after: Fri 04 Jun 2027 16:35:04 +0000 asID: 0 IP address blocks: 2a06:1283:c120::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 07:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:36:63:0a:a8:7b:4f:44:f1:07:3e:45:66:84:42:2f:23:7a:ba:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4807C118BD348934B5CC59B3E8A7A8C14F29C3FB Validity Not Before: Jun 5 16:30:04 2026 GMT Not After : Jun 4 16:35:04 2027 GMT Subject: CN=1955CBB1D4FDCD08BDE92646DF701F4F3FE3EC00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:df:37:ec:5c:ac:8e:c3:e7:1d:a0:1f:c3:1f: ba:d8:b8:5a:6b:34:5e:59:f2:e2:b1:d8:b7:13:ef: e1:7d:e2:69:d9:2f:82:95:98:67:a9:71:7f:f5:d1: 38:fe:a0:ff:c4:f0:ad:39:2d:12:65:01:8c:74:7d: f5:52:ae:d9:45:43:7f:bc:d3:de:e4:b1:fd:f4:20: 19:78:81:5d:7f:05:5c:61:8d:73:b4:5d:68:63:f2: 20:fe:fa:27:56:b3:a0:8e:ed:fd:64:89:db:23:36: 98:16:f6:4a:51:6d:db:44:38:90:9c:d7:68:b8:42: bc:d0:e3:f6:67:d3:d6:57:ed:74:1f:88:0b:78:5f: e5:1b:bc:d2:72:d6:9b:a6:5e:0a:d9:f4:32:d8:1d: ac:c9:98:cc:f9:4b:d4:3e:1c:b5:ce:2a:7e:be:c0: 37:4b:e4:59:3b:b2:21:b9:6d:56:23:95:8c:10:6e: 16:f0:36:06:0e:0c:34:7e:5c:7d:60:19:1a:d2:00: 3e:8a:b0:de:3d:9f:ed:58:d8:72:d2:eb:a8:9b:df: db:2c:36:00:9a:76:c1:e0:58:7e:c5:6a:33:a1:06: 8d:6b:34:40:c4:90:2f:3d:4f:6d:ec:e5:b7:4b:1e: d8:ae:7e:4c:9f:32:26:b9:28:66:cd:06:2b:d9:6c: 72:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:55:CB:B1:D4:FD:CD:08:BD:E9:26:46:DF:70:1F:4F:3F:E3:EC:00 X509v3 Authority Key Identifier: keyid:48:07:C1:18:BD:34:89:34:B5:CC:59:B3:E8:A7:A8:C1:4F:29:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/326130363a313238333a633132303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c120::/44 Signature Algorithm: sha256WithRSAEncryption 97:ed:e1:4f:23:8a:41:68:a1:f6:e8:7a:88:39:b1:71:f1:e4: 62:a1:dc:53:0d:51:ff:27:60:3d:20:61:3e:bd:be:35:53:24: b6:f7:dd:f1:05:ae:1d:76:8e:52:94:27:cf:1a:04:ca:f4:20: 22:21:53:f5:58:af:76:ab:3a:fd:aa:30:32:11:45:56:13:18: 2d:90:4d:0b:98:60:22:e4:e3:df:9b:23:d2:04:2c:7d:ba:06: 5b:1f:e7:c1:97:ae:3f:b2:eb:3b:d4:85:61:01:ae:61:9b:62: 4c:37:c6:b5:ff:cd:41:0e:a1:00:39:23:5f:b5:6c:8c:19:7f: 8b:e3:7c:5f:86:ff:02:d2:b6:d0:44:b3:a3:8e:01:cc:5b:27: 61:3b:02:08:22:e7:09:ac:5f:04:ea:f2:5b:81:78:82:43:77: 4a:20:56:59:c3:37:ba:a2:0f:d4:89:d7:f9:ca:88:1c:6c:35: 8a:a9:de:4f:c2:a6:76:0c:2e:13:fc:0b:44:ab:38:5f:8a:cf: c6:f8:13:02:6b:aa:86:01:c7:d6:07:7e:60:c6:e4:3f:be:be: 7c:ee:26:9e:55:a9:65:be:99:b0:5b:d6:d9:ca:33:fe:a0:6b: 09:f4:2f:4f:89:52:4c:4b:e3:2c:fb:c6:62:d0:d3:8a:69:0c: 6f:6c:5a:cd -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUPjZjCqh7T0TxBz5FZoRCLyN6uiEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0 RjI5QzNGQjAeFw0yNjA2MDUxNjMwMDRaFw0yNzA2MDQxNjM1MDRaMDMxMTAvBgNV BAMTKDE5NTVDQkIxRDRGRENEMDhCREU5MjY0NkRGNzAxRjRGM0ZFM0VDMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq3zfsXKyOw+cdoB/DH7rYuFpr NF5Z8uKx2LcT7+F94mnZL4KVmGepcX/10Tj+oP/E8K05LRJlAYx0ffVSrtlFQ3+8 097ksf30IBl4gV1/BVxhjXO0XWhj8iD++idWs6CO7f1kidsjNpgW9kpRbdtEOJCc 12i4QrzQ4/Zn09ZX7XQfiAt4X+UbvNJy1pumXgrZ9DLYHazJmMz5S9Q+HLXOKn6+ wDdL5Fk7siG5bVYjlYwQbhbwNgYODDR+XH1gGRrSAD6KsN49n+1Y2HLS66ib39ss NgCadsHgWH7FajOhBo1rNEDEkC89T23s5bdLHtiufkyfMia5KGbNBivZbHIfAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUGVXLsdT9zQi96SZG33AfTz/j7AAwHwYDVR0j BBgwFoAUSAfBGL00iTS1zFmz6KeowU8pw/swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzQvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5QzNGQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNDgwN0MxMThCRDM0ODkzNEI1Q0M1OUIzRThBN0E4QzE0RjI5 QzNGQi5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMt MjA1OC00M2JiLTlhYzYtNWFiNDJkZmJmNDA5LzQvMzI2MTMwMzYzYTMxMzIzODMz M2E2MzMxMzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgYSg8EgMA0GCSqGSIb3DQEBCwUAA4IBAQCX7eFPI4pBaKH26HqIObFx8eRiodxT DVH/J2A9IGE+vb41UyS2993xBa4ddo5SlCfPGgTK9CAiIVP1WK92qzr9qjAyEUVW ExgtkE0LmGAi5OPfmyPSBCx9ugZbH+fBl64/sus71IVhAa5hm2JMN8a1/81BDqEA OSNftWyMGX+L43xfhv8C0rbQRLOjjgHMWydhOwIIIucJrF8E6vJbgXiCQ3dKIFZZ wze6og/Uidf5yogcbDWKqd5PwqZ2DC4T/AtEqzhfis/G+BMCa6qGAcfWB35gxuQ/ vr587iaeVallvpmwW9bZyjP+oGsJ9C9PiVJMS+Ms+8Zi0NOKaQxvbFrN -----END CERTIFICATE-----Generated at Sat Jun 13 14:54:19 2026 by rpki-client