$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623136303a3a2f34342d3438203d3e20313939373934.roa File: 326130663a316363363a623136303a3a2f34342d3438203d3e20313939373934.roa (raw, json) Hash identifier: CcK314TQaccXuzd2zjleKccUXAJU6r52sUrMN4OiPfc= Subject key identifier: BD:67:D8:EA:98:75:94:C3:F5:A3:05:EF:F6:0B:2C:C1:78:EF:09:CD Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 212D9FCECCF5B93ECA760081DCE587C2C0BC8C17 Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623136303a3a2f34342d3438203d3e20313939373934.roa Signing time: Fri 20 Mar 2026 20:14:20 +0000 ROA not before: Fri 20 Mar 2026 20:09:20 +0000 ROA not after: Fri 19 Mar 2027 20:14:20 +0000 asID: 199794 IP address blocks: 2a0f:1cc6:b160::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 12:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2d:9f:ce:cc:f5:b9:3e:ca:76:00:81:dc:e5:87:c2:c0:bc:8c:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Mar 20 20:09:20 2026 GMT Not After : Mar 19 20:14:20 2027 GMT Subject: CN=BD67D8EA987594C3F5A305EFF60B2CC178EF09CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ad:af:37:b7:03:cf:9e:ac:50:c1:9b:65:2d: 1c:5d:18:ea:e0:13:82:da:0d:74:7c:6e:2d:14:c6: 08:4a:b8:aa:d4:a5:fa:4f:3e:d9:e4:5c:d2:9f:2d: 5a:b8:f4:bf:d6:57:77:6c:10:d8:15:26:0d:9a:b6: 2a:10:e5:f7:cb:9f:9b:f4:e2:d1:52:34:4a:21:56: d3:9a:3b:6c:8f:f8:38:97:38:fa:7f:8d:7b:db:91: a6:71:df:3f:f3:a9:d0:36:26:2a:1a:f8:f9:f1:be: 7a:98:7e:bc:c9:96:44:ca:8d:66:a6:07:15:b1:79: 48:3b:16:df:31:81:2d:ef:01:3b:6b:99:0a:52:9f: f8:5b:65:15:b6:8a:40:0f:71:cc:ad:04:18:6b:4e: 41:74:80:13:28:a4:32:27:6e:f7:9d:3d:eb:a7:5e: 1e:42:79:be:36:8e:1e:8c:36:76:07:25:f1:b9:19: 7b:6f:14:6e:a5:9a:46:ae:df:6e:40:b5:3e:48:35: 49:48:14:ca:4a:5e:fc:56:44:f2:f1:37:e3:33:c8: 1e:c0:a8:cd:c5:ef:e2:0c:fc:66:8e:c0:5d:27:6c: dd:2f:4c:bc:f4:4e:1c:0a:b7:63:a6:be:f1:1d:1c: 4e:ef:c3:c8:18:62:5b:6c:53:d9:34:60:a6:47:b2: 91:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:67:D8:EA:98:75:94:C3:F5:A3:05:EF:F6:0B:2C:C1:78:EF:09:CD X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623136303a3a2f34342d3438203d3e20313939373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:b160::/44 Signature Algorithm: sha256WithRSAEncryption 8e:43:33:3a:c0:fa:17:6b:c4:cf:02:53:48:50:8a:db:a4:ac: 5a:28:28:b0:c5:0c:41:8f:4d:c8:78:13:b5:56:20:aa:67:78: 44:03:0f:38:51:a6:16:1b:92:e4:d0:56:cb:7e:78:48:bf:18: 7c:48:9c:9c:43:df:c4:66:93:d4:8b:f2:5f:f1:c1:58:d7:4d: f4:10:82:84:8a:12:b1:0f:37:f2:a4:36:a7:45:71:91:27:83: 54:04:ab:eb:7d:d7:26:cf:79:a2:77:ea:0c:47:0c:83:50:90: 07:fc:5e:79:57:d8:79:87:6e:dc:bb:1c:31:d8:a0:16:52:e2: ce:a2:10:64:5b:05:5c:29:a3:98:6a:24:5f:c3:86:f6:22:06: 7c:3c:3d:11:8e:f3:5b:10:8a:67:af:93:0a:fc:f8:8a:0e:4f: a5:6f:3f:44:48:fe:ab:23:c7:2a:28:e1:de:f5:e3:cd:85:50: f4:96:68:79:08:4d:9c:0c:7c:dc:7d:e7:a9:57:a8:0b:78:3f: 25:22:a5:36:ef:9e:31:91:b8:ec:12:bf:ff:b0:a4:90:d6:46: 98:98:ef:a7:18:9f:e2:ea:40:48:00:43:9b:f7:7b:84:b2:c1: bf:04:37:8f:c1:e5:51:04:97:11:de:33:30:5a:69:50:82:16: 11:35:bb:6f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIS2fzsz1uT7KdgCB3OWHwsC8jBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjAzMjAyMDA5MjBaFw0yNzAzMTkyMDE0MjBaMDMxMTAvBgNV BAMTKEJENjdEOEVBOTg3NTk0QzNGNUEzMDVFRkY2MEIyQ0MxNzhFRjA5Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3ra83twPPnqxQwZtlLRxdGOrg E4LaDXR8bi0UxghKuKrUpfpPPtnkXNKfLVq49L/WV3dsENgVJg2atioQ5ffLn5v0 4tFSNEohVtOaO2yP+DiXOPp/jXvbkaZx3z/zqdA2Jioa+PnxvnqYfrzJlkTKjWam BxWxeUg7Ft8xgS3vATtrmQpSn/hbZRW2ikAPccytBBhrTkF0gBMopDInbvedPeun Xh5Ceb42jh6MNnYHJfG5GXtvFG6lmkau325AtT5INUlIFMpKXvxWRPLxN+MzyB7A qM3F7+IM/GaOwF0nbN0vTLz0ThwKt2OmvvEdHE7vw8gYYltsU9k0YKZHspHJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUvWfY6ph1lMP1owXv9gsswXjvCc0wHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTYyMzEzNjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzEz OTM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKg8cxrFgMA0GCSqGSIb3DQEBCwUAA4IBAQCO QzM6wPoXa8TPAlNIUIrbpKxaKCiwxQxBj03IeBO1ViCqZ3hEAw84UaYWG5Lk0FbL fnhIvxh8SJycQ9/EZpPUi/Jf8cFY1030EIKEihKxDzfypDanRXGRJ4NUBKvrfdcm z3mid+oMRwyDUJAH/F55V9h5h27cuxwx2KAWUuLOohBkWwVcKaOYaiRfw4b2IgZ8 PD0RjvNbEIpnr5MK/PiKDk+lbz9ESP6rI8cqKOHe9ePNhVD0lmh5CE2cDHzcfeep V6gLeD8lIqU2754xkbjsEr//sKSQ1kaYmO+nGJ/i6kBIAEOb93uEssG/BDePweVR BJcR3jMwWmlQghYRNbtv -----END CERTIFICATE-----Generated at Thu Mar 26 05:39:33 2026 by rpki-client