$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393031303a3a2f34342d3438203d3e20313430393135.roa File: 326131343a373538313a393031303a3a2f34342d3438203d3e20313430393135.roa (raw, json) Hash identifier: hztXLWa69ZCSvaHsgxfmIu1iGEyi0dmDHTKRn8lva0U= Subject key identifier: A3:51:86:D6:EE:DF:D1:2C:75:2E:95:5A:9B:C7:04:EC:A3:B8:D6:72 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 69F5D2331942EFE73DC290F875E2EDBB1AF9C8EC Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393031303a3a2f34342d3438203d3e20313430393135.roa Signing time: Fri 15 May 2026 07:05:53 +0000 ROA not before: Fri 15 May 2026 07:00:53 +0000 ROA not after: Fri 14 May 2027 07:05:53 +0000 asID: 140915 IP address blocks: 2a14:7581:9010::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:f5:d2:33:19:42:ef:e7:3d:c2:90:f8:75:e2:ed:bb:1a:f9:c8:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:53 2026 GMT Not After : May 14 07:05:53 2027 GMT Subject: CN=A35186D6EEDFD12C752E955A9BC704ECA3B8D672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:ec:9b:b9:0e:44:9d:51:7b:73:77:f7:cc: bb:15:df:f9:31:f4:9f:53:c5:c7:59:aa:de:7e:3a: 9a:e9:ba:b4:38:9c:c2:86:f0:eb:00:69:c1:76:21: a8:b6:ad:8d:e6:37:02:83:50:1b:a0:3b:f6:d4:46: 48:ce:56:42:58:3d:f9:49:5b:b9:ea:fb:52:59:02: 72:29:0d:05:b2:65:aa:fb:3c:41:55:52:c8:ba:ff: 32:e1:97:75:2e:18:33:c9:ba:63:2b:ac:9a:0b:a6: f0:29:65:5c:fd:6b:9a:c4:4d:b5:85:6d:7f:2b:5a: a0:56:d9:db:22:d9:6d:49:76:15:a2:9a:df:2b:69: 06:3d:0a:ac:de:e1:22:ea:58:49:20:dd:fb:86:4a: bc:92:a0:f9:95:70:c9:20:29:7c:d9:f8:53:06:77: 9d:94:01:7c:65:5d:54:72:2a:d1:0a:f5:5c:c3:e4: 81:c2:c1:ae:bb:48:6e:a1:5a:1d:b6:6b:0f:a1:03: 01:51:57:2a:ae:86:a7:6d:86:81:66:a5:15:dd:ac: 02:16:48:ac:b4:ba:52:48:9f:df:e1:8a:0b:29:f3: a1:e4:a6:6d:75:63:b3:0e:48:72:92:18:14:f6:73: f5:4e:41:7d:36:32:77:c6:04:be:0a:fc:52:ee:b6: 76:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:51:86:D6:EE:DF:D1:2C:75:2E:95:5A:9B:C7:04:EC:A3:B8:D6:72 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393031303a3a2f34342d3438203d3e20313430393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9010::/44 Signature Algorithm: sha256WithRSAEncryption 90:79:53:dc:bc:60:2f:52:e7:2b:f0:49:64:5b:5e:08:37:99: f5:ef:60:e3:22:2b:e8:ac:5d:4d:9e:1e:85:96:03:81:97:ad: 14:eb:f3:a6:b6:ba:4e:32:6e:e8:7e:37:cb:1c:33:bc:e0:f3: 90:9a:10:fc:c1:e9:df:5b:b9:c7:09:32:d4:80:f1:03:88:5b: cd:a7:97:97:47:87:f1:a1:32:b3:5c:04:7e:5d:c7:a3:f5:e6: 60:82:06:9f:0f:c2:f2:8a:c2:76:3e:df:c3:bf:b4:4f:7e:33: f3:e6:90:97:bf:c3:aa:2a:2b:56:a5:40:ba:53:dd:7a:f9:f4: 00:1c:78:de:5e:39:79:8a:09:42:a2:30:65:44:fb:9b:79:fe: 41:7f:db:14:b6:d0:74:05:ce:d6:2d:c7:13:fd:02:00:6c:03: 5d:75:24:d5:4d:f5:b2:70:4e:54:1f:8a:9c:bc:ad:d2:66:c3: dc:1e:52:51:92:a6:9f:07:13:f3:0f:c7:d2:91:8c:90:61:23: ec:9f:8d:25:a0:48:ba:38:4a:b6:d7:f7:e8:7d:21:5d:95:38: 67:8a:3f:12:9e:7d:fc:c7:01:a1:87:97:60:37:8f:38:58:bc: 88:52:e1:6f:35:1d:b2:3e:28:8e:52:0e:13:70:94:5d:8f:5e: 8b:db:05:fd -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUafXSMxlC7+c9wpD4deLtuxr5yOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTNaFw0yNzA1MTQwNzA1NTNaMDMxMTAvBgNV BAMTKEEzNTE4NkQ2RUVERkQxMkM3NTJFOTU1QTlCQzcwNEVDQTNCOEQ2NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0LuybuQ5EnVF7c3f3zLsV3/kx 9J9TxcdZqt5+OprpurQ4nMKG8OsAacF2Iai2rY3mNwKDUBugO/bURkjOVkJYPflJ W7nq+1JZAnIpDQWyZar7PEFVUsi6/zLhl3UuGDPJumMrrJoLpvApZVz9a5rETbWF bX8rWqBW2dsi2W1JdhWimt8raQY9Cqze4SLqWEkg3fuGSrySoPmVcMkgKXzZ+FMG d52UAXxlXVRyKtEK9VzD5IHCwa67SG6hWh22aw+hAwFRVyquhqdthoFmpRXdrAIW SKy0ulJIn9/higsp86Hkpm11Y7MOSHKSGBT2c/VOQX02MnfGBL4K/FLutnafAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUo1GG1u7f0Sx1LpVam8cE7KO41nIwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzAzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz NDMwMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZAQMA0GCSqGSIb3DQEBCwUAA4IBAQCQ eVPcvGAvUucr8ElkW14IN5n172DjIivorF1Nnh6FlgOBl60U6/OmtrpOMm7ofjfL HDO84POQmhD8wenfW7nHCTLUgPEDiFvNp5eXR4fxoTKzXAR+Xcej9eZgggafD8Ly isJ2Pt/Dv7RPfjPz5pCXv8OqKitWpUC6U916+fQAHHjeXjl5iglCojBlRPubef5B f9sUttB0Bc7WLccT/QIAbANddSTVTfWycE5UH4qcvK3SZsPcHlJRkqafBxPzD8fS kYyQYSPsn40loEi6OEq21/fofSFdlThnij8Snn38xwGhh5dgN484WLyIUuFvNR2y PiiOUg4TcJRdj16L2wX9 -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:03 2026 by rpki-client