$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3431203d3e20323134373031.roa File: 326130623a346530373a363030303a3a2f34312d3431203d3e20323134373031.roa (raw, json) Hash identifier: vN6rKIfkljSAHrRu8/1nJyMDGglyFOpzorhaf/f1lec= Subject key identifier: 5B:68:EC:34:37:18:87:CF:66:58:01:A1:15:9E:E6:0B:AC:90:C6:7A Certificate issuer: /CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Certificate serial: 3D3D6565793049594A2228BB4BF7DFE7AC45CF6E Authority key identifier: DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3431203d3e20323134373031.roa Signing time: Tue 26 May 2026 00:57:31 +0000 ROA not before: Tue 26 May 2026 00:52:31 +0000 ROA not after: Tue 25 May 2027 00:57:31 +0000 asID: 214701 IP address blocks: 2a0b:4e07:6000::/41 maxlen: 41 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jun 2026 04:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:3d:65:65:79:30:49:59:4a:22:28:bb:4b:f7:df:e7:ac:45:cf:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Validity Not Before: May 26 00:52:31 2026 GMT Not After : May 25 00:57:31 2027 GMT Subject: CN=5B68EC34371887CF665801A1159EE60BAC90C67A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:66:db:cd:e0:3a:a4:a6:22:4b:a1:d6:c3:fa: 4d:b1:86:e7:75:a2:d8:d5:f5:47:f0:a2:c1:e7:81: e6:e4:9e:a5:be:a6:99:0c:a6:1a:cd:9d:b4:2b:1d: 9d:bb:b4:7f:4c:24:87:01:38:e5:4a:ac:5b:b3:89: 22:f2:4e:d4:0b:96:9f:12:85:d9:69:d6:ba:83:2e: fa:9f:04:f4:a3:0e:10:d9:2c:d3:4c:1e:e4:a0:c5: ea:0d:b0:5a:df:18:ec:8f:f6:3d:d8:f5:b0:c6:bf: 86:3e:fb:56:04:ba:6f:52:bc:b5:1e:cc:a0:d0:e8: e7:f6:56:63:0c:77:89:37:26:8b:df:27:14:36:e4: d7:55:ea:ac:29:90:fe:f5:24:23:80:f0:3e:94:3a: b9:00:8b:8e:35:6c:91:f6:33:71:ec:b6:92:1f:2a: 9b:05:8c:2f:48:c4:21:9f:d2:73:dd:7f:f0:32:b5: 74:af:f3:c1:84:99:61:d5:e4:2d:96:15:49:32:51: 2d:95:86:34:b2:fa:f2:10:6e:6f:cc:5b:71:fd:48: 98:ad:e7:9a:5f:30:05:35:16:d4:13:9a:a5:44:49: a6:09:1d:88:0a:01:07:c6:a1:aa:64:6d:0d:3a:ea: 9b:66:16:e5:28:0a:c8:68:50:9d:3d:c5:ea:77:07: 07:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:68:EC:34:37:18:87:CF:66:58:01:A1:15:9E:E6:0B:AC:90:C6:7A X509v3 Authority Key Identifier: keyid:DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363030303a3a2f34312d3431203d3e20323134373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:6000::/41 Signature Algorithm: sha256WithRSAEncryption af:aa:b7:0f:a5:c5:5b:a2:9a:7d:67:29:26:cb:0f:94:1e:eb: bc:dc:95:05:5e:97:a1:02:2f:91:f4:41:eb:8f:72:22:8c:65: 63:d5:1f:08:86:55:75:ad:d1:4e:c6:45:d6:bd:fb:1f:d4:6e: 88:62:bb:21:56:d7:1e:bf:79:f4:81:cd:23:79:f9:98:e7:5a: 37:be:06:b5:e8:79:7c:55:9f:14:b2:ca:54:49:4a:25:ee:d4: 5b:0a:a9:29:8e:d8:99:19:2c:13:e7:ac:f7:a2:fa:ba:38:26: 68:87:ca:96:5f:75:15:d6:37:5e:71:60:ab:8f:06:77:55:2a: 4e:90:cb:d7:5a:cb:d6:a1:9d:b2:8a:48:77:8b:60:f7:c4:51: fc:31:74:f1:cc:3d:03:cf:e1:6d:ed:0c:8e:d9:59:77:28:ec: 1b:69:69:9a:0c:80:ed:53:70:64:dc:4f:8e:33:8d:38:79:a3: 45:a9:04:46:6e:fa:ee:73:36:77:f2:97:f5:de:5c:a1:3a:6c: df:af:9e:0d:5b:24:80:b9:26:82:a3:03:03:da:85:a3:21:31: 52:b5:dd:72:0e:cd:3a:2e:c6:f3:af:5a:b5:58:da:c2:f3:3c: 97:ed:a1:50:af:f3:24:dd:a2:80:3b:c7:41:41:62:13:d5:80: 0f:ef:1d:d1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUPT1lZXkwSVlKIii7S/ff56xFz24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJG RERBNDExODAeFw0yNjA1MjYwMDUyMzFaFw0yNzA1MjUwMDU3MzFaMDMxMTAvBgNV BAMTKDVCNjhFQzM0MzcxODg3Q0Y2NjU4MDFBMTE1OUVFNjBCQUM5MEM2N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeZtvN4DqkpiJLodbD+k2xhud1 otjV9UfwosHngebknqW+ppkMphrNnbQrHZ27tH9MJIcBOOVKrFuziSLyTtQLlp8S hdlp1rqDLvqfBPSjDhDZLNNMHuSgxeoNsFrfGOyP9j3Y9bDGv4Y++1YEum9SvLUe zKDQ6Of2VmMMd4k3JovfJxQ25NdV6qwpkP71JCOA8D6UOrkAi441bJH2M3HstpIf KpsFjC9IxCGf0nPdf/AytXSv88GEmWHV5C2WFUkyUS2VhjSy+vIQbm/MW3H9SJit 55pfMAU1FtQTmqVESaYJHYgKAQfGoapkbQ066ptmFuUoCshoUJ09xep3BwdtAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUW2jsNDcYh89mWAGhFZ7mC6yQxnowHwYDVR0j BBgwFoAU3cJa0vGkiSR3E+45scA+ov3aQRgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmVhZDJkY2YtZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5 YzUwLzMvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERBNDExOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERB NDExOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmVhZDJkY2Yt ZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5YzUwLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzNjMwMzAzMDNhM2EyZjM0MzEyZDM0MzEyMDNkM2UyMDMyMzEzNDM3MzAzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHByoLTgdgADANBgkqhkiG9w0BAQsFAAOCAQEAr6q3D6XFW6KafWcp JssPlB7rvNyVBV6XoQIvkfRB649yIoxlY9UfCIZVda3RTsZF1r37H9RuiGK7IVbX Hr959IHNI3n5mOdaN74Gteh5fFWfFLLKVElKJe7UWwqpKY7YmRksE+es96L6ujgm aIfKll91FdY3XnFgq48Gd1UqTpDL11rL1qGdsopId4tg98RR/DF08cw9A8/hbe0M jtlZdyjsG2lpmgyA7VNwZNxPjjONOHmjRakERm767nM2d/KX9d5coTps36+eDVsk gLkmgqMDA9qFoyExUrXdcg7NOi7G869atVjawvM8l+2hUK/zJN2igDvHQUFiE9WA D+8d0Q== -----END CERTIFICATE-----Generated at Sun May 31 09:57:13 2026 by rpki-client