$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa File: 326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa (raw, json) Hash identifier: Pecsaqccf5tHcdlTeF7bCwVmz7JER7H8qSHLGuqWRMI= Subject key identifier: 6C:B9:AA:FB:F3:66:57:CB:EB:4C:59:46:4A:F6:A9:58:D0:B3:3F:86 Certificate issuer: /CN=521525856CBBA6D9D2254221C280DC930734AAB8 Certificate serial: 4757BDBEB64D2BBC17D07AD70E788E06FB12E754 Authority key identifier: 52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa Signing time: Fri 05 Jun 2026 11:06:57 +0000 ROA not before: Fri 05 Jun 2026 11:01:57 +0000 ROA not after: Fri 04 Jun 2027 11:06:57 +0000 asID: 200676 IP address blocks: 2a06:a003:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 12:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:57:bd:be:b6:4d:2b:bc:17:d0:7a:d7:0e:78:8e:06:fb:12:e7:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521525856CBBA6D9D2254221C280DC930734AAB8 Validity Not Before: Jun 5 11:01:57 2026 GMT Not After : Jun 4 11:06:57 2027 GMT Subject: CN=6CB9AAFBF36657CBEB4C59464AF6A958D0B33F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:26:a9:ee:03:18:f2:b5:69:bd:f4:b4:5a:e7: 59:55:22:9b:44:da:43:40:b7:43:a5:d5:32:4d:df: d8:25:80:07:c9:80:93:65:33:2c:6b:de:f1:71:df: 29:e6:62:33:72:71:20:77:96:cf:25:51:5c:18:88: 09:3d:ba:29:ce:67:4e:7e:e2:3a:23:6c:3b:0a:9f: 07:1e:8a:4b:f5:8e:05:54:ee:02:02:ff:c6:44:85: 4b:6e:68:f5:32:b6:4a:4e:88:e3:8b:d9:fd:56:7c: 19:d6:f4:63:4a:df:cc:55:dc:95:37:1a:80:c2:44: 89:ab:8f:0c:39:d4:f2:b8:16:f6:72:5b:24:4b:21: 3c:74:09:59:45:f8:85:33:f8:b8:b0:61:39:cc:8a: d2:38:ed:80:4f:c1:f6:44:1b:0a:32:5e:1a:67:2f: 6a:ec:72:f1:12:14:42:f3:4c:50:0a:e4:79:82:23: 0b:b5:eb:c2:ee:40:97:7f:f7:99:d1:c7:f6:43:7f: 1c:41:62:69:38:69:71:7b:21:d1:58:18:2a:55:36: a3:d4:1b:8e:4c:16:69:b4:b6:a4:79:5c:cd:f2:9a: 75:5b:70:50:88:1f:59:90:20:eb:74:91:b3:b3:51: 11:d8:e0:27:64:0c:eb:ed:ea:2e:6b:34:33:42:a9: c1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:B9:AA:FB:F3:66:57:CB:EB:4C:59:46:4A:F6:A9:58:D0:B3:3F:86 X509v3 Authority Key Identifier: keyid:52:15:25:85:6C:BB:A6:D9:D2:25:42:21:C2:80:DC:93:07:34:AA:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/521525856CBBA6D9D2254221C280DC930734AAB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/521525856CBBA6D9D2254221C280DC930734AAB8.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/4/326130363a613030333a623030623a3a2f34382d3438203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 66:26:a2:f2:b8:b5:a2:41:fb:d7:6e:fa:b2:67:a9:d0:7e:4c: 44:c5:3c:0d:27:07:e9:1a:1a:61:77:ea:ff:c8:9c:65:ae:2d: 65:ac:9f:95:6a:3d:7b:eb:d6:5a:be:e1:03:c7:a1:74:e8:1e: ab:1e:90:7a:71:b5:a8:70:49:ef:29:17:a2:33:62:16:eb:8c: 50:50:d2:5e:75:fa:3e:63:c3:98:47:b6:9f:d4:47:20:f3:46: e4:17:da:85:98:dc:cd:c4:40:e6:55:48:cf:a3:99:c1:ae:90: cf:a2:1f:4d:e7:19:5d:0c:d0:4d:95:30:17:f5:cf:67:d9:72: e1:37:4d:21:28:83:28:47:31:c0:34:73:91:57:95:84:2d:00: 3f:dd:69:93:45:56:bc:2f:df:02:01:36:2a:bf:ef:5d:f9:5d: 53:0a:2e:96:c2:21:8d:a5:20:f3:a1:94:1b:28:07:08:18:45: cb:76:6c:14:b7:34:a8:c6:35:f7:db:d5:46:d9:37:e0:8e:5f: 52:5d:05:a7:d4:4d:66:a7:38:4b:9b:d0:9d:5c:3d:d3:4b:87: b6:8f:b0:b4:4d:2a:11:38:eb:3f:ac:3d:68:38:bc:c2:ee:9b: a4:ea:05:54:5f:eb:53:3d:1e:39:dc:61:56:9c:33:ce:9d:5e: 23:4c:83:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUR1e9vrZNK7wX0HrXDniOBvsS51QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMw NzM0QUFCODAeFw0yNjA2MDUxMTAxNTdaFw0yNzA2MDQxMTA2NTdaMDMxMTAvBgNV BAMTKDZDQjlBQUZCRjM2NjU3Q0JFQjRDNTk0NjRBRjZBOTU4RDBCMzNGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3JqnuAxjytWm99LRa51lVIptE 2kNAt0Ol1TJN39glgAfJgJNlMyxr3vFx3ynmYjNycSB3ls8lUVwYiAk9uinOZ05+ 4jojbDsKnwceikv1jgVU7gIC/8ZEhUtuaPUytkpOiOOL2f1WfBnW9GNK38xV3JU3 GoDCRImrjww51PK4FvZyWyRLITx0CVlF+IUz+LiwYTnMitI47YBPwfZEGwoyXhpn L2rscvESFELzTFAK5HmCIwu168LuQJd/95nRx/ZDfxxBYmk4aXF7IdFYGCpVNqPU G45MFmm0tqR5XM3ymnVbcFCIH1mQIOt0kbOzURHY4CdkDOvt6i5rNDNCqcGNAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUbLmq+/NmV8vrTFlGSvapWNCzP4YwHwYDVR0j BBgwFoAUUhUlhWy7ptnSJUIhwoDckwc0qrgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzQvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0QUFCOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvNTIxNTI1ODU2Q0JCQTZEOUQyMjU0MjIxQzI4MERDOTMwNzM0 QUFCOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzQvMzI2MTMwMzYzYTYxMzAzMDMz M2E2MjMwMzA2MjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMDM2MzczNi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGoAOwCzANBgkqhkiG9w0BAQsFAAOCAQEAZiai8ri1okH71276 smep0H5MRMU8DScH6RoaYXfq/8icZa4tZayflWo9e+vWWr7hA8ehdOgeqx6QenG1 qHBJ7ykXojNiFuuMUFDSXnX6PmPDmEe2n9RHIPNG5BfahZjczcRA5lVIz6OZwa6Q z6IfTecZXQzQTZUwF/XPZ9ly4TdNISiDKEcxwDRzkVeVhC0AP91pk0VWvC/fAgE2 Kr/vXfldUwoulsIhjaUg86GUGygHCBhFy3ZsFLc0qMY199vVRtk34I5fUl0Fp9RN Zqc4S5vQnVw900uHto+wtE0qETjrP6w9aDi8wu6bpOoFVF/rUz0eOdxhVpwzzp1e I0yDtg== -----END CERTIFICATE-----Generated at Sat Jun 6 05:30:56 2026 by rpki-client