$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030653a3a2f34382d3438203d3e20323135313130.roa File: 326130393a353463333a363030653a3a2f34382d3438203d3e20323135313130.roa (raw, json) Hash identifier: Rr/vz+7yv4Abfk6rzUc370DwqfGjXP58wmBJGdEn0NA= Subject key identifier: 41:EA:64:72:60:BA:E2:62:0B:67:CD:6B:84:55:C4:8A:ED:DD:94:D3 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 75F018B60C54395E88C928F79453AB2ADF8C54B7 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030653a3a2f34382d3438203d3e20323135313130.roa Signing time: Thu 23 Apr 2026 21:15:37 +0000 ROA not before: Thu 23 Apr 2026 21:10:37 +0000 ROA not after: Thu 22 Apr 2027 21:15:37 +0000 asID: 215110 IP address blocks: 2a09:54c3:600e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 11:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:f0:18:b6:0c:54:39:5e:88:c9:28:f7:94:53:ab:2a:df:8c:54:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Apr 23 21:10:37 2026 GMT Not After : Apr 22 21:15:37 2027 GMT Subject: CN=41EA647260BAE2620B67CD6B8455C48AEDDD94D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a1:00:e6:53:9d:80:7e:f3:8b:01:1b:4c:cd: a1:0e:25:5f:ce:46:a2:1c:97:95:db:7f:c4:b4:63: 30:0f:d1:1a:80:07:58:6e:c7:34:0a:8d:41:6a:5e: 02:95:77:da:7b:4c:b7:de:09:85:6c:ce:74:0d:16: 30:d9:e0:41:b6:f5:04:ed:d5:a1:29:4b:27:d1:6b: 93:7c:fa:da:28:3f:9f:ad:ad:af:74:1e:5d:ce:9b: 30:4e:73:40:02:25:e2:68:3f:de:e1:0d:ad:01:35: 71:ed:62:5d:52:d2:c1:43:8d:b5:72:f9:30:bd:d0: 02:0d:08:79:0e:b8:82:e3:fd:26:01:b4:e9:dc:f2: 24:0e:00:6b:ee:42:91:59:59:c8:ab:62:53:4a:ce: 78:35:1a:1f:39:fb:85:6a:d7:ae:8e:8a:ad:e7:f8: 17:f7:33:26:0e:ef:10:09:f2:09:f9:26:b6:b4:3c: cc:64:c8:fd:0b:90:81:f3:7f:d7:40:e1:9e:d3:db: 41:6e:25:db:64:41:c7:58:03:df:03:4f:b3:97:ad: 6d:a1:56:73:4e:5b:14:21:0b:1b:0a:d1:37:be:f0: e1:01:50:b2:bc:1b:00:8d:f2:27:05:b6:ca:1d:5b: 73:e1:6b:56:89:83:8f:62:dc:27:5f:16:b2:f2:00: eb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EA:64:72:60:BA:E2:62:0B:67:CD:6B:84:55:C4:8A:ED:DD:94:D3 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030653a3a2f34382d3438203d3e20323135313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:600e::/48 Signature Algorithm: sha256WithRSAEncryption 4a:5e:25:c2:23:3e:a4:56:a9:52:45:d1:83:67:2c:25:b9:a9: bc:01:1b:ed:38:f6:1a:34:27:12:98:b7:ad:76:03:76:82:c6: 6d:50:e8:42:fe:93:4d:6f:ac:2a:6d:57:11:76:e4:2a:39:15: 52:33:bd:7a:a8:63:bd:b5:ab:1d:85:9a:ed:28:7a:2e:1d:e1: 28:de:53:66:77:f8:a8:05:15:7e:e8:0b:20:2b:28:39:88:75: 55:b6:57:bf:00:37:57:fa:de:7c:82:66:c2:ce:50:41:e0:16: 7c:25:1c:1f:64:18:78:5d:9d:f1:94:71:e4:b3:f9:9d:a5:ed: 5c:c7:60:ff:89:61:c0:8a:4a:b1:62:42:64:a4:2a:b2:77:c3: 98:82:29:b9:77:09:70:95:79:70:6c:cc:2c:e5:2a:31:3a:7d: 31:11:6f:78:49:10:d7:49:87:6a:5d:c5:8b:98:88:a7:b0:ae: 28:fc:8e:85:96:14:63:6a:37:1e:52:b6:bf:76:37:db:b7:73: 74:ff:ab:b1:53:4a:eb:f3:9d:84:b4:2a:7b:01:e1:1f:9c:e3: a7:ef:8d:67:dd:5e:b8:56:ca:ef:61:4e:39:bf:9f:bc:b5:c2: 2c:8b:e9:c8:c0:01:ec:41:8c:fe:7c:6f:2f:52:e5:9c:c6:dc: 0f:5d:62:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUdfAYtgxUOV6IySj3lFOrKt+MVLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA0MjMyMTEwMzdaFw0yNzA0MjIyMTE1MzdaMDMxMTAvBgNV BAMTKDQxRUE2NDcyNjBCQUUyNjIwQjY3Q0Q2Qjg0NTVDNDhBRURERDk0RDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCroQDmU52AfvOLARtMzaEOJV/O RqIcl5Xbf8S0YzAP0RqAB1huxzQKjUFqXgKVd9p7TLfeCYVsznQNFjDZ4EG29QTt 1aEpSyfRa5N8+tooP5+tra90Hl3OmzBOc0ACJeJoP97hDa0BNXHtYl1S0sFDjbVy +TC90AINCHkOuILj/SYBtOnc8iQOAGvuQpFZWcirYlNKzng1Gh85+4Vq166Oiq3n +Bf3MyYO7xAJ8gn5Jra0PMxkyP0LkIHzf9dA4Z7T20FuJdtkQcdYA98DT7OXrW2h VnNOWxQhCxsK0Te+8OEBULK8GwCN8icFtsodW3Pha1aJg49i3CdfFrLyAOtfAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUQepkcmC64mILZ81rhFXEiu3dlNMwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMwMzA2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTMxMzEzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMNgDjANBgkqhkiG9w0BAQsFAAOCAQEASl4lwiM+pFapUkXR g2csJbmpvAEb7Tj2GjQnEpi3rXYDdoLGbVDoQv6TTW+sKm1XEXbkKjkVUjO9eqhj vbWrHYWa7Sh6Lh3hKN5TZnf4qAUVfugLICsoOYh1VbZXvwA3V/refIJmws5QQeAW fCUcH2QYeF2d8ZRx5LP5naXtXMdg/4lhwIpKsWJCZKQqsnfDmIIpuXcJcJV5cGzM LOUqMTp9MRFveEkQ10mHal3Fi5iIp7CuKPyOhZYUY2o3HlK2v3Y327dzdP+rsVNK 6/OdhLQqewHhH5zjp++NZ91euFbK72FOOb+fvLXCLIvpyMAB7EGM/nxvL1LlnMbc D11iKw== -----END CERTIFICATE-----Generated at Wed May 13 16:52:29 2026 by rpki-client