$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 8uD4bBwjny3oHimP3K0P6bnhdh9l/903krEKBsdb/Mg= Subject key identifier: 85:A7:53:66:CA:C1:95:DE:54:AF:13:CB:70:CB:37:22:8D:01:0C:E5 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 3211B5A2578CD82B30A6676DA0AA0BD4F9A69FE4 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:52 +0000 ROA not before: Fri 15 May 2026 07:00:52 +0000 ROA not after: Fri 14 May 2027 07:05:52 +0000 asID: 215364 IP address blocks: 2a14:7581:91e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:11:b5:a2:57:8c:d8:2b:30:a6:67:6d:a0:aa:0b:d4:f9:a6:9f:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:52 2026 GMT Not After : May 14 07:05:52 2027 GMT Subject: CN=85A75366CAC195DE54AF13CB70CB37228D010CE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:da:dd:5b:38:07:15:12:ea:71:2a:d7:8e: b5:43:9c:71:5d:d5:df:1c:81:70:ca:2e:3c:53:aa: 6d:36:0b:b1:96:58:04:82:09:c1:96:51:74:96:43: af:4a:6e:4b:9d:3b:fd:93:ae:2d:39:19:89:3f:11: d3:5d:2a:5d:21:75:22:30:69:f8:74:fc:55:53:f2: 00:4e:aa:7f:42:5e:09:c3:31:65:31:43:1c:0c:dc: 19:8a:b4:d2:5a:07:d8:fe:87:fa:06:ac:b5:ba:27: 87:3c:9d:bb:35:38:44:9f:ce:ff:e4:e1:c3:be:e0: d5:7d:c7:28:f8:34:b6:63:5f:03:44:de:98:66:81: 6b:c1:3c:ec:9f:f0:ad:a1:99:0d:31:b4:69:1a:24: 47:ca:d2:66:44:be:d7:28:78:f8:4f:9f:4c:14:f6: be:3a:37:95:c5:21:4e:7a:ef:76:51:86:eb:b9:45: 33:df:7d:2d:17:a9:45:ce:9f:ba:03:24:d9:af:21: e9:75:a9:0c:a6:bb:5e:c5:46:84:47:0d:4d:2b:62: d4:10:b1:a8:92:32:6a:15:11:c2:1f:1c:e2:63:8f: 06:fd:aa:93:f0:cc:26:54:15:a6:dd:0c:52:c8:2b: f9:da:c4:c0:1e:0a:50:a5:7e:87:15:84:af:9f:52: 36:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A7:53:66:CA:C1:95:DE:54:AF:13:CB:70:CB:37:22:8D:01:0C:E5 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e0::/48 Signature Algorithm: sha256WithRSAEncryption ab:b0:2e:11:fb:f0:88:e6:76:2a:12:72:ff:53:30:8e:9f:b5: 22:ed:fc:fb:d1:de:92:73:e3:1f:b5:5b:e8:dc:0e:14:62:48: 1a:77:d6:0d:01:85:b1:cb:df:99:7d:83:00:0c:a0:75:1d:9b: 54:b5:1c:46:ea:7a:e0:66:6e:63:48:52:18:50:ac:d2:95:bf: ea:53:f2:e3:f9:1d:cb:94:ed:84:39:2b:c7:85:97:9d:4f:e9: e7:88:07:9d:86:25:a1:07:ea:7b:eb:e5:d3:ad:17:f4:93:60: e6:45:1f:01:5c:2f:99:44:0d:d7:e0:0d:c8:c6:da:89:bf:ee: 6d:16:a9:84:d3:c7:a9:a5:64:a6:05:c9:b2:c2:71:f1:32:e9: 75:21:ee:fa:7f:3a:3b:94:df:30:fb:15:84:2c:15:7a:c5:ab: 52:49:11:cd:22:13:4d:e3:b9:92:6f:45:30:c4:8a:e4:b6:43: b7:cf:f2:f3:ff:4b:58:a0:04:ff:bf:c9:70:58:c8:aa:0c:03: 35:8b:3d:fe:ae:d2:95:b8:8b:e2:5e:b7:b4:4a:b3:7f:a7:01: d1:c2:62:4e:d9:fa:b6:f6:52:7a:51:64:ad:87:b5:14:59:96: c0:89:8f:f5:f4:59:0a:58:07:4d:14:46:97:cf:4a:f1:6c:eb: 80:55:70:28 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUMhG1oleM2CswpmdtoKoL1Pmmn+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTJaFw0yNzA1MTQwNzA1NTJaMDMxMTAvBgNV BAMTKDg1QTc1MzY2Q0FDMTk1REU1NEFGMTNDQjcwQ0IzNzIyOEQwMTBDRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC5drdWzgHFRLqcSrXjrVDnHFd 1d8cgXDKLjxTqm02C7GWWASCCcGWUXSWQ69KbkudO/2Tri05GYk/EdNdKl0hdSIw afh0/FVT8gBOqn9CXgnDMWUxQxwM3BmKtNJaB9j+h/oGrLW6J4c8nbs1OESfzv/k 4cO+4NV9xyj4NLZjXwNE3phmgWvBPOyf8K2hmQ0xtGkaJEfK0mZEvtcoePhPn0wU 9r46N5XFIU5673ZRhuu5RTPffS0XqUXOn7oDJNmvIel1qQymu17FRoRHDU0rYtQQ saiSMmoVEcIfHOJjjwb9qpPwzCZUFabdDFLIK/naxMAeClClfocVhK+fUjb9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUhadTZsrBld5UrxPLcMs3Io0BDOUwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHgMA0GCSqGSIb3DQEBCwUAA4IBAQCr sC4R+/CI5nYqEnL/UzCOn7Ui7fz70d6Sc+MftVvo3A4UYkgad9YNAYWxy9+ZfYMA DKB1HZtUtRxG6nrgZm5jSFIYUKzSlb/qU/Lj+R3LlO2EOSvHhZedT+nniAedhiWh B+p76+XTrRf0k2DmRR8BXC+ZRA3X4A3IxtqJv+5tFqmE08eppWSmBcmywnHxMul1 Ie76fzo7lN8w+xWELBV6xatSSRHNIhNN47mSb0UwxIrktkO3z/Lz/0tYoAT/v8lw WMiqDAM1iz3+rtKVuIviXre0SrN/pwHRwmJO2fq29lJ6UWSth7UUWZbAiY/19FkK WAdNFEaXz0rxbOuAVXAo -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:42 2026 by rpki-client