$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3630303a3a2f34342d3438203d3e20323134393239.roa File: 326130363a396634313a3630303a3a2f34342d3438203d3e20323134393239.roa (raw, json) Hash identifier: AMLgwRSBt0CmHGpm323osatfdfROy2bz38NovoAPXrE= Subject key identifier: B5:45:E0:AA:94:15:BF:80:E0:99:89:DA:CD:0A:B0:E6:40:73:1C:46 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 33064C755EF8F88A5276B0CB1F631D8A0A929030 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3630303a3a2f34342d3438203d3e20323134393239.roa Signing time: Mon 20 Apr 2026 07:16:09 +0000 ROA not before: Mon 20 Apr 2026 07:11:09 +0000 ROA not after: Mon 19 Apr 2027 07:16:09 +0000 asID: 214929 IP address blocks: 2a06:9f41:600::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 May 2026 22:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:06:4c:75:5e:f8:f8:8a:52:76:b0:cb:1f:63:1d:8a:0a:92:90:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Apr 20 07:11:09 2026 GMT Not After : Apr 19 07:16:09 2027 GMT Subject: CN=B545E0AA9415BF80E09989DACD0AB0E640731C46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e7:d3:14:9e:24:3c:cc:54:fd:b1:b7:72:3f: 96:cc:9f:0e:73:d4:a4:a4:ee:dc:61:c1:12:65:08: 10:36:b8:6b:3a:c4:e0:da:cc:2a:60:6d:9c:10:07: a0:d1:27:c7:ed:7e:89:ed:6a:86:ce:e3:70:b6:9f: a4:0d:7d:87:7a:5c:9e:1e:99:83:58:61:76:b3:42: 67:eb:09:f9:7b:57:5f:74:2c:f1:09:9d:21:93:cf: 00:9e:04:bd:d0:d9:1f:6d:32:ea:8e:1c:dc:21:e6: 8d:ee:73:20:0e:e7:4c:b7:fc:a2:6f:f9:c1:b7:3b: 4a:04:2a:48:f0:5b:6e:1f:2a:73:0d:18:c7:f7:df: 97:d6:7d:5d:72:da:60:9f:01:8d:32:29:cf:da:45: f8:99:d6:65:61:5f:7e:0b:df:5e:3e:95:75:2c:1a: cb:f3:d9:36:6e:ab:4d:4e:e8:c0:f1:3e:4d:ff:2c: 2d:db:96:89:e6:ba:eb:92:5d:06:f8:70:c4:af:12: 64:57:1a:4b:4d:cc:d2:b3:5b:d7:42:63:5c:b5:a8: 5c:b6:d8:d8:13:fc:d3:e9:b1:a2:b0:cf:f4:c3:4a: 1f:d5:b1:38:54:9b:11:a3:4f:a1:ae:f4:eb:43:86: 34:3d:b7:b7:01:2f:86:c2:f5:28:52:dc:19:9e:4d: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:45:E0:AA:94:15:BF:80:E0:99:89:DA:CD:0A:B0:E6:40:73:1C:46 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3630303a3a2f34342d3438203d3e20323134393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:600::/44 Signature Algorithm: sha256WithRSAEncryption 0f:13:58:5d:1d:0e:5b:8a:23:39:ae:5a:e3:51:1f:d7:6d:08: 18:86:04:ce:d8:36:16:00:c5:e2:8a:19:22:5e:ba:9c:96:3a: 6d:b4:ed:9d:9e:1e:55:86:bc:38:6b:7d:b0:cd:4f:08:35:a0: 6a:6b:45:77:92:30:b8:4d:69:86:d4:07:40:bb:a3:f4:e6:95: 3c:a4:3d:fe:07:c4:9d:09:91:cd:79:a9:e1:17:68:2d:28:87: 9e:f2:11:97:c3:ab:e9:23:73:49:69:61:f9:3f:fe:5a:71:23: e0:2a:6d:94:dd:13:2f:65:b1:1b:b4:46:b6:b8:86:3b:c6:00: db:65:ad:45:e6:9c:c9:22:34:3c:98:76:e4:8e:ab:b5:06:72: a0:9f:ba:31:fa:13:14:20:c2:57:74:e1:8e:db:45:52:b0:e0: 83:a2:47:94:5b:10:9e:94:da:02:cd:bf:f3:18:07:15:8d:73: 93:30:8e:b3:8d:dd:2f:cf:50:79:72:f2:da:9c:44:60:ea:2e: f6:79:31:1d:36:e3:97:f9:65:cf:d4:71:f6:cb:99:f6:3b:31: 27:39:d5:9f:c3:d7:cd:a2:2e:c4:3f:64:73:63:9d:86:ac:57: 2f:b2:5a:76:b7:0c:bc:bc:b0:63:ff:47:52:b0:61:f7:66:28: b8:66:5f:70 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUMwZMdV74+IpSdrDLH2MdigqSkDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjA0MjAwNzExMDlaFw0yNzA0MTkwNzE2MDlaMDMxMTAvBgNV BAMTKEI1NDVFMEFBOTQxNUJGODBFMDk5ODlEQUNEMEFCMEU2NDA3MzFDNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCd59MUniQ8zFT9sbdyP5bMnw5z 1KSk7txhwRJlCBA2uGs6xODazCpgbZwQB6DRJ8ftfontaobO43C2n6QNfYd6XJ4e mYNYYXazQmfrCfl7V190LPEJnSGTzwCeBL3Q2R9tMuqOHNwh5o3ucyAO50y3/KJv +cG3O0oEKkjwW24fKnMNGMf335fWfV1y2mCfAY0yKc/aRfiZ1mVhX34L314+lXUs Gsvz2TZuq01O6MDxPk3/LC3blonmuuuSXQb4cMSvEmRXGktNzNKzW9dCY1y1qFy2 2NgT/NPpsaKwz/TDSh/VsThUmxGjT6Gu9OtDhjQ9t7cBL4bC9ShS3BmeTafNAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUtUXgqpQVv4DgmYnazQqw5kBzHEYwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzNjMwMzAzYTNhMmYzNDM0MmQzNDM4MjAzZDNlMjAzMjMxMzQzOTMyMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqBp9BBgAwDQYJKoZIhvcNAQELBQADggEBAA8TWF0dDluKIzmuWuNR H9dtCBiGBM7YNhYAxeKKGSJeupyWOm207Z2eHlWGvDhrfbDNTwg1oGprRXeSMLhN aYbUB0C7o/TmlTykPf4HxJ0Jkc15qeEXaC0oh57yEZfDq+kjc0lpYfk//lpxI+Aq bZTdEy9lsRu0Rra4hjvGANtlrUXmnMkiNDyYduSOq7UGcqCfujH6ExQgwld04Y7b RVKw4IOiR5RbEJ6U2gLNv/MYBxWNc5MwjrON3S/PUHly8tqcRGDqLvZ5MR0245f5 Zc/UcfbLmfY7MSc51Z/D182iLsQ/ZHNjnYasVy+yWna3DLy8sGP/R1KwYfdmKLhm X3A= -----END CERTIFICATE-----Generated at Mon May 4 09:22:44 2026 by rpki-client