$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861373a3a2f34382d3438203d3e20323135313130.roa File: 326130393a353463333a663861373a3a2f34382d3438203d3e20323135313130.roa (raw, json) Hash identifier: XMRiZ6pYxatlkNBosxIGlb2Qja3c440jT03jwd1WH9g= Subject key identifier: 52:A9:0F:FB:87:46:61:3A:7F:97:39:4B:3B:6E:86:29:E2:A6:C1:21 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 7136CBFF53274BB661D4C31B251B23C5FE7D212A Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861373a3a2f34382d3438203d3e20323135313130.roa Signing time: Mon 01 Jun 2026 21:17:27 +0000 ROA not before: Mon 01 Jun 2026 21:12:27 +0000 ROA not after: Mon 31 May 2027 21:17:27 +0000 asID: 215110 IP address blocks: 2a09:54c3:f8a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Jun 2026 01:29:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:36:cb:ff:53:27:4b:b6:61:d4:c3:1b:25:1b:23:c5:fe:7d:21:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Jun 1 21:12:27 2026 GMT Not After : May 31 21:17:27 2027 GMT Subject: CN=52A90FFB8746613A7F97394B3B6E8629E2A6C121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:38:dc:18:a7:27:8b:7c:de:65:6c:36:27: 30:9a:47:79:af:f7:95:20:2c:fd:26:2c:d3:de:86: 2c:a2:ce:69:fb:f7:f2:55:56:16:13:7a:22:7b:24: fb:0c:89:d5:ad:b9:7e:d6:0b:f2:4a:b3:4c:47:93: 7b:d8:f2:cc:65:84:49:e7:21:d6:2e:27:e2:f2:35: e8:91:5d:18:04:9c:cd:9a:8d:b1:32:6f:b0:a1:9e: dc:22:60:9d:3c:dd:af:2f:55:d3:14:4c:2b:1b:e1: 89:15:3b:48:2b:ad:4d:86:36:77:3f:65:a6:22:f5: 48:4e:46:37:f7:6d:ee:b1:ba:0e:03:56:81:e7:42: 3c:5d:cf:7f:60:7a:6e:04:12:5e:d7:48:91:8f:b8: 4d:fc:8d:f1:a8:7c:5d:54:b2:a0:61:51:dd:1e:e8: 01:d8:1c:2a:6d:fa:b6:a1:1b:9f:52:e5:44:15:36: 95:23:c8:a5:16:a1:61:f7:b4:0e:dc:b9:15:23:12: 17:00:c6:1c:04:72:0d:12:8d:b8:26:73:2d:50:8c: 78:46:4f:9d:a6:e3:c9:8e:24:38:ec:c3:a8:e7:dc: c9:35:16:3b:1f:ce:3d:fe:18:b2:db:cf:49:35:8f: 0f:40:ef:75:f6:7b:e1:b8:6e:9e:5d:2a:be:dd:c4: 10:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A9:0F:FB:87:46:61:3A:7F:97:39:4B:3B:6E:86:29:E2:A6:C1:21 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a663861373a3a2f34382d3438203d3e20323135313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:f8a7::/48 Signature Algorithm: sha256WithRSAEncryption 04:da:52:00:8a:db:99:17:65:ed:7f:14:a1:21:e0:73:93:cb: 63:f0:53:b9:0a:e5:2d:4c:f3:b2:27:25:65:63:06:73:7c:38: 65:73:75:2c:df:69:cf:c2:89:f4:2b:87:d7:36:53:22:61:0d: 3e:86:ed:d1:f9:6d:44:ef:4f:ee:31:b6:dc:ff:e5:b2:54:0e: c5:51:d4:9a:19:36:50:c4:aa:24:23:9e:42:f2:16:9a:69:42: 61:50:0c:7f:cb:4b:b9:98:e5:df:fb:56:a8:05:f1:d6:8c:46: 39:2d:39:d5:46:79:06:b1:17:e3:4b:5f:88:83:98:80:8a:ad: 9b:65:ba:6e:80:a4:2f:72:79:4e:68:1f:19:75:02:a1:5e:23: 2a:66:19:c3:e8:19:68:b7:fc:f4:68:73:17:c9:31:ea:78:5d: fa:17:4e:6d:8f:74:12:43:7f:61:57:b1:01:a5:42:42:cf:d7: 67:cb:f9:73:d2:43:24:3b:04:c3:47:56:75:03:eb:95:af:13: a7:ee:39:b2:aa:07:4a:88:25:be:24:d1:58:00:ef:3f:f9:f5: 11:22:b9:aa:c2:70:c5:5d:d6:d9:86:47:9d:87:c0:29:bb:b1: 8b:a7:38:64:68:88:7d:16:57:6f:b5:98:22:05:b3:a3:fa:5c: 0b:22:6a:9a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUcTbL/1MnS7Zh1MMbJRsjxf59ISowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA2MDEyMTEyMjdaFw0yNzA1MzEyMTE3MjdaMDMxMTAvBgNV BAMTKDUyQTkwRkZCODc0NjYxM0E3Rjk3Mzk0QjNCNkU4NjI5RTJBNkMxMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1AzjcGKcni3zeZWw2JzCaR3mv 95UgLP0mLNPehiyizmn79/JVVhYTeiJ7JPsMidWtuX7WC/JKs0xHk3vY8sxlhEnn IdYuJ+LyNeiRXRgEnM2ajbEyb7ChntwiYJ083a8vVdMUTCsb4YkVO0grrU2GNnc/ ZaYi9UhORjf3be6xug4DVoHnQjxdz39gem4EEl7XSJGPuE38jfGofF1UsqBhUd0e 6AHYHCpt+rahG59S5UQVNpUjyKUWoWH3tA7cuRUjEhcAxhwEcg0Sjbgmcy1QjHhG T52m48mOJDjsw6jn3Mk1Fjsfzj3+GLLbz0k1jw9A73X2e+G4bp5dKr7dxBCzAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUUqkP+4dGYTp/lzlLO26GKeKmwSEwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2E2NjM4NjEzNzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNTMxMzEzMC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMP4pzANBgkqhkiG9w0BAQsFAAOCAQEABNpSAIrbmRdl7X8U oSHgc5PLY/BTuQrlLUzzsiclZWMGc3w4ZXN1LN9pz8KJ9CuH1zZTImENPobt0flt RO9P7jG23P/lslQOxVHUmhk2UMSqJCOeQvIWmmlCYVAMf8tLuZjl3/tWqAXx1oxG OS051UZ5BrEX40tfiIOYgIqtm2W6boCkL3J5TmgfGXUCoV4jKmYZw+gZaLf89Ghz F8kx6nhd+hdObY90EkN/YVexAaVCQs/XZ8v5c9JDJDsEw0dWdQPrla8Tp+45sqoH SoglviTRWADvP/n1ESK5qsJwxV3W2YZHnYfAKbuxi6c4ZGiIfRZXb7WYIgWzo/pc CyJqmg== -----END CERTIFICATE-----Generated at Thu Jun 4 13:06:35 2026 by rpki-client