$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3430303a3a2f34302d3438203d3e203230343733.roa File: 326130363a396634313a3430303a3a2f34302d3438203d3e203230343733.roa (raw, json) Hash identifier: kqvKYNrb9S6UNWNBCSQTGIWwuKbgxvvWmBBrL9fs5G8= Subject key identifier: F9:18:2E:6B:F3:17:94:F5:8B:A7:C8:8D:AE:81:DC:55:B2:61:A5:D5 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 190F96478A984C5D60D292F311BA1A7724953FA2 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3430303a3a2f34302d3438203d3e203230343733.roa Signing time: Tue 24 Mar 2026 12:12:49 +0000 ROA not before: Tue 24 Mar 2026 12:07:49 +0000 ROA not after: Tue 23 Mar 2027 12:12:49 +0000 asID: 20473 IP address blocks: 2a06:9f41:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 00:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0f:96:47:8a:98:4c:5d:60:d2:92:f3:11:ba:1a:77:24:95:3f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Mar 24 12:07:49 2026 GMT Not After : Mar 23 12:12:49 2027 GMT Subject: CN=F9182E6BF31794F58BA7C88DAE81DC55B261A5D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f6:86:b5:4a:d8:ff:90:6b:72:b1:42:1d:2c: 84:5f:59:48:66:ad:27:f6:64:24:dd:06:d7:7d:1e: c6:c0:0e:b2:a3:06:0b:cd:64:81:4f:c3:9e:9a:d8: d0:9a:db:33:f5:90:30:db:40:a9:14:5e:30:f8:22: 38:ca:5a:2f:a2:98:1b:b6:86:7d:1f:3d:26:cb:ab: 21:8a:72:68:f1:cb:bc:20:c9:03:96:4e:08:e7:9e: 1d:dd:b3:86:90:87:20:2d:66:23:9f:a7:0b:37:0d: 85:2d:c2:3e:80:c6:6f:a2:86:eb:94:c2:8f:1f:33: ce:74:5c:e1:f9:b7:fb:4b:9c:6f:ec:b4:7a:0e:e3: 65:b0:6b:24:07:1d:d3:67:25:66:13:b4:2e:18:c4: a0:3b:c4:c3:23:38:4b:fc:ab:b7:a4:b0:08:fe:68: 25:92:30:02:4f:c2:ab:53:2a:4f:0d:b4:28:b7:25: 5d:ad:83:af:fa:a8:c2:f1:b4:3a:4c:ed:c6:3d:87: 0c:17:e5:8b:11:ae:6b:f0:47:e6:ea:2b:80:ed:40: b8:58:06:7c:bb:04:d8:10:47:70:6b:8f:83:9d:f5: 49:ca:02:42:d3:ee:8d:2d:b0:3c:f6:92:19:b5:fd: db:7b:b7:e3:f8:88:7c:83:a6:bc:d1:39:f3:90:c6: ab:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:18:2E:6B:F3:17:94:F5:8B:A7:C8:8D:AE:81:DC:55:B2:61:A5:D5 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3430303a3a2f34302d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:400::/40 Signature Algorithm: sha256WithRSAEncryption 0e:74:37:00:74:10:9b:43:a9:85:b8:6f:cc:64:d4:ca:5d:7b: cc:b5:1d:35:71:85:e9:1e:5e:0e:39:ee:47:09:37:af:24:c6: ae:3d:af:ff:16:2e:30:fc:da:87:96:85:b8:38:69:70:67:42: 28:eb:84:a3:86:0b:d7:11:d2:15:53:56:7c:a4:ac:1c:a2:5a: 5a:8e:34:fe:bc:a7:17:a5:ad:9d:10:cf:08:6b:5c:1b:df:ac: ad:03:68:ab:3a:f1:18:35:a8:cd:43:5a:ae:a9:dc:5b:07:c9: b9:f6:4a:e9:38:c7:3d:3d:74:d8:b7:36:d9:26:4d:da:7a:5c: 61:f9:37:b3:63:8c:a3:f6:85:21:be:04:99:0b:58:e1:1d:97: 06:43:37:e7:13:14:57:90:8d:3a:3d:4f:fa:33:fe:7d:a2:0b: e1:a6:dc:31:f8:1e:80:64:27:cb:80:b2:44:d1:73:fd:1a:a5: 63:67:f0:a4:88:1b:5d:04:8d:4f:56:72:27:88:53:ac:8b:ff: f9:20:40:2d:7e:0a:7b:65:95:bd:ba:c9:ad:00:21:61:df:ca: 3b:0d:0e:0d:cc:e6:24:83:67:66:02:eb:cc:57:bb:34:61:97: b5:0d:c7:8d:97:ed:fd:b4:e3:2c:f8:4d:24:16:9f:ab:e8:e0: ea:f6:09:9a -----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgIUGQ+WR4qYTF1g0pLzEboadySVP6IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjAzMjQxMjA3NDlaFw0yNzAzMjMxMjEyNDlaMDMxMTAvBgNV BAMTKEY5MTgyRTZCRjMxNzk0RjU4QkE3Qzg4REFFODFEQzU1QjI2MUE1RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH9oa1Stj/kGtysUIdLIRfWUhm rSf2ZCTdBtd9HsbADrKjBgvNZIFPw56a2NCa2zP1kDDbQKkUXjD4IjjKWi+imBu2 hn0fPSbLqyGKcmjxy7wgyQOWTgjnnh3ds4aQhyAtZiOfpws3DYUtwj6Axm+ihuuU wo8fM850XOH5t/tLnG/stHoO42WwayQHHdNnJWYTtC4YxKA7xMMjOEv8q7eksAj+ aCWSMAJPwqtTKk8NtCi3JV2tg6/6qMLxtDpM7cY9hwwX5YsRrmvwR+bqK4DtQLhY Bny7BNgQR3Brj4Od9UnKAkLT7o0tsDz2khm1/dt7t+P4iHyDprzROfOQxqsNAgMB AAGjggJ1MIICcTAdBgNVHQ4EFgQU+Rgua/MXlPWLp8iNroHcVbJhpdUwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzNDMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMwMzQzNzMzLnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIA AjAIAwYAKgafQQQwDQYJKoZIhvcNAQELBQADggEBAA50NwB0EJtDqYW4b8xk1Mpd e8y1HTVxhekeXg457kcJN68kxq49r/8WLjD82oeWhbg4aXBnQijrhKOGC9cR0hVT VnykrByiWlqONP68pxelrZ0QzwhrXBvfrK0DaKs68Rg1qM1DWq6p3FsHybn2Suk4 xz09dNi3NtkmTdp6XGH5N7NjjKP2hSG+BJkLWOEdlwZDN+cTFFeQjTo9T/oz/n2i C+Gm3DH4HoBkJ8uAskTRc/0apWNn8KSIG10EjU9WcieIU6yL//kgQC1+Cntllb26 ya0AIWHfyjsNDg3M5iSDZ2YC68xXuzRhl7UNx42X7f204yz4TSQWn6vo4Or2CZo= -----END CERTIFICATE-----Generated at Thu Mar 26 08:38:51 2026 by rpki-client