$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166313a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666166313a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: LkT0ENe1YUFRxlS5aUhx4sNAMJ0+5HjZvFiPqwyHP/c= Subject key identifier: 3F:6A:11:CD:7F:99:EB:F5:BF:A0:13:BF:04:AA:66:AF:44:7A:0E:66 Certificate issuer: /CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Certificate serial: 10E077FDEA560C6CCCFFDF30B0913E940191DAD6 Authority key identifier: 77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166313a3a2f34382d3438203d3e20323134333434.roa Signing time: Thu 14 May 2026 16:00:23 +0000 ROA not before: Thu 14 May 2026 15:55:23 +0000 ROA not after: Thu 13 May 2027 16:00:23 +0000 asID: 214344 IP address blocks: 2a14:7580:faf1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 May 2026 08:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:e0:77:fd:ea:56:0c:6c:cc:ff:df:30:b0:91:3e:94:01:91:da:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Validity Not Before: May 14 15:55:23 2026 GMT Not After : May 13 16:00:23 2027 GMT Subject: CN=3F6A11CD7F99EBF5BFA013BF04AA66AF447A0E66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:30:85:5c:89:40:71:a5:c9:da:df:aa:67:42: cc:9a:c5:f4:59:ed:5d:69:84:0c:93:4b:98:40:8c: 10:80:54:10:c6:b6:dd:5b:06:c1:8b:76:a3:ea:ba: d9:35:f1:e6:be:39:5b:c0:92:2a:10:76:ae:22:19: dd:63:b4:b0:09:74:de:a0:d4:86:61:f7:da:d8:81: 03:f4:03:46:d5:1a:ed:ca:ba:f3:03:2c:54:c9:e7: ad:94:d5:b4:b2:7b:11:2b:db:91:5c:06:05:79:44: a8:69:20:b4:4d:ae:2e:dc:a2:da:ea:24:b6:e1:1f: ba:12:c6:17:58:37:e3:76:f0:72:fc:f9:c0:fc:93: dc:67:a3:68:44:5f:92:21:8a:94:da:7e:fb:b9:05: e1:b0:97:43:2f:06:71:4d:2b:14:f7:45:d1:d7:c2: dc:ca:40:6a:2a:5c:65:26:9f:37:22:bf:44:bf:89: 1f:41:7a:72:24:d1:3a:71:87:4f:f3:b3:0a:27:4b: 25:d6:dc:f2:67:c8:09:00:0c:9a:d7:55:0d:c4:b9: f5:a2:4b:82:47:50:27:09:a5:29:d4:39:33:08:8e: 24:1d:3e:d7:54:45:65:6b:f7:0f:45:38:29:47:2d: aa:34:66:a4:e3:75:1a:a2:d6:42:cb:92:7a:20:8a: 78:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6A:11:CD:7F:99:EB:F5:BF:A0:13:BF:04:AA:66:AF:44:7A:0E:66 X509v3 Authority Key Identifier: keyid:77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166313a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:faf1::/48 Signature Algorithm: sha256WithRSAEncryption 5e:c9:78:56:e1:26:e0:c8:e8:6d:6d:47:59:cb:0e:e3:8e:55: 1e:86:26:4c:f2:fa:56:a3:2d:75:8d:fc:77:38:31:62:0f:53: 62:68:8d:12:92:b8:7c:99:67:8e:70:1e:d9:f3:f0:66:0e:e4: 3f:e9:d0:ee:ac:34:52:55:09:4e:90:83:e0:82:ea:4d:34:a7: fa:5e:32:11:13:f1:88:d0:3c:8a:17:ce:19:c5:f8:f5:05:03: d4:bc:bf:64:07:c2:50:91:96:f4:fb:d4:ff:bf:c8:1c:91:15: d3:be:46:9b:29:6f:50:7b:1c:14:fc:85:a5:a0:5b:3d:1d:61: 36:8d:f9:24:bd:41:96:1b:dd:b5:d8:40:72:b3:6f:7d:dc:0e: 70:01:cf:0d:4a:70:e5:6f:88:3d:08:df:52:63:cf:33:59:1f: 80:4c:27:3b:53:6b:34:6b:ff:85:78:b2:7d:93:ff:85:53:e9: 8c:d5:c6:43:b5:fa:09:c1:86:7b:79:2d:d1:d8:cd:f6:ab:27: ef:a9:11:b8:1b:cd:99:8f:87:9c:06:69:4b:11:0d:b3:8d:3f: b7:94:0f:70:08:4d:4e:fa:10:33:79:b8:4d:1a:a4:2a:c3:aa: cb:a9:45:db:82:48:d8:f4:3a:d3:45:fd:4c:d9:f2:a0:ae:d9: e8:b5:7f:c5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEOB3/epWDGzM/98wsJE+lAGR2tYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVF RkMzRURBNTAeFw0yNjA1MTQxNTU1MjNaFw0yNzA1MTMxNjAwMjNaMDMxMTAvBgNV BAMTKDNGNkExMUNEN0Y5OUVCRjVCRkEwMTNCRjA0QUE2NkFGNDQ3QTBFNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/MIVciUBxpcna36pnQsyaxfRZ 7V1phAyTS5hAjBCAVBDGtt1bBsGLdqPqutk18ea+OVvAkioQdq4iGd1jtLAJdN6g 1IZh99rYgQP0A0bVGu3KuvMDLFTJ562U1bSyexEr25FcBgV5RKhpILRNri7cotrq JLbhH7oSxhdYN+N28HL8+cD8k9xno2hEX5IhipTafvu5BeGwl0MvBnFNKxT3RdHX wtzKQGoqXGUmnzciv0S/iR9BenIk0Tpxh0/zswonSyXW3PJnyAkADJrXVQ3EufWi S4JHUCcJpSnUOTMIjiQdPtdURWVr9w9FOClHLao0ZqTjdRqi1kLLknoging1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUP2oRzX+Z6/W/oBO/BKpmr0R6DmYwHwYDVR0j BBgwFoAUd+TSPQ/azuKTPZptMDPN9e/D7aUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzEvNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVFRkMzRURBNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83N0U0RDIzRDBGREFDRUUyOTMzRDlBNkQz MDMzQ0RGNUVGQzNFREE1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjE2NjMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gPrxMA0GCSqGSIb3DQEBCwUAA4IBAQBe yXhW4SbgyOhtbUdZyw7jjlUehiZM8vpWoy11jfx3ODFiD1NiaI0Skrh8mWeOcB7Z 8/BmDuQ/6dDurDRSVQlOkIPggupNNKf6XjIRE/GI0DyKF84Zxfj1BQPUvL9kB8JQ kZb0+9T/v8gckRXTvkabKW9QexwU/IWloFs9HWE2jfkkvUGWG9212EBys2993A5w Ac8NSnDlb4g9CN9SY88zWR+ATCc7U2s0a/+FeLJ9k/+FU+mM1cZDtfoJwYZ7eS3R 2M32qyfvqRG4G82Zj4ecBmlLEQ2zjT+3lA9wCE1O+hAzebhNGqQqw6rLqUXbgkjY 9DrTRf1M2fKgrtnotX/F -----END CERTIFICATE-----Generated at Mon May 25 16:32:53 2026 by rpki-client