$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: reSiEjWqNL5bMfSb8NDNP7L36wtpl2UMV26XqCjhnmE= Subject key identifier: 35:EA:C5:8E:78:34:A9:96:86:BA:A0:8A:96:86:0A:0C:83:58:45:10 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 6FBD95234007CBC75FBACD1CBE062D47AB1A1FB3 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 05 Jun 2026 11:06:56 +0000 ROA not before: Fri 05 Jun 2026 11:01:56 +0000 ROA not after: Fri 04 Jun 2027 11:06:56 +0000 asID: 200676 IP address blocks: 2a06:a003:1111::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 12:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:bd:95:23:40:07:cb:c7:5f:ba:cd:1c:be:06:2d:47:ab:1a:1f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jun 5 11:01:56 2026 GMT Not After : Jun 4 11:06:56 2027 GMT Subject: CN=35EAC58E7834A99686BAA08A96860A0C83584510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:27:2a:dd:5a:bc:de:16:f3:0f:0f:71:71:09: 09:64:a3:78:4e:f9:e4:55:ab:bb:6c:f9:49:d8:11: e7:1a:fd:85:53:17:84:dd:bd:dc:d4:07:84:e9:fc: 7e:5f:1c:bd:d9:6a:73:c4:a3:32:ad:0d:d7:02:d8: 00:7c:ef:ca:b6:31:e6:03:5f:84:64:1d:d1:c5:35: 1d:e7:79:19:19:f1:ce:aa:15:d2:8d:6c:96:4d:09: 6b:d0:02:40:7f:a9:c6:b2:b4:79:b0:ea:aa:0a:3f: 3b:ac:43:1b:e9:67:f4:e5:ba:52:85:71:e5:84:d1: 2b:40:94:6c:6b:68:52:0e:f4:7d:b7:5f:04:de:0a: e9:88:fc:41:3c:ec:20:8d:c6:d8:4b:bd:07:d6:a9: 52:f5:f3:23:eb:6b:4a:5d:b2:ca:8f:87:b6:45:02: 6a:16:62:29:71:c7:05:bb:57:12:97:2f:4d:f2:55: 69:b6:77:4d:27:f6:22:a6:2a:6b:91:98:7d:59:4a: 84:8b:f9:d7:41:0f:d4:57:50:9a:fe:da:54:6a:73: 3c:9e:d1:17:e4:17:f9:a2:a4:ef:18:b9:d5:79:d4: 5e:2e:47:6c:ef:45:d5:c3:60:12:0f:21:71:78:27: 72:00:45:e6:cc:1a:65:6c:7f:ef:08:55:f6:66:4d: 69:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EA:C5:8E:78:34:A9:96:86:BA:A0:8A:96:86:0A:0C:83:58:45:10 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313131313a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:1111::/48 Signature Algorithm: sha256WithRSAEncryption 48:ac:43:cb:71:b9:d3:bd:ea:da:27:40:a9:99:89:80:69:08: 4d:0b:aa:bc:35:96:dd:c1:68:4b:a6:c5:f4:03:2c:82:33:fd: 78:f9:08:f7:a2:c5:d3:5f:6e:bf:ec:ae:74:71:75:fb:1e:6c: cd:e5:85:3b:7d:b2:12:ff:66:d8:d2:3a:9d:90:33:b4:aa:06: a5:13:93:ae:11:4b:93:95:bd:60:9a:72:ad:4f:7e:9c:42:72: 32:fe:bf:86:87:f5:c1:14:85:a0:e3:41:e4:f5:18:c6:0e:3b: 6f:b8:b1:8c:9b:83:11:ad:b2:21:82:87:10:ab:dd:fb:55:a0: f6:4b:ba:17:33:0c:91:75:37:3a:75:bb:de:97:9f:ba:27:09: ec:d2:29:7e:c8:97:54:52:47:35:7c:c0:5f:53:d8:84:dc:c3: e2:9e:bd:7a:ec:a2:a3:b5:52:48:50:0f:e4:33:d7:88:c3:d3: 00:3f:1f:d1:f7:53:83:2e:51:4c:80:d6:34:14:33:7a:e8:3a: a5:30:a8:62:ea:83:d7:11:b8:4d:79:5e:e3:85:a4:d6:df:ef: 1b:00:81:5a:7f:51:3a:ad:e7:65:e0:cc:e3:68:01:16:b5:e3: d3:68:f7:b4:8e:e0:21:32:b1:ae:83:e1:77:25:55:2e:95:27: f4:df:15:02 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUb72VI0AHy8dfus0cvgYtR6saH7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNjA2MDUxMTAxNTZaFw0yNzA2MDQxMTA2NTZaMDMxMTAvBgNV BAMTKDM1RUFDNThFNzgzNEE5OTY4NkJBQTA4QTk2ODYwQTBDODM1ODQ1MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJyrdWrzeFvMPD3FxCQlko3hO +eRVq7ts+UnYEeca/YVTF4TdvdzUB4Tp/H5fHL3ZanPEozKtDdcC2AB878q2MeYD X4RkHdHFNR3neRkZ8c6qFdKNbJZNCWvQAkB/qcaytHmw6qoKPzusQxvpZ/TlulKF ceWE0StAlGxraFIO9H23XwTeCumI/EE87CCNxthLvQfWqVL18yPra0pdssqPh7ZF AmoWYilxxwW7VxKXL03yVWm2d00n9iKmKmuRmH1ZSoSL+ddBD9RXUJr+2lRqczye 0RfkF/mipO8YudV51F4uR2zvRdXDYBIPIXF4J3IARebMGmVsf+8IVfZmTWnDAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUNerFjng0qZaGuqCKloYKDINYRRAwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzMTMxMzEzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAMRETANBgkqhkiG9w0BAQsFAAOCAQEASKxDy3G5073q2idA qZmJgGkITQuqvDWW3cFoS6bF9AMsgjP9ePkI96LF019uv+yudHF1+x5szeWFO32y Ev9m2NI6nZAztKoGpROTrhFLk5W9YJpyrU9+nEJyMv6/hof1wRSFoONB5PUYxg47 b7ixjJuDEa2yIYKHEKvd+1Wg9ku6FzMMkXU3OnW73pefuicJ7NIpfsiXVFJHNXzA X1PYhNzD4p69euyio7VSSFAP5DPXiMPTAD8f0fdTgy5RTIDWNBQzeug6pTCoYuqD 1xG4TXle44Wk1t/vGwCBWn9ROq3nZeDM42gBFrXj02j3tI7gITKxroPhdyVVLpUn 9N8VAg== -----END CERTIFICATE-----Generated at Sat Jun 6 05:30:57 2026 by rpki-client