$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: XCup3CDpTI8h0icf6dg5YC13MftgQWrPGVHtOIE5Emk= Subject key identifier: D6:D1:A9:67:4C:D4:D2:49:2A:22:9B:EC:0F:05:3C:3A:18:48:6A:60 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 4DB21632A1E86F34CA8DCA664E1954A66956F8F5 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:53 +0000 ROA not before: Fri 15 May 2026 07:00:53 +0000 ROA not after: Fri 14 May 2027 07:05:53 +0000 asID: 215364 IP address blocks: 2a14:7581:90ee::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b2:16:32:a1:e8:6f:34:ca:8d:ca:66:4e:19:54:a6:69:56:f8:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:53 2026 GMT Not After : May 14 07:05:53 2027 GMT Subject: CN=D6D1A9674CD4D2492A229BEC0F053C3A18486A60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:40:4a:56:95:17:f8:f1:0f:ed:76:f6:c3: a7:3d:64:a5:d0:8b:9d:d5:55:c3:79:43:fb:29:b1: 8c:53:ca:be:99:0c:da:42:d9:7d:d1:22:af:a6:2a: bd:94:3a:96:9b:3a:76:53:00:35:f8:c2:e8:31:b9: ec:8b:07:0a:87:52:49:9e:46:81:09:55:d1:0e:88: f6:d7:06:6e:9c:37:b5:1a:14:35:43:38:90:0e:5d: c2:97:1e:b5:cf:2f:6b:eb:93:09:d8:fc:c3:b2:d2: 9e:fc:e2:86:ec:d4:ed:60:e5:bb:9b:07:ab:46:d9: 5e:fd:db:b1:c4:ba:e6:f4:7e:08:5e:80:08:c6:e5: b7:11:8c:7b:ad:fe:45:76:c9:9b:01:a1:96:b8:e3: bd:f9:eb:50:9b:cc:36:3f:ea:55:62:29:11:46:62: 94:e4:cd:24:1a:0c:d2:e7:de:1f:f8:72:fd:ec:b7: 36:e5:3a:6e:e5:91:0c:a2:ab:8f:98:0a:df:22:ec: ac:fa:f1:e3:df:51:06:69:92:cd:0c:1e:17:db:2a: c1:78:6d:f7:37:f0:bf:d5:d8:16:92:51:1e:36:6d: 5d:b4:77:cf:de:70:83:7b:bf:00:b2:ab:34:6a:72: 3d:a2:57:49:bd:36:16:1c:85:6b:4c:5f:05:ab:b6: b9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D1:A9:67:4C:D4:D2:49:2A:22:9B:EC:0F:05:3C:3A:18:48:6A:60 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393065653a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ee::/48 Signature Algorithm: sha256WithRSAEncryption 46:e1:c8:30:ba:21:58:0c:5d:a2:d7:b1:fe:fa:1c:6c:0e:81: 5f:4b:75:62:ad:29:4a:b6:dc:b0:39:06:e5:ca:e2:49:9a:c8: ef:3a:d8:6b:d4:90:04:f3:62:72:36:26:3e:e3:03:e9:c8:23: 63:63:c0:9b:95:ed:83:ac:17:16:a7:07:4c:73:6b:06:d0:77: 5b:d0:14:41:0d:1f:6e:03:ea:e3:2f:30:a5:80:93:3e:aa:81: e0:78:8f:24:a4:84:66:3c:33:4a:64:fe:c0:8e:1c:4b:ee:87: 3e:85:ad:7e:aa:ac:1d:95:df:47:51:99:6e:0c:9e:68:ef:5d: bf:11:fa:11:3d:fe:f9:1a:33:63:07:48:3d:94:a6:c9:42:8d: 7b:63:b8:5f:b4:4e:3d:7b:71:2a:ff:e0:c2:51:44:59:0a:ca: 91:83:56:c1:c2:cb:fb:51:5d:42:09:21:86:fb:8e:fb:61:fc: 22:84:1a:4a:e5:26:e8:5a:20:a1:b4:26:fe:b0:7f:c8:56:f3: 03:0b:c5:ab:f1:aa:33:84:87:e4:24:22:51:4f:10:e6:08:f7: 66:c8:a9:7d:5f:91:fd:be:61:58:d0:83:ea:6a:19:9e:65:0d: 39:34:98:67:e1:4d:ae:bd:8c:31:6d:4e:92:24:6d:00:b8:10: 64:e5:34:0b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTbIWMqHobzTKjcpmThlUpmlW+PUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTNaFw0yNzA1MTQwNzA1NTNaMDMxMTAvBgNV BAMTKEQ2RDFBOTY3NENENEQyNDkyQTIyOUJFQzBGMDUzQzNBMTg0ODZBNjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5+EBKVpUX+PEP7Xb2w6c9ZKXQ i53VVcN5Q/spsYxTyr6ZDNpC2X3RIq+mKr2UOpabOnZTADX4wugxueyLBwqHUkme RoEJVdEOiPbXBm6cN7UaFDVDOJAOXcKXHrXPL2vrkwnY/MOy0p784obs1O1g5bub B6tG2V7927HEuub0fghegAjG5bcRjHut/kV2yZsBoZa4473561CbzDY/6lViKRFG YpTkzSQaDNLn3h/4cv3stzblOm7lkQyiq4+YCt8i7Kz68ePfUQZpks0MHhfbKsF4 bfc38L/V2BaSUR42bV20d8/ecIN7vwCyqzRqcj2iV0m9NhYchWtMXwWrtrk1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU1tGpZ0zU0kkqIpvsDwU8OhhIamAwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NTY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZDuMA0GCSqGSIb3DQEBCwUAA4IBAQBG 4cgwuiFYDF2i17H++hxsDoFfS3VirSlKttywOQblyuJJmsjvOthr1JAE82JyNiY+ 4wPpyCNjY8Cble2DrBcWpwdMc2sG0Hdb0BRBDR9uA+rjLzClgJM+qoHgeI8kpIRm PDNKZP7AjhxL7oc+ha1+qqwdld9HUZluDJ5o712/EfoRPf75GjNjB0g9lKbJQo17 Y7hftE49e3Eq/+DCUURZCsqRg1bBwsv7UV1CCSGG+477YfwihBpK5SboWiChtCb+ sH/IVvMDC8Wr8aozhIfkJCJRTxDmCPdmyKl9X5H9vmFY0IPqahmeZQ05NJhn4U2u vYwxbU6SJG0AuBBk5TQL -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:06 2026 by rpki-client