$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: for3TZ55MsAMVGTBxoaBqPnYYuJ9C2scw6xD7EipCVE= Subject key identifier: 89:00:8A:9F:EC:98:39:4D:A2:07:D0:03:8D:64:E3:D3:CB:69:EE:14 Certificate issuer: /CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Certificate serial: 5974F88B5B3EAF03FF643FEB6159DD49FF5A1518 Authority key identifier: A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa Signing time: Fri 15 May 2026 07:05:52 +0000 ROA not before: Fri 15 May 2026 07:00:52 +0000 ROA not after: Fri 14 May 2027 07:05:52 +0000 asID: 215364 IP address blocks: 2a14:7581:91e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:74:f8:8b:5b:3e:af:03:ff:64:3f:eb:61:59:dd:49:ff:5a:15:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A1EE5D09A0F5D0D87611013175C62E35777DA926 Validity Not Before: May 15 07:00:52 2026 GMT Not After : May 14 07:05:52 2027 GMT Subject: CN=89008A9FEC98394DA207D0038D64E3D3CB69EE14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:da:32:08:00:65:41:51:55:d0:d1:59:d1:8c: 82:43:e4:c8:74:61:80:34:e1:8b:cc:ff:00:e3:f6: 51:e1:66:41:ae:28:80:3b:5e:b5:14:21:43:c5:50: 5d:32:89:55:45:6c:ce:dd:02:99:30:03:72:bf:45: 20:ac:3a:60:29:60:75:2c:96:64:6c:94:e1:2b:81: d2:1c:d7:1e:82:09:77:ff:f2:20:be:6f:e9:71:60: ee:3f:b6:e6:31:c6:6c:46:0e:47:00:77:b7:f3:fa: ae:73:a2:e5:5d:e7:be:64:60:f6:23:a2:c3:56:97: ab:6a:5e:c2:8b:43:70:43:46:b8:2a:0d:de:53:8f: ac:2b:47:e3:e2:2d:ec:66:d1:54:ad:53:e3:8b:92: 24:79:4a:f2:8f:a7:1e:3e:19:71:df:2a:a2:6c:c6: 46:f1:77:56:9a:51:c5:40:e4:54:31:16:56:6a:be: a3:0c:0a:ad:a2:4a:cc:55:5c:e8:9a:e7:54:09:55: d3:3d:4a:10:5a:32:b7:1f:d0:31:8a:88:df:7d:82: c5:b9:a7:ea:6d:65:9a:eb:16:1a:82:a0:24:1a:70: 11:60:e1:1d:3b:7c:2f:40:b6:bf:65:bf:81:59:65: cb:ca:8e:eb:00:2a:42:b6:98:d3:50:73:33:75:52: 39:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:00:8A:9F:EC:98:39:4D:A2:07:D0:03:8D:64:E3:D3:CB:69:EE:14 X509v3 Authority Key Identifier: keyid:A1:EE:5D:09:A0:F5:D0:D8:76:11:01:31:75:C6:2E:35:77:7D:A9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A1EE5D09A0F5D0D87611013175C62E35777DA926.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/0/326131343a373538313a393165313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:91e1::/48 Signature Algorithm: sha256WithRSAEncryption 35:7f:fa:ff:4a:c9:b8:a8:f6:20:59:dc:cf:f1:d6:63:02:94: 62:8e:24:cd:ac:ae:49:7f:84:fa:7d:47:7a:1f:f8:2d:6c:c3: c9:51:20:63:5e:09:e9:ae:1d:8c:cc:e6:64:2c:6a:6c:78:69: 63:0f:1a:f2:e0:ae:f1:ec:bb:ec:5e:39:d0:a7:ad:3d:56:89: 13:10:ad:27:01:6b:6a:78:f2:2d:ca:4d:84:94:4b:54:de:1a: fd:ae:12:d4:c2:18:9e:bd:fc:e2:98:87:5b:8f:71:ed:de:ea: 52:cf:3c:64:89:02:ba:11:f1:be:3e:45:da:22:c2:53:c3:e8: 82:48:df:ee:d3:15:af:0f:18:da:df:cb:52:dd:be:b3:34:a5: 73:27:28:1c:14:65:32:ae:c4:38:66:c2:62:e2:25:c1:41:ac: c4:d8:c2:3b:6c:9c:40:61:58:8d:58:16:4d:8d:2e:b6:17:d7: 1e:e5:b1:d9:f3:c9:ea:2c:f0:d1:06:44:23:da:f7:43:e2:60: 37:be:84:3d:37:d8:62:bf:5f:b1:fb:ec:34:81:17:4b:d6:f6: bf:b6:2c:1f:a8:b3:11:c1:78:98:b6:71:a0:cf:89:f5:81:9d: c2:79:4f:8b:39:45:20:58:14:75:9f:55:b5:92:3e:40:83:4a: fe:e0:a4:c2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUWXT4i1s+rwP/ZD/rYVndSf9aFRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3 NzdEQTkyNjAeFw0yNjA1MTUwNzAwNTJaFw0yNzA1MTQwNzA1NTJaMDMxMTAvBgNV BAMTKDg5MDA4QTlGRUM5ODM5NERBMjA3RDAwMzhENjRFM0QzQ0I2OUVFMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg2jIIAGVBUVXQ0VnRjIJD5Mh0 YYA04YvM/wDj9lHhZkGuKIA7XrUUIUPFUF0yiVVFbM7dApkwA3K/RSCsOmApYHUs lmRslOErgdIc1x6CCXf/8iC+b+lxYO4/tuYxxmxGDkcAd7fz+q5zouVd575kYPYj osNWl6tqXsKLQ3BDRrgqDd5Tj6wrR+PiLexm0VStU+OLkiR5SvKPpx4+GXHfKqJs xkbxd1aaUcVA5FQxFlZqvqMMCq2iSsxVXOia51QJVdM9ShBaMrcf0DGKiN99gsW5 p+ptZZrrFhqCoCQacBFg4R07fC9Atr9lv4FZZcvKjusAKkK2mNNQczN1Ujn1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUiQCKn+yYOU2iB9ADjWTj08tp7hQwHwYDVR0j BBgwFoAUoe5dCaD10Nh2EQExdcYuNXd9qSYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODU1YzdkNWEtMTVjNC00NTg5LTg1ZmEtYjQ5MWEwNzEw NDhjLzAvQTFFRTVEMDlBMEY1RDBEODc2MTEwMTMxNzVDNjJFMzU3NzdEQTkyNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BMUVFNUQwOUEwRjVEMEQ4NzYxMTAxMzE3 NUM2MkUzNTc3N0RBOTI2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84NTVjN2Q1YS0xNWM0LTQ1ODktODVmYS1iNDkxYTA3MTA0OGMvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzE2NTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZHhMA0GCSqGSIb3DQEBCwUAA4IBAQA1 f/r/Ssm4qPYgWdzP8dZjApRijiTNrK5Jf4T6fUd6H/gtbMPJUSBjXgnprh2MzOZk LGpseGljDxry4K7x7LvsXjnQp609VokTEK0nAWtqePItyk2ElEtU3hr9rhLUwhie vfzimIdbj3Ht3upSzzxkiQK6EfG+PkXaIsJTw+iCSN/u0xWvDxja38tS3b6zNKVz JygcFGUyrsQ4ZsJi4iXBQazE2MI7bJxAYViNWBZNjS62F9ce5bHZ88nqLPDRBkQj 2vdD4mA3voQ9N9hiv1+x++w0gRdL1va/tiwfqLMRwXiYtnGgz4n1gZ3CeU+LOUUg WBR1n1W1kj5Ag0r+4KTC -----END CERTIFICATE-----Generated at Thu Jun 11 21:48:02 2026 by rpki-client