$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: BYtMeV7LUYCkn/ZlkNGbMC11vRUN13yQPjH3QL+ojYM= Subject key identifier: 1C:F6:F4:5C:45:C7:83:AB:C6:6F:E6:EB:21:CF:B9:D7:67:8A:7D:5E Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 0B00F475D414FE5AC663661E1E7F787A20511FF3 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:54 +0000 ROA not before: Fri 15 May 2026 07:00:54 +0000 ROA not after: Fri 14 May 2027 07:05:54 +0000 asID: 215364 IP address blocks: 2a14:7581:90fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:00:f4:75:d4:14:fe:5a:c6:63:66:1e:1e:7f:78:7a:20:51:1f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:54 2026 GMT Not After : May 14 07:05:54 2027 GMT Subject: CN=1CF6F45C45C783ABC66FE6EB21CFB9D7678A7D5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fa:8c:c3:eb:ea:69:b6:c2:3e:cb:24:21:34: 2f:0f:54:3d:c2:74:b1:65:f9:2b:ac:a5:71:3d:0d: 52:51:f8:76:16:30:ba:bb:4b:64:d6:4a:71:38:78: 78:ba:a2:d3:15:28:1d:8c:90:26:22:99:94:2c:48: d3:49:7c:89:e0:0d:3d:f4:b7:5d:2f:4f:68:1c:f7: ef:78:b4:23:5c:c3:6d:0f:34:54:96:89:ac:25:df: 81:de:c0:5c:9d:59:94:3d:95:8a:2e:de:a6:f1:a4: 22:21:49:85:de:c1:4d:ae:7b:97:1c:4b:7b:8e:dd: 70:7b:05:5a:48:6e:40:f7:3a:59:75:fd:11:3c:53: e3:2a:5f:29:07:5e:49:a5:f8:1e:e0:77:8a:75:4c: 67:d3:82:6a:2d:65:ab:f9:aa:12:e8:f0:67:57:59: dc:fb:64:57:9e:67:ce:17:ff:ad:3c:bf:b7:13:a3: 01:12:b3:a0:11:e1:26:0f:21:fd:65:9d:ab:aa:fa: 5e:b8:b7:8f:d5:e6:dd:d7:52:b5:b7:fb:ab:2c:7b: 42:d3:5b:24:a9:da:03:42:af:da:b5:8d:bf:91:b1: b1:bc:3b:e6:99:75:08:32:3e:21:aa:69:84:e1:7c: 74:b6:34:0e:67:c6:16:b8:51:9d:ac:06:c6:57:a7: 66:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F6:F4:5C:45:C7:83:AB:C6:6F:E6:EB:21:CF:B9:D7:67:8A:7D:5E X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066653a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90fe::/48 Signature Algorithm: sha256WithRSAEncryption 2e:db:d5:d0:ac:37:ed:64:42:c2:26:9f:06:7b:c0:1b:ae:4c: d2:db:c2:b5:8f:37:a0:67:58:2a:a1:7e:63:4d:f0:51:ec:79: 37:77:fb:c3:e9:4a:06:7a:b0:e1:e9:38:87:57:db:6c:5b:6f: 95:92:2f:a8:07:4c:9d:0a:47:aa:84:74:0c:9f:48:8a:0b:05: da:63:5d:2f:b4:21:66:cf:94:27:b5:35:02:10:99:9c:dc:00: 4c:8a:c3:0f:15:dd:16:b6:46:b4:a3:e1:fc:dc:09:22:09:24: c9:5a:93:d8:db:3c:ba:13:fb:1f:76:92:01:4c:ec:32:19:ac: f0:a0:8a:59:9b:52:80:b3:f7:53:b4:08:aa:f7:e1:cc:fc:0c: 00:b5:c6:da:cf:26:0d:c8:42:a8:e5:2f:44:d2:d2:04:7e:66: 82:f0:ea:31:5b:4b:8e:63:31:61:a0:ae:4c:68:44:f2:ff:83: 53:54:c8:e1:69:15:19:84:a6:bd:bb:ee:70:14:d2:43:ec:17: 34:40:04:a0:ae:16:86:22:c5:25:ab:cf:81:d5:d6:04:80:72: 9f:c6:f2:15:f9:00:84:b7:92:26:7b:d6:69:66:48:26:30:62: d6:ed:04:41:2c:f8:ef:09:0d:f5:71:d4:ca:44:ba:7f:9d:ec: a3:92:78:5a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUCwD0ddQU/lrGY2YeHn94eiBRH/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTRaFw0yNzA1MTQwNzA1NTRaMDMxMTAvBgNV BAMTKDFDRjZGNDVDNDVDNzgzQUJDNjZGRTZFQjIxQ0ZCOUQ3Njc4QTdENUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl+ozD6+pptsI+yyQhNC8PVD3C dLFl+SuspXE9DVJR+HYWMLq7S2TWSnE4eHi6otMVKB2MkCYimZQsSNNJfIngDT30 t10vT2gc9+94tCNcw20PNFSWiawl34HewFydWZQ9lYou3qbxpCIhSYXewU2ue5cc S3uO3XB7BVpIbkD3Oll1/RE8U+MqXykHXkml+B7gd4p1TGfTgmotZav5qhLo8GdX Wdz7ZFeeZ84X/608v7cTowESs6AR4SYPIf1lnauq+l64t4/V5t3XUrW3+6sse0LT WySp2gNCr9q1jb+RsbG8O+aZdQgyPiGqaYThfHS2NA5nxha4UZ2sBsZXp2bbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUHPb0XEXHg6vGb+brIc+512eKfV4wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZD+MA0GCSqGSIb3DQEBCwUAA4IBAQAu 29XQrDftZELCJp8Ge8AbrkzS28K1jzegZ1gqoX5jTfBR7Hk3d/vD6UoGerDh6TiH V9tsW2+Vki+oB0ydCkeqhHQMn0iKCwXaY10vtCFmz5QntTUCEJmc3ABMisMPFd0W tka0o+H83AkiCSTJWpPY2zy6E/sfdpIBTOwyGazwoIpZm1KAs/dTtAiq9+HM/AwA tcbazyYNyEKo5S9E0tIEfmaC8OoxW0uOYzFhoK5MaETy/4NTVMjhaRUZhKa9u+5w FNJD7Bc0QASgrhaGIsUlq8+B1dYEgHKfxvIV+QCEt5Ime9ZpZkgmMGLW7QRBLPjv CQ31cdTKRLp/neyjknha -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:04 2026 by rpki-client