$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031313a3a2f34382d313238203d3e20323130373936.roa File: 326130393a353463333a363031313a3a2f34382d313238203d3e20323130373936.roa (raw, json) Hash identifier: oOMJGE7w6MdhwxTQz0JIkTzWwBWrWIJlxBtQDJHxYz8= Subject key identifier: 62:96:AC:64:3F:5F:35:93:33:BB:4C:D9:12:7B:96:49:04:9D:1E:A6 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 5229B072925323017911E1C79C0CBF2EB4AEDCDB Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031313a3a2f34382d313238203d3e20323130373936.roa Signing time: Sun 19 Apr 2026 02:08:44 +0000 ROA not before: Sun 19 Apr 2026 02:03:44 +0000 ROA not after: Sun 18 Apr 2027 02:08:44 +0000 asID: 210796 IP address blocks: 2a09:54c3:6011::/48 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 02:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:29:b0:72:92:53:23:01:79:11:e1:c7:9c:0c:bf:2e:b4:ae:dc:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Apr 19 02:03:44 2026 GMT Not After : Apr 18 02:08:44 2027 GMT Subject: CN=6296AC643F5F359333BB4CD9127B9649049D1EA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:81:18:3b:7f:83:dd:34:0e:69:35:4d:5d:6c: e2:02:7e:75:46:33:90:6d:c2:bd:bc:6b:b8:2c:85: 95:f3:04:b9:e6:88:26:f8:42:eb:1a:22:f4:df:26: f7:c0:6f:e4:92:99:2b:33:8a:a5:f5:91:46:29:6c: 61:52:eb:69:8e:81:1b:cf:e1:a8:34:44:07:88:6c: ef:c6:f7:12:7a:aa:18:04:78:79:b6:33:5a:05:d0: 97:3e:6e:60:a4:fe:aa:b2:27:b6:e2:15:68:73:3a: 16:a1:15:0f:54:fb:a5:42:dc:9c:81:0a:76:c2:fe: 5b:05:28:3d:a1:f0:eb:88:e5:b6:fb:64:52:bc:84: f1:a3:d6:d2:a7:e2:b2:3d:51:4b:7d:df:30:ef:45: a9:1f:94:5e:8e:e9:68:6e:8b:01:09:41:98:14:bc: b8:c7:4f:15:69:41:a6:7b:a1:3e:48:41:dc:15:da: c7:77:bd:8f:6f:17:a6:d1:f1:8e:ad:45:ed:f2:22: 94:93:9c:17:4a:35:29:75:4e:1a:10:82:34:d0:b5: c0:7f:b6:60:8f:ce:0d:de:06:d9:92:37:f4:51:74: 1e:13:6f:2e:ce:7e:01:dd:0f:59:57:86:51:16:80: 69:62:c1:12:1c:1e:39:ca:91:f7:92:63:52:16:37: c9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:96:AC:64:3F:5F:35:93:33:BB:4C:D9:12:7B:96:49:04:9D:1E:A6 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031313a3a2f34382d313238203d3e20323130373936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:6011::/48 Signature Algorithm: sha256WithRSAEncryption 5f:0d:f6:3f:22:4a:3d:e3:51:2e:a3:d6:db:24:1f:99:29:8a: 85:93:7c:e6:98:e3:f4:1f:16:5f:32:20:21:12:7e:32:5c:a1: 86:58:0b:9c:a9:cc:22:45:b2:d9:88:83:ab:ca:5c:9e:fc:8d: 69:77:86:11:34:6d:7c:5d:e4:e9:4c:bd:1e:90:0e:d9:68:64: f6:86:23:37:f2:19:59:8a:e5:f1:06:a9:f6:b9:4f:5c:83:d0: 88:01:69:80:21:6b:00:79:cd:2a:e1:ef:66:04:7a:7b:48:9c: 41:50:f2:8e:94:ad:d8:07:d9:03:5c:bb:5b:d7:4f:bc:66:02: 13:28:8e:25:ac:c1:8f:33:c1:4c:bc:a3:e5:ad:71:a3:0b:6b: 1d:d3:79:6b:3e:f1:db:86:97:d5:cd:bb:b5:28:43:4b:35:63: bc:3a:8f:5c:c2:39:d8:0f:83:ee:c3:19:f3:6e:ed:1d:b7:c5: 2f:ce:ee:c9:1e:5c:3f:27:07:1a:c8:3e:ce:ad:c9:e6:9c:06: c1:c9:d8:2f:ee:0f:31:0e:ec:32:85:2c:76:fd:ca:61:ed:90: ad:56:c7:54:69:42:27:6e:13:b2:5d:e6:90:c9:8e:5b:b4:0a: cd:15:95:b8:5f:23:bb:c2:29:1a:08:6e:c2:c9:45:58:a8:51: 29:a1:9c:6a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUUimwcpJTIwF5EeHHnAy/LrSu3NswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA0MTkwMjAzNDRaFw0yNzA0MTgwMjA4NDRaMDMxMTAvBgNV BAMTKDYyOTZBQzY0M0Y1RjM1OTMzM0JCNENEOTEyN0I5NjQ5MDQ5RDFFQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXgRg7f4PdNA5pNU1dbOICfnVG M5Btwr28a7gshZXzBLnmiCb4QusaIvTfJvfAb+SSmSsziqX1kUYpbGFS62mOgRvP 4ag0RAeIbO/G9xJ6qhgEeHm2M1oF0Jc+bmCk/qqyJ7biFWhzOhahFQ9U+6VC3JyB CnbC/lsFKD2h8OuI5bb7ZFK8hPGj1tKn4rI9UUt93zDvRakflF6O6WhuiwEJQZgU vLjHTxVpQaZ7oT5IQdwV2sd3vY9vF6bR8Y6tRe3yIpSTnBdKNSl1ThoQgjTQtcB/ tmCPzg3eBtmSN/RRdB4Tby7OfgHdD1lXhlEWgGliwRIcHjnKkfeSY1IWN8mdAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUYpasZD9fNZMzu0zZEnuWSQSdHqYwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMwMzEzMTNhM2EyZjM0MzgyZDMxMzIzODIwM2QzZTIwMzIzMTMwMzczOTM2 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcAKglUw2ARMA0GCSqGSIb3DQEBCwUAA4IBAQBfDfY/Iko941Eu o9bbJB+ZKYqFk3zmmOP0HxZfMiAhEn4yXKGGWAucqcwiRbLZiIOrylye/I1pd4YR NG18XeTpTL0ekA7ZaGT2hiM38hlZiuXxBqn2uU9cg9CIAWmAIWsAec0q4e9mBHp7 SJxBUPKOlK3YB9kDXLtb10+8ZgITKI4lrMGPM8FMvKPlrXGjC2sd03lrPvHbhpfV zbu1KENLNWO8Oo9cwjnYD4Puwxnzbu0dt8Uvzu7JHlw/JwcayD7OrcnmnAbBydgv 7g8xDuwyhSx2/cph7ZCtVsdUaUInbhOyXeaQyY5btArNFZW4XyO7wikaCG7CyUVY qFEpoZxq -----END CERTIFICATE-----Generated at Sun Apr 19 07:08:55 2026 by rpki-client