$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861323a3a2f34382d3438203d3e20323135313437.roa File: 326130393a353463333a663861323a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: ZTQCZP9IvvlRfgAMV1joH4OQ9iDLSV1QX3Fee8h9RP4= Subject key identifier: C1:CF:CD:8B:05:BB:5A:4C:47:CC:99:4B:90:69:52:7B:E6:F0:B0:38 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 161C02891A8431A4B6D0D69C07B2F44F8A69DB38 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861323a3a2f34382d3438203d3e20323135313437.roa Signing time: Thu 28 May 2026 12:33:02 +0000 ROA not before: Thu 28 May 2026 12:28:02 +0000 ROA not after: Thu 27 May 2027 12:33:02 +0000 asID: 215147 IP address blocks: 2a09:54c3:f8a2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 01:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:1c:02:89:1a:84:31:a4:b6:d0:d6:9c:07:b2:f4:4f:8a:69:db:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: May 28 12:28:02 2026 GMT Not After : May 27 12:33:02 2027 GMT Subject: CN=C1CFCD8B05BB5A4C47CC994B9069527BE6F0B038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8b:1e:8d:78:0f:48:ba:83:01:b8:57:79:2b: 58:ba:39:cd:af:d2:93:da:e3:4f:1e:b2:8c:0f:ce: fd:c9:3b:bc:9d:c0:d3:93:01:98:d3:80:9f:10:77: 2a:66:e1:e5:c0:3a:4c:86:ff:2e:98:27:ec:9e:bb: 51:66:d0:0a:db:1a:51:ea:ff:b6:0c:2a:fe:79:54: cf:63:07:4d:11:d2:80:8c:0c:93:6c:a0:74:1e:43: 54:91:a7:7d:03:b0:7b:69:34:31:24:48:26:ef:4d: 0c:22:a7:54:63:22:ae:06:4b:2f:74:a1:10:87:e7: 9d:24:52:e6:b4:99:d4:4f:94:6f:3d:1a:46:f4:0d: b1:9e:c6:91:a1:35:aa:2a:ef:85:e8:75:41:e5:f0: 5c:7c:68:d6:13:ee:55:c5:3c:cc:65:9d:0f:5e:ce: ee:93:bf:9f:ae:b4:3f:0e:ec:18:dc:c8:e3:e8:fe: ba:2d:dc:1a:ad:d4:35:e5:6b:50:f3:f6:89:1a:82: cc:cf:44:c6:24:db:41:e6:0b:e2:38:a2:97:37:83: 26:b6:43:eb:b6:ad:88:06:c1:2c:9b:72:9f:d4:67: 37:06:eb:14:a8:65:ca:c5:84:cb:75:62:8b:eb:23: fc:1f:82:0f:64:46:ba:a4:0d:46:4e:76:31:14:46: 01:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CF:CD:8B:05:BB:5A:4C:47:CC:99:4B:90:69:52:7B:E6:F0:B0:38 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861323a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:f8a2::/48 Signature Algorithm: sha256WithRSAEncryption 46:fc:31:ca:0a:f6:fb:15:c4:50:3b:ef:9d:ae:fc:1f:7e:5e: af:00:38:25:60:43:f0:75:4a:c1:9e:8a:e2:b1:1b:11:a3:5e: 4f:4d:d9:bf:fe:f4:17:a1:e1:35:55:1e:fe:0d:80:06:1e:ed: ff:60:1b:3e:bd:00:9a:ea:78:e3:82:64:66:6a:bc:78:35:c1: 31:1a:16:26:6d:10:af:ab:6c:0c:0b:e8:fa:3c:2c:d9:85:6f: df:f6:c8:b4:69:a1:a8:99:f2:e0:81:5b:4c:9d:8e:97:b0:47: eb:28:04:fc:4b:d4:73:07:46:6c:41:6a:0b:6d:b3:d2:0f:17: d0:24:37:26:06:d8:63:4d:3f:93:fb:26:86:51:c6:1e:22:45: d1:de:62:df:16:09:92:af:5a:2c:12:95:86:8c:c2:be:b3:39: 78:72:0b:20:82:59:ff:41:82:c8:9e:24:69:f5:d0:66:6c:cc: 14:25:81:c2:e4:e0:b2:9d:e1:58:4b:b5:af:a7:dd:82:7b:3e: d1:9f:a5:1b:b7:ba:ad:aa:79:e4:83:de:f6:de:87:e9:41:6f: f7:e6:53:16:3d:e2:40:76:ad:2b:2b:c5:80:cd:a0:79:7f:d9: 4e:2a:d2:9d:5e:dd:5f:a5:87:71:d4:57:1f:97:8e:2c:b7:e0: 32:41:cd:a4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUFhwCiRqEMaS20NacB7L0T4pp2zgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA1MjgxMjI4MDJaFw0yNzA1MjcxMjMzMDJaMDMxMTAvBgNV BAMTKEMxQ0ZDRDhCMDVCQjVBNEM0N0NDOTk0QjkwNjk1MjdCRTZGMEIwMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdix6NeA9IuoMBuFd5K1i6Oc2v 0pPa408esowPzv3JO7ydwNOTAZjTgJ8Qdypm4eXAOkyG/y6YJ+yeu1Fm0ArbGlHq /7YMKv55VM9jB00R0oCMDJNsoHQeQ1SRp30DsHtpNDEkSCbvTQwip1RjIq4GSy90 oRCH550kUua0mdRPlG89Gkb0DbGexpGhNaoq74XodUHl8Fx8aNYT7lXFPMxlnQ9e zu6Tv5+utD8O7BjcyOPo/rot3Bqt1DXla1Dz9okagszPRMYk20HmC+I4opc3gya2 Q+u2rYgGwSybcp/UZzcG6xSoZcrFhMt1YovrI/wfgg9kRrqkDUZOdjEURgGpAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUwc/NiwW7WkxHzJlLkGlSe+bwsDgwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2NjM4NjEzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTMxMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMP4ojANBgkqhkiG9w0BAQsFAAOCAQEARvwxygr2+xXEUDvv na78H35erwA4JWBD8HVKwZ6K4rEbEaNeT03Zv/70F6HhNVUe/g2ABh7t/2AbPr0A mup444JkZmq8eDXBMRoWJm0Qr6tsDAvo+jws2YVv3/bItGmhqJny4IFbTJ2Ol7BH 6ygE/EvUcwdGbEFqC22z0g8X0CQ3JgbYY00/k/smhlHGHiJF0d5i3xYJkq9aLBKV hozCvrM5eHILIIJZ/0GCyJ4kafXQZmzMFCWBwuTgsp3hWEu1r6fdgns+0Z+lG7e6 rap55IPe9t6H6UFv9+ZTFj3iQHatKyvFgM2geX/ZTirSnV7dX6WHcdRXH5eOLLfg MkHNpA== -----END CERTIFICATE-----Generated at Thu Jun 4 11:08:27 2026 by rpki-client