$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861333a3a2f34382d3438203d3e20323135313437.roa File: 326130393a353463333a663861333a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: AeEjTz7I7T4Pz/P4bDZPAJ5D/WRHbtpy9iOeluMaik0= Subject key identifier: C5:02:5C:62:C5:27:F1:CE:00:54:38:FF:E7:C5:D8:A2:EA:D7:A7:5F Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 1117EA0ABF1B630F6009915575155A8D762803AD Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861333a3a2f34382d3438203d3e20323135313437.roa Signing time: Thu 28 May 2026 13:02:03 +0000 ROA not before: Thu 28 May 2026 12:57:03 +0000 ROA not after: Thu 27 May 2027 13:02:03 +0000 asID: 215147 IP address blocks: 2a09:54c3:f8a3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 01:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:17:ea:0a:bf:1b:63:0f:60:09:91:55:75:15:5a:8d:76:28:03:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: May 28 12:57:03 2026 GMT Not After : May 27 13:02:03 2027 GMT Subject: CN=C5025C62C527F1CE005438FFE7C5D8A2EAD7A75F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:99:0d:28:17:c8:9e:f3:21:a5:32:9e:e5:6e: 88:eb:ff:cc:8d:b9:6f:d7:e0:f3:3a:99:e7:c6:39: d4:dc:2d:ab:61:1a:b4:c1:1d:47:50:14:7c:3f:89: b1:61:22:00:b0:57:be:0e:8b:58:9c:08:c6:cd:74: e7:f0:ab:36:68:a4:2a:02:54:85:98:35:92:2f:65: 4b:ac:6e:4c:26:f4:cb:08:b1:be:54:57:e4:19:f1: 79:88:b0:41:6f:a3:8e:2d:64:6b:6e:25:ac:23:ef: 63:b9:60:a1:5c:19:8f:05:80:32:4a:e0:df:e0:27: 38:68:37:d9:a9:54:32:4b:12:78:4b:c1:54:ef:a3: 31:be:ac:53:81:0b:30:36:c9:7a:c2:87:8a:51:b1: 38:64:42:9f:b7:8a:d9:6e:39:0b:72:aa:64:01:be: c4:44:00:c3:80:07:ba:d7:86:f6:dd:ae:4e:8a:98: 4b:0f:b0:78:08:e9:62:39:66:29:06:50:30:ec:ef: 56:83:bc:cd:84:8a:d9:52:ce:43:59:5e:0b:be:6c: 2e:0c:79:7b:bd:26:fc:61:be:b2:af:ed:a8:e6:5a: 2b:b9:22:e0:ab:1a:9f:ad:47:a9:a9:1c:04:73:49: 5a:5d:c0:88:3e:77:87:c7:70:09:72:e1:16:12:5d: 4b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:02:5C:62:C5:27:F1:CE:00:54:38:FF:E7:C5:D8:A2:EA:D7:A7:5F X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861333a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:f8a3::/48 Signature Algorithm: sha256WithRSAEncryption 3a:25:40:37:ba:7e:d5:00:3e:92:bc:18:96:39:e7:66:57:93: 3e:52:75:e7:2a:8a:ea:db:04:d2:6d:2b:dc:2c:f0:96:ac:f9: f5:42:52:cf:1e:d7:3c:13:15:70:2e:e1:bb:20:9b:f4:41:57: d9:20:be:ba:ab:33:62:e9:74:7f:a0:0b:2b:16:bc:f3:f2:14: 29:9b:5e:73:54:cf:96:25:9d:42:eb:88:e0:57:54:c9:3a:f9: ea:a0:e1:f6:6a:e1:3b:bb:75:dd:2c:94:63:47:a6:14:ed:af: d6:b6:91:a4:6e:07:f5:38:85:84:79:45:cc:f4:7e:88:75:4b: f1:08:ff:43:70:34:1e:ce:9a:42:e6:a4:1d:db:a5:9f:fb:7f: bb:7e:c0:58:2f:35:a7:1a:fc:85:4b:b1:f9:63:a9:c5:68:0a: 06:09:f0:f4:fa:b7:98:b4:f0:cd:e5:67:32:dc:ba:27:e6:17: a4:4f:0d:0b:2a:2d:6e:b5:b7:e9:d7:f8:7b:1c:c6:8c:0f:8d: 60:f2:34:4f:af:71:75:fd:bd:21:59:4f:80:1e:37:33:14:55: a0:e7:e6:9b:4a:60:b8:21:7e:11:8f:29:e2:72:94:23:f7:0b: ea:79:57:ff:74:b7:05:56:df:05:c9:4d:c1:98:25:6d:5a:56: 4c:30:27:fb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUERfqCr8bYw9gCZFVdRVajXYoA60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA1MjgxMjU3MDNaFw0yNzA1MjcxMzAyMDNaMDMxMTAvBgNV BAMTKEM1MDI1QzYyQzUyN0YxQ0UwMDU0MzhGRkU3QzVEOEEyRUFEN0E3NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3mQ0oF8ie8yGlMp7lbojr/8yN uW/X4PM6mefGOdTcLathGrTBHUdQFHw/ibFhIgCwV74Oi1icCMbNdOfwqzZopCoC VIWYNZIvZUusbkwm9MsIsb5UV+QZ8XmIsEFvo44tZGtuJawj72O5YKFcGY8FgDJK 4N/gJzhoN9mpVDJLEnhLwVTvozG+rFOBCzA2yXrCh4pRsThkQp+3itluOQtyqmQB vsREAMOAB7rXhvbdrk6KmEsPsHgI6WI5ZikGUDDs71aDvM2EitlSzkNZXgu+bC4M eXu9JvxhvrKv7ajmWiu5IuCrGp+tR6mpHARzSVpdwIg+d4fHcAly4RYSXUv1AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUxQJcYsUn8c4AVDj/58XYourXp18wHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2NjM4NjEzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTMxMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMP4ozANBgkqhkiG9w0BAQsFAAOCAQEAOiVAN7p+1QA+krwY ljnnZleTPlJ15yqK6tsE0m0r3Czwlqz59UJSzx7XPBMVcC7huyCb9EFX2SC+uqsz Yul0f6ALKxa88/IUKZtec1TPliWdQuuI4FdUyTr56qDh9mrhO7t13SyUY0emFO2v 1raRpG4H9TiFhHlFzPR+iHVL8Qj/Q3A0Hs6aQuakHduln/t/u37AWC81pxr8hUux +WOpxWgKBgnw9Pq3mLTwzeVnMty6J+YXpE8NCyotbrW36df4exzGjA+NYPI0T69x df29IVlPgB43MxRVoOfmm0pguCF+EY8p4nKUI/cL6nlX/3S3BVbfBclNwZglbVpW TDAn+w== -----END CERTIFICATE-----Generated at Thu Jun 4 11:08:27 2026 by rpki-client