$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa File: 326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa (raw, json) Hash identifier: zpx42ErZf38nArat2lWc2CjcEQLArb7UaUXhAgB+AXc= Subject key identifier: FE:FD:41:8B:CF:CB:04:CF:B3:44:09:4D:7A:FF:23:23:65:CC:54:52 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 637D5ED2D00A8D440AE77B06217BA5309078A571 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa Signing time: Fri 15 May 2026 07:05:54 +0000 ROA not before: Fri 15 May 2026 07:00:54 +0000 ROA not after: Fri 14 May 2027 07:05:54 +0000 asID: 215148 IP address blocks: 2a14:7581:910a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7d:5e:d2:d0:0a:8d:44:0a:e7:7b:06:21:7b:a5:30:90:78:a5:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:54 2026 GMT Not After : May 14 07:05:54 2027 GMT Subject: CN=FEFD418BCFCB04CFB344094D7AFF232365CC5452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9c:7d:00:dd:d8:4a:75:81:c1:cd:a5:f5:a3: db:8a:12:f3:bd:26:83:1b:d8:0b:63:47:23:8e:68: 42:30:fa:4e:a2:b7:59:e0:aa:4f:c7:12:f6:68:dc: 76:34:47:93:60:5d:1f:f3:9b:9e:54:cc:24:eb:7d: ee:af:65:8d:1d:40:2a:d4:ff:2d:e2:55:5a:30:f5: 40:92:c5:2a:30:94:74:ea:67:dc:e2:7f:57:02:35: 1f:72:9b:73:1e:10:8d:a3:d4:37:02:9a:8a:5c:6a: d5:a8:5d:2f:66:73:c6:39:cf:c4:c3:a8:90:a4:ba: e4:35:50:3e:3f:e1:ce:51:fa:58:5f:46:a7:c3:54: 75:03:7a:59:34:9c:e6:b9:d4:0f:c9:3f:5a:9b:08: 4d:c4:ac:66:94:71:43:be:fa:53:26:3d:4c:31:0e: 7f:02:00:38:28:9b:89:48:08:18:94:99:c0:98:90: d0:47:df:45:f7:27:ee:34:f5:c4:21:57:bb:0a:3c: a5:d7:bf:0e:4a:ff:f4:ac:32:97:09:e1:98:91:e9: bd:78:f0:df:f7:56:33:a5:d4:da:a0:5a:f1:83:29: 78:91:a5:36:49:52:cb:a7:a2:58:7c:95:2d:f3:06: b2:c1:65:83:a4:4f:34:ce:c9:2f:87:59:c9:06:92: 05:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FD:41:8B:CF:CB:04:CF:B3:44:09:4D:7A:FF:23:23:65:CC:54:52 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393130613a3a2f34382d3438203d3e20323135313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:910a::/48 Signature Algorithm: sha256WithRSAEncryption a1:5e:d5:52:a6:c5:e1:79:e6:e5:48:e7:07:8f:85:35:96:64: c8:05:47:e2:27:c9:8f:c1:99:de:74:bc:29:41:07:be:f2:d8: 8b:20:ac:33:00:6e:88:3a:37:83:7c:d0:12:9d:6b:eb:26:3f: f2:1c:89:f4:86:6a:46:2a:63:89:f0:12:7d:e9:1b:18:42:1d: 62:f0:46:3d:33:cd:00:43:58:dc:5e:21:9b:7a:18:5f:2b:50: cf:e1:38:5a:74:17:4e:58:4d:25:dc:6a:46:ad:71:96:72:3f: fa:91:9d:a9:28:36:1b:7e:ab:43:dc:4f:0b:92:9f:8b:04:f9: bf:1f:11:d4:c0:42:fc:af:e2:7e:8d:c2:65:f0:d8:65:ab:62: 92:91:9d:5c:89:d1:92:bc:a5:80:70:31:9f:d5:4a:9c:d9:b0: b1:ef:f7:94:17:82:6c:0a:0a:bd:ac:ab:1d:a7:2b:cf:e8:fb: d6:f6:08:3e:5c:60:09:65:69:5c:cf:17:6b:7c:53:7f:3d:ed: 73:79:0b:2e:08:db:fd:f5:29:df:c6:b1:a0:b1:0d:2c:06:f9: 9a:e5:75:ee:20:45:6d:38:2f:5f:4e:2e:5f:a5:ff:52:99:11: cb:36:a8:eb:b1:35:1d:49:6a:34:78:da:2e:8b:b5:a6:16:4b: 1e:ec:3c:54 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUY31e0tAKjUQK53sGIXulMJB4pXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTRaFw0yNzA1MTQwNzA1NTRaMDMxMTAvBgNV BAMTKEZFRkQ0MThCQ0ZDQjA0Q0ZCMzQ0MDk0RDdBRkYyMzIzNjVDQzU0NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDynH0A3dhKdYHBzaX1o9uKEvO9 JoMb2AtjRyOOaEIw+k6it1ngqk/HEvZo3HY0R5NgXR/zm55UzCTrfe6vZY0dQCrU /y3iVVow9UCSxSowlHTqZ9zif1cCNR9ym3MeEI2j1DcCmopcatWoXS9mc8Y5z8TD qJCkuuQ1UD4/4c5R+lhfRqfDVHUDelk0nOa51A/JP1qbCE3ErGaUcUO++lMmPUwx Dn8CADgom4lICBiUmcCYkNBH30X3J+409cQhV7sKPKXXvw5K//SsMpcJ4ZiR6b14 8N/3VjOl1NqgWvGDKXiRpTZJUsunolh8lS3zBrLBZYOkTzTOyS+HWckGkgWhAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU/v1Bi8/LBM+zRAlNev8jI2XMVFIwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzEzMDYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZEKMA0GCSqGSIb3DQEBCwUAA4IBAQCh XtVSpsXheeblSOcHj4U1lmTIBUfiJ8mPwZnedLwpQQe+8tiLIKwzAG6IOjeDfNAS nWvrJj/yHIn0hmpGKmOJ8BJ96RsYQh1i8EY9M80AQ1jcXiGbehhfK1DP4ThadBdO WE0l3GpGrXGWcj/6kZ2pKDYbfqtD3E8Lkp+LBPm/HxHUwEL8r+J+jcJl8Nhlq2KS kZ1cidGSvKWAcDGf1Uqc2bCx7/eUF4JsCgq9rKsdpyvP6PvW9gg+XGAJZWlczxdr fFN/Pe1zeQsuCNv99SnfxrGgsQ0sBvma5XXuIEVtOC9fTi5fpf9SmRHLNqjrsTUd SWo0eNoui7WmFkse7DxU -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:40 2026 by rpki-client