$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666530303a3a2f34302d3438203d3e20313939373934.roa File: 326130663a316363363a666530303a3a2f34302d3438203d3e20313939373934.roa (raw, json) Hash identifier: bczv8HPQxrdQAlSAG21zowjSuyByV0J0vFQmDC8cfZ0= Subject key identifier: A5:49:4F:67:E2:B3:79:1A:01:11:F2:30:76:18:90:8A:2E:AF:58:E2 Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 10369D202645F5B782E81B017797C8CE926A46C9 Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666530303a3a2f34302d3438203d3e20313939373934.roa Signing time: Sat 18 Apr 2026 12:17:08 +0000 ROA not before: Sat 18 Apr 2026 12:12:08 +0000 ROA not after: Sat 17 Apr 2027 12:17:08 +0000 asID: 199794 IP address blocks: 2a0f:1cc6:fe00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 22 Apr 2026 09:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:36:9d:20:26:45:f5:b7:82:e8:1b:01:77:97:c8:ce:92:6a:46:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Apr 18 12:12:08 2026 GMT Not After : Apr 17 12:17:08 2027 GMT Subject: CN=A5494F67E2B3791A0111F2307618908A2EAF58E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:42:6e:77:bf:c7:c2:0c:f5:17:2a:9e:cc:b4: 1a:aa:45:4c:a9:22:6f:96:59:15:76:73:ba:c7:48: 25:14:24:ce:df:09:6b:24:58:15:18:e1:33:e7:d6: 15:d9:4d:ec:65:d3:c6:e9:17:51:3f:30:ce:66:fd: 4f:76:6b:f0:cd:87:58:a9:64:00:02:63:fc:11:f4: 6a:a8:80:9a:53:12:4c:f7:13:09:24:27:5b:58:39: 78:f1:32:69:b7:d1:bd:d1:7c:8a:f3:26:1e:98:ac: ed:1c:a6:9b:b5:a9:36:65:f4:54:a6:22:1e:ba:a1: 38:4b:e4:ce:ce:91:47:41:cd:57:69:e2:7d:9a:ab: 15:06:c1:ad:de:cb:c5:f8:4f:59:20:e4:b2:3f:06: 80:9f:b5:9e:a6:7a:5b:63:a1:81:6c:9d:81:66:dc: e1:78:80:32:8a:11:cb:55:04:d4:a6:44:bc:5a:ee: 61:18:40:5b:06:6b:46:a5:ed:4f:2f:c6:3d:d3:95: 38:a2:6c:ed:78:2e:07:4f:79:61:40:56:43:e3:dd: db:c7:4c:f8:6e:c2:44:69:f3:58:3c:2d:a8:ef:d9: 67:62:4c:d4:de:6f:86:db:a8:12:37:20:52:43:df: 69:ad:8a:94:b0:d8:c3:26:bc:65:b4:d4:d0:a8:3b: 78:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:49:4F:67:E2:B3:79:1A:01:11:F2:30:76:18:90:8A:2E:AF:58:E2 X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666530303a3a2f34302d3438203d3e20313939373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:fe00::/40 Signature Algorithm: sha256WithRSAEncryption a8:90:21:6f:a1:f8:98:45:e3:11:c1:d3:1c:07:6b:34:e2:0e: 69:ef:ad:69:e3:f4:e8:70:34:e1:e5:8c:1c:45:5d:ae:9c:c1: 45:8d:7b:65:fb:5a:26:ad:1d:3d:14:3e:03:06:77:a0:34:38: 04:60:27:84:6d:f7:11:9c:55:5e:ed:a6:9a:d6:c1:b5:4f:96: 1e:f9:ac:b7:08:b8:09:37:97:71:9f:2f:3e:db:88:78:21:b1: 12:cc:97:df:84:1b:54:be:c0:1e:5e:9d:73:77:1d:59:14:ac: 58:ca:d4:65:5d:d2:1a:52:c9:be:d9:8a:2f:62:07:47:c6:6b: 24:86:61:c0:20:d0:f3:78:29:10:aa:74:ec:d3:9a:05:d1:10: 44:33:4c:cb:13:10:60:79:37:f3:c6:22:9a:88:3c:3c:5d:f6: 4f:c2:2a:77:8a:e0:ab:29:f0:32:cf:74:8c:3f:32:26:8a:39: 6e:e9:c8:94:2f:73:f2:8b:02:07:6d:32:92:d5:54:b5:91:23: 2b:ff:00:e6:df:03:22:db:25:54:85:5b:b9:c0:8c:df:04:3e: 18:3b:44:38:e0:c6:2d:71:45:d1:80:c4:18:4a:54:1b:2b:0c: 4b:cd:7a:15:e0:d2:48:50:27:18:cb:6d:64:b6:5c:49:ea:ab: 6e:da:58:f9 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUEDadICZF9beC6BsBd5fIzpJqRskwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjA0MTgxMjEyMDhaFw0yNzA0MTcxMjE3MDhaMDMxMTAvBgNV BAMTKEE1NDk0RjY3RTJCMzc5MUEwMTExRjIzMDc2MTg5MDhBMkVBRjU4RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgQm53v8fCDPUXKp7MtBqqRUyp Im+WWRV2c7rHSCUUJM7fCWskWBUY4TPn1hXZTexl08bpF1E/MM5m/U92a/DNh1ip ZAACY/wR9GqogJpTEkz3EwkkJ1tYOXjxMmm30b3RfIrzJh6YrO0cppu1qTZl9FSm Ih66oThL5M7OkUdBzVdp4n2aqxUGwa3ey8X4T1kg5LI/BoCftZ6meltjoYFsnYFm 3OF4gDKKEctVBNSmRLxa7mEYQFsGa0al7U8vxj3TlTiibO14LgdPeWFAVkPj3dvH TPhuwkRp81g8Lajv2WdiTNTeb4bbqBI3IFJD32mtipSw2MMmvGW01NCoO3hVAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUpUlPZ+KzeRoBEfIwdhiQii6vWOIwHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTY2NjUzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzEz OTM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKg8cxv4wDQYJKoZIhvcNAQELBQADggEBAKiQ IW+h+JhF4xHB0xwHazTiDmnvrWnj9OhwNOHljBxFXa6cwUWNe2X7WiatHT0UPgMG d6A0OARgJ4Rt9xGcVV7tpprWwbVPlh75rLcIuAk3l3GfLz7biHghsRLMl9+EG1S+ wB5enXN3HVkUrFjK1GVd0hpSyb7Zii9iB0fGaySGYcAg0PN4KRCqdOzTmgXREEQz TMsTEGB5N/PGIpqIPDxd9k/CKneK4Ksp8DLPdIw/MiaKOW7pyJQvc/KLAgdtMpLV VLWRIyv/AObfAyLbJVSFW7nAjN8EPhg7RDjgxi1xRdGAxBhKVBsrDEvNehXg0khQ JxjLbWS2XEnqq27aWPk= -----END CERTIFICATE-----Generated at Tue Apr 21 18:01:01 2026 by rpki-client