$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363136663a3a2f34382d3438203d3e20323139343138.roa File: 326130393a353463333a363136663a3a2f34382d3438203d3e20323139343138.roa (raw, json) Hash identifier: nNLkEE3r8aWgyah0o2vUSor0hImJgHu09SMfU79jmsQ= Subject key identifier: FA:D0:CD:35:CA:C5:43:9A:CD:BC:25:2C:DF:F7:4D:2F:30:D2:4A:94 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 4B1967893EBCAB59DC38B638CCE36BFCB331B164 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363136663a3a2f34382d3438203d3e20323139343138.roa Signing time: Mon 22 Jun 2026 17:04:40 +0000 ROA not before: Mon 22 Jun 2026 16:59:40 +0000 ROA not after: Mon 21 Jun 2027 17:04:40 +0000 asID: 219418 IP address blocks: 2a09:54c3:616f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Jun 2026 02:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:19:67:89:3e:bc:ab:59:dc:38:b6:38:cc:e3:6b:fc:b3:31:b1:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jun 22 16:59:40 2026 GMT Not After : Jun 21 17:04:40 2027 GMT Subject: CN=FAD0CD35CAC5439ACDBC252CDFF74D2F30D24A94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:16:e5:4b:d5:33:cf:92:ff:47:2b:17:0e:bf: b1:8e:6b:57:39:59:d0:5e:0b:8e:28:5d:81:34:f3: f0:cc:08:39:db:9a:8c:ba:99:64:81:26:11:ec:a0: e5:0c:1a:b4:1a:df:32:23:75:ba:0b:11:43:44:fc: 1a:59:aa:e2:eb:8f:f8:b0:24:d4:67:bb:d5:d2:84: 77:16:28:02:f4:c4:5c:e0:f5:70:7f:1d:e3:5e:f2: 90:b0:8e:64:95:b1:e0:7c:1d:0c:27:3d:4f:c2:6a: 06:d1:65:c4:e6:ce:2d:91:a9:00:1f:3f:53:43:80: 35:f8:c9:38:4e:5e:be:0f:9e:36:74:fc:fc:f4:e1: 7b:bf:89:20:51:2f:d6:22:de:d7:97:72:4b:7e:25: 36:4a:bc:a9:45:25:76:e5:b7:eb:10:bb:2e:70:b9: c9:58:8c:36:65:34:38:cd:95:ad:54:21:01:1a:02: 84:8b:1a:5d:4a:01:4f:77:2c:97:19:9c:6c:d0:17: f9:6c:9e:38:0e:31:75:5a:9c:7e:38:6f:ce:3d:a9: d4:b0:c7:0b:c5:2c:73:62:5f:05:17:26:91:3a:6d: 69:c3:53:d7:7f:56:79:f2:a6:f5:3f:19:94:bc:91: 95:7f:6b:2e:6b:ea:29:54:ad:89:73:b0:2f:ff:32: ff:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D0:CD:35:CA:C5:43:9A:CD:BC:25:2C:DF:F7:4D:2F:30:D2:4A:94 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363136663a3a2f34382d3438203d3e20323139343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:616f::/48 Signature Algorithm: sha256WithRSAEncryption 4e:62:dc:b4:f7:d1:da:41:b7:dd:46:67:d9:79:12:92:03:8b: 67:a3:78:63:3a:ff:0b:31:2c:b5:27:31:18:48:1d:55:b7:06: e7:28:78:64:43:95:7c:29:6c:5a:21:f7:b0:89:ad:bc:70:d8: 89:01:f3:7e:e8:76:68:a2:b0:0b:6b:1f:a3:95:51:4b:a1:93: 97:eb:e2:4a:df:70:15:9a:71:6d:6a:08:62:f3:8c:e6:57:fb: 32:c3:61:72:1b:f8:4f:0b:a1:24:c2:85:25:fe:37:e1:60:0f: e5:db:20:7d:fb:5f:c8:47:1f:a5:fd:36:9d:89:39:af:82:40: aa:e7:dd:b1:1b:47:45:b9:4c:70:5d:0f:c1:50:04:1c:7b:29: 87:bf:46:50:84:71:10:05:c6:78:22:de:28:19:f1:ed:c8:a4: 4d:74:27:1f:0a:5d:ab:8d:11:4d:7e:4a:0a:97:cb:89:f4:d2: e4:06:b7:db:f7:1d:bb:26:61:e0:02:62:4a:11:2c:ae:3a:2d: c1:99:5a:03:5e:5e:bb:64:b3:0b:a0:7e:fd:27:ac:47:60:b5: 1a:16:bd:2e:67:6e:cc:15:d7:e7:29:f4:11:54:21:64:db:74: 83:5a:a6:a4:ed:46:d0:c2:5a:7b:d0:8e:0c:dc:56:7a:d0:d1: ed:a1:d5:22 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUSxlniT68q1ncOLY4zONr/LMxsWQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA2MjIxNjU5NDBaFw0yNzA2MjExNzA0NDBaMDMxMTAvBgNV BAMTKEZBRDBDRDM1Q0FDNTQzOUFDREJDMjUyQ0RGRjc0RDJGMzBEMjRBOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPFuVL1TPPkv9HKxcOv7GOa1c5 WdBeC44oXYE08/DMCDnbmoy6mWSBJhHsoOUMGrQa3zIjdboLEUNE/BpZquLrj/iw JNRnu9XShHcWKAL0xFzg9XB/HeNe8pCwjmSVseB8HQwnPU/CagbRZcTmzi2RqQAf P1NDgDX4yThOXr4PnjZ0/Pz04Xu/iSBRL9Yi3teXckt+JTZKvKlFJXblt+sQuy5w uclYjDZlNDjNla1UIQEaAoSLGl1KAU93LJcZnGzQF/lsnjgOMXVanH44b849qdSw xwvFLHNiXwUXJpE6bWnDU9d/VnnypvU/GZS8kZV/ay5r6ilUrYlzsC//Mv/JAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU+tDNNcrFQ5rNvCUs3/dNLzDSSpQwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMxMzY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzOTM0MzEzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMNhbzANBgkqhkiG9w0BAQsFAAOCAQEATmLctPfR2kG33UZn 2XkSkgOLZ6N4Yzr/CzEstScxGEgdVbcG5yh4ZEOVfClsWiH3sImtvHDYiQHzfuh2 aKKwC2sfo5VRS6GTl+viSt9wFZpxbWoIYvOM5lf7MsNhchv4TwuhJMKFJf434WAP 5dsgfftfyEcfpf02nYk5r4JAqufdsRtHRblMcF0PwVAEHHsph79GUIRxEAXGeCLe KBnx7cikTXQnHwpdq40RTX5KCpfLifTS5Aa32/cduyZh4AJiShEsrjotwZlaA15e u2SzC6B+/SesR2C1Gha9LmduzBXX5yn0EVQhZNt0g1qmpO1G0MJae9CODNxWetDR 7aHVIg== -----END CERTIFICATE-----Generated at Mon Jun 29 10:33:35 2026 by rpki-client