$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861343a3a2f34382d3438203d3e20323135313437.roa File: 326130393a353463333a663861343a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: Tla2B/DCGp0hGrxT0B0eLVPjs85Tvygkm9Uw4GgeFYU= Subject key identifier: 96:39:F4:F9:40:7B:AA:4D:59:F7:CB:E2:E0:8C:2C:76:93:8D:96:DD Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 1401E8707F74E6BFDDFA23F75A70079703F738B1 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861343a3a2f34382d3438203d3e20323135313437.roa Signing time: Fri 29 May 2026 07:36:03 +0000 ROA not before: Fri 29 May 2026 07:31:03 +0000 ROA not after: Fri 28 May 2027 07:36:03 +0000 asID: 215147 IP address blocks: 2a09:54c3:f8a4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 01:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:01:e8:70:7f:74:e6:bf:dd:fa:23:f7:5a:70:07:97:03:f7:38:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: May 29 07:31:03 2026 GMT Not After : May 28 07:36:03 2027 GMT Subject: CN=9639F4F9407BAA4D59F7CBE2E08C2C76938D96DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c8:c6:40:2b:1e:de:49:60:ba:e2:b1:fa:73: 8a:c1:3a:f8:14:43:37:b6:53:b3:75:b1:24:97:49: 8d:f9:3d:72:79:dd:53:db:fd:8a:86:35:57:fa:e6: f1:1d:34:25:bf:02:01:8c:ea:b8:97:b7:73:0e:2a: d2:4b:e2:6b:fe:4d:39:41:5c:7f:b1:90:a0:53:9c: 72:5b:2a:a6:86:b0:d0:04:bf:59:45:b9:c2:ad:5e: 18:01:f3:69:fa:ba:d2:d0:d4:35:bc:84:7f:35:a4: 41:f4:91:31:7d:6d:36:95:0a:0d:5b:df:cb:f2:92: 60:15:f5:3d:fb:8d:a2:c4:76:54:46:74:5b:12:cf: b9:d0:e1:5e:d0:cc:16:51:52:16:50:ad:c8:54:c7: 0f:7f:90:c5:dd:8a:31:d8:ee:ea:08:d6:20:cb:36: e2:2d:e1:6c:54:57:ef:a4:a3:f8:c6:88:b7:ee:1f: 84:1a:70:ee:85:9c:55:a3:fc:c6:e4:52:a1:7d:f1: e5:58:b7:6a:39:49:60:5a:4b:8a:dc:5b:6a:c2:3f: 01:14:76:b4:5a:b8:05:d5:4a:6d:38:5b:52:72:bb: cc:a1:53:cc:1e:df:e7:b0:43:65:5a:e9:7d:69:a2: 35:c6:df:74:42:54:f6:6d:4c:d9:38:6d:f9:87:fc: 43:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:39:F4:F9:40:7B:AA:4D:59:F7:CB:E2:E0:8C:2C:76:93:8D:96:DD X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861343a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:f8a4::/48 Signature Algorithm: sha256WithRSAEncryption 6e:33:6d:1e:7d:b0:42:a1:ee:8b:0f:87:1c:c2:c5:31:f9:89: 15:89:be:39:e5:c4:43:a1:e4:53:d8:f2:80:d5:ab:cb:a3:bb: 76:ac:ab:6f:0c:97:36:f4:a9:3e:ab:8a:8c:fa:d6:ba:f5:6c: 51:85:c1:f8:c5:7d:22:ee:66:bd:90:5f:93:a5:48:50:3e:f1: 09:f0:5c:12:67:36:24:2d:3e:64:0a:36:0f:8b:1c:b1:66:83: 01:4f:06:e9:e4:2a:99:60:3b:18:0b:af:f5:1e:8d:c5:17:00: 2f:2e:ba:a6:75:f7:5d:3a:ca:09:f2:6e:6d:50:9d:18:25:3a: a2:91:76:68:7e:68:8f:5f:e4:81:58:a9:2f:d8:24:e5:69:c5: bf:4f:6d:8c:d7:71:b3:7e:01:ce:cc:7c:ff:3c:d8:62:5e:9c: 30:a4:3a:82:ed:20:34:e5:e3:ae:c8:65:66:6a:07:6e:5b:04: b4:49:fe:9b:b1:07:59:bc:99:71:f5:d0:69:45:8e:f3:ec:6e: 26:de:6d:6a:7c:13:af:b0:56:4e:7f:84:62:7a:65:5a:5f:9d: b4:cb:c5:97:21:70:cd:7a:06:9a:c0:20:26:b3:44:e1:50:9d: 93:4f:8c:bd:0e:a5:dd:1a:42:62:f2:72:68:64:9f:8c:14:02: bf:a5:82:c6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUFAHocH905r/d+iP3WnAHlwP3OLEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA1MjkwNzMxMDNaFw0yNzA1MjgwNzM2MDNaMDMxMTAvBgNV BAMTKDk2MzlGNEY5NDA3QkFBNEQ1OUY3Q0JFMkUwOEMyQzc2OTM4RDk2REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAyMZAKx7eSWC64rH6c4rBOvgU Qze2U7N1sSSXSY35PXJ53VPb/YqGNVf65vEdNCW/AgGM6riXt3MOKtJL4mv+TTlB XH+xkKBTnHJbKqaGsNAEv1lFucKtXhgB82n6utLQ1DW8hH81pEH0kTF9bTaVCg1b 38vykmAV9T37jaLEdlRGdFsSz7nQ4V7QzBZRUhZQrchUxw9/kMXdijHY7uoI1iDL NuIt4WxUV++ko/jGiLfuH4QacO6FnFWj/MbkUqF98eVYt2o5SWBaS4rcW2rCPwEU drRauAXVSm04W1Jyu8yhU8we3+ewQ2Va6X1pojXG33RCVPZtTNk4bfmH/EP1AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUljn0+UB7qk1Z98vi4IwsdpONlt0wHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2NjM4NjEzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTMxMzQzNy5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMP4pDANBgkqhkiG9w0BAQsFAAOCAQEAbjNtHn2wQqHuiw+H HMLFMfmJFYm+OeXEQ6HkU9jygNWry6O7dqyrbwyXNvSpPquKjPrWuvVsUYXB+MV9 Iu5mvZBfk6VIUD7xCfBcEmc2JC0+ZAo2D4scsWaDAU8G6eQqmWA7GAuv9R6NxRcA Ly66pnX3XTrKCfJubVCdGCU6opF2aH5oj1/kgVipL9gk5WnFv09tjNdxs34Bzsx8 /zzYYl6cMKQ6gu0gNOXjrshlZmoHblsEtEn+m7EHWbyZcfXQaUWO8+xuJt5tanwT r7BWTn+EYnplWl+dtMvFlyFwzXoGmsAgJrNE4VCdk0+MvQ6l3RpCYvJyaGSfjBQC v6WCxg== -----END CERTIFICATE-----Generated at Thu Jun 4 11:08:27 2026 by rpki-client