$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030663a3a2f34382d3438203d3e20323032333538.roa File: 326130393a353463333a363030663a3a2f34382d3438203d3e20323032333538.roa (raw, json) Hash identifier: xgabKu1r7qmQWbepK2NwGo6o/TvQH9lVZKUAX0vBUag= Subject key identifier: 71:84:4E:47:0B:0C:B6:DB:26:CD:78:33:74:BA:FC:E7:80:79:92:ED Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 166590BE52DAE0EE5EA38B37CE66740C61BFBFC1 Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030663a3a2f34382d3438203d3e20323032333538.roa Signing time: Thu 23 Apr 2026 22:40:28 +0000 ROA not before: Thu 23 Apr 2026 22:35:28 +0000 ROA not after: Thu 22 Apr 2027 22:40:28 +0000 asID: 202358 IP address blocks: 2a09:54c3:600f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 23:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:65:90:be:52:da:e0:ee:5e:a3:8b:37:ce:66:74:0c:61:bf:bf:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Apr 23 22:35:28 2026 GMT Not After : Apr 22 22:40:28 2027 GMT Subject: CN=71844E470B0CB6DB26CD783374BAFCE7807992ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f3:77:ca:23:17:28:19:3e:ba:49:6e:d2:90: 9c:04:b3:03:d8:47:40:f6:d9:b9:7b:df:bd:ce:1a: 2d:61:67:68:f4:9e:7e:37:b7:aa:d4:7c:ac:56:6b: 15:00:84:f6:7b:91:1e:d6:9c:5a:2a:23:6f:4a:c1: fb:50:48:a1:e7:f8:96:02:53:94:dd:2f:f5:30:d8: 9a:67:94:f5:74:eb:89:20:f6:fd:58:59:43:12:e3: a2:27:fd:41:a4:4a:77:0e:03:37:9f:4b:13:a5:b0: d7:7e:e2:8e:1c:39:66:af:a1:a5:fb:39:c4:ad:9e: 2f:16:f4:a2:78:ad:83:42:61:f4:9a:10:e7:87:fd: 07:b7:18:3d:39:c9:85:10:84:73:95:9e:a7:ca:df: 09:ef:08:40:b1:92:80:65:b6:a3:ef:07:10:fa:26: 58:17:5f:c7:f4:a2:43:c4:54:2d:5b:f3:1e:62:f1: 46:a8:4d:99:e4:54:b2:7a:27:63:3a:84:38:fb:40: 98:bf:97:1d:d1:a1:9e:fa:44:46:5d:39:e4:c6:c6: 61:55:df:42:eb:45:ba:1d:24:d1:92:ab:6a:b4:4b: a7:cb:fe:0e:89:dc:95:f5:0b:40:7d:f7:6a:0a:bd: 6f:22:c2:25:a6:7a:6e:af:de:68:38:03:10:e6:78: ee:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:84:4E:47:0B:0C:B6:DB:26:CD:78:33:74:BA:FC:E7:80:79:92:ED X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030663a3a2f34382d3438203d3e20323032333538.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:600f::/48 Signature Algorithm: sha256WithRSAEncryption c0:a3:77:f1:32:b2:87:c8:80:79:57:da:e2:b9:91:8c:1a:e3: 2b:40:1c:ac:91:d8:87:74:4c:fb:46:22:79:fb:df:17:7e:ef: ff:2f:0e:30:ac:85:0d:f6:c7:e6:89:c6:03:14:89:d0:81:2d: ad:a6:f2:e4:df:46:18:60:eb:70:1a:e1:17:6d:9a:43:38:09: 55:7b:4d:8a:5b:da:47:7f:41:aa:8c:5d:c7:e4:bf:55:72:04: df:bf:d9:d7:7e:32:eb:d6:ac:cf:6a:9b:f5:b8:cf:c2:90:75: 86:a3:de:39:43:d5:69:45:d1:0e:a0:21:84:a3:b3:4e:73:97: ae:18:59:1c:8e:b0:cb:f1:28:48:ea:f9:93:ee:fc:c3:db:0e: 8a:63:e8:80:20:9f:be:90:a3:ca:89:9e:45:13:32:ee:29:37: 08:b2:e9:2a:b2:3d:0d:20:5f:69:b4:aa:88:6d:b2:eb:a2:6c: 6f:bb:ed:eb:89:e6:95:9b:fe:d4:d6:c1:4b:11:3d:5b:55:a9: 33:b3:72:89:d1:d1:b2:4e:fb:60:17:93:bd:98:27:d8:d3:ac: b4:ac:38:66:fe:2b:eb:f0:07:d3:e3:8c:ea:89:b9:65:cf:e0: 63:eb:02:aa:b7:ef:48:24:c4:47:80:2f:4e:d0:34:fd:b9:d5: 6f:6f:fc:d6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUFmWQvlLa4O5eo4s3zmZ0DGG/v8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA0MjMyMjM1MjhaFw0yNzA0MjIyMjQwMjhaMDMxMTAvBgNV BAMTKDcxODQ0RTQ3MEIwQ0I2REIyNkNENzgzMzc0QkFGQ0U3ODA3OTkyRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo83fKIxcoGT66SW7SkJwEswPY R0D22bl7373OGi1hZ2j0nn43t6rUfKxWaxUAhPZ7kR7WnFoqI29KwftQSKHn+JYC U5TdL/Uw2JpnlPV064kg9v1YWUMS46In/UGkSncOAzefSxOlsNd+4o4cOWavoaX7 OcStni8W9KJ4rYNCYfSaEOeH/Qe3GD05yYUQhHOVnqfK3wnvCECxkoBltqPvBxD6 JlgXX8f0okPEVC1b8x5i8UaoTZnkVLJ6J2M6hDj7QJi/lx3RoZ76REZdOeTGxmFV 30LrRbodJNGSq2q0S6fL/g6J3JX1C0B992oKvW8iwiWmem6v3mg4AxDmeO7jAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUcYRORwsMttsmzXgzdLr854B5ku0wHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMwMzA2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMjMzMzUzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoJVMNgDzANBgkqhkiG9w0BAQsFAAOCAQEAwKN38TKyh8iAeVfa 4rmRjBrjK0AcrJHYh3RM+0YiefvfF37v/y8OMKyFDfbH5onGAxSJ0IEtraby5N9G GGDrcBrhF22aQzgJVXtNilvaR39Bqoxdx+S/VXIE37/Z134y69asz2qb9bjPwpB1 hqPeOUPVaUXRDqAhhKOzTnOXrhhZHI6wy/EoSOr5k+78w9sOimPogCCfvpCjyome RRMy7ik3CLLpKrI9DSBfabSqiG2y66Jsb7vt64nmlZv+1NbBSxE9W1WpM7NyidHR sk77YBeTvZgn2NOstKw4Zv4r6/AH0+OM6om5Zc/gY+sCqrfvSCTER4AvTtA0/bnV b2/81g== -----END CERTIFICATE-----Generated at Wed May 13 14:58:52 2026 by rpki-client