$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa File: 326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa (raw, json) Hash identifier: kJs4pIFr56jieUGNJ8cBdGuDgpKUTJvT+kMc/MGiNTY= Subject key identifier: E1:57:E4:C5:15:94:60:29:87:1B:03:79:AD:3F:3D:C3:80:E0:4D:F9 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 52B324D40A08D2BFC23D70D1B749F58D223AEB7C Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:53 +0000 ROA not before: Fri 15 May 2026 07:00:53 +0000 ROA not after: Fri 14 May 2027 07:05:53 +0000 asID: 215364 IP address blocks: 2a14:7581:90a0::/43 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b3:24:d4:0a:08:d2:bf:c2:3d:70:d1:b7:49:f5:8d:22:3a:eb:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:53 2026 GMT Not After : May 14 07:05:53 2027 GMT Subject: CN=E157E4C515946029871B0379AD3F3DC380E04DF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b1:37:fd:8b:29:fc:72:1a:f6:ab:bd:e3:41: 76:ab:6b:05:a3:f1:7e:fd:10:d9:66:b6:56:d7:ec: 8a:d1:e5:0e:47:d6:4d:a0:4f:2b:da:71:b1:53:d3: dd:ba:4f:1f:09:ae:ff:fa:34:1f:91:ea:c9:81:2a: 4d:de:18:90:27:2d:fd:55:10:54:33:fd:98:0c:99: 91:94:69:fb:d9:b8:5f:78:d0:fd:f2:c0:17:13:46: 6e:d7:0a:cd:84:91:c0:df:16:c7:06:5c:e4:e3:9c: d5:bc:aa:07:7b:4d:77:33:fe:0b:b3:dd:54:9d:31: 96:bf:12:c5:d2:49:fa:10:38:d7:4e:73:8c:e8:d4: 7d:9c:5b:0b:28:7f:8c:a5:b6:ef:c4:33:d1:ea:2e: e9:b7:27:48:90:b5:36:de:f0:57:02:3a:09:06:cb: 68:47:30:b5:63:de:fb:a4:fa:f1:cd:1f:56:c0:e6: c0:83:72:71:ad:14:5b:01:91:80:d0:41:b5:d0:8a: bc:b9:a7:97:93:4d:f3:a2:97:42:d4:6c:0f:2d:13: ee:e0:55:e4:f4:3a:85:85:04:81:35:f4:a8:47:ac: bb:37:4c:4c:79:69:c0:54:db:07:4c:d5:df:9d:d4: b8:85:a6:a6:a6:ae:15:b1:da:50:0a:8b:9b:78:42: 9d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:57:E4:C5:15:94:60:29:87:1B:03:79:AD:3F:3D:C3:80:E0:4D:F9 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393061303a3a2f34332d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90a0::/43 Signature Algorithm: sha256WithRSAEncryption 12:93:e3:4c:ab:e8:96:66:87:91:52:99:60:ab:bd:dc:9b:48: 42:4a:6d:3c:45:07:17:e7:5c:8b:b1:1f:ad:73:a4:f2:18:86: 00:39:4c:d2:49:a2:21:cf:87:d1:72:bd:9a:94:42:6f:8b:dd: 16:9f:a6:82:d8:42:47:3d:07:93:7e:e4:bb:9a:98:bf:f0:24: f2:2a:4e:fc:76:92:ee:19:93:e3:aa:5b:07:c9:8c:b0:5b:0a: bb:be:62:ce:4f:fb:80:80:93:51:9d:9c:24:3b:64:24:25:d1: 3c:41:e3:e0:7c:95:b3:eb:de:e8:7d:f9:3a:ce:61:69:5e:2a: c4:57:32:4d:92:14:97:86:15:f2:da:e3:73:b9:c8:65:77:96: 90:b2:e2:ad:b0:4f:37:58:ee:29:8d:5c:a6:f6:25:cc:72:53: d9:9b:45:26:3a:b0:2b:ad:da:74:97:f8:db:4a:15:13:04:54: 94:ba:e9:06:5b:30:63:26:3e:9e:c4:32:52:e5:10:17:56:15: e4:30:9e:d4:94:a3:44:46:17:d7:80:d0:a7:b5:49:ab:4f:0e: f6:fb:74:8f:36:87:94:24:4a:dc:e6:49:11:a0:64:ca:d4:56: df:20:e8:11:8a:99:1c:36:26:ba:11:f6:80:b0:7c:d8:57:75: 5f:02:f0:21 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUUrMk1AoI0r/CPXDRt0n1jSI663wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTNaFw0yNzA1MTQwNzA1NTNaMDMxMTAvBgNV BAMTKEUxNTdFNEM1MTU5NDYwMjk4NzFCMDM3OUFEM0YzREMzODBFMDRERjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDusTf9iyn8chr2q73jQXarawWj 8X79ENlmtlbX7IrR5Q5H1k2gTyvacbFT0926Tx8Jrv/6NB+R6smBKk3eGJAnLf1V EFQz/ZgMmZGUafvZuF940P3ywBcTRm7XCs2EkcDfFscGXOTjnNW8qgd7TXcz/guz 3VSdMZa/EsXSSfoQONdOc4zo1H2cWwsof4yltu/EM9HqLum3J0iQtTbe8FcCOgkG y2hHMLVj3vuk+vHNH1bA5sCDcnGtFFsBkYDQQbXQiry5p5eTTfOil0LUbA8tE+7g VeT0OoWFBIE19KhHrLs3TEx5acBU2wdM1d+d1LiFpqamrhWx2lAKi5t4Qp0vAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU4VfkxRWUYCmHGwN5rT89w4DgTfkwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2MTMwM2EzYTJmMzQzMzJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcFKhR1gZCgMA0GCSqGSIb3DQEBCwUAA4IBAQAS k+NMq+iWZoeRUplgq73cm0hCSm08RQcX51yLsR+tc6TyGIYAOUzSSaIhz4fRcr2a lEJvi90Wn6aC2EJHPQeTfuS7mpi/8CTyKk78dpLuGZPjqlsHyYywWwq7vmLOT/uA gJNRnZwkO2QkJdE8QePgfJWz697offk6zmFpXirEVzJNkhSXhhXy2uNzuchld5aQ suKtsE83WO4pjVym9iXMclPZm0UmOrArrdp0l/jbShUTBFSUuukGWzBjJj6exDJS 5RAXVhXkMJ7UlKNERhfXgNCntUmrTw72+3SPNoeUJErc5kkRoGTK1FbfIOgRipkc Nia6EfaAsHzYV3VfAvAh -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:03 2026 by rpki-client