$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393030303a3a2f34342d3438203d3e20323135333634.roa File: 326131343a373538313a393030303a3a2f34342d3438203d3e20323135333634.roa (raw, json) Hash identifier: WYhSrcn5TXhJNdUP3qkf2gSgA8q33bj3XMR4NNPqdCA= Subject key identifier: 3A:04:92:63:0F:25:A9:DB:AB:53:B9:0B:38:95:C0:C4:D7:DB:B8:04 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 4E4AEAA5FCE7539AEBB0C3181DAA8383D960EB83 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393030303a3a2f34342d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:52 +0000 ROA not before: Fri 15 May 2026 07:00:52 +0000 ROA not after: Fri 14 May 2027 07:05:52 +0000 asID: 215364 IP address blocks: 2a14:7581:9000::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:4a:ea:a5:fc:e7:53:9a:eb:b0:c3:18:1d:aa:83:83:d9:60:eb:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:52 2026 GMT Not After : May 14 07:05:52 2027 GMT Subject: CN=3A0492630F25A9DBAB53B90B3895C0C4D7DBB804 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:29:95:ca:c5:07:c0:0a:0e:2b:c9:9c:26:36: dd:54:98:d6:46:6d:29:ac:16:1c:8b:e1:5a:1c:ba: d3:24:f1:4f:d3:c5:ee:b8:8d:06:d7:98:b7:58:b7: 24:20:8f:42:3c:a1:96:4d:14:e0:03:0a:ca:c6:3e: 9c:d7:d5:db:a7:70:73:f8:ae:90:5c:d7:22:de:b9: 61:72:26:83:83:ba:a6:4b:20:54:66:e0:f1:3c:6b: de:02:66:19:cb:55:a2:f8:d2:57:a0:94:3f:4d:26: e6:27:7e:57:80:f4:43:52:48:91:26:2f:97:b2:76: d6:94:a3:63:00:fd:e7:5a:48:42:2f:e2:c1:6b:b5: d3:0a:86:f7:bb:5b:12:1d:fe:e2:33:a1:d3:71:ef: ff:52:40:02:1e:08:35:26:50:07:ad:18:67:80:99: 5d:e5:85:49:42:17:4c:4e:aa:9a:1d:6f:33:f6:a4: 26:63:6d:3c:68:b0:7e:4e:14:92:b2:7e:2a:f2:60: c4:7a:f2:76:c9:db:65:56:54:86:32:09:fb:70:82: 33:91:93:ad:5f:13:3b:ee:a8:b5:2d:92:ba:04:21: 7c:68:91:62:72:99:35:85:20:f7:29:27:a7:0b:46: 4a:17:96:b1:fb:95:4a:44:59:c6:3a:dd:da:66:91: 85:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:04:92:63:0F:25:A9:DB:AB:53:B9:0B:38:95:C0:C4:D7:DB:B8:04 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393030303a3a2f34342d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9000::/44 Signature Algorithm: sha256WithRSAEncryption 38:3b:a2:33:ff:93:cc:de:91:f4:b8:72:ff:7e:b4:d2:06:e4: 23:cb:9a:33:4f:7a:4d:1c:a8:f8:89:14:69:1d:7e:f7:d9:ea: 46:48:ff:07:fc:9b:92:59:a1:12:6c:46:7d:77:1f:dc:87:cf: 00:96:dd:e3:e0:4f:70:ec:36:d8:eb:7a:82:1b:37:da:db:14: 6b:4d:c3:ce:c1:f3:a9:a5:4c:bc:61:c6:e9:8e:f1:94:8c:71: 1b:88:e9:b1:8c:16:5f:69:15:08:96:c6:b7:2d:1f:9a:43:34: 51:b5:5f:bb:13:bf:f0:d1:83:3e:c3:ef:c6:a4:5f:bf:94:f5: cf:93:fb:6b:86:3b:fc:cc:8c:92:f1:e3:3d:92:42:62:3d:89: 59:77:45:d8:60:31:3d:fe:48:c3:5c:79:d7:3a:1d:4f:e1:70: 30:b8:8b:58:6f:9b:65:b1:eb:cf:40:27:32:ba:27:1e:db:6b: 80:54:ab:f9:af:12:63:b9:87:3e:b5:d4:14:20:c3:e6:41:92: dc:a5:fc:bc:12:c9:28:e1:21:3a:37:56:37:1d:d6:c7:ce:29: 2e:df:a3:bb:c4:ce:ef:8a:a0:be:e2:ba:42:2b:74:6c:0d:48: bd:f0:67:b7:24:39:ee:9a:0f:e6:d9:a8:a8:1b:af:7d:9b:06: 42:3f:9a:78 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTkrqpfznU5rrsMMYHaqDg9lg64MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTJaFw0yNzA1MTQwNzA1NTJaMDMxMTAvBgNV BAMTKDNBMDQ5MjYzMEYyNUE5REJBQjUzQjkwQjM4OTVDMEM0RDdEQkI4MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTKZXKxQfACg4ryZwmNt1UmNZG bSmsFhyL4VocutMk8U/Txe64jQbXmLdYtyQgj0I8oZZNFOADCsrGPpzX1duncHP4 rpBc1yLeuWFyJoODuqZLIFRm4PE8a94CZhnLVaL40leglD9NJuYnfleA9ENSSJEm L5eydtaUo2MA/edaSEIv4sFrtdMKhve7WxId/uIzodNx7/9SQAIeCDUmUAetGGeA mV3lhUlCF0xOqpodbzP2pCZjbTxosH5OFJKyfiryYMR68nbJ22VWVIYyCftwgjOR k61fEzvuqLUtkroEIXxokWJymTWFIPcpJ6cLRkoXlrH7lUpEWcY63dpmkYVrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUOgSSYw8lqdurU7kLOJXAxNfbuAQwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzAzMDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZAAMA0GCSqGSIb3DQEBCwUAA4IBAQA4 O6Iz/5PM3pH0uHL/frTSBuQjy5ozT3pNHKj4iRRpHX732epGSP8H/JuSWaESbEZ9 dx/ch88Alt3j4E9w7DbY63qCGzfa2xRrTcPOwfOppUy8YcbpjvGUjHEbiOmxjBZf aRUIlsa3LR+aQzRRtV+7E7/w0YM+w+/GpF+/lPXPk/trhjv8zIyS8eM9kkJiPYlZ d0XYYDE9/kjDXHnXOh1P4XAwuItYb5tlsevPQCcyuice22uAVKv5rxJjuYc+tdQU IMPmQZLcpfy8Esko4SE6N1Y3HdbHziku36O7xM7viqC+4rpCK3RsDUi98Ge3JDnu mg/m2aioG699mwZCP5p4 -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:05 2026 by rpki-client