$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623137303a3a2f34342d3438203d3e20313938353838.roa File: 326130663a316363363a623137303a3a2f34342d3438203d3e20313938353838.roa (raw, json) Hash identifier: Z1D2tzNH9Lk3h3VvnoiCB7e43V2PFv05dOJ2CtKqIbE= Subject key identifier: 55:E1:E1:6B:26:5E:81:D7:AA:C7:A3:6F:51:88:6D:98:16:C9:F7:D3 Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 4225E7C115F6A1C034EEEB24CC9BDEE5B9D568D4 Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623137303a3a2f34342d3438203d3e20313938353838.roa Signing time: Thu 23 Apr 2026 18:12:47 +0000 ROA not before: Thu 23 Apr 2026 18:07:47 +0000 ROA not after: Thu 22 Apr 2027 18:12:47 +0000 asID: 198588 IP address blocks: 2a0f:1cc6:b170::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 07 May 2026 18:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:25:e7:c1:15:f6:a1:c0:34:ee:eb:24:cc:9b:de:e5:b9:d5:68:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Apr 23 18:07:47 2026 GMT Not After : Apr 22 18:12:47 2027 GMT Subject: CN=55E1E16B265E81D7AAC7A36F51886D9816C9F7D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:89:ab:78:ba:15:4d:18:64:a0:e1:2f:44:81: ff:60:0d:21:eb:33:59:8b:a2:d1:94:ca:6d:00:a2: e1:38:15:8b:01:36:30:41:56:da:50:55:0c:f3:30: 28:fd:f4:3c:40:88:3b:49:ae:93:70:40:78:98:07: ab:ea:fc:ad:c4:38:41:63:e9:5f:91:8b:31:76:da: b2:b9:37:24:02:24:11:92:5b:85:09:00:6b:e0:32: cc:5a:69:c6:42:2a:e2:40:ed:a1:e3:2b:49:29:5f: 3f:4f:40:4d:9f:1f:dc:16:ad:d6:dc:38:92:63:cb: 4c:30:1e:03:52:82:d6:b3:30:96:76:6b:f5:03:46: db:89:36:0b:04:0d:5b:67:82:eb:56:d5:d6:54:b4: 01:2f:62:02:2c:a8:89:22:5f:4f:fb:ba:e7:10:6b: 9e:09:c1:e6:23:cd:13:a4:b2:5e:47:33:13:1d:65: 81:26:77:24:cd:ae:d1:b0:83:f2:33:2c:1f:8f:1d: 7b:1d:d9:52:f1:a3:b3:48:3d:98:cb:cf:13:cb:91: 1b:42:ff:4a:55:1b:bb:33:f7:68:ad:29:d7:90:ae: 44:83:77:73:2e:7b:a9:f3:64:93:62:d0:2e:75:54: 3b:62:77:93:01:e7:e0:cf:19:f5:b4:c0:ff:10:64: 7f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E1:E1:6B:26:5E:81:D7:AA:C7:A3:6F:51:88:6D:98:16:C9:F7:D3 X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623137303a3a2f34342d3438203d3e20313938353838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:b170::/44 Signature Algorithm: sha256WithRSAEncryption b1:19:a8:de:d8:fa:97:11:b1:75:55:58:f8:aa:84:54:ec:37: 31:82:cf:ab:0b:31:de:54:8f:f7:de:e8:8c:98:71:a9:9b:d5: bc:e6:58:92:d0:40:db:dd:42:6c:b2:cf:12:e9:2a:1a:7b:b6: 30:59:b1:0e:7d:09:0e:d5:cc:8b:7f:3f:0b:b8:b1:92:c1:de: ed:6d:e3:db:08:b7:f5:52:0d:e9:ea:5c:00:94:a1:48:d5:eb: 77:5d:b9:a7:6c:54:9e:c5:e8:a8:a6:c5:6e:0b:8b:93:ee:f0: 87:c9:bf:e9:61:df:d6:53:f5:e8:f8:85:9f:47:8f:64:f4:4a: eb:c2:b0:f4:2c:82:69:69:91:94:00:b0:f0:29:5c:a3:12:90: 99:5f:7e:40:6a:39:11:7e:7a:56:e6:08:fc:c3:70:26:37:8e: ab:3b:c9:db:a0:b8:dd:95:ce:53:07:2e:23:0f:16:7f:1d:3c: 0c:93:af:8c:a7:6d:4c:f0:df:0a:84:bb:e2:8d:78:9c:a6:7d: a0:2f:e1:e9:11:fe:54:ae:91:b8:72:d2:55:ff:1f:db:1f:39: c6:f4:07:74:55:9f:55:83:2a:25:32:cb:d7:97:07:06:63:f8: 45:64:6e:b1:fd:06:ba:bd:99:f2:60:34:5c:7a:0d:28:8f:f4: 02:b6:db:48 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQiXnwRX2ocA07uskzJve5bnVaNQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjA0MjMxODA3NDdaFw0yNzA0MjIxODEyNDdaMDMxMTAvBgNV BAMTKDU1RTFFMTZCMjY1RTgxRDdBQUM3QTM2RjUxODg2RDk4MTZDOUY3RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCliat4uhVNGGSg4S9Egf9gDSHr M1mLotGUym0AouE4FYsBNjBBVtpQVQzzMCj99DxAiDtJrpNwQHiYB6vq/K3EOEFj 6V+RizF22rK5NyQCJBGSW4UJAGvgMsxaacZCKuJA7aHjK0kpXz9PQE2fH9wWrdbc OJJjy0wwHgNSgtazMJZ2a/UDRtuJNgsEDVtngutW1dZUtAEvYgIsqIkiX0/7uucQ a54JweYjzROksl5HMxMdZYEmdyTNrtGwg/IzLB+PHXsd2VLxo7NIPZjLzxPLkRtC /0pVG7sz92itKdeQrkSDd3Mue6nzZJNi0C51VDtid5MB5+DPGfW0wP8QZH9LAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUVeHhayZegdeqx6NvUYhtmBbJ99MwHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTYyMzEzNzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz OTM4MzUzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKg8cxrFwMA0GCSqGSIb3DQEBCwUAA4IBAQCx Gaje2PqXEbF1VVj4qoRU7Dcxgs+rCzHeVI/33uiMmHGpm9W85liS0EDb3UJsss8S 6Soae7YwWbEOfQkO1cyLfz8LuLGSwd7tbePbCLf1Ug3p6lwAlKFI1et3XbmnbFSe xeiopsVuC4uT7vCHyb/pYd/WU/Xo+IWfR49k9ErrwrD0LIJpaZGUALDwKVyjEpCZ X35AajkRfnpW5gj8w3AmN46rO8nboLjdlc5TBy4jDxZ/HTwMk6+Mp21M8N8KhLvi jXicpn2gL+HpEf5UrpG4ctJV/x/bHznG9Ad0VZ9VgyolMsvXlwcGY/hFZG6x/Qa6 vZnyYDRceg0oj/QCtttI -----END CERTIFICATE-----Generated at Thu May 7 05:38:53 2026 by rpki-client