$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/326130623a346530373a6330323a3a2f34382d3438203d3e20323135373630.roa File: 326130623a346530373a6330323a3a2f34382d3438203d3e20323135373630.roa (raw, json) Hash identifier: 89YEfdCNb6RXT7z5CsfijNvWZCI5tf3pkWh8RSXOhww= Subject key identifier: AA:26:34:6D:CB:AE:C7:EC:B7:20:C3:0E:EB:A2:CB:65:B5:35:EA:36 Certificate issuer: /CN=879280A7D9E6DDDDCCB29E9A77819D5CE3823185 Certificate serial: 319F031B38B67EBF4DE65B664045E281EAA746EA Authority key identifier: 87:92:80:A7:D9:E6:DD:DD:CC:B2:9E:9A:77:81:9D:5C:E3:82:31:85 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/326130623a346530373a6330323a3a2f34382d3438203d3e20323135373630.roa Signing time: Wed 20 May 2026 21:48:48 +0000 ROA not before: Wed 20 May 2026 21:43:48 +0000 ROA not after: Wed 19 May 2027 21:48:48 +0000 asID: 215760 IP address blocks: 2a0b:4e07:c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.crl rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 May 2026 05:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:9f:03:1b:38:b6:7e:bf:4d:e6:5b:66:40:45:e2:81:ea:a7:46:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=879280A7D9E6DDDDCCB29E9A77819D5CE3823185 Validity Not Before: May 20 21:43:48 2026 GMT Not After : May 19 21:48:48 2027 GMT Subject: CN=AA26346DCBAEC7ECB720C30EEBA2CB65B535EA36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:de:af:ef:6b:cb:53:8a:74:27:61:21:26:0f: 6c:24:70:75:67:c5:40:fe:1f:db:17:4c:e7:95:1c: 4c:c7:65:7b:5d:f3:02:18:19:8e:19:48:0d:12:45: 1e:57:3f:b0:e1:63:04:a0:41:0e:bc:23:5c:46:bb: a9:86:1a:02:29:05:64:6a:50:df:92:79:ef:56:9d: 76:fb:87:85:1b:13:94:2f:be:a8:a6:25:2b:1e:29: 8e:61:c2:19:dd:6b:c2:2e:74:a1:00:77:4c:ed:17: 1f:18:ff:2c:79:6e:e2:e8:47:2c:af:f0:54:57:98: ce:32:14:27:13:76:18:3e:c6:29:ab:09:00:68:5e: e6:ac:47:89:37:6e:82:70:eb:bc:6a:f8:82:fd:a4: fb:cc:39:ed:61:3e:13:74:16:be:47:a8:dc:d5:0c: c7:2c:a1:6c:c8:cc:fe:7d:58:5f:96:7e:d0:a6:80: 1c:8a:a6:7f:06:86:78:05:9d:af:a6:68:e2:88:a9: 07:a7:d4:8f:4f:63:19:84:e6:62:db:85:6a:3f:ed: ac:20:69:af:4d:99:6e:15:66:de:f4:a8:4f:c1:59: b9:3c:0f:67:dc:e6:d9:b0:cc:79:fb:8f:20:cc:77: 00:97:92:8d:c4:d9:c2:cd:df:3c:13:8b:99:d6:15: 1b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:26:34:6D:CB:AE:C7:EC:B7:20:C3:0E:EB:A2:CB:65:B5:35:EA:36 X509v3 Authority Key Identifier: keyid:87:92:80:A7:D9:E6:DD:DD:CC:B2:9E:9A:77:81:9D:5C:E3:82:31:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/879280A7D9E6DDDDCCB29E9A77819D5CE3823185.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/1/326130623a346530373a6330323a3a2f34382d3438203d3e20323135373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c02::/48 Signature Algorithm: sha256WithRSAEncryption 5c:cb:05:ef:d6:5a:aa:b8:f6:68:d7:9f:d7:fd:24:1c:24:23: 76:98:5d:ca:3d:e8:ab:b3:1d:14:8c:81:e0:ea:b7:8d:ec:f2: 63:98:55:03:54:3f:3d:45:02:07:c6:7b:2d:eb:9f:ca:32:06: 15:0c:65:a9:b4:be:8c:64:47:44:dd:d0:4b:b0:1a:ca:da:20: 69:e6:e0:e5:e2:f9:54:92:e6:9b:74:1c:91:7f:b4:10:92:6f: 8e:fa:60:d4:e1:96:cc:79:7e:6b:e3:80:ab:c1:cf:f7:98:d7: 60:84:82:bf:ee:87:89:25:f2:0c:6f:91:83:c1:ea:71:89:61: 7f:55:c3:be:bc:19:78:0d:3c:43:c5:b4:5c:3e:12:9d:46:49: 1c:35:91:6b:23:7b:06:45:b5:5d:8a:5f:c4:ec:8b:c1:8f:99: 06:87:fb:ba:a9:57:8a:8a:51:c3:d1:8c:55:6c:63:47:b5:ee: 0f:d7:81:b1:14:b0:f3:66:c9:23:c8:5f:cf:07:8a:03:9e:ae: 70:8c:92:0e:2c:14:96:1d:8c:9e:f1:01:ee:e6:3a:38:9c:b1: c3:3f:a1:1b:19:6d:77:ee:21:98:30:cb:b8:f3:8e:2f:ee:39: 4e:fa:b0:4f:fc:36:e7:0e:73:1a:eb:7b:d4:6e:fe:ad:c3:2e: d1:d5:bb:6f -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUMZ8DGzi2fr9N5ltmQEXigeqnRuowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODc5MjgwQTdEOUU2RERERENDQjI5RTlBNzc4MTlENUNF MzgyMzE4NTAeFw0yNjA1MjAyMTQzNDhaFw0yNzA1MTkyMTQ4NDhaMDMxMTAvBgNV BAMTKEFBMjYzNDZEQ0JBRUM3RUNCNzIwQzMwRUVCQTJDQjY1QjUzNUVBMzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT3q/va8tTinQnYSEmD2wkcHVn xUD+H9sXTOeVHEzHZXtd8wIYGY4ZSA0SRR5XP7DhYwSgQQ68I1xGu6mGGgIpBWRq UN+See9WnXb7h4UbE5QvvqimJSseKY5hwhnda8IudKEAd0ztFx8Y/yx5buLoRyyv 8FRXmM4yFCcTdhg+ximrCQBoXuasR4k3boJw67xq+IL9pPvMOe1hPhN0Fr5HqNzV DMcsoWzIzP59WF+WftCmgByKpn8GhngFna+maOKIqQen1I9PYxmE5mLbhWo/7awg aa9NmW4VZt70qE/BWbk8D2fc5tmwzHn7jyDMdwCXko3E2cLN3zwTi5nWFRttAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUqiY0bcuux+y3IMMO66LLZbU16jYwHwYDVR0j BBgwFoAUh5KAp9nm3d3Msp6ad4GdXOOCMYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgtMjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2 ZDAzLzEvODc5MjgwQTdEOUU2RERERENDQjI5RTlBNzc4MTlENUNFMzgyMzE4NS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvODc5MjgwQTdEOUU2RERERENDQjI5RTlBNzc4MTlENUNFMzgy MzE4NS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgt MjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2ZDAzLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MzMwMzIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNzM2MzAucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqC04HDAIwDQYJKoZIhvcNAQELBQADggEBAFzLBe/WWqq49mjXn9f9 JBwkI3aYXco96KuzHRSMgeDqt43s8mOYVQNUPz1FAgfGey3rn8oyBhUMZam0voxk R0Td0EuwGsraIGnm4OXi+VSS5pt0HJF/tBCSb476YNThlsx5fmvjgKvBz/eY12CE gr/uh4kl8gxvkYPB6nGJYX9Vw768GXgNPEPFtFw+Ep1GSRw1kWsjewZFtV2KX8Ts i8GPmQaH+7qpV4qKUcPRjFVsY0e17g/XgbEUsPNmySPIX88HigOernCMkg4sFJYd jJ7xAe7mOjicscM/oRsZbXfuIZgwy7jzji/uOU76sE/8NucOcxrre9Ru/q3DLtHV u28= -----END CERTIFICATE-----Generated at Mon May 25 16:33:32 2026 by rpki-client