$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166323a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538303a666166323a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: 2HKFlGEgh4l30gTTpJSrYvRSVMvgqrDNZ7KrLDKUxyY= Subject key identifier: 72:EA:67:45:24:9B:CD:60:CB:A9:36:69:64:92:CB:64:5C:88:A4:B5 Certificate issuer: /CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Certificate serial: 7EF7BDFBFA4F59F3D9DC36FF9CD04B071D195E28 Authority key identifier: 77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166323a3a2f34382d3438203d3e20323134333434.roa Signing time: Fri 15 May 2026 13:28:40 +0000 ROA not before: Fri 15 May 2026 13:23:40 +0000 ROA not after: Fri 14 May 2027 13:28:40 +0000 asID: 214344 IP address blocks: 2a14:7580:faf2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 May 2026 08:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:f7:bd:fb:fa:4f:59:f3:d9:dc:36:ff:9c:d0:4b:07:1d:19:5e:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Validity Not Before: May 15 13:23:40 2026 GMT Not After : May 14 13:28:40 2027 GMT Subject: CN=72EA6745249BCD60CBA936696492CB645C88A4B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:62:12:78:31:1e:91:2b:ea:79:59:02:f9:fb: 14:5f:98:bc:bc:7d:b6:68:38:52:65:75:17:1f:e2: 59:c7:50:2e:df:0c:64:7f:d2:2d:dd:e9:20:22:e1: 56:85:d9:3b:19:a0:72:b6:ca:1f:9b:37:e5:78:4c: 01:87:6a:e7:c4:ba:53:79:66:c4:73:33:a7:5f:11: a6:fc:70:5d:03:01:a6:f1:bf:76:19:3c:f0:e2:e3: 68:69:6b:e4:12:3b:57:b0:62:e0:9b:ed:fb:40:92: 27:b3:f9:c7:73:2f:8a:0b:d2:18:be:6b:9c:d3:2d: 28:9c:68:72:04:fe:b3:56:45:f3:0a:ee:5d:16:c0: 43:cb:c4:20:a4:a7:bc:f0:e2:a2:1d:b7:d6:d6:9a: c9:a4:60:e3:06:a0:7b:cc:1a:06:17:c0:1a:6b:40: 07:59:21:a6:3b:5b:f4:0e:67:3a:a2:5c:3b:1b:83: bb:32:27:f7:8b:5c:a7:2f:9d:0e:42:bb:35:38:6d: 0a:1e:2d:1f:78:59:ff:04:2f:e2:d8:b1:3c:71:94: 1d:24:c2:00:05:ea:c5:dd:b5:74:da:b2:11:fb:66: bc:93:e4:7c:4c:8a:47:01:13:fa:2e:02:5f:fe:fa: cb:56:bf:75:b4:05:c4:38:c2:3f:46:47:7b:6d:44: 15:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EA:67:45:24:9B:CD:60:CB:A9:36:69:64:92:CB:64:5C:88:A4:B5 X509v3 Authority Key Identifier: keyid:77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666166323a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:faf2::/48 Signature Algorithm: sha256WithRSAEncryption 30:c5:d9:9a:fd:92:28:c4:67:e7:f2:dd:7e:2d:eb:e8:b7:3e: 13:92:49:7f:09:ae:c2:2d:6b:20:97:f4:da:92:0b:07:e3:ec: d5:d9:cb:bd:95:3d:92:01:40:c8:86:6c:39:42:3e:55:dd:3b: 67:fb:65:1f:fa:c3:e4:d7:6a:21:49:d4:94:07:db:3d:71:5b: 4c:44:ac:50:22:72:76:86:87:7d:c6:e2:25:65:be:fe:11:49: dc:81:eb:d9:c0:4f:ae:22:32:15:72:6c:73:e1:02:cf:e9:11: 6d:08:4d:3f:db:68:db:75:62:d2:1a:91:22:6b:83:79:33:72: 81:d2:fa:9b:99:16:6e:13:6e:f6:ab:4c:05:23:45:9c:b2:b4: c6:4f:cc:75:a5:a4:fa:db:fb:78:3e:f7:5e:c9:0c:bb:86:0c: c9:49:c9:93:8c:0b:4e:d1:7d:0e:ae:f0:90:62:97:f1:6f:7e: f6:21:5b:f3:b2:73:a8:0b:8b:af:86:c3:a7:f1:c8:cc:cb:b1: c0:42:4e:39:96:a9:82:05:6d:bd:05:e7:8e:62:a0:c5:6e:0f: 61:7d:3c:12:c2:2c:f5:33:db:aa:41:15:8c:42:41:d3:7f:4b: f1:87:c2:c5:ab:47:72:36:8e:b7:7b:42:9e:99:f0:3a:a8:be: a4:ce:3c:fe -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUfve9+/pPWfPZ3Db/nNBLBx0ZXigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVF RkMzRURBNTAeFw0yNjA1MTUxMzIzNDBaFw0yNzA1MTQxMzI4NDBaMDMxMTAvBgNV BAMTKDcyRUE2NzQ1MjQ5QkNENjBDQkE5MzY2OTY0OTJDQjY0NUM4OEE0QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCYhJ4MR6RK+p5WQL5+xRfmLy8 fbZoOFJldRcf4lnHUC7fDGR/0i3d6SAi4VaF2TsZoHK2yh+bN+V4TAGHaufEulN5 ZsRzM6dfEab8cF0DAabxv3YZPPDi42hpa+QSO1ewYuCb7ftAkiez+cdzL4oL0hi+ a5zTLSicaHIE/rNWRfMK7l0WwEPLxCCkp7zw4qIdt9bWmsmkYOMGoHvMGgYXwBpr QAdZIaY7W/QOZzqiXDsbg7syJ/eLXKcvnQ5CuzU4bQoeLR94Wf8EL+LYsTxxlB0k wgAF6sXdtXTashH7ZryT5HxMikcBE/ouAl/++stWv3W0BcQ4wj9GR3ttRBX7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUcupnRSSbzWDLqTZpZJLLZFyIpLUwHwYDVR0j BBgwFoAUd+TSPQ/azuKTPZptMDPN9e/D7aUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzEvNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVFRkMzRURBNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83N0U0RDIzRDBGREFDRUUyOTMzRDlBNkQz MDMzQ0RGNUVGQzNFREE1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjE2NjMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gPryMA0GCSqGSIb3DQEBCwUAA4IBAQAw xdma/ZIoxGfn8t1+Levotz4Tkkl/Ca7CLWsgl/TakgsH4+zV2cu9lT2SAUDIhmw5 Qj5V3Ttn+2Uf+sPk12ohSdSUB9s9cVtMRKxQInJ2hod9xuIlZb7+EUncgevZwE+u IjIVcmxz4QLP6RFtCE0/22jbdWLSGpEia4N5M3KB0vqbmRZuE272q0wFI0WcsrTG T8x1paT62/t4PvdeyQy7hgzJScmTjAtO0X0OrvCQYpfxb372IVvzsnOoC4uvhsOn 8cjMy7HAQk45lqmCBW29BeeOYqDFbg9hfTwSwiz1M9uqQRWMQkHTf0vxh8LFq0dy No63e0KemfA6qL6kzjz+ -----END CERTIFICATE-----Generated at Mon May 25 16:32:41 2026 by rpki-client