$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: hctWuN+nHCxcPnxwlB0HaZTfqv5a4O8gc3WDRLEEUrc= Subject key identifier: 2B:DC:D5:DA:D6:CF:DD:AC:63:3E:95:53:BF:1A:AE:83:CE:A1:E9:71 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 6DC91A27BF0031DF5FAB22B809927288D107CD32 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 05 Jun 2026 11:06:55 +0000 ROA not before: Fri 05 Jun 2026 11:01:55 +0000 ROA not after: Fri 04 Jun 2027 11:06:55 +0000 asID: 200676 IP address blocks: 2a06:a003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 12:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:c9:1a:27:bf:00:31:df:5f:ab:22:b8:09:92:72:88:d1:07:cd:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jun 5 11:01:55 2026 GMT Not After : Jun 4 11:06:55 2027 GMT Subject: CN=2BDCD5DAD6CFDDAC633E9553BF1AAE83CEA1E971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fe:dd:3b:82:00:a2:cb:6c:40:40:73:59:79: bd:45:49:dd:e1:fe:24:41:9d:f7:09:70:db:0d:a7: 31:f5:76:df:f5:9c:ad:2f:3b:f3:4b:cb:89:21:1c: 63:fc:79:c9:8c:c7:1d:a6:9a:cc:fe:b0:24:79:aa: b0:89:cd:24:d1:0e:8e:b3:95:54:00:9d:37:0e:d0: 0f:e0:ed:77:e1:ec:34:e8:8c:5c:bf:1e:52:58:10: 19:4b:3a:51:da:2d:6e:e4:c5:f6:5a:71:6f:e0:bd: 3f:5f:84:9b:ba:18:31:a2:76:8a:3f:a8:31:c8:41: 62:18:5a:f0:31:aa:15:07:27:81:b1:7a:e5:b0:5d: 89:9b:af:07:f0:62:ad:bc:bc:08:29:13:55:d4:5d: a7:cd:a2:de:18:63:14:c3:73:c8:ec:b0:83:eb:d4: 3b:f3:62:90:4d:43:16:b6:eb:4c:4e:f7:d0:29:24: 17:73:ea:4e:a1:bf:60:ba:5f:02:c2:d4:bc:78:57: 23:e7:49:cd:b4:38:fd:da:c9:33:1c:dd:58:75:1c: 59:58:d6:62:22:b5:ff:f5:f6:89:53:59:71:c5:71: 82:03:bf:27:7e:c4:5d:80:ca:0b:19:0c:66:ea:c7: ad:d1:61:a9:59:cd:4f:e2:56:fe:28:c9:d0:46:91: 50:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DC:D5:DA:D6:CF:DD:AC:63:3E:95:53:BF:1A:AE:83:CE:A1:E9:71 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003::/48 Signature Algorithm: sha256WithRSAEncryption 61:df:df:02:40:95:f2:4f:1b:eb:85:b3:8c:46:e6:ad:85:cd: fd:66:b2:73:fe:13:09:c1:a9:44:5e:cb:6d:e6:59:c3:b2:6e: 19:d1:89:be:76:67:04:60:08:01:54:af:17:bd:69:05:2f:7e: bb:29:21:b3:83:7f:11:60:8e:29:6d:a4:82:cd:16:23:4d:d3: c3:06:8b:4a:9a:cd:68:e3:00:27:d5:9e:7d:40:b7:c5:cb:ac: e5:97:4e:92:be:9c:87:47:2a:21:38:77:03:6c:63:82:d4:a8: 6a:5e:bb:c1:5c:31:46:bb:69:dd:ec:ab:fd:f5:c6:e3:00:43: 5b:f0:3f:9f:45:05:77:90:5b:2f:ce:70:c6:73:9e:12:90:7c: aa:f7:c3:32:b2:e2:2c:3b:d9:ec:1e:ca:01:dd:e8:97:f7:38: c2:63:aa:4a:63:61:0b:a8:33:b6:7d:4e:f5:d5:11:12:c9:f4: cc:b3:45:0d:c3:4a:7d:df:76:d5:ba:dd:bf:ce:03:24:6a:fa: 2e:9a:50:91:58:18:3f:09:6a:b2:be:8c:2d:85:3a:0e:59:73: c4:84:81:54:5d:d0:0e:82:eb:44:dd:0b:f1:1e:22:6e:0d:30: 5d:a2:bb:6f:b4:7d:95:1d:83:14:f7:b2:25:9b:74:e6:e3:1e: 6b:be:d2:04 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUbckaJ78AMd9fqyK4CZJyiNEHzTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNjA2MDUxMTAxNTVaFw0yNzA2MDQxMTA2NTVaMDMxMTAvBgNV BAMTKDJCRENENURBRDZDRkREQUM2MzNFOTU1M0JGMUFBRTgzQ0VBMUU5NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc/t07ggCiy2xAQHNZeb1FSd3h /iRBnfcJcNsNpzH1dt/1nK0vO/NLy4khHGP8ecmMxx2mmsz+sCR5qrCJzSTRDo6z lVQAnTcO0A/g7Xfh7DTojFy/HlJYEBlLOlHaLW7kxfZacW/gvT9fhJu6GDGidoo/ qDHIQWIYWvAxqhUHJ4GxeuWwXYmbrwfwYq28vAgpE1XUXafNot4YYxTDc8jssIPr 1DvzYpBNQxa260xO99ApJBdz6k6hv2C6XwLC1Lx4VyPnSc20OP3ayTMc3Vh1HFlY 1mIitf/19olTWXHFcYIDvyd+xF2AygsZDGbqx63RYalZzU/iVv4oydBGkVBFAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUK9zV2tbP3axjPpVTvxqug86h6XEwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMwMzYzNzM2LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA KgagAwAAMA0GCSqGSIb3DQEBCwUAA4IBAQBh398CQJXyTxvrhbOMRuathc39ZrJz /hMJwalEXstt5lnDsm4Z0Ym+dmcEYAgBVK8XvWkFL367KSGzg38RYI4pbaSCzRYj TdPDBotKms1o4wAn1Z59QLfFy6zll06SvpyHRyohOHcDbGOC1KhqXrvBXDFGu2nd 7Kv99cbjAENb8D+fRQV3kFsvznDGc54SkHyq98MysuIsO9nsHsoB3eiX9zjCY6pK Y2ELqDO2fU711RESyfTMs0UNw0p933bVut2/zgMkavoumlCRWBg/CWqyvowthToO WXPEhIFUXdAOgutE3QvxHiJuDTBdortvtH2VHYMU97Ilm3Tm4x5rvtIE -----END CERTIFICATE-----Generated at Sat Jun 6 05:27:29 2026 by rpki-client