$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383930623a3a2f34382d3438203d3e20313938353930.roa File: 326130363a313238333a383930623a3a2f34382d3438203d3e20313938353930.roa (raw, json) Hash identifier: QYoEav3W6DDcwFgs/JpB+VECPaZG/bKGBIoIeK1fLVg= Subject key identifier: DE:3C:20:BB:4A:B9:04:26:6C:1C:EA:BB:FD:45:08:C7:EB:0B:CB:10 Certificate issuer: /CN=5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9 Certificate serial: 4B99B1DF6810027B9CF64AF874948547C47FD823 Authority key identifier: 5F:BB:D0:F3:D7:B8:1E:8A:FD:99:E5:A3:4B:67:83:4D:D3:CD:13:C9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383930623a3a2f34382d3438203d3e20313938353930.roa Signing time: Sun 24 May 2026 21:55:25 +0000 ROA not before: Sun 24 May 2026 21:50:25 +0000 ROA not after: Sun 23 May 2027 21:55:25 +0000 asID: 198590 IP address blocks: 2a06:1283:890b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.crl rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.mft rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 29 May 2026 01:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:99:b1:df:68:10:02:7b:9c:f6:4a:f8:74:94:85:47:c4:7f:d8:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9 Validity Not Before: May 24 21:50:25 2026 GMT Not After : May 23 21:55:25 2027 GMT Subject: CN=DE3C20BB4AB904266C1CEABBFD4508C7EB0BCB10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:02:74:eb:87:9c:c4:67:e9:24:10:95:12: a5:61:50:e8:0d:0d:6f:2b:1a:4f:87:a3:10:29:60: 83:61:44:33:0f:92:ba:f3:b3:f0:bf:c9:b6:75:31: 3e:43:48:ce:96:f0:92:4b:f5:d2:6b:2b:4a:33:fb: 31:2c:a3:8e:a7:ef:1d:cc:66:d8:2f:e9:30:3b:eb: 6c:52:a9:ce:ca:1d:79:17:5a:27:f6:9d:fb:b3:49: 2e:72:2f:99:0d:c4:ee:23:00:8f:15:9b:8e:8b:b2: 4f:6f:29:62:d5:ff:66:16:46:fd:e1:77:84:d8:ef: 13:dc:48:fd:09:b4:b5:a8:86:4c:c4:a5:e0:4d:40: a7:c4:d4:e6:fc:36:4e:d9:de:03:0c:4b:d6:5a:66: 07:b0:b6:72:53:db:46:73:b2:d8:d3:fe:ad:d7:ed: 42:a6:50:b5:10:cc:2b:fb:93:43:f9:52:7f:0c:07: d2:cc:43:15:14:93:ab:66:0b:7b:47:62:7c:5e:b9: c3:8a:ea:f5:29:b4:a7:3e:f2:7b:b7:0d:17:18:8e: 65:89:18:44:85:b3:9a:c9:b6:38:59:e3:e8:4a:00: 8d:ba:b7:19:21:f8:81:b4:12:bc:c2:d1:34:5f:f2: c3:ea:18:3e:a1:0b:a8:33:04:92:0e:69:fc:fc:59: d2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3C:20:BB:4A:B9:04:26:6C:1C:EA:BB:FD:45:08:C7:EB:0B:CB:10 X509v3 Authority Key Identifier: keyid:5F:BB:D0:F3:D7:B8:1E:8A:FD:99:E5:A3:4B:67:83:4D:D3:CD:13:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383930623a3a2f34382d3438203d3e20313938353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:890b::/48 Signature Algorithm: sha256WithRSAEncryption 7b:84:78:81:4a:83:0c:bc:28:18:ff:af:55:5a:06:39:48:25: 45:68:cf:ed:88:a8:63:ec:a5:a9:d0:a2:12:41:8d:10:f6:11: 8b:b1:9e:0e:11:05:39:50:c1:9f:ef:00:5b:98:f8:ed:7a:11: 13:d0:19:a2:75:85:94:4d:51:fc:80:ae:63:a7:76:ce:68:38: 0b:63:57:02:7e:4f:9f:1d:d2:24:45:dd:04:cd:68:76:66:05: ca:9d:e6:9c:06:ad:e9:1f:e5:cb:88:44:ea:7e:ed:6a:1f:01: 05:78:b7:15:c5:8d:5e:5c:7d:57:84:68:ce:5f:41:2d:65:44: 5d:c0:b8:bf:36:18:81:24:38:28:df:89:6c:7c:54:7e:37:33: 0f:9f:35:32:73:1e:3d:12:ce:c5:b9:30:80:da:dd:e9:1a:9c: b4:24:6d:8f:90:54:d3:4f:f8:bb:67:af:32:c7:2f:cf:b8:9e: 0e:f3:1c:8f:13:9e:78:32:3c:2e:a1:ad:07:51:da:06:33:9d: a3:1b:7a:db:70:16:be:23:4a:72:13:d4:02:1e:a0:21:c3:d9: 41:21:13:a6:5b:0a:f9:d0:c8:aa:d7:c2:51:62:ac:1e:ad:75: 83:90:83:63:ef:0b:65:10:f1:6f:65:c9:07:e0:31:94:99:f2: 86:37:c2:f4 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUS5mx32gQAnuc9kr4dJSFR8R/2CMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZCQkQwRjNEN0I4MUU4QUZEOTlFNUEzNEI2NzgzNERE M0NEMTNDOTAeFw0yNjA1MjQyMTUwMjVaFw0yNzA1MjMyMTU1MjVaMDMxMTAvBgNV BAMTKERFM0MyMEJCNEFCOTA0MjY2QzFDRUFCQkZENDUwOEM3RUIwQkNCMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/VAJ064ecxGfpJBCVEqVhUOgN DW8rGk+HoxApYINhRDMPkrrzs/C/ybZ1MT5DSM6W8JJL9dJrK0oz+zEso46n7x3M Ztgv6TA762xSqc7KHXkXWif2nfuzSS5yL5kNxO4jAI8Vm46Lsk9vKWLV/2YWRv3h d4TY7xPcSP0JtLWohkzEpeBNQKfE1Ob8Nk7Z3gMMS9ZaZgewtnJT20ZzstjT/q3X 7UKmULUQzCv7k0P5Un8MB9LMQxUUk6tmC3tHYnxeucOK6vUptKc+8nu3DRcYjmWJ GESFs5rJtjhZ4+hKAI26txkh+IG0ErzC0TRf8sPqGD6hC6gzBJIOafz8WdLnAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU3jwgu0q5BCZsHOq7/UUIx+sLyxAwHwYDVR0j BBgwFoAUX7vQ89e4Hor9meWjS2eDTdPNE8kwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzhlNjE2MTEtM2IwYi00MWNlLTg4Y2QtZTU2MDM1M2Y2 OTQyLzEvNUZCQkQwRjNEN0I4MUU4QUZEOTlFNUEzNEI2NzgzNEREM0NEMTNDOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82OGFiYWJiYi1mMDQ4LTRk ZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi81RkJCRDBGM0Q3QjgxRThBRkQ5OUU1QTM0 QjY3ODM0REQzQ0QxM0M5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83OGU2MTYxMS0zYjBiLTQxY2UtODhjZC1lNTYwMzUzZjY5NDIvMS8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMDYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz OTM4MzUzOTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg4kLMA0GCSqGSIb3DQEBCwUAA4IBAQB7 hHiBSoMMvCgY/69VWgY5SCVFaM/tiKhj7KWp0KISQY0Q9hGLsZ4OEQU5UMGf7wBb mPjtehET0BmidYWUTVH8gK5jp3bOaDgLY1cCfk+fHdIkRd0EzWh2ZgXKneacBq3p H+XLiETqfu1qHwEFeLcVxY1eXH1XhGjOX0EtZURdwLi/NhiBJDgo34lsfFR+NzMP nzUycx49Es7FuTCA2t3pGpy0JG2PkFTTT/i7Z68yxy/PuJ4O8xyPE554Mjwuoa0H UdoGM52jG3rbcBa+I0pyE9QCHqAhw9lBIROmWwr50Miq18JRYqwerXWDkINj7wtl EPFvZckH4DGUmfKGN8L0 -----END CERTIFICATE-----Generated at Thu May 28 18:28:23 2026 by rpki-client