$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861363a3a2f34382d3438203d3e20323034343634.roa File: 326130393a353463333a663861363a3a2f34382d3438203d3e20323034343634.roa (raw, json) Hash identifier: VIQjQGKBZdA0cI5vFVY9NJ6UAb4nBG/8bGpekrnbje0= Subject key identifier: 8C:21:DF:02:8C:E0:14:D8:BF:EB:7B:3F:FA:13:CD:64:57:94:D4:E2 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 2A8BEE70ABC6A568FD63A0B33C42B007E1C7EB4F Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861363a3a2f34382d3438203d3e20323034343634.roa Signing time: Sat 30 May 2026 01:15:59 +0000 ROA not before: Sat 30 May 2026 01:10:59 +0000 ROA not after: Sat 29 May 2027 01:15:59 +0000 asID: 204464 IP address blocks: 2a09:54c3:f8a6::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 01:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:8b:ee:70:ab:c6:a5:68:fd:63:a0:b3:3c:42:b0:07:e1:c7:eb:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: May 30 01:10:59 2026 GMT Not After : May 29 01:15:59 2027 GMT Subject: CN=8C21DF028CE014D8BFEB7B3FFA13CD645794D4E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5b:64:19:20:81:dc:3b:a1:4e:dd:15:db:4c: 4c:7a:c7:a2:00:69:30:47:fd:ff:a3:10:91:05:66: bf:32:6d:b0:6c:df:c7:16:3e:d3:eb:a3:f0:a5:8c: 4f:2c:71:b3:3f:3c:d3:a5:27:63:ff:6f:99:2c:43: 19:0a:09:08:7a:f8:90:10:fd:bb:07:00:17:03:d5: 13:80:9c:ef:82:4e:cf:c7:41:08:9a:e7:aa:5b:09: 4b:cc:05:5e:1d:3f:c1:de:c9:7c:74:a2:0b:2b:b6: a1:dd:34:1d:81:3f:63:2d:c0:6f:0c:28:fd:18:f4: 11:71:ad:66:8b:bc:46:ec:a0:9a:85:97:9d:7a:7c: 86:27:5e:67:c3:14:26:49:9b:cb:52:aa:c2:c5:2f: 97:c7:c6:da:eb:5f:00:8b:33:36:a7:87:d5:0d:61: 49:cf:9f:ce:db:46:55:1f:7c:2f:24:a0:24:03:78: 7d:7a:13:b4:9c:82:05:93:d9:a8:42:16:c2:0f:b1: 84:29:c3:bf:09:79:26:7c:79:e0:fc:db:ee:fe:3b: d1:30:99:17:74:7c:18:17:e4:30:16:43:74:a0:fc: 90:93:94:74:60:3f:85:f6:03:47:dc:df:2a:72:8d: f0:7f:d6:2e:51:ee:09:e5:e2:6a:4f:2f:b3:ff:dc: 7b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:21:DF:02:8C:E0:14:D8:BF:EB:7B:3F:FA:13:CD:64:57:94:D4:E2 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861363a3a2f34382d3438203d3e20323034343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:f8a6::/48 Signature Algorithm: sha256WithRSAEncryption be:0e:ee:e8:71:d5:93:b7:86:95:8f:6d:5b:8e:0e:6f:4f:6b: df:6f:ec:99:00:fa:a7:19:a4:b4:2a:23:00:3c:96:d2:a8:d9: 1f:61:cb:dd:b4:be:92:75:cd:ca:42:19:6a:44:ae:87:80:ac: b7:f2:c2:d2:3b:b4:c4:d3:55:90:ba:11:7c:30:79:80:65:09: 1c:ed:31:8a:56:8e:be:e6:d7:ef:20:3d:a0:40:d3:3e:c5:76: 23:69:70:61:46:2f:10:92:6d:bd:bf:63:28:7b:57:78:db:23: 9a:90:d0:1d:c4:57:82:bc:07:d2:39:12:dc:32:d5:51:44:45: 7d:d5:72:1d:96:3d:48:50:d8:30:fb:53:3d:dd:ce:a0:f9:6a: bc:7c:cd:ca:b6:5d:5b:4f:83:1b:b2:ed:02:bc:59:3d:70:d9: 9a:30:ec:3d:f2:04:16:af:36:72:85:af:e4:d8:45:73:5d:20: e8:5a:c9:f6:12:29:eb:28:4f:ab:e3:b1:ad:94:95:a8:d1:10: 04:f3:23:21:1c:9f:04:65:e6:71:65:d8:e3:54:cc:ac:29:0a: 3d:0b:2e:d5:a9:5b:c6:02:ba:f3:ee:47:34:97:e6:7e:97:20: 83:27:74:4e:54:41:bc:0f:93:29:03:ac:e7:b5:7b:92:52:1b: 2e:c4:98:ce -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUKovucKvGpWj9Y6CzPEKwB+HH608wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA1MzAwMTEwNTlaFw0yNzA1MjkwMTE1NTlaMDMxMTAvBgNV BAMTKDhDMjFERjAyOENFMDE0RDhCRkVCN0IzRkZBMTNDRDY0NTc5NEQ0RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCW2QZIIHcO6FO3RXbTEx6x6IA aTBH/f+jEJEFZr8ybbBs38cWPtPro/CljE8scbM/PNOlJ2P/b5ksQxkKCQh6+JAQ /bsHABcD1ROAnO+CTs/HQQia56pbCUvMBV4dP8HeyXx0ogsrtqHdNB2BP2MtwG8M KP0Y9BFxrWaLvEbsoJqFl516fIYnXmfDFCZJm8tSqsLFL5fHxtrrXwCLMzanh9UN YUnPn87bRlUffC8koCQDeH16E7ScggWT2ahCFsIPsYQpw78JeSZ8eeD82+7+O9Ew mRd0fBgX5DAWQ3Sg/JCTlHRgP4X2A0fc3ypyjfB/1i5R7gnl4mpPL7P/3HuBAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUjCHfAozgFNi/63s/+hPNZFeU1OIwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2NjM4NjEzNjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNDM0MzYzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMP4pjANBgkqhkiG9w0BAQsFAAOCAQEAvg7u6HHVk7eGlY9t W44Ob09r32/smQD6pxmktCojADyW0qjZH2HL3bS+knXNykIZakSuh4Cst/LC0ju0 xNNVkLoRfDB5gGUJHO0xilaOvubX7yA9oEDTPsV2I2lwYUYvEJJtvb9jKHtXeNsj mpDQHcRXgrwH0jkS3DLVUURFfdVyHZY9SFDYMPtTPd3OoPlqvHzNyrZdW0+DG7Lt ArxZPXDZmjDsPfIEFq82coWv5NhFc10g6FrJ9hIp6yhPq+OxrZSVqNEQBPMjIRyf BGXmcWXY41TMrCkKPQsu1albxgK68+5HNJfmfpcggyd0TlRBvA+TKQOs57V7klIb LsSYzg== -----END CERTIFICATE-----Generated at Thu Jun 4 13:06:35 2026 by rpki-client