$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634363a3a2f33322d3332203d3e20323135303835.roa File: 326130363a396634363a3a2f33322d3332203d3e20323135303835.roa (raw, json) Hash identifier: VaQ7E5teHQHLeIM/yhafNgq1UJCeXJLr+dcAS+fpleo= Subject key identifier: B7:C9:2A:78:16:7E:C5:54:93:F3:8B:FF:38:4A:9D:A3:C3:0E:9B:70 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 68CE115DC9A508B5D5C5E9D19F5AE1192F4A8827 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634363a3a2f33322d3332203d3e20323135303835.roa Signing time: Mon 27 Apr 2026 20:57:01 +0000 ROA not before: Mon 27 Apr 2026 20:52:01 +0000 ROA not after: Mon 26 Apr 2027 20:57:01 +0000 asID: 215085 IP address blocks: 2a06:9f46::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ce:11:5d:c9:a5:08:b5:d5:c5:e9:d1:9f:5a:e1:19:2f:4a:88:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Apr 27 20:52:01 2026 GMT Not After : Apr 26 20:57:01 2027 GMT Subject: CN=B7C92A78167EC55493F38BFF384A9DA3C30E9B70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dd:9e:58:98:28:5f:5b:56:0a:1b:ce:4e:95: a0:89:f5:b7:8a:e2:3a:fd:5f:d1:dd:1e:a9:72:eb: d2:fa:f1:69:f4:aa:44:6a:bf:1b:67:10:e8:9b:f6: d6:95:2b:01:bd:bf:9b:57:ac:c1:ba:63:30:43:40: 2e:9b:6a:25:af:f7:b4:cf:da:bb:83:14:2d:d5:79: 35:55:48:d4:ce:14:40:ca:1f:2b:46:43:3e:8b:27: 04:43:12:7b:ea:de:20:9a:9e:c7:55:8b:14:42:6a: c7:d5:cd:27:da:14:1d:f3:a9:e1:b4:9c:25:2a:12: ef:c4:e5:56:16:17:bb:6a:35:2a:f8:82:a4:21:c4: 94:13:67:17:d5:f5:ba:b9:0c:97:50:82:96:32:8a: 09:2a:84:21:88:c0:b6:04:9d:45:82:1a:58:eb:4a: b5:c4:67:ca:9c:99:f4:40:7c:1b:35:5a:f1:69:b3: 5e:81:9a:29:90:00:d7:c5:8c:40:b8:be:1e:e4:fe: 66:fa:0f:38:36:96:b3:a3:24:4d:45:04:bb:12:f3: 15:0b:e3:d2:90:ad:c9:d4:14:e7:ad:a6:ec:16:b1: 0e:be:4c:47:95:2f:99:5e:69:66:62:f3:4b:07:41: c4:de:e2:50:c7:ee:c8:36:a9:12:57:8d:43:82:2e: 25:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C9:2A:78:16:7E:C5:54:93:F3:8B:FF:38:4A:9D:A3:C3:0E:9B:70 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634363a3a2f33322d3332203d3e20323135303835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f46::/32 Signature Algorithm: sha256WithRSAEncryption 27:73:47:50:88:ae:f1:90:62:8e:da:c7:1a:d5:14:8f:30:41: 0f:d4:a1:9c:54:26:6c:a4:d3:9d:12:96:7d:a1:58:27:94:32: 07:9b:a3:74:8e:d0:5e:9e:67:1b:a6:64:80:5e:ba:17:b9:13: 7f:d3:ce:4e:16:6f:7d:f2:b6:98:54:1a:19:e2:4c:f5:0d:b7: b2:53:97:5c:1e:92:bd:23:fa:e0:9d:e0:d9:8b:8e:fd:74:4d: e8:b0:ee:1e:63:82:7b:0f:46:08:93:0e:73:84:84:3e:cb:25: cb:8b:e8:93:ad:d1:9a:e9:4b:73:ba:0d:c7:87:b2:3b:1a:22: 85:72:39:f6:1a:77:c8:f0:84:ed:c1:b8:bc:ff:3f:a2:51:e1: 2c:83:e0:4d:ce:b6:a9:f9:7b:4c:88:62:80:a6:43:fe:fc:14: b1:99:62:1e:44:a7:b4:4c:e3:2d:42:70:a3:a0:de:e3:9b:6d: eb:10:e8:5d:71:d4:30:50:5b:f5:b1:1a:0b:9f:da:02:88:5b: 76:52:ab:7b:a1:3a:68:10:57:06:28:d3:ac:0f:b3:66:eb:85: d9:2c:15:03:c1:3a:e3:a6:f3:5b:72:fc:2b:30:55:fd:e8:df: 9e:5e:43:a1:73:35:dd:c0:0e:7d:9c:fa:72:86:f3:70:72:6c: 97:9c:d4:5f -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUaM4RXcmlCLXVxenRn1rhGS9KiCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjA0MjcyMDUyMDFaFw0yNzA0MjYyMDU3MDFaMDMxMTAvBgNV BAMTKEI3QzkyQTc4MTY3RUM1NTQ5M0YzOEJGRjM4NEE5REEzQzMwRTlCNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY3Z5YmChfW1YKG85OlaCJ9beK 4jr9X9HdHqly69L68Wn0qkRqvxtnEOib9taVKwG9v5tXrMG6YzBDQC6baiWv97TP 2ruDFC3VeTVVSNTOFEDKHytGQz6LJwRDEnvq3iCansdVixRCasfVzSfaFB3zqeG0 nCUqEu/E5VYWF7tqNSr4gqQhxJQTZxfV9bq5DJdQgpYyigkqhCGIwLYEnUWCGljr SrXEZ8qcmfRAfBs1WvFps16BmimQANfFjEC4vh7k/mb6Dzg2lrOjJE1FBLsS8xUL 49KQrcnUFOetpuwWsQ6+TEeVL5leaWZi80sHQcTe4lDH7sg2qRJXjUOCLiXLAgMB AAGjggJuMIICajAdBgNVHQ4EFgQUt8kqeBZ+xVST84v/OEqdo8MOm3AwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDM2 M2EzYTJmMzMzMjJkMzMzMjIwM2QzZTIwMzIzMTM1MzAzODM1LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgafRjANBgkqhkiG9w0BAQsFAAOCAQEAJ3NHUIiu8ZBijtrHGtUUjzBBD9ShnFQm bKTTnRKWfaFYJ5QyB5ujdI7QXp5nG6ZkgF66F7kTf9POThZvffK2mFQaGeJM9Q23 slOXXB6SvSP64J3g2YuO/XRN6LDuHmOCew9GCJMOc4SEPssly4vok63RmulLc7oN x4eyOxoihXI59hp3yPCE7cG4vP8/olHhLIPgTc62qfl7TIhigKZD/vwUsZliHkSn tEzjLUJwo6De45tt6xDoXXHUMFBb9bEaC5/aAohbdlKre6E6aBBXBijTrA+zZuuF 2SwVA8E646bzW3L8KzBV/ejfnl5DoXM13cAOfZz6cobzcHJsl5zUXw== -----END CERTIFICATE-----Generated at Wed May 13 09:37:36 2026 by rpki-client