$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363066653a3a2f34382d3438203d3e20323134373031.roa File: 326130623a346530373a363066653a3a2f34382d3438203d3e20323134373031.roa (raw, json) Hash identifier: ZjAy3ueqwfxe+TIw9tRv0Ih89d9rnBxrCaEKYAUyhLY= Subject key identifier: 1F:65:9C:AA:AA:E3:A2:A6:AF:F1:FA:40:87:BB:04:14:A1:65:42:AB Certificate issuer: /CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Certificate serial: 73742569F40E143D08C857B582ADDA3D83293D22 Authority key identifier: DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363066653a3a2f34382d3438203d3e20323134373031.roa Signing time: Tue 26 May 2026 00:57:40 +0000 ROA not before: Tue 26 May 2026 00:52:40 +0000 ROA not after: Tue 25 May 2027 00:57:40 +0000 asID: 214701 IP address blocks: 2a0b:4e07:60fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jun 2026 04:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:74:25:69:f4:0e:14:3d:08:c8:57:b5:82:ad:da:3d:83:29:3d:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDC25AD2F1A489247713EE39B1C03EA2FDDA4118 Validity Not Before: May 26 00:52:40 2026 GMT Not After : May 25 00:57:40 2027 GMT Subject: CN=1F659CAAAAE3A2A6AFF1FA4087BB0414A16542AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:48:0b:8d:69:62:23:d4:32:30:dc:cc:fb:4d: 92:14:01:2d:f6:86:94:f6:2b:4d:9d:87:bd:ac:e3: 49:b6:7c:d5:6b:df:61:92:94:e0:ec:4c:12:16:83: 53:7b:e9:ee:b6:f7:68:bf:f4:12:8d:02:da:c6:3a: c6:22:5d:8a:82:38:b8:bb:99:53:74:15:58:68:2c: 0f:09:9c:95:e5:35:32:1e:94:1b:21:f5:2e:03:e7: 0b:1d:90:17:76:85:49:a8:e7:c5:d9:9b:9c:23:2f: 4b:13:8f:69:97:1b:b5:1b:06:d5:8f:87:5a:71:fd: 58:b2:49:e8:d8:13:da:42:4e:2d:98:f7:99:32:0c: 26:bc:52:d1:3e:d4:76:c9:85:ed:dd:a5:bd:2d:a1: 7b:81:1f:07:a2:23:db:f1:b7:9e:9c:ed:5a:9a:ae: 93:8a:11:73:97:ca:fd:99:fc:d3:b0:cf:da:cb:9d: 4a:82:5b:62:9e:b5:4c:19:97:d5:c2:14:bd:2a:30: 26:d7:a7:71:89:70:44:5b:43:87:bc:74:f9:6b:07: 60:8d:5f:85:2a:1a:e3:c3:4e:78:29:d2:3d:ba:e1: 87:e7:e7:14:4b:d5:90:66:aa:c1:f5:f9:f8:2d:fd: 5f:10:03:e6:0c:ab:a6:8c:e6:4f:f0:ea:4f:04:18: df:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:65:9C:AA:AA:E3:A2:A6:AF:F1:FA:40:87:BB:04:14:A1:65:42:AB X509v3 Authority Key Identifier: keyid:DD:C2:5A:D2:F1:A4:89:24:77:13:EE:39:B1:C0:3E:A2:FD:DA:41:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/DDC25AD2F1A489247713EE39B1C03EA2FDDA4118.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bead2dcf-ead5-4954-ad84-6580cd2a9c50/3/326130623a346530373a363066653a3a2f34382d3438203d3e20323134373031.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:60fe::/48 Signature Algorithm: sha256WithRSAEncryption 49:2a:3a:07:91:87:0d:69:6f:d6:ce:84:e6:40:58:36:69:9d: 5f:f6:fb:0c:8a:99:71:77:5c:70:f0:b7:d8:17:91:11:10:02: 55:ae:33:a8:83:cb:63:19:fa:6e:26:de:19:82:19:97:41:9f: 9c:03:24:da:9a:c1:6b:c7:12:33:57:e3:85:a2:4c:cc:31:9d: 9e:8d:1f:be:56:1a:37:e8:01:67:6f:ec:db:9e:31:04:f1:08: 50:bb:b3:26:e5:4f:2f:4e:98:5b:56:3e:7d:74:62:d6:99:30: ca:ab:f3:4a:26:3b:ea:86:93:d0:36:e9:31:13:cf:9e:5a:06: 9f:19:c2:5f:2c:61:30:f2:b2:52:27:ed:ff:40:51:ce:1b:ad: d8:e0:15:b0:20:c4:e5:35:ee:d5:7a:69:74:5e:ec:bc:a7:ae: 50:03:29:00:66:b1:1d:1b:f0:3d:45:be:86:77:f7:bd:0b:63: a2:03:47:de:55:67:e3:80:7a:4b:87:84:a5:64:4e:64:b5:31: 18:40:ab:11:ef:69:78:99:bd:62:68:4c:ab:f7:e5:85:dc:18: 78:64:d1:06:ff:73:ce:25:93:50:5d:a2:78:4c:5d:3e:5c:b0: 5e:bc:1a:69:d0:1d:d2:cf:13:aa:5c:83:5e:e3:aa:4a:04:f8: dc:9a:c4:75 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUc3QlafQOFD0IyFe1gq3aPYMpPSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJG RERBNDExODAeFw0yNjA1MjYwMDUyNDBaFw0yNzA1MjUwMDU3NDBaMDMxMTAvBgNV BAMTKDFGNjU5Q0FBQUFFM0EyQTZBRkYxRkE0MDg3QkIwNDE0QTE2NTQyQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjSAuNaWIj1DIw3Mz7TZIUAS32 hpT2K02dh72s40m2fNVr32GSlODsTBIWg1N76e6292i/9BKNAtrGOsYiXYqCOLi7 mVN0FVhoLA8JnJXlNTIelBsh9S4D5wsdkBd2hUmo58XZm5wjL0sTj2mXG7UbBtWP h1px/ViySejYE9pCTi2Y95kyDCa8UtE+1HbJhe3dpb0toXuBHweiI9vxt56c7Vqa rpOKEXOXyv2Z/NOwz9rLnUqCW2KetUwZl9XCFL0qMCbXp3GJcERbQ4e8dPlrB2CN X4UqGuPDTngp0j264Yfn5xRL1ZBmqsH1+fgt/V8QA+YMq6aM5k/w6k8EGN/dAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUH2Wcqqrjoqav8fpAh7sEFKFlQqswHwYDVR0j BBgwFoAU3cJa0vGkiSR3E+45scA+ov3aQRgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmVhZDJkY2YtZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5 YzUwLzMvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERBNDExOC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvRERDMjVBRDJGMUE0ODkyNDc3MTNFRTM5QjFDMDNFQTJGRERB NDExOC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYmVhZDJkY2Yt ZWFkNS00OTU0LWFkODQtNjU4MGNkMmE5YzUwLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzNjMwNjY2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEzNDM3MzAzMS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgdg/jANBgkqhkiG9w0BAQsFAAOCAQEASSo6B5GHDWlv1s6E 5kBYNmmdX/b7DIqZcXdccPC32BeRERACVa4zqIPLYxn6bibeGYIZl0GfnAMk2prB a8cSM1fjhaJMzDGdno0fvlYaN+gBZ2/s254xBPEIULuzJuVPL06YW1Y+fXRi1pkw yqvzSiY76oaT0DbpMRPPnloGnxnCXyxhMPKyUift/0BRzhut2OAVsCDE5TXu1Xpp dF7svKeuUAMpAGaxHRvwPUW+hnf3vQtjogNH3lVn44B6S4eEpWROZLUxGECrEe9p eJm9YmhMq/flhdwYeGTRBv9zziWTUF2ieExdPlywXrwaadAd0s8TqlyDXuOqSgT4 3JrEdQ== -----END CERTIFICATE-----Generated at Sun May 31 09:57:13 2026 by rpki-client