$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa File: 326131343a316563303a3a2f33322d3332203d3e20323034343634.roa (raw, json) Hash identifier: 6kQo7bFkLtOfBMIG0r5iyUGZwYPdB0rC34zfUk2Ho74= Subject key identifier: 6A:E8:EE:9F:DB:73:BE:68:FC:B5:74:18:78:B5:4F:C6:7C:40:16:F6 Certificate issuer: /CN=B3936DA793A9995862F07142C3D0BB0D2AB2BBBB Certificate serial: 3CA32CA9B94874E3E02342522AC4345712105E89 Authority key identifier: B3:93:6D:A7:93:A9:99:58:62:F0:71:42:C3:D0:BB:0D:2A:B2:BB:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/10/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa Signing time: Mon 20 Apr 2026 19:48:50 +0000 ROA not before: Mon 20 Apr 2026 19:43:50 +0000 ROA not after: Mon 19 Apr 2027 19:48:50 +0000 asID: 204464 IP address blocks: 2a14:1ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.crl rsync://rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.mft rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/10/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.cer rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/10/69727B946D879F5A52FB58F24B4D4D12D59B2CC2.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/10/69727B946D879F5A52FB58F24B4D4D12D59B2CC2.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/69727B946D879F5A52FB58F24B4D4D12D59B2CC2.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 03:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a3:2c:a9:b9:48:74:e3:e0:23:42:52:2a:c4:34:57:12:10:5e:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3936DA793A9995862F07142C3D0BB0D2AB2BBBB Validity Not Before: Apr 20 19:43:50 2026 GMT Not After : Apr 19 19:48:50 2027 GMT Subject: CN=6AE8EE9FDB73BE68FCB5741878B54FC67C4016F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:76:92:90:05:e5:00:25:0a:ce:ac:b4:63:ea: df:9c:e5:50:ba:5e:ef:88:93:52:64:20:e3:d4:71: 83:a4:ac:6a:1d:ba:be:b3:7e:02:46:ab:cb:a7:59: d7:21:c7:10:89:92:01:46:91:cd:47:78:c4:d6:71: d7:c2:e8:75:b0:ae:0b:ef:97:a2:ed:36:2d:3d:76: c3:1d:f1:5b:a8:2c:9f:27:28:14:91:e4:04:36:46: 8f:b3:7d:d8:e6:e7:ac:6e:8e:1e:9b:39:05:d7:e6: 15:eb:81:4a:53:19:78:5b:97:ec:1e:bc:63:47:ab: 01:6b:4f:ae:98:3b:c4:f9:18:a5:48:0c:10:53:c0: 0b:cd:ce:99:77:38:cf:cf:f4:cc:b2:6c:c0:b5:27: 69:93:8f:75:c4:7e:cb:3d:35:be:30:a7:78:ca:28: c4:22:f0:df:94:82:d9:53:13:ce:28:87:a2:0e:68: 63:79:52:a1:5f:3f:58:59:69:b2:c5:5c:e8:d8:7b: 3d:f2:09:d9:f1:8e:6d:94:f4:89:bf:64:2c:87:5c: af:4d:f6:9a:f4:57:ba:da:41:ec:a0:54:17:bd:15: 06:92:fd:39:ee:65:5a:7a:b5:a2:3c:af:56:4f:f1: 64:0b:96:22:0e:30:e1:bf:30:eb:fc:c0:2f:ee:a6: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E8:EE:9F:DB:73:BE:68:FC:B5:74:18:78:B5:4F:C6:7C:40:16:F6 X509v3 Authority Key Identifier: keyid:B3:93:6D:A7:93:A9:99:58:62:F0:71:42:C3:D0:BB:0D:2A:B2:BB:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/10/B3936DA793A9995862F07142C3D0BB0D2AB2BBBB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4af4a62e-3ef5-4a36-b0d3-7825bec134ab/1/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:83:53:7e:a5:68:9d:50:45:6b:00:ac:e8:15:1f:cb:05:85: 7b:90:99:53:21:d3:54:c8:f5:38:e2:7a:07:21:bd:54:59:cb: 1e:9f:bf:9d:ae:0b:be:86:a3:d2:56:73:50:10:02:20:dd:2e: 27:21:67:fd:b9:14:2f:7f:ac:f8:c9:6e:ad:78:18:1b:27:3b: a2:4b:a0:9c:d3:3c:d0:9c:e9:3b:36:61:f3:d0:f5:88:53:37: cc:6e:a8:a4:b1:54:3d:07:14:0e:10:38:22:64:bf:34:10:38: 66:54:e3:7d:d2:d0:83:34:26:1b:e0:3c:40:54:30:5f:61:26: 11:0d:b3:ca:d0:f0:37:0c:ee:0c:4c:9b:36:02:87:e5:b8:d7: 63:0e:d6:74:e2:da:6a:1d:2d:40:d1:59:8e:f0:e8:1a:21:93: 0f:14:0e:62:18:3f:d8:17:88:5b:1d:5f:07:71:79:60:d8:45: b6:07:d4:d0:03:d4:c6:2a:45:a1:29:90:7d:4d:4f:21:45:ef: 66:d7:de:83:9a:3c:25:b1:0c:bc:51:2c:25:65:38:8e:91:fd: dd:41:81:99:35:fb:d4:68:e0:1d:35:ef:00:50:fd:6e:d7:cd: 94:17:eb:6b:00:b1:38:76:48:3d:10:e4:e4:b2:33:67:2e:54: 9d:0e:76:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUPKMsqblIdOPgI0JSKsQ0VxIQXokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjM5MzZEQTc5M0E5OTk1ODYyRjA3MTQyQzNEMEJCMEQy QUIyQkJCQjAeFw0yNjA0MjAxOTQzNTBaFw0yNzA0MTkxOTQ4NTBaMDMxMTAvBgNV BAMTKDZBRThFRTlGREI3M0JFNjhGQ0I1NzQxODc4QjU0RkM2N0M0MDE2RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhdpKQBeUAJQrOrLRj6t+c5VC6 Xu+Ik1JkIOPUcYOkrGodur6zfgJGq8unWdchxxCJkgFGkc1HeMTWcdfC6HWwrgvv l6LtNi09dsMd8VuoLJ8nKBSR5AQ2Ro+zfdjm56xujh6bOQXX5hXrgUpTGXhbl+we vGNHqwFrT66YO8T5GKVIDBBTwAvNzpl3OM/P9MyybMC1J2mTj3XEfss9Nb4wp3jK KMQi8N+UgtlTE84oh6IOaGN5UqFfP1hZabLFXOjYez3yCdnxjm2U9Im/ZCyHXK9N 9pr0V7raQeygVBe9FQaS/TnuZVp6taI8r1ZP8WQLliIOMOG/MOv8wC/uprAPAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUaujun9tzvmj8tXQYeLVPxnxAFvYwHwYDVR0j BBgwFoAUs5Ntp5OpmVhi8HFCw9C7DSqyu7swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNGFmNGE2MmUtM2VmNS00YTM2LWIwZDMtNzgyNWJlYzEz NGFiLzEvQjM5MzZEQTc5M0E5OTk1ODYyRjA3MTQyQzNEMEJCMEQyQUIyQkJCQi5j cmwwgaAGCCsGAQUFBwEBBIGTMIGQMIGNBggrBgEFBQcwAoaBgHJzeW5jOi8vcnN5 bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00 ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzEwL0IzOTM2REE3OTNBOTk5NTg2MkYwNzE0 MkMzRDBCQjBEMkFCMkJCQkIuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYB BQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5LzRhZjRhNjJlLTNlZjUtNGEzNi1iMGQzLTc4MjViZWMxMzRhYi8xLzMyNjEz MTM0M2EzMTY1NjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzAzNDM0MzYz NC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACoUHsAwDQYJKoZIhvcNAQELBQADggEBAE2DU36laJ1QRWsA rOgVH8sFhXuQmVMh01TI9TjiegchvVRZyx6fv52uC76Go9JWc1AQAiDdLichZ/25 FC9/rPjJbq14GBsnO6JLoJzTPNCc6Ts2YfPQ9YhTN8xuqKSxVD0HFA4QOCJkvzQQ OGZU433S0IM0JhvgPEBUMF9hJhENs8rQ8DcM7gxMmzYCh+W412MO1nTi2modLUDR WY7w6Bohkw8UDmIYP9gXiFsdXwdxeWDYRbYH1NAD1MYqRaEpkH1NTyFF72bX3oOa PCWxDLxRLCVlOI6R/d1BgZk1+9Ro4B017wBQ/W7XzZQX62sAsTh2SD0Q5OSyM2cu VJ0Odt0= -----END CERTIFICATE-----Generated at Wed May 13 16:14:41 2026 by rpki-client