$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/326130663a316363353a313033303a3a2f34342d3438203d3e20323031333836.roa File: 326130663a316363353a313033303a3a2f34342d3438203d3e20323031333836.roa (raw, json) Hash identifier: SxyQIKRflKDfzDUyUfrdFvcREAVMOS9I7Iy4ywW3U5Y= Subject key identifier: 5E:B9:36:3B:9D:A4:39:E8:D5:18:E2:32:65:05:60:FA:1B:78:FD:22 Certificate issuer: /CN=E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A Certificate serial: 719FEC97962546AE4E724F2BD44D5019F180E79B Authority key identifier: E1:DB:87:BB:BB:D2:0D:FF:26:19:E6:14:B8:6D:4B:7E:91:FB:B7:3A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/326130663a316363353a313033303a3a2f34342d3438203d3e20323031333836.roa Signing time: Fri 08 May 2026 14:59:50 +0000 ROA not before: Fri 08 May 2026 14:54:50 +0000 ROA not after: Fri 07 May 2027 14:59:50 +0000 asID: 201386 IP address blocks: 2a0f:1cc5:1030::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.crl rsync://rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9f:ec:97:96:25:46:ae:4e:72:4f:2b:d4:4d:50:19:f1:80:e7:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A Validity Not Before: May 8 14:54:50 2026 GMT Not After : May 7 14:59:50 2027 GMT Subject: CN=5EB9363B9DA439E8D518E232650560FA1B78FD22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d3:32:51:98:06:b7:bf:93:ce:93:26:17:c1: f4:54:2d:6a:8f:f8:35:0f:af:8b:57:45:8e:3d:f3: 1c:80:b1:33:c4:b4:1e:da:3c:10:88:58:f2:ba:fe: 55:f5:50:06:06:37:16:4c:be:e2:d7:11:27:49:85: 06:f1:5e:8b:6f:44:5b:0c:78:22:7a:52:3b:c7:79: fe:10:43:cd:a6:bb:17:92:bf:a1:bf:ea:f2:fb:55: 83:2f:24:a6:bd:75:01:07:b3:ec:10:8a:6f:f6:58: f6:74:e9:9e:47:12:9b:c1:2d:ab:36:51:6b:e7:b0: 0c:16:91:7e:e0:09:5b:02:8a:6a:f1:32:d8:6b:0c: e5:0a:5b:56:dd:e6:19:af:70:5b:01:d4:fe:6a:be: da:b0:a0:94:6a:56:94:71:8e:04:25:56:71:5e:1b: dd:47:da:f1:91:85:0d:3f:a4:55:c6:26:96:2a:62: 9b:30:63:5d:34:c3:3f:0a:77:b0:9a:a6:3e:a3:6a: ad:fb:48:37:c1:b3:d0:ae:86:cd:cf:c4:a6:4a:86: ef:60:0e:a3:b9:8d:72:b9:16:31:a2:c4:0f:0c:30: 20:f5:26:32:d2:45:e6:27:46:24:e8:8b:fc:a3:67: d3:2b:98:31:63:6e:9e:30:ed:25:3d:3a:38:3d:2e: fe:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:B9:36:3B:9D:A4:39:E8:D5:18:E2:32:65:05:60:FA:1B:78:FD:22 X509v3 Authority Key Identifier: keyid:E1:DB:87:BB:BB:D2:0D:FF:26:19:E6:14:B8:6D:4B:7E:91:FB:B7:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/E1DB87BBBBD20DFF2619E614B86D4B7E91FBB73A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/52b84156-9597-44b4-bd24-65de2c355efc/3/326130663a316363353a313033303a3a2f34342d3438203d3e20323031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:1030::/44 Signature Algorithm: sha256WithRSAEncryption 8d:dd:c2:c7:45:2b:13:4c:81:5a:94:a1:ad:02:2f:e4:fb:14: aa:0a:e0:e3:9c:8d:57:58:b8:6a:43:f4:31:3b:9b:99:20:83: 13:09:47:d2:d2:20:7a:86:5b:26:c5:46:91:56:c3:9a:36:dd: 53:f6:cf:19:d2:43:e6:64:99:0b:fe:9b:81:10:65:a0:cd:51: 8a:64:e0:ed:99:82:76:68:90:c7:b6:c7:6a:f1:b5:08:78:fd: 66:a5:a2:43:08:7d:c0:12:22:2b:27:9e:f1:43:2e:e9:df:5a: 1a:5c:10:3f:12:9b:e5:09:d7:91:b8:e3:b9:22:5b:7b:be:07: d8:fc:45:ff:ae:46:bc:ed:44:e2:fa:12:54:79:6c:6b:40:67: d8:69:9a:27:ad:8e:86:05:aa:66:f6:34:4a:4a:58:7b:54:84: 31:e3:1d:4b:cd:a7:1d:f5:50:1a:92:fd:bd:d3:24:0c:71:bf: 10:0b:a7:dc:01:55:3e:f8:f1:88:b6:25:7f:2e:47:e8:a5:49: 2a:4d:f1:f4:4f:c7:27:79:db:1c:de:bf:78:a0:2b:a8:fd:96: 43:4a:fb:1f:99:d3:aa:c1:11:72:12:57:bc:eb:30:87:50:04: 44:8a:2c:33:46:cb:50:c1:ba:82:dc:ac:d3:7f:4f:44:75:b2: 05:c6:fc:c8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcZ/sl5YlRq5Ock8r1E1QGfGA55swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTFEQjg3QkJCQkQyMERGRjI2MTlFNjE0Qjg2RDRCN0U5 MUZCQjczQTAeFw0yNjA1MDgxNDU0NTBaFw0yNzA1MDcxNDU5NTBaMDMxMTAvBgNV BAMTKDVFQjkzNjNCOURBNDM5RThENTE4RTIzMjY1MDU2MEZBMUI3OEZEMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD0zJRmAa3v5POkyYXwfRULWqP +DUPr4tXRY498xyAsTPEtB7aPBCIWPK6/lX1UAYGNxZMvuLXESdJhQbxXotvRFsM eCJ6UjvHef4QQ82muxeSv6G/6vL7VYMvJKa9dQEHs+wQim/2WPZ06Z5HEpvBLas2 UWvnsAwWkX7gCVsCimrxMthrDOUKW1bd5hmvcFsB1P5qvtqwoJRqVpRxjgQlVnFe G91H2vGRhQ0/pFXGJpYqYpswY100wz8Kd7Capj6jaq37SDfBs9Cuhs3PxKZKhu9g DqO5jXK5FjGixA8MMCD1JjLSReYnRiToi/yjZ9MrmDFjbp4w7SU9Ojg9Lv6bAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUXrk2O52kOejVGOIyZQVg+ht4/SIwHwYDVR0j BBgwFoAU4duHu7vSDf8mGeYUuG1LfpH7tzowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTJiODQxNTYtOTU5Ny00NGI0LWJkMjQtNjVkZTJjMzU1 ZWZjLzMvRTFEQjg3QkJCQkQyMERGRjI2MTlFNjE0Qjg2RDRCN0U5MUZCQjczQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC9FMURCODdCQkJCRDIwREZGMjYxOUU2MTRC ODZENEI3RTkxRkJCNzNBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81MmI4NDE1Ni05NTk3LTQ0YjQtYmQyNC02NWRlMmMzNTVlZmMvMy8zMjYxMzA2 NjNhMzE2MzYzMzUzYTMxMzAzMzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKg8cxRAwMA0GCSqGSIb3DQEBCwUAA4IBAQCN 3cLHRSsTTIFalKGtAi/k+xSqCuDjnI1XWLhqQ/QxO5uZIIMTCUfS0iB6hlsmxUaR VsOaNt1T9s8Z0kPmZJkL/puBEGWgzVGKZODtmYJ2aJDHtsdq8bUIeP1mpaJDCH3A EiIrJ57xQy7p31oaXBA/EpvlCdeRuOO5Ilt7vgfY/EX/rka87UTi+hJUeWxrQGfY aZonrY6GBapm9jRKSlh7VIQx4x1Lzacd9VAakv290yQMcb8QC6fcAVU++PGItiV/ LkfopUkqTfH0T8cnedsc3r94oCuo/ZZDSvsfmdOqwRFyEle86zCHUAREiiwzRstQ wbqC3KzTf09EdbIFxvzI -----END CERTIFICATE-----Generated at Wed May 13 13:57:48 2026 by rpki-client