$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a32303a3a2f34342d3438203d3e20323135363835.roa File: 326130613a363034373a32303a3a2f34342d3438203d3e20323135363835.roa (raw, json) Hash identifier: HxKFgIaqkt5kQ++XijdGNjwJiU02ZWb1S5e5ZZU8cWA= Subject key identifier: 80:09:85:C8:EE:1A:C8:02:76:DC:15:07:AC:1F:74:FF:8C:2D:9E:62 Certificate issuer: /CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Certificate serial: 6C3E37D9617CBC9F1337416BDF714D6FB65219C5 Authority key identifier: 15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a32303a3a2f34342d3438203d3e20323135363835.roa Signing time: Sun 05 Apr 2026 09:30:52 +0000 ROA not before: Sun 05 Apr 2026 09:25:52 +0000 ROA not after: Sun 04 Apr 2027 09:30:52 +0000 asID: 215685 IP address blocks: 2a0a:6047:20::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 10 Apr 2026 11:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:3e:37:d9:61:7c:bc:9f:13:37:41:6b:df:71:4d:6f:b6:52:19:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Validity Not Before: Apr 5 09:25:52 2026 GMT Not After : Apr 4 09:30:52 2027 GMT Subject: CN=800985C8EE1AC80276DC1507AC1F74FF8C2D9E62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c0:c8:8a:e8:c1:7e:f9:5f:12:75:58:bc:94: 99:f9:95:75:12:30:2e:c3:44:ce:44:87:7b:a7:9a: 09:cb:49:88:d8:39:72:c1:61:fc:ad:69:77:e5:96: dc:dc:a2:c4:2c:d0:e5:fa:1c:d3:58:90:1c:3c:53: 10:45:bf:43:44:33:e3:86:46:f4:2b:a8:93:88:46: 32:fa:8a:0d:5e:4a:a1:cc:27:bb:03:25:63:a0:1d: 4b:25:10:d9:db:34:63:7b:9e:92:89:f7:73:a8:bb: 4c:67:cf:7e:ea:1a:6c:b2:5c:80:2c:01:36:80:5a: 6c:39:a5:b0:f7:bb:f8:e4:29:d4:d9:f3:1a:b3:10: 7e:a5:76:38:94:c4:64:a4:00:5c:a3:eb:bd:ba:68: 36:2f:ed:56:16:fe:9f:03:9d:04:91:8d:94:d7:ca: 06:9f:68:cb:4a:0c:fc:3d:6b:b4:39:13:d5:ab:22: b0:b5:ec:1e:9b:b5:fe:df:db:14:3e:3c:1f:df:56: 91:ec:36:bd:2c:08:d7:10:0b:80:3f:ce:93:05:66: aa:b1:ed:e0:8a:99:0b:81:e3:2a:a8:ef:f4:bb:29: 61:df:8b:8b:d0:aa:d0:c4:8f:5f:bc:df:4a:98:60: 22:3b:72:8d:f8:5d:3f:dc:18:c8:3f:bc:ea:01:47: 23:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:09:85:C8:EE:1A:C8:02:76:DC:15:07:AC:1F:74:FF:8C:2D:9E:62 X509v3 Authority Key Identifier: keyid:15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a32303a3a2f34342d3438203d3e20323135363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6047:20::/44 Signature Algorithm: sha256WithRSAEncryption 48:87:9f:4d:f0:00:60:a1:cf:49:2b:45:62:02:c2:d3:b0:84: 2c:81:13:99:31:a1:ae:33:51:b6:1f:17:7d:38:03:e3:66:51: a8:d7:9e:ed:f5:fd:f2:2d:8e:ef:b1:1f:56:b3:0f:57:23:53: e7:0e:90:4d:5b:c2:6b:ac:86:0b:2c:85:a5:20:0f:f6:a1:7a: b2:d9:8a:bd:b7:06:94:3a:e7:c8:16:e5:f9:e6:56:50:7a:e2: b0:c4:03:fd:b5:4a:4c:c0:1f:35:49:cc:29:dc:06:77:f3:ff: 0c:62:c4:cb:53:3a:6c:1e:f6:a5:7c:dd:e1:41:ff:4a:65:84: 4d:5e:b0:01:31:20:e9:1c:98:fc:d6:ed:bb:b8:27:cb:4f:25: 2b:42:18:9c:14:1a:1e:ce:d8:f1:b7:ef:41:ab:e5:06:b6:70: d0:9e:35:65:0e:52:a8:f8:57:ed:13:05:fa:b3:af:dd:d6:75: ed:7b:09:28:69:cd:84:a6:7f:4a:de:6c:02:1d:dc:52:b3:96: 3d:22:2c:80:9e:46:81:62:77:46:43:2d:9d:51:fe:e1:f9:a1: de:72:76:1e:1b:a8:b3:fb:5e:4b:cf:26:44:ff:15:8f:47:3e: cd:67:35:77:b9:25:d4:0b:df:4a:4d:39:9b:01:60:34:66:56: b1:d3:9d:24 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUbD432WF8vJ8TN0Fr33FNb7ZSGcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQz QzNCMjM1ODAeFw0yNjA0MDUwOTI1NTJaFw0yNzA0MDQwOTMwNTJaMDMxMTAvBgNV BAMTKDgwMDk4NUM4RUUxQUM4MDI3NkRDMTUwN0FDMUY3NEZGOEMyRDlFNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5wMiK6MF++V8SdVi8lJn5lXUS MC7DRM5Eh3unmgnLSYjYOXLBYfytaXflltzcosQs0OX6HNNYkBw8UxBFv0NEM+OG RvQrqJOIRjL6ig1eSqHMJ7sDJWOgHUslENnbNGN7npKJ93Oou0xnz37qGmyyXIAs ATaAWmw5pbD3u/jkKdTZ8xqzEH6ldjiUxGSkAFyj6726aDYv7VYW/p8DnQSRjZTX ygafaMtKDPw9a7Q5E9WrIrC17B6btf7f2xQ+PB/fVpHsNr0sCNcQC4A/zpMFZqqx 7eCKmQuB4yqo7/S7KWHfi4vQqtDEj1+830qYYCI7co34XT/cGMg/vOoBRyMvAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUgAmFyO4ayAJ23BUHrB90/4wtnmIwHwYDVR0j BBgwFoAUFcXrbBWnMq3DGxXPep8P5Dw7I1gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMtZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRh ZmQxLzEvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNCMjM1OC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNC MjM1OC5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMt ZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRhZmQxLzEvMzI2MTMwNjEzYTM2MzAzNDM3 M2EzMjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIzMTM1MzYzODM1LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEKgpgRwAgMA0GCSqGSIb3DQEBCwUAA4IBAQBIh59N8ABgoc9JK0ViAsLT sIQsgROZMaGuM1G2Hxd9OAPjZlGo157t9f3yLY7vsR9Wsw9XI1PnDpBNW8JrrIYL LIWlIA/2oXqy2Yq9twaUOufIFuX55lZQeuKwxAP9tUpMwB81Scwp3AZ38/8MYsTL UzpsHvalfN3hQf9KZYRNXrABMSDpHJj81u27uCfLTyUrQhicFBoeztjxt+9Bq+UG tnDQnjVlDlKo+FftEwX6s6/d1nXtewkoac2Epn9K3mwCHdxSs5Y9IiyAnkaBYndG Qy2dUf7h+aHecnYeG6iz+15LzyZE/xWPRz7NZzV3uSXUC99KTTmbAWA0Zlax050k -----END CERTIFICATE-----Generated at Thu Apr 9 22:16:36 2026 by rpki-client