$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a35303a3a2f34342d3438203d3e20313938373637.roa File: 326130613a363034373a35303a3a2f34342d3438203d3e20313938373637.roa (raw, json) Hash identifier: T6j/NBoFhTc6i1L8Xd0PoBvo6NGSplAoqRw8x/V82AU= Subject key identifier: C9:3E:FA:DB:9B:C3:26:98:82:4A:E2:37:55:57:4C:31:A6:01:49:16 Certificate issuer: /CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Certificate serial: 4385C23D10435ABC5F762ECF7755D5F21828FFF1 Authority key identifier: 15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a35303a3a2f34342d3438203d3e20313938373637.roa Signing time: Sat 18 Apr 2026 12:12:05 +0000 ROA not before: Sat 18 Apr 2026 12:07:05 +0000 ROA not after: Sat 17 Apr 2027 12:12:05 +0000 asID: 198767 IP address blocks: 2a0a:6047:50::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 20 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:85:c2:3d:10:43:5a:bc:5f:76:2e:cf:77:55:d5:f2:18:28:ff:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Validity Not Before: Apr 18 12:07:05 2026 GMT Not After : Apr 17 12:12:05 2027 GMT Subject: CN=C93EFADB9BC32698824AE23755574C31A6014916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3f:af:a5:f3:a4:76:2f:9c:e1:25:1e:fd:c1: cf:27:9f:2e:b6:1d:9c:09:f7:6a:b0:ea:ea:9e:6d: d2:54:7b:39:bb:82:20:fd:39:b6:29:e0:f8:e1:94: be:6f:1b:6c:44:77:a2:d1:39:3c:6f:0c:dd:6b:45: f8:b4:e5:5b:d0:9d:76:65:b7:e3:3f:ee:dc:78:12: e9:5f:44:e8:62:5b:8c:65:c3:e4:e3:c6:95:5c:00: ab:64:da:a7:6a:0b:21:6d:d5:84:96:53:b6:18:5b: f1:d6:23:1b:50:84:ca:7c:49:d0:b8:d0:54:d9:da: 9d:b1:1e:15:3c:a8:ec:bd:b6:d6:5b:ec:24:f7:fa: a1:5b:2b:b5:77:a6:5e:15:13:bc:70:95:78:37:4e: c8:32:db:60:4a:83:0f:c4:99:e1:49:12:0d:3d:4d: 03:43:1c:30:66:51:66:57:89:1a:6c:70:1b:e5:37: 2a:25:10:02:36:c0:4a:77:d2:e0:bc:2e:13:e4:91: 8a:b1:a9:e4:19:ac:66:e0:0c:75:e7:04:05:85:c6: 43:19:fb:3f:d1:53:35:85:d3:de:23:a3:21:fc:ff: ae:58:6d:76:50:a8:c5:f6:44:8f:17:1e:98:10:f4: d5:9d:a0:51:c3:ca:01:2a:be:ed:ac:90:c1:33:e1: 53:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:3E:FA:DB:9B:C3:26:98:82:4A:E2:37:55:57:4C:31:A6:01:49:16 X509v3 Authority Key Identifier: keyid:15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a35303a3a2f34342d3438203d3e20313938373637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6047:50::/44 Signature Algorithm: sha256WithRSAEncryption 66:33:22:b9:5f:45:5e:34:8e:8e:b8:0d:95:49:df:9c:53:5c: ab:8a:5f:15:2e:9b:40:03:0c:33:ae:74:a1:9b:08:71:9f:dc: 29:e6:94:68:66:a8:bf:b2:e3:59:f1:56:e8:2d:9d:09:64:6f: e1:e8:03:7a:fe:20:be:a1:58:ab:18:f7:21:b5:1f:f7:71:60: 34:92:d7:d9:b9:c4:72:d6:1a:05:b6:8b:38:40:1c:b1:fa:b9: 32:32:72:2d:26:0f:a1:62:36:44:bd:9a:5f:02:07:60:0b:d3: de:46:c4:77:27:3c:3b:67:7e:00:30:46:36:2a:54:5d:6e:c9: 2e:df:5c:af:d9:93:d4:d6:ae:2b:c3:4a:f1:b1:e1:60:3b:be: 00:b1:68:3d:7f:11:62:46:db:52:11:24:a2:36:87:14:82:47: 36:62:e7:9c:12:30:d9:a3:1b:5c:90:46:68:f8:2f:57:c1:75: 74:37:d5:f5:a2:97:8d:7c:40:ee:df:b1:23:78:18:e1:a9:fd: ea:75:31:f5:aa:dd:a5:fb:ee:cd:4d:97:32:01:de:ce:0d:c9: 52:1d:72:d8:9a:55:54:97:27:17:53:d9:06:b8:bc:b3:f5:b4: 4a:9d:fc:9f:44:51:2c:e4:e1:82:6d:8f:69:77:e4:2f:12:f5: 21:93:f1:50 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUQ4XCPRBDWrxfdi7Pd1XV8hgo//EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQz QzNCMjM1ODAeFw0yNjA0MTgxMjA3MDVaFw0yNzA0MTcxMjEyMDVaMDMxMTAvBgNV BAMTKEM5M0VGQURCOUJDMzI2OTg4MjRBRTIzNzU1NTc0QzMxQTYwMTQ5MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAP6+l86R2L5zhJR79wc8nny62 HZwJ92qw6uqebdJUezm7giD9ObYp4PjhlL5vG2xEd6LROTxvDN1rRfi05VvQnXZl t+M/7tx4EulfROhiW4xlw+TjxpVcAKtk2qdqCyFt1YSWU7YYW/HWIxtQhMp8SdC4 0FTZ2p2xHhU8qOy9ttZb7CT3+qFbK7V3pl4VE7xwlXg3Tsgy22BKgw/EmeFJEg09 TQNDHDBmUWZXiRpscBvlNyolEAI2wEp30uC8LhPkkYqxqeQZrGbgDHXnBAWFxkMZ +z/RUzWF094joyH8/65YbXZQqMX2RI8XHpgQ9NWdoFHDygEqvu2skMEz4VNvAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUyT7625vDJpiCSuI3VVdMMaYBSRYwHwYDVR0j BBgwFoAUFcXrbBWnMq3DGxXPep8P5Dw7I1gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMtZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRh ZmQxLzEvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNCMjM1OC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNC MjM1OC5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMt ZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRhZmQxLzEvMzI2MTMwNjEzYTM2MzAzNDM3 M2EzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEzOTM4MzczNjM3LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcEKgpgRwBQMA0GCSqGSIb3DQEBCwUAA4IBAQBmMyK5X0VeNI6OuA2VSd+c U1yril8VLptAAwwzrnShmwhxn9wp5pRoZqi/suNZ8VboLZ0JZG/h6AN6/iC+oVir GPchtR/3cWA0ktfZucRy1hoFtos4QByx+rkyMnItJg+hYjZEvZpfAgdgC9PeRsR3 Jzw7Z34AMEY2KlRdbsku31yv2ZPU1q4rw0rxseFgO74AsWg9fxFiRttSESSiNocU gkc2YuecEjDZoxtckEZo+C9XwXV0N9X1opeNfEDu37EjeBjhqf3qdTH1qt2l++7N TZcyAd7ODclSHXLYmlVUlycXU9kGuLyz9bRKnfyfRFEs5OGCbY9pd+QvEvUhk/FQ -----END CERTIFICATE-----Generated at Mon Apr 20 07:12:53 2026 by rpki-client