$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa File: 326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa (raw, json) Hash identifier: 1g59AndTpeuojlSNC7MQicy9YrEwBPc41WOJd+gnKfI= Subject key identifier: 58:6D:68:9A:BF:33:21:D8:A3:B7:1C:0C:AB:B0:E9:E9:7B:00:04:39 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 717730968FC2D2A3B8A774D0975D3654052E8985 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa Signing time: Fri 15 May 2026 07:05:52 +0000 ROA not before: Fri 15 May 2026 07:00:52 +0000 ROA not after: Fri 14 May 2027 07:05:52 +0000 asID: 215617 IP address blocks: 2a14:7581:90ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:77:30:96:8f:c2:d2:a3:b8:a7:74:d0:97:5d:36:54:05:2e:89:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:52 2026 GMT Not After : May 14 07:05:52 2027 GMT Subject: CN=586D689ABF3321D8A3B71C0CABB0E9E97B000439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:38:48:e8:fb:c2:32:03:fe:8f:b4:67:01:6b: 12:b6:04:65:58:4e:af:eb:e2:0c:20:10:03:24:15: c7:ce:e7:02:22:83:6c:ee:77:ce:68:4c:0e:02:fe: 33:3c:b1:d8:85:9d:bb:a3:0c:ff:4c:84:bf:a5:cc: 14:98:59:f3:2b:dc:33:be:f8:d1:f9:94:59:4f:2c: 90:4e:10:3b:4e:c6:bc:38:c5:f6:7a:18:37:a1:61: 26:88:0f:39:8e:e4:8b:68:de:5c:fa:af:71:ed:40: 15:a2:3f:08:f7:42:05:64:be:82:d4:6a:06:f2:7e: 70:e8:f6:fd:a2:f8:6c:b7:a3:3b:d5:65:80:6b:67: 62:c9:dc:f0:af:d3:40:b7:fc:22:93:9c:5f:94:ad: 04:d6:1a:fe:ef:e6:30:be:90:a2:9d:cf:bd:ee:5a: 7d:86:24:97:2e:79:ed:35:74:44:a9:74:cc:9e:02: fd:85:ab:22:e0:cd:0d:b5:68:b1:8b:ae:b5:7e:17: 4a:55:55:61:f0:45:c4:a9:45:74:9e:83:73:e6:c6: e5:aa:ca:ed:a5:1a:4e:64:45:11:d2:8b:ab:dd:fa: 84:75:fc:fc:1e:63:f6:89:a5:3a:9b:20:70:be:55: 50:bc:f3:f2:7e:7e:40:77:20:5e:02:91:95:98:fc: 93:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:6D:68:9A:BF:33:21:D8:A3:B7:1C:0C:AB:B0:E9:E9:7B:00:04:39 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393066663a3a2f34382d3438203d3e20323135363137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:90ff::/48 Signature Algorithm: sha256WithRSAEncryption 57:f3:d1:25:55:0d:b7:49:c8:c4:4a:c1:c8:42:9b:ca:39:5d: 96:a4:ef:ce:5c:c6:5e:cb:0d:0b:14:45:12:81:fe:97:e1:76: af:5b:ea:94:4b:61:bb:77:79:35:0f:af:e6:cb:62:67:13:fb: f9:16:3d:bd:d0:03:a2:54:3b:43:ca:44:29:e0:d5:ae:46:1a: 31:e5:36:0a:38:4d:e1:d3:3c:af:2f:06:e8:dc:d0:f7:39:04: 97:42:ae:f5:78:16:7d:d2:5c:54:86:1b:2b:b2:a4:f7:74:4b: 74:99:36:7a:f9:71:5b:a2:70:3e:90:9a:18:51:2e:39:83:e6: e9:e0:53:af:30:27:b0:07:54:95:79:bc:e2:7a:6c:1f:0e:9c: fd:c3:f7:51:b3:bd:dd:04:0c:fe:c0:73:a1:1c:c5:3a:e1:0e: 7f:eb:36:d8:2e:01:b0:5d:04:99:fd:5b:9c:30:dd:e6:9f:b7: 7c:7a:6b:48:8d:c1:af:c5:1c:0e:b3:e9:5d:84:56:21:b5:00: 3e:20:bc:92:84:68:4c:d2:b7:72:97:5b:c6:a0:68:b9:59:f9: 12:15:27:bc:74:19:4b:5d:90:91:7d:ce:c1:00:74:f6:71:b5: 93:6f:ad:28:a8:fa:51:f3:32:24:0f:dd:8f:ed:d2:43:ec:c0: 74:0c:5c:89 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcXcwlo/C0qO4p3TQl102VAUuiYUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTJaFw0yNzA1MTQwNzA1NTJaMDMxMTAvBgNV BAMTKDU4NkQ2ODlBQkYzMzIxRDhBM0I3MUMwQ0FCQjBFOUU5N0IwMDA0MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtOEjo+8IyA/6PtGcBaxK2BGVY Tq/r4gwgEAMkFcfO5wIig2zud85oTA4C/jM8sdiFnbujDP9MhL+lzBSYWfMr3DO+ +NH5lFlPLJBOEDtOxrw4xfZ6GDehYSaIDzmO5Ito3lz6r3HtQBWiPwj3QgVkvoLU agbyfnDo9v2i+Gy3ozvVZYBrZ2LJ3PCv00C3/CKTnF+UrQTWGv7v5jC+kKKdz73u Wn2GJJcuee01dESpdMyeAv2FqyLgzQ21aLGLrrV+F0pVVWHwRcSpRXSeg3PmxuWq yu2lGk5kRRHSi6vd+oR1/PweY/aJpTqbIHC+VVC88/J+fkB3IF4CkZWY/JO3AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUWG1omr8zIdijtxwMq7Dp6XsABDkwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzA2NjY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzYzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZD/MA0GCSqGSIb3DQEBCwUAA4IBAQBX 89ElVQ23ScjESsHIQpvKOV2WpO/OXMZeyw0LFEUSgf6X4XavW+qUS2G7d3k1D6/m y2JnE/v5Fj290AOiVDtDykQp4NWuRhox5TYKOE3h0zyvLwbo3ND3OQSXQq71eBZ9 0lxUhhsrsqT3dEt0mTZ6+XFbonA+kJoYUS45g+bp4FOvMCewB1SVebziemwfDpz9 w/dRs73dBAz+wHOhHMU64Q5/6zbYLgGwXQSZ/VucMN3mn7d8emtIjcGvxRwOs+ld hFYhtQA+ILyShGhM0rdyl1vGoGi5WfkSFSe8dBlLXZCRfc7BAHT2cbWTb60oqPpR 8zIkD92P7dJD7MB0DFyJ -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:39 2026 by rpki-client