$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/326130613a643638353a3a2f33362d3438203d3e20323034323131.roa File: 326130613a643638353a3a2f33362d3438203d3e20323034323131.roa (raw, json) Hash identifier: X3yUeD61GhapeOsUlkFiq5TmnoG/p0KNKBsOGJwvygw= Subject key identifier: FD:F6:E6:9F:95:F7:02:2C:5D:2D:FC:FD:72:10:CB:81:72:90:D7:58 Certificate issuer: /CN=80838673ED291DC1ACFAE037E88F9C7A78B7127E Certificate serial: 30ABF5C1BABD68E0683E09C58FA979A7D99E8FDB Authority key identifier: 80:83:86:73:ED:29:1D:C1:AC:FA:E0:37:E8:8F:9C:7A:78:B7:12:7E Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/b3f2aaae-23cf-4a37-9403-743b15ec2a8e/0/80838673ED291DC1ACFAE037E88F9C7A78B7127E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/326130613a643638353a3a2f33362d3438203d3e20323034323131.roa Signing time: Fri 05 Jun 2026 05:24:22 +0000 ROA not before: Fri 05 Jun 2026 05:19:22 +0000 ROA not after: Fri 04 Jun 2027 05:24:22 +0000 asID: 204211 IP address blocks: 2a0a:d685::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/80838673ED291DC1ACFAE037E88F9C7A78B7127E.crl rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/80838673ED291DC1ACFAE037E88F9C7A78B7127E.mft rsync://rsync.paas.rpki.ripe.net/repository/b3f2aaae-23cf-4a37-9403-743b15ec2a8e/0/80838673ED291DC1ACFAE037E88F9C7A78B7127E.cer rsync://rsync.paas.rpki.ripe.net/repository/b3f2aaae-23cf-4a37-9403-743b15ec2a8e/0/0E70AE0ACD0BE83D2D458CA207B1D4FFA3C3E4EA.crl rsync://rsync.paas.rpki.ripe.net/repository/b3f2aaae-23cf-4a37-9403-743b15ec2a8e/0/0E70AE0ACD0BE83D2D458CA207B1D4FFA3C3E4EA.mft rsync://rpki.ripe.net/repository/DEFAULT/DnCuCs0L6D0tRYyiB7HU_6PD5Oo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 19:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ab:f5:c1:ba:bd:68:e0:68:3e:09:c5:8f:a9:79:a7:d9:9e:8f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80838673ED291DC1ACFAE037E88F9C7A78B7127E Validity Not Before: Jun 5 05:19:22 2026 GMT Not After : Jun 4 05:24:22 2027 GMT Subject: CN=FDF6E69F95F7022C5D2DFCFD7210CB817290D758 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:aa:9f:1e:2e:a7:78:57:89:67:f2:72:48:be: 02:06:c8:22:f2:72:d4:82:bc:5a:29:87:9c:06:02: a1:75:46:39:9e:34:66:16:63:64:3f:df:4b:71:15: ed:30:ad:00:43:a6:09:eb:cc:f8:64:dd:34:15:56: 3b:1c:6b:77:e6:dc:43:9c:29:59:9d:4c:12:84:74: 8a:8d:83:56:16:fa:54:ca:59:23:9b:ff:de:c5:52: ce:89:9f:3a:21:e4:e8:35:e7:cf:b0:07:7f:a0:33: ae:7e:53:db:d7:94:6b:a4:14:93:53:7d:2c:a4:1f: af:6d:79:69:96:02:56:9f:f4:12:44:38:22:62:44: 36:fe:02:12:7b:64:9d:9f:4c:83:78:a7:7d:84:ee: 17:47:2e:47:ae:67:a1:1c:d0:55:49:56:a7:13:90: 14:17:8e:b5:65:a7:14:cd:f8:c2:b8:6a:84:13:00: 17:8b:1e:cd:5c:bc:cd:8c:99:aa:c1:48:25:27:ee: 10:2b:c3:e4:38:01:59:e6:5d:76:6d:af:86:f7:e2: 70:6a:34:a4:bd:7a:be:db:4a:e0:bb:da:01:4f:75: 73:9e:4f:76:07:c9:1a:61:df:6a:58:1e:6b:ad:0e: d5:96:10:7d:33:45:03:57:59:69:ad:e8:82:6f:c0: 3e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F6:E6:9F:95:F7:02:2C:5D:2D:FC:FD:72:10:CB:81:72:90:D7:58 X509v3 Authority Key Identifier: keyid:80:83:86:73:ED:29:1D:C1:AC:FA:E0:37:E8:8F:9C:7A:78:B7:12:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/80838673ED291DC1ACFAE037E88F9C7A78B7127E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/b3f2aaae-23cf-4a37-9403-743b15ec2a8e/0/80838673ED291DC1ACFAE037E88F9C7A78B7127E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f532b9eb-2fae-48a8-9793-33eec067ce39/5/326130613a643638353a3a2f33362d3438203d3e20323034323131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:d685::/36 Signature Algorithm: sha256WithRSAEncryption 2e:ac:45:28:88:2c:53:bf:1c:3b:eb:66:e6:d5:bf:41:8b:17: 06:06:0f:be:cf:e2:18:d4:5f:1a:43:e5:48:2f:3e:c6:78:a0: c9:7c:b9:bb:e3:f2:4d:a2:60:8b:6a:f8:a2:9f:90:11:6c:97: 4a:79:7b:bb:60:ca:bf:e6:c1:9b:e8:66:0f:49:42:7a:a2:c5: 8b:30:b0:67:0f:6b:05:b8:10:a8:e5:9a:8e:0a:02:d8:50:22: 4c:dc:28:b3:b7:42:6a:ba:f0:23:a6:10:89:5c:e4:b5:98:30: 10:51:5d:3d:2b:d3:9f:05:76:90:61:97:1e:57:8c:f0:38:d3: 23:10:6e:5f:62:52:50:74:ee:5a:d6:67:f7:57:2a:51:1f:13: d8:35:0d:91:d5:64:8d:35:c9:c7:1a:1c:e3:f7:b7:c2:dd:2e: 44:b7:26:a0:7f:cf:be:d9:d8:6f:a4:77:dd:9d:c0:b9:1e:97: 41:67:8f:b0:36:d7:74:d8:ca:c2:51:d9:18:58:7f:8c:44:52: 01:25:ef:8f:70:2e:25:6e:35:bf:d1:83:60:10:bf:e1:f8:5d: e3:17:77:7a:2e:ef:35:ac:76:82:bd:dd:30:1a:b7:8f:eb:3c: e3:a0:ae:b0:f8:53:fe:d7:ce:0d:a2:28:29:c8:d5:ec:40:15: f6:48:12:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUMKv1wbq9aOBoPgnFj6l5p9mej9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA4Mzg2NzNFRDI5MURDMUFDRkFFMDM3RTg4RjlDN0E3 OEI3MTI3RTAeFw0yNjA2MDUwNTE5MjJaFw0yNzA2MDQwNTI0MjJaMDMxMTAvBgNV BAMTKEZERjZFNjlGOTVGNzAyMkM1RDJERkNGRDcyMTBDQjgxNzI5MEQ3NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIqp8eLqd4V4ln8nJIvgIGyCLy ctSCvFoph5wGAqF1RjmeNGYWY2Q/30txFe0wrQBDpgnrzPhk3TQVVjsca3fm3EOc KVmdTBKEdIqNg1YW+lTKWSOb/97FUs6Jnzoh5Og158+wB3+gM65+U9vXlGukFJNT fSykH69teWmWAlaf9BJEOCJiRDb+AhJ7ZJ2fTIN4p32E7hdHLkeuZ6Ec0FVJVqcT kBQXjrVlpxTN+MK4aoQTABeLHs1cvM2MmarBSCUn7hArw+Q4AVnmXXZtr4b34nBq NKS9er7bSuC72gFPdXOeT3YHyRph32pYHmutDtWWEH0zRQNXWWmt6IJvwD5BAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU/fbmn5X3AixdLfz9chDLgXKQ11gwHwYDVR0j BBgwFoAUgIOGc+0pHcGs+uA36I+ceni3En4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjUzMmI5ZWItMmZhZS00OGE4LTk3OTMtMzNlZWMwNjdj ZTM5LzUvODA4Mzg2NzNFRDI5MURDMUFDRkFFMDM3RTg4RjlDN0E3OEI3MTI3RS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iM2YyYWFhZS0yM2NmLTRh MzctOTQwMy03NDNiMTVlYzJhOGUvMC84MDgzODY3M0VEMjkxREMxQUNGQUUwMzdF ODhGOUM3QTc4QjcxMjdFLmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mNTMyYjllYi0yZmFlLTQ4YTgtOTc5My0zM2VlYzA2N2NlMzkvNS8zMjYxMzA2 MTNhNjQzNjM4MzUzYTNhMmYzMzM2MmQzNDM4MjAzZDNlMjAzMjMwMzQzMjMxMzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MA4EAgACMAgDBgQqCtaFADANBgkqhkiG9w0BAQsFAAOCAQEALqxFKIgsU78cO+tm 5tW/QYsXBgYPvs/iGNRfGkPlSC8+xnigyXy5u+PyTaJgi2r4op+QEWyXSnl7u2DK v+bBm+hmD0lCeqLFizCwZw9rBbgQqOWajgoC2FAiTNwos7dCarrwI6YQiVzktZgw EFFdPSvTnwV2kGGXHleM8DjTIxBuX2JSUHTuWtZn91cqUR8T2DUNkdVkjTXJxxoc 4/e3wt0uRLcmoH/PvtnYb6R33Z3AuR6XQWePsDbXdNjKwlHZGFh/jERSASXvj3Au JW41v9GDYBC/4fhd4xd3ei7vNax2gr3dMBq3j+s846CusPhT/tfODaIoKcjV7EAV 9kgSnA== -----END CERTIFICATE-----Generated at Sat Jun 6 08:21:41 2026 by rpki-client