$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/326131343a373538363a363530303a3a2f34302d3438203d3e20323032333936.roa File: 326131343a373538363a363530303a3a2f34302d3438203d3e20323032333936.roa (raw, json) Hash identifier: dYDF2I04t+LIOjBAiMrzBqWk6adCjIN+miZ36ttNxLA= Subject key identifier: 20:AC:DD:3D:B6:C4:BE:C9:1D:C8:E8:9F:7E:46:24:96:22:26:62:3B Certificate issuer: /CN=20914720382A1F52B950212C138E5E1E81BA69B7 Certificate serial: 7EA4D4C90D8D5285323403C43BC71F2FC2057926 Authority key identifier: 20:91:47:20:38:2A:1F:52:B9:50:21:2C:13:8E:5E:1E:81:BA:69:B7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/20914720382A1F52B950212C138E5E1E81BA69B7.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/326131343a373538363a363530303a3a2f34302d3438203d3e20323032333936.roa Signing time: Fri 29 May 2026 08:07:25 +0000 ROA not before: Fri 29 May 2026 08:02:25 +0000 ROA not after: Fri 28 May 2027 08:07:25 +0000 asID: 202396 IP address blocks: 2a14:7586:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/20914720382A1F52B950212C138E5E1E81BA69B7.crl rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/20914720382A1F52B950212C138E5E1E81BA69B7.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/20914720382A1F52B950212C138E5E1E81BA69B7.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 19:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a4:d4:c9:0d:8d:52:85:32:34:03:c4:3b:c7:1f:2f:c2:05:79:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20914720382A1F52B950212C138E5E1E81BA69B7 Validity Not Before: May 29 08:02:25 2026 GMT Not After : May 28 08:07:25 2027 GMT Subject: CN=20ACDD3DB6C4BEC91DC8E89F7E4624962226623B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:22:bc:d9:5d:5f:0d:06:73:d1:7c:33:ce: c1:21:b0:c4:15:20:2c:5f:9b:d9:aa:32:d4:d9:1a: aa:4e:d4:9a:8b:20:83:f7:18:07:42:53:2a:1e:05: 5a:49:92:33:6f:99:43:01:b9:b8:07:a5:29:54:41: d2:75:e9:9e:b4:31:37:a2:04:eb:b4:6e:24:18:d5: eb:4e:a6:f6:77:9a:28:da:f9:40:07:24:ca:8c:9a: 48:5b:63:52:d2:65:48:38:71:93:ad:f9:6d:c2:a5: c7:df:64:a6:17:b7:af:c0:89:ca:ab:cb:c4:dc:fa: 83:72:6f:94:2f:6d:42:43:f9:03:21:b2:aa:4a:d3: 02:21:9a:2f:54:d4:d5:3c:5e:1a:4b:6b:32:79:3b: 62:d0:61:2f:39:4f:fd:7e:b5:d2:c7:e8:90:cd:d5: 9b:9e:62:64:6d:ba:e5:02:8c:77:91:0c:db:d1:b2: f1:b7:f1:f7:e8:d9:2c:3d:1c:5e:00:9a:9e:58:3f: 31:fa:b7:3d:fc:83:cb:8a:1f:f3:7b:fb:80:36:2b: 3d:77:0d:82:5b:91:76:b9:13:a3:b8:69:a6:df:57: 6f:c1:6a:8c:b1:1a:5e:6a:4e:be:f0:6e:07:1d:06: 79:4d:f3:c3:5b:c3:11:3d:6a:3e:74:5e:c3:2c:22: 8c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AC:DD:3D:B6:C4:BE:C9:1D:C8:E8:9F:7E:46:24:96:22:26:62:3B X509v3 Authority Key Identifier: keyid:20:91:47:20:38:2A:1F:52:B9:50:21:2C:13:8E:5E:1E:81:BA:69:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/20914720382A1F52B950212C138E5E1E81BA69B7.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/20914720382A1F52B950212C138E5E1E81BA69B7.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/3/326131343a373538363a363530303a3a2f34302d3438203d3e20323032333936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7586:6500::/40 Signature Algorithm: sha256WithRSAEncryption aa:06:38:f4:b5:6e:2e:a5:7b:b9:13:61:83:ad:fb:d1:f3:f7: 0b:7d:f3:1d:38:8a:43:b4:64:b7:99:34:79:e1:69:17:0c:9a: 2f:3f:1f:dd:58:af:8d:45:0b:2a:7b:34:d1:c7:1e:86:d4:8a: ce:22:40:9c:92:1c:66:d3:ba:78:6b:aa:0e:7e:83:d1:18:58: 9d:fd:4d:57:90:e9:08:ed:f4:26:6a:b7:61:7c:3b:8a:06:13: bf:76:ff:d5:01:89:82:39:87:26:23:7b:83:12:f1:20:0e:31: d3:6c:0b:7e:d0:dd:e9:4a:94:30:11:0f:6f:cf:90:b3:42:38: 3a:c4:86:54:06:91:54:5d:da:67:27:2b:90:72:eb:82:a3:7c: 6d:ea:e6:4b:44:ea:c0:c3:81:60:c7:34:3c:38:87:44:d1:aa: 24:d5:32:33:94:38:59:9f:d1:80:fa:7a:9e:fc:39:bb:76:91: be:31:11:52:bc:24:6d:aa:b0:9f:0c:8e:7a:33:52:91:6a:ee: 9e:58:e7:11:fd:50:82:9e:b0:48:0a:33:b5:72:c3:cf:a7:f0: b0:29:a1:a4:3c:db:be:db:52:70:60:63:5d:08:c8:0a:ef:bf: 08:0f:78:2a:10:00:c2:79:74:23:57:01:58:f1:b4:f3:5e:3e: 1b:c7:37:a8 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUfqTUyQ2NUoUyNAPEO8cfL8IFeSYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA5MTQ3MjAzODJBMUY1MkI5NTAyMTJDMTM4RTVFMUU4 MUJBNjlCNzAeFw0yNjA1MjkwODAyMjVaFw0yNzA1MjgwODA3MjVaMDMxMTAvBgNV BAMTKDIwQUNERDNEQjZDNEJFQzkxREM4RTg5RjdFNDYyNDk2MjIyNjYyM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsCK82V1fDQZz0XwzzsEhsMQV ICxfm9mqMtTZGqpO1JqLIIP3GAdCUyoeBVpJkjNvmUMBubgHpSlUQdJ16Z60MTei BOu0biQY1etOpvZ3mija+UAHJMqMmkhbY1LSZUg4cZOt+W3CpcffZKYXt6/Aicqr y8Tc+oNyb5QvbUJD+QMhsqpK0wIhmi9U1NU8XhpLazJ5O2LQYS85T/1+tdLH6JDN 1ZueYmRtuuUCjHeRDNvRsvG38ffo2Sw9HF4Amp5YPzH6tz38g8uKH/N7+4A2Kz13 DYJbkXa5E6O4aabfV2/BaoyxGl5qTr7wbgcdBnlN88NbwxE9aj50XsMsIozPAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUIKzdPbbEvskdyOiffkYkliImYjswHwYDVR0j BBgwFoAUIJFHIDgqH1K5UCEsE45eHoG6abcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjUzMmI5ZWItMmZhZS00OGE4LTk3OTMtMzNlZWMwNjdj ZTM5LzMvMjA5MTQ3MjAzODJBMUY1MkI5NTAyMTJDMTM4RTVFMUU4MUJBNjlCNy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMDkxNDcyMDM4MkExRjUyQjk1MDIxMkMx MzhFNUUxRTgxQkE2OUI3LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mNTMyYjllYi0yZmFlLTQ4YTgtOTc5My0zM2VlYzA2N2NlMzkvMy8zMjYxMzEz NDNhMzczNTM4MzYzYTM2MzUzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDMyMzMzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1hmUwDQYJKoZIhvcNAQELBQADggEBAKoG OPS1bi6le7kTYYOt+9Hz9wt98x04ikO0ZLeZNHnhaRcMmi8/H91Yr41FCyp7NNHH HobUis4iQJySHGbTunhrqg5+g9EYWJ39TVeQ6Qjt9CZqt2F8O4oGE792/9UBiYI5 hyYje4MS8SAOMdNsC37Q3elKlDARD2/PkLNCODrEhlQGkVRd2mcnK5By64KjfG3q 5ktE6sDDgWDHNDw4h0TRqiTVMjOUOFmf0YD6ep78Obt2kb4xEVK8JG2qsJ8Mjnoz UpFq7p5Y5xH9UIKesEgKM7Vyw8+n8LApoaQ8277bUnBgY10IyArvvwgPeCoQAMJ5 dCNXAVjxtPNePhvHN6g= -----END CERTIFICATE-----Generated at Sat Jun 6 05:40:01 2026 by rpki-client