$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a3a2f34382d3438203d3e20323031333932.roa File: 326130613a363034373a3a2f34382d3438203d3e20323031333932.roa (raw, json) Hash identifier: Ro2QKqzgg4Vq3t5qzJYvp1IzdP4uN7u/L6YXMcpOinc= Subject key identifier: 3C:EE:D1:E4:DB:B7:0D:5E:DD:6E:A0:B6:60:F2:A3:7C:41:F7:A1:0F Certificate issuer: /CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Certificate serial: 25BAB2C130BA848EB3AE2D5925C4371E90FCDC65 Authority key identifier: 15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a3a2f34382d3438203d3e20323031333932.roa Signing time: Thu 02 Apr 2026 08:09:09 +0000 ROA not before: Thu 02 Apr 2026 08:04:09 +0000 ROA not after: Thu 01 Apr 2027 08:09:09 +0000 asID: 201392 IP address blocks: 2a0a:6047::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 10 Apr 2026 11:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ba:b2:c1:30:ba:84:8e:b3:ae:2d:59:25:c4:37:1e:90:fc:dc:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358 Validity Not Before: Apr 2 08:04:09 2026 GMT Not After : Apr 1 08:09:09 2027 GMT Subject: CN=3CEED1E4DBB70D5EDD6EA0B660F2A37C41F7A10F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:cd:ae:ae:3f:c1:44:db:b0:fa:7c:c2:96: a8:76:f0:be:c5:8f:96:6b:f4:1e:77:9b:81:45:b4: d3:2e:73:0b:10:62:6d:2c:a2:f1:f3:bf:32:c9:ea: ee:52:0c:31:75:3b:2f:14:58:5f:47:40:fb:16:f7: 50:9c:bd:70:56:95:4c:cc:a7:a1:f1:c6:a1:3c:5e: 79:d8:70:cd:42:7c:2b:57:2d:d1:c7:49:fa:75:e8: 7c:0d:85:c4:a1:8c:7e:91:7f:74:38:3d:26:e9:f2: a4:84:d9:0a:0d:e3:9d:f4:da:a6:a2:f8:f9:45:d2: d3:dc:ea:38:3b:73:39:c6:c9:68:6a:ef:f9:58:bc: 85:c5:00:8c:af:b7:2e:52:52:cb:05:23:2e:7f:0e: a8:6f:d6:56:4f:62:88:5f:81:b0:a6:01:0b:a6:09: 4c:fb:6e:84:55:3a:c2:57:76:0a:19:75:e7:53:40: d4:c6:9b:cb:63:78:a4:0f:21:98:40:ee:58:3c:b2: 46:a7:59:04:2f:c7:93:64:47:b8:24:1d:92:37:ca: c0:a9:89:56:84:a5:54:37:b3:13:d3:9b:23:f2:8b: 06:b8:07:7d:75:6b:20:ec:81:be:53:7c:0b:59:a5: 34:8c:27:e7:d4:48:c3:70:a6:d7:b2:d9:76:1a:5b: 63:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:EE:D1:E4:DB:B7:0D:5E:DD:6E:A0:B6:60:F2:A3:7C:41:F7:A1:0F X509v3 Authority Key Identifier: keyid:15:C5:EB:6C:15:A7:32:AD:C3:1B:15:CF:7A:9F:0F:E4:3C:3B:23:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/15C5EB6C15A732ADC31B15CF7A9F0FE43C3B2358.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b2d61ce3-e091-40f0-92ed-d9f01c94afd1/1/326130613a363034373a3a2f34382d3438203d3e20323031333932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6047::/48 Signature Algorithm: sha256WithRSAEncryption ba:8f:a6:25:ee:1b:11:99:1d:a5:5f:7e:a6:85:57:f7:f6:09: 6d:05:18:3d:7b:35:6f:57:3e:e6:78:d1:76:95:76:e1:c9:67: 2c:69:ec:bf:21:65:8c:f3:3c:35:de:49:fa:cc:56:28:b3:93: 22:5f:b5:c8:c5:54:8c:bf:f2:55:5d:3a:eb:b1:9b:b6:e8:35: d3:4c:be:31:01:37:61:b3:02:59:a5:3e:07:19:da:63:a6:61: 05:b0:11:24:b7:93:ee:bc:e1:52:bb:00:71:12:9a:26:05:35: c9:97:78:81:97:85:f5:b0:36:d5:c2:15:c9:58:07:89:b8:31: c1:1f:f8:e1:04:4e:2b:89:10:40:40:67:9e:50:52:a0:84:f1: c2:99:15:97:0d:7e:3f:5f:4d:ba:3a:cf:2d:4f:ae:11:55:94: 6f:5b:41:92:7e:e5:28:7b:4b:cf:72:fe:e2:07:49:fa:e5:c7: e5:5d:9c:0d:00:c5:19:b8:7c:1f:cd:78:c7:4b:21:4f:a9:cc: 9b:c8:53:8d:d0:d6:df:5e:0c:b0:92:b0:e1:44:af:d5:ae:1c: c2:ec:5d:ff:8a:21:f2:9c:32:11:36:dc:35:e3:08:8d:a7:b2: b1:4a:27:59:35:46:2e:33:46:84:7d:6f:6a:9a:f5:c1:1f:3a: e9:ec:f7:09 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUJbqywTC6hI6zri1ZJcQ3HpD83GUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQz QzNCMjM1ODAeFw0yNjA0MDIwODA0MDlaFw0yNzA0MDEwODA5MDlaMDMxMTAvBgNV BAMTKDNDRUVEMUU0REJCNzBENUVERDZFQTBCNjYwRjJBMzdDNDFGN0ExMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCduc2urj/BRNuw+nzClqh28L7F j5Zr9B53m4FFtNMucwsQYm0sovHzvzLJ6u5SDDF1Oy8UWF9HQPsW91CcvXBWlUzM p6HxxqE8XnnYcM1CfCtXLdHHSfp16HwNhcShjH6Rf3Q4PSbp8qSE2QoN45302qai +PlF0tPc6jg7cznGyWhq7/lYvIXFAIyvty5SUssFIy5/Dqhv1lZPYohfgbCmAQum CUz7boRVOsJXdgoZdedTQNTGm8tjeKQPIZhA7lg8skanWQQvx5NkR7gkHZI3ysCp iVaEpVQ3sxPTmyPyiwa4B311ayDsgb5TfAtZpTSMJ+fUSMNwptey2XYaW2OdAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUPO7R5Nu3DV7dbqC2YPKjfEH3oQ8wHwYDVR0j BBgwFoAUFcXrbBWnMq3DGxXPep8P5Dw7I1gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMtZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRh ZmQxLzEvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNCMjM1OC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMTVDNUVCNkMxNUE3MzJBREMzMUIxNUNGN0E5RjBGRTQzQzNC MjM1OC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYjJkNjFjZTMt ZTA5MS00MGYwLTkyZWQtZDlmMDFjOTRhZmQxLzEvMzI2MTMwNjEzYTM2MzAzNDM3 M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMxMzMzOTMyLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcA KgpgRwAAMA0GCSqGSIb3DQEBCwUAA4IBAQC6j6Yl7hsRmR2lX36mhVf39gltBRg9 ezVvVz7meNF2lXbhyWcsaey/IWWM8zw13kn6zFYos5MiX7XIxVSMv/JVXTrrsZu2 6DXTTL4xATdhswJZpT4HGdpjpmEFsBEkt5PuvOFSuwBxEpomBTXJl3iBl4X1sDbV whXJWAeJuDHBH/jhBE4riRBAQGeeUFKghPHCmRWXDX4/X026Os8tT64RVZRvW0GS fuUoe0vPcv7iB0n65cflXZwNAMUZuHwfzXjHSyFPqcybyFON0NbfXgywkrDhRK/V rhzC7F3/iiHynDIRNtw14wiNp7KxSidZNUYuM0aEfW9qmvXBHzrp7PcJ -----END CERTIFICATE-----Generated at Thu Apr 9 22:16:39 2026 by rpki-client