$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa File: 326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa (raw, json) Hash identifier: CugFEvD4Ktg/5XSZzy7iQtNWk6C3XP2CbAfxfcxZ7Ek= Subject key identifier: A1:14:13:05:AD:32:BB:F6:23:4D:7E:40:79:5E:BD:64:89:FE:02:FE Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 739A3E4F19766E9D35402AB171F1CE5488C832ED Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa Signing time: Fri 15 May 2026 07:05:54 +0000 ROA not before: Fri 15 May 2026 07:00:54 +0000 ROA not after: Fri 14 May 2027 07:05:54 +0000 asID: 214841 IP address blocks: 2a14:7581:9100::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9a:3e:4f:19:76:6e:9d:35:40:2a:b1:71:f1:ce:54:88:c8:32:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:54 2026 GMT Not After : May 14 07:05:54 2027 GMT Subject: CN=A1141305AD32BBF6234D7E40795EBD6489FE02FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c4:7c:84:38:54:b8:e4:67:b5:94:22:2b:55: bf:ec:db:75:f3:4a:db:bd:9f:1a:60:ed:47:fd:33: bf:d3:1e:7e:3f:bf:47:a5:e7:d8:49:85:d9:95:72: c9:f7:5c:b1:4a:1d:da:05:92:d7:4f:1a:a0:64:4b: cc:e6:9c:4e:9b:49:9d:34:15:f3:b4:b4:42:7e:5f: 2b:47:c8:8a:f3:4b:e7:2c:3c:8f:f3:8b:e9:80:c1: 20:38:12:90:ad:fe:c0:4c:e4:25:b9:88:17:0c:9f: aa:bb:9f:fe:42:11:55:99:55:cf:d5:4d:d6:70:c7: e9:d5:df:57:b2:2c:ab:0d:9d:27:32:3c:6e:fd:27: c7:b3:6f:29:2e:16:fb:6f:6d:5a:11:3c:ab:ac:7e: c7:71:aa:48:e7:15:7c:cd:90:b8:dc:8b:21:d2:cb: 3e:b3:a4:8a:7a:bc:88:c2:61:0e:ea:8e:bf:7a:ee: 78:fb:19:ef:33:57:67:ec:68:20:37:7d:99:ce:d5: 9e:43:ec:ab:e0:af:e6:e5:4e:5b:d1:16:db:b7:a3: 93:0b:13:eb:15:88:ff:d5:18:e2:61:a2:d2:9e:05: 56:e0:b0:eb:b9:e8:87:8e:56:0b:c7:7d:a9:24:88: 1a:68:e8:65:a8:73:70:1c:4f:a3:27:7a:97:21:c6: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:14:13:05:AD:32:BB:F6:23:4D:7E:40:79:5E:BD:64:89:FE:02:FE X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130303a3a2f34382d3438203d3e20323134383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9100::/48 Signature Algorithm: sha256WithRSAEncryption 90:3c:e1:f5:f7:d3:32:5b:5f:cd:df:08:97:8a:2b:ef:d3:75: b7:6d:22:a8:6c:75:5d:66:a2:2c:b6:57:8e:68:95:b9:48:aa: 77:46:0a:50:73:ae:73:dd:3b:64:1e:9f:96:ae:56:39:10:dc: 4c:7a:2f:66:67:da:34:cd:bf:5b:eb:21:7e:2d:46:af:4a:05: 9d:7e:9a:de:8e:f4:2b:a7:03:57:eb:c7:97:fe:b6:4c:63:67: 36:63:64:dc:fe:44:da:c3:5d:90:3f:d6:95:c8:50:42:e4:55: 8b:e5:0e:6c:20:94:37:a0:2f:66:c7:be:84:5d:7b:73:9b:8e: 67:1a:9d:99:61:d6:0a:53:ed:79:99:66:40:f8:7c:6a:bd:47: 5d:5b:6c:64:5b:ef:2a:41:70:1e:5b:e6:66:a7:84:f5:9d:3e: 08:98:fb:44:33:8e:c6:6e:9c:b4:ad:d7:16:ae:a8:22:95:06: 85:1d:71:b5:1e:61:a0:70:04:84:d8:4f:47:31:a8:e9:e6:ff: be:4c:b3:ec:28:93:ff:34:54:e6:c8:df:5f:17:a1:95:c6:f1: 70:22:36:c8:9b:ee:6b:4d:16:23:9f:41:7d:c5:a4:34:f3:3e: eb:ad:ed:b9:7f:2f:e4:a2:fe:ca:f5:91:1b:6a:41:82:71:9c: 06:2d:a5:63 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUc5o+Txl2bp01QCqxcfHOVIjIMu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTRaFw0yNzA1MTQwNzA1NTRaMDMxMTAvBgNV BAMTKEExMTQxMzA1QUQzMkJCRjYyMzREN0U0MDc5NUVCRDY0ODlGRTAyRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXxHyEOFS45Ge1lCIrVb/s23Xz Stu9nxpg7Uf9M7/THn4/v0el59hJhdmVcsn3XLFKHdoFktdPGqBkS8zmnE6bSZ00 FfO0tEJ+XytHyIrzS+csPI/zi+mAwSA4EpCt/sBM5CW5iBcMn6q7n/5CEVWZVc/V TdZwx+nV31eyLKsNnScyPG79J8ezbykuFvtvbVoRPKusfsdxqkjnFXzNkLjciyHS yz6zpIp6vIjCYQ7qjr967nj7Ge8zV2fsaCA3fZnO1Z5D7Kvgr+blTlvRFtu3o5ML E+sViP/VGOJhotKeBVbgsOu56IeOVgvHfakkiBpo6GWoc3AcT6Mnepchxu9RAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUoRQTBa0yu/YjTX5AeV69ZIn+Av4wHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZEAMA0GCSqGSIb3DQEBCwUAA4IBAQCQ POH199MyW1/N3wiXiivv03W3bSKobHVdZqIstleOaJW5SKp3RgpQc65z3TtkHp+W rlY5ENxMei9mZ9o0zb9b6yF+LUavSgWdfprejvQrpwNX68eX/rZMY2c2Y2Tc/kTa w12QP9aVyFBC5FWL5Q5sIJQ3oC9mx76EXXtzm45nGp2ZYdYKU+15mWZA+HxqvUdd W2xkW+8qQXAeW+Zmp4T1nT4ImPtEM47Gbpy0rdcWrqgilQaFHXG1HmGgcASE2E9H Majp5v++TLPsKJP/NFTmyN9fF6GVxvFwIjbIm+5rTRYjn0F9xaQ08z7rre25fy/k ov7K9ZEbakGCcZwGLaVj -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:41 2026 by rpki-client