$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/326131333a633863343a313030303a3a2f33362d3438203d3e20323134373632.roa File: 326131333a633863343a313030303a3a2f33362d3438203d3e20323134373632.roa (raw, json) Hash identifier: JofSJio1ZSiKcgoMirJLUr+PbzVMXTI571DpwJP8INM= Subject key identifier: 6E:06:A8:F3:D5:1A:FF:CA:9A:72:62:1A:47:50:DD:2E:99:D1:FD:D0 Certificate issuer: /CN=1E74494683D8D2A4E029AAD4573928D2A55FA411 Certificate serial: 348A48A6F5CD47424D2EFECD1424D08F81FF0F68 Authority key identifier: 1E:74:49:46:83:D8:D2:A4:E0:29:AA:D4:57:39:28:D2:A5:5F:A4:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/1E74494683D8D2A4E029AAD4573928D2A55FA411.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/326131333a633863343a313030303a3a2f33362d3438203d3e20323134373632.roa Signing time: Sat 25 Apr 2026 11:44:14 +0000 ROA not before: Sat 25 Apr 2026 11:39:14 +0000 ROA not after: Sat 24 Apr 2027 11:44:14 +0000 asID: 214762 IP address blocks: 2a13:c8c4:1000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/1E74494683D8D2A4E029AAD4573928D2A55FA411.crl rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/1E74494683D8D2A4E029AAD4573928D2A55FA411.mft rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/1E74494683D8D2A4E029AAD4573928D2A55FA411.cer rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/ACB5DFF8A45DF5CDAFA2A95C715F10C5FE5F91A3.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/ACB5DFF8A45DF5CDAFA2A95C715F10C5FE5F91A3.mft rsync://rpki.ripe.net/repository/DEFAULT/rLXf-KRd9c2voqlccV8Qxf5fkaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 01:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:8a:48:a6:f5:cd:47:42:4d:2e:fe:cd:14:24:d0:8f:81:ff:0f:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E74494683D8D2A4E029AAD4573928D2A55FA411 Validity Not Before: Apr 25 11:39:14 2026 GMT Not After : Apr 24 11:44:14 2027 GMT Subject: CN=6E06A8F3D51AFFCA9A72621A4750DD2E99D1FDD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f6:0e:8d:94:87:95:2e:8b:24:4e:26:83:af: ea:ac:66:b3:b7:06:35:1b:14:0f:ee:aa:e8:80:95: a7:fd:38:85:7d:2e:50:a3:da:1a:d2:a4:51:2b:20: 51:2c:27:0a:11:46:2e:e0:3c:8f:c5:ac:e3:f2:02: e0:bf:34:46:58:f1:38:46:49:89:7e:1c:41:12:3c: 89:71:8d:61:cd:56:bd:30:2d:bc:bc:d7:20:69:43: 78:c8:c0:10:50:d3:6f:2a:13:e1:d5:e8:dc:ba:7c: 34:f3:5f:51:6c:85:f6:7a:77:db:84:65:2d:c9:c7: 65:fe:2e:15:54:b2:dd:d9:23:3c:a7:93:e8:f7:68: 24:ff:54:85:1f:1c:65:90:6c:53:64:07:ec:cf:b7: a9:ea:7e:10:dc:13:c1:d3:e2:ff:7b:46:23:d8:00: 2b:06:72:26:aa:ed:1b:2f:e9:29:12:43:73:c5:24: 68:02:05:da:8d:4d:71:c2:6b:74:c0:69:0c:a3:dd: 3c:6e:b2:38:55:31:e2:99:b7:26:4a:83:11:ef:25: 41:50:63:ab:bb:58:7d:2e:bf:94:99:f6:36:00:1c: 0c:1b:a8:1e:c5:ce:0f:54:bd:e3:31:cd:dc:68:99: 31:ff:40:26:a0:d1:a3:81:23:85:8a:05:ef:17:31: 70:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:06:A8:F3:D5:1A:FF:CA:9A:72:62:1A:47:50:DD:2E:99:D1:FD:D0 X509v3 Authority Key Identifier: keyid:1E:74:49:46:83:D8:D2:A4:E0:29:AA:D4:57:39:28:D2:A5:5F:A4:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/1E74494683D8D2A4E029AAD4573928D2A55FA411.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/4/1E74494683D8D2A4E029AAD4573928D2A55FA411.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002f8ee6-abe7-4ae8-964c-788bb98c975c/1/326131333a633863343a313030303a3a2f33362d3438203d3e20323134373632.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:c8c4:1000::/36 Signature Algorithm: sha256WithRSAEncryption 44:d7:02:33:e9:ae:7b:75:ad:28:57:c4:1a:2e:2e:1f:50:3d: 04:35:89:fd:34:0c:45:cf:3d:16:94:42:ba:c6:96:c5:1f:6a: 21:6d:e0:8d:03:e2:b3:29:f5:00:f3:6a:50:3f:db:61:7f:40: 9d:34:c7:ec:eb:bf:f0:d0:8f:09:12:9c:dd:c9:51:18:5f:b2: b1:ae:ce:2f:73:ee:6e:dd:f5:64:bf:8e:56:cd:f5:f1:14:fe: 87:06:4b:32:b5:c8:0b:ff:3b:1c:25:c4:9b:0a:a2:d3:7a:ca: 89:13:2e:25:76:20:7d:dd:44:90:14:45:55:a6:1e:98:98:f5: 06:17:60:42:70:db:73:4a:19:18:1d:08:d6:a3:a2:3e:94:38: 71:05:85:d8:84:eb:bf:7c:df:99:8b:8a:14:b5:8e:88:4a:6b: 7e:b3:43:3d:0f:6e:aa:c3:5e:de:15:75:dd:cc:7e:a9:31:ab: aa:f6:37:0a:3a:c1:3a:cc:f7:78:16:34:26:68:0a:6e:03:1b: eb:2d:61:97:88:f7:f5:14:fc:5d:55:1c:1e:7f:f1:d3:bb:d1: 04:5a:93:7a:e4:25:f2:75:31:04:5d:ca:6e:1b:5b:34:c7:2d: 0e:e6:85:e0:c0:a0:59:96:26:60:60:9d:20:64:ef:6b:35:36: e6:7f:ae:d1 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUNIpIpvXNR0JNLv7NFCTQj4H/D2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUU3NDQ5NDY4M0Q4RDJBNEUwMjlBQUQ0NTczOTI4RDJB NTVGQTQxMTAeFw0yNjA0MjUxMTM5MTRaFw0yNzA0MjQxMTQ0MTRaMDMxMTAvBgNV BAMTKDZFMDZBOEYzRDUxQUZGQ0E5QTcyNjIxQTQ3NTBERDJFOTlEMUZERDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt9g6NlIeVLoskTiaDr+qsZrO3 BjUbFA/uquiAlaf9OIV9LlCj2hrSpFErIFEsJwoRRi7gPI/FrOPyAuC/NEZY8ThG SYl+HEESPIlxjWHNVr0wLby81yBpQ3jIwBBQ028qE+HV6Ny6fDTzX1FshfZ6d9uE ZS3Jx2X+LhVUst3ZIzynk+j3aCT/VIUfHGWQbFNkB+zPt6nqfhDcE8HT4v97RiPY ACsGciaq7Rsv6SkSQ3PFJGgCBdqNTXHCa3TAaQyj3TxusjhVMeKZtyZKgxHvJUFQ Y6u7WH0uv5SZ9jYAHAwbqB7Fzg9UveMxzdxomTH/QCag0aOBI4WKBe8XMXB5AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUbgao89Ua/8qacmIaR1DdLpnR/dAwHwYDVR0j BBgwFoAUHnRJRoPY0qTgKarUVzko0qVfpBEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZjhlZTYtYWJlNy00YWU4LTk2NGMtNzg4YmI5OGM5 NzVjLzEvMUU3NDQ5NDY4M0Q4RDJBNEUwMjlBQUQ0NTczOTI4RDJBNTVGQTQxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82YzQzZDNhNi03ZDEzLTQ4 OTUtOTU5ZC00MTliOWE2ZWIzNGIvNC8xRTc0NDk0NjgzRDhEMkE0RTAyOUFBRDQ1 NzM5MjhEMkE1NUZBNDExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wMDJmOGVlNi1hYmU3LTRhZTgtOTY0Yy03ODhiYjk4Yzk3NWMvMS8zMjYxMzEz MzNhNjMzODYzMzQzYTMxMzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MTM0MzczNjMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhPIxBAwDQYJKoZIhvcNAQELBQADggEBAETX AjPprnt1rShXxBouLh9QPQQ1if00DEXPPRaUQrrGlsUfaiFt4I0D4rMp9QDzalA/ 22F/QJ00x+zrv/DQjwkSnN3JURhfsrGuzi9z7m7d9WS/jlbN9fEU/ocGSzK1yAv/ OxwlxJsKotN6yokTLiV2IH3dRJAURVWmHpiY9QYXYEJw23NKGRgdCNajoj6UOHEF hdiE679835mLihS1johKa36zQz0PbqrDXt4Vdd3Mfqkxq6r2Nwo6wTrM93gWNCZo Cm4DG+stYZeI9/UU/F1VHB5/8dO70QRak3rkJfJ1MQRdym4bWzTHLQ7mheDAoFmW JmBgnSBk72s1NuZ/rtE= -----END CERTIFICATE-----Generated at Wed May 13 10:43:02 2026 by rpki-client