$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: y6dlRvQ6Ei4ylbtG2E1Fsbq6bkYPEiXc/hP5pnr/A5s= Subject key identifier: DA:A7:D5:C5:A2:54:3A:B5:E6:8C:2C:51:50:FF:73:DF:CC:77:DB:85 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 516BE0F6311B897729A3154822E83B3FEC676B8B Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 05 Jun 2026 11:06:56 +0000 ROA not before: Fri 05 Jun 2026 11:01:56 +0000 ROA not after: Fri 04 Jun 2027 11:06:56 +0000 asID: 200676 IP address blocks: 2a06:a003:1337::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 12:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:6b:e0:f6:31:1b:89:77:29:a3:15:48:22:e8:3b:3f:ec:67:6b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jun 5 11:01:56 2026 GMT Not After : Jun 4 11:06:56 2027 GMT Subject: CN=DAA7D5C5A2543AB5E68C2C5150FF73DFCC77DB85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:49:8a:1b:5a:bc:68:9e:c3:b0:70:7d:ea: 75:fd:3e:8d:72:2d:80:78:7e:32:5c:1d:cd:e4:b5: 71:ac:68:b3:17:b6:2e:21:b5:a2:35:20:07:c7:a9: 2d:a9:91:df:cc:a7:17:c3:ce:27:d9:1a:06:10:a8: 09:be:20:7b:1e:f3:6c:a9:b4:9f:a8:a4:66:8d:7b: 09:c8:ab:c9:9f:bf:cc:3d:d7:7e:6e:82:79:ec:12: 4b:53:c1:51:79:1e:6b:9f:f0:3f:f2:e2:cd:e9:9f: b4:70:98:0d:dd:63:fe:4f:35:65:e3:99:bd:c3:ce: 57:44:f8:17:d2:c4:78:98:f6:d2:46:83:1b:4e:a8: e3:b1:d2:c2:a8:00:bf:ec:b7:7e:53:c0:2e:da:74: 1c:c2:33:a2:e7:99:40:f5:df:23:fb:3a:b7:46:d2: 6f:43:51:49:41:b2:da:ed:b8:f9:41:57:5a:ae:41: 8a:cb:3f:d0:a0:c1:ed:ba:26:d0:9b:be:b8:df:85: 9b:0a:66:ca:da:0b:7b:9d:29:8b:5a:5d:4e:88:bb: e3:f3:c7:97:7a:df:6f:6f:7a:00:98:56:73:9f:e3: b0:5b:9b:cc:de:00:e7:97:89:cb:33:1e:b5:79:f4: b8:fc:65:07:9d:c4:a2:24:a5:42:ad:70:d6:05:9f: ac:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A7:D5:C5:A2:54:3A:B5:E6:8C:2C:51:50:FF:73:DF:CC:77:DB:85 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a313333373a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:1337::/48 Signature Algorithm: sha256WithRSAEncryption 3d:71:c6:43:87:2e:53:8c:b0:b8:d0:29:fd:dd:5b:0b:cd:e3: 2d:6e:40:53:75:ad:00:cd:62:9e:2b:f8:99:aa:e3:ef:eb:4d: d1:be:1d:8f:3d:03:e9:df:51:e2:d5:bd:27:fb:52:ef:df:3c: f0:45:e1:ce:a1:a2:bc:f5:9e:37:8a:bb:4c:56:86:da:01:ad: 48:a4:0a:06:7f:5b:de:c3:56:e5:7f:20:8c:af:4d:c3:49:53: f6:37:a0:2c:6b:92:57:af:28:07:51:13:8e:9a:c5:ac:d7:19: b9:48:21:cc:b4:57:59:81:2f:eb:78:bc:e6:65:bd:a1:da:1c: 97:4e:0f:3b:9f:f3:36:49:7d:72:fa:22:7c:c8:f1:a7:57:94: 4e:d2:cb:fb:6c:ad:27:94:18:1d:cd:9c:09:fd:75:ca:82:8b: 1b:49:f4:2e:74:d4:9b:33:b2:c2:58:2b:0b:c9:57:d5:b7:c1: 3b:4c:f0:7e:f6:ad:d9:43:ed:53:20:c0:21:c5:d9:83:52:2d: 53:30:1f:4f:8f:2b:a7:15:89:c1:dd:67:6f:87:f7:9b:be:92: 67:cd:a2:9c:eb:67:f6:ba:0e:2d:f0:ad:88:f0:85:60:42:30: b5:1b:e3:56:17:d1:d2:24:c6:d5:33:f2:1e:d3:f5:79:83:f9: 22:82:de:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUUWvg9jEbiXcpoxVIIug7P+xna4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNjA2MDUxMTAxNTZaFw0yNzA2MDQxMTA2NTZaMDMxMTAvBgNV BAMTKERBQTdENUM1QTI1NDNBQjVFNjhDMkM1MTUwRkY3M0RGQ0M3N0RCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2QkmKG1q8aJ7DsHB96nX9Po1y LYB4fjJcHc3ktXGsaLMXti4htaI1IAfHqS2pkd/MpxfDzifZGgYQqAm+IHse82yp tJ+opGaNewnIq8mfv8w9135ugnnsEktTwVF5Hmuf8D/y4s3pn7RwmA3dY/5PNWXj mb3DzldE+BfSxHiY9tJGgxtOqOOx0sKoAL/st35TwC7adBzCM6LnmUD13yP7OrdG 0m9DUUlBstrtuPlBV1quQYrLP9Cgwe26JtCbvrjfhZsKZsraC3udKYtaXU6Iu+Pz x5d6329vegCYVnOf47Bbm8zeAOeXicszHrV59Lj8ZQedxKIkpUKtcNYFn6w5AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU2qfVxaJUOrXmjCxRUP9z38x324UwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzMTMzMzMzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAMTNzANBgkqhkiG9w0BAQsFAAOCAQEAPXHGQ4cuU4ywuNAp /d1bC83jLW5AU3WtAM1iniv4marj7+tN0b4djz0D6d9R4tW9J/tS79888EXhzqGi vPWeN4q7TFaG2gGtSKQKBn9b3sNW5X8gjK9Nw0lT9jegLGuSV68oB1ETjprFrNcZ uUghzLRXWYEv63i85mW9odocl04PO5/zNkl9cvoifMjxp1eUTtLL+2ytJ5QYHc2c Cf11yoKLG0n0LnTUmzOywlgrC8lX1bfBO0zwfvat2UPtUyDAIcXZg1ItUzAfT48r pxWJwd1nb4f3m76SZ82inOtn9roOLfCtiPCFYEIwtRvjVhfR0iTG1TPyHtP1eYP5 IoLeGA== -----END CERTIFICATE-----Generated at Sat Jun 6 05:30:11 2026 by rpki-client