$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa File: 326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa (raw, json) Hash identifier: AMf8FFzkyNRTCLs/i7swnRAL3WtJKbW6+Q9+QH2tffk= Subject key identifier: 52:15:AD:29:56:08:88:61:A9:D7:B6:D5:97:F4:93:18:88:5E:93:75 Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 732074B74928B90CD732A52554B4F1B917762514 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa Signing time: Sat 09 May 2026 22:36:27 +0000 ROA not before: Sat 09 May 2026 22:31:27 +0000 ROA not after: Sat 08 May 2027 22:36:27 +0000 asID: 215084 IP address blocks: 2a14:7581:a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 04:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:20:74:b7:49:28:b9:0c:d7:32:a5:25:54:b4:f1:b9:17:76:25:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: May 9 22:31:27 2026 GMT Not After : May 8 22:36:27 2027 GMT Subject: CN=5215AD2956088861A9D7B6D597F49318885E9375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:38:9e:90:20:ec:07:69:3f:74:66:ea:e5:d5: 14:24:da:89:c8:d2:5d:10:57:27:6d:1d:91:3b:c4: f5:61:4e:ff:62:af:9f:b5:14:6a:ea:88:d0:51:dc: 1f:40:31:aa:35:64:dc:5f:9a:4c:34:32:44:24:8c: 7d:ac:9a:ce:2e:82:2a:f2:94:19:17:37:73:65:92: 53:33:b1:84:13:50:e9:ea:5b:97:34:e9:9c:6c:05: cb:46:34:b0:a8:fe:a1:12:b3:75:be:18:9b:b9:70: b2:24:55:2e:28:cb:89:15:c0:02:81:c7:2f:07:58: 35:80:fe:a4:0e:89:4f:99:67:a3:67:20:a1:c6:2b: ae:6a:f9:a0:28:c1:70:44:84:f7:a5:14:83:bd:63: 26:45:ae:74:95:25:a4:9e:c9:e6:6d:8c:cc:dd:35: 45:2a:ee:85:e3:3a:e5:c3:b3:2a:c3:3a:72:d5:74: 91:68:51:aa:e9:b7:fd:1e:dd:11:d5:f8:e3:88:6c: 17:7c:5f:46:9b:dd:01:b7:bc:92:73:f5:54:a5:56: 73:c5:a6:00:82:0d:ac:c7:d4:a0:1e:df:08:fa:16: 1a:6a:b8:93:13:8d:38:88:6e:80:7e:3c:2f:0f:cc: ba:3e:0b:cf:0a:ad:75:d1:71:31:aa:56:6d:8c:b9: ea:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:15:AD:29:56:08:88:61:A9:D7:B6:D5:97:F4:93:18:88:5E:93:75 X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:a00::/40 Signature Algorithm: sha256WithRSAEncryption 2d:16:86:1d:fb:ed:bd:6c:46:4a:34:55:45:54:a9:cd:6d:5d: 1a:b9:9f:44:08:0c:c6:e7:60:a5:cf:b9:d4:fc:25:e2:07:17: 44:ef:65:86:ae:da:dc:31:b8:e9:af:74:23:fc:cb:69:cb:e3: 20:13:db:2b:31:08:de:b4:3d:bc:8b:00:be:02:ae:d4:4a:5c: f5:fa:37:d7:44:22:7c:58:74:fc:78:98:d7:96:4f:74:d1:3a: ce:15:a0:93:7c:66:cc:48:f1:c3:9d:74:f5:2c:60:e8:8d:b2: 87:b1:15:bf:5c:1d:e0:b6:0e:5a:3a:20:b0:c3:d0:e6:84:e3: 49:04:9f:98:d6:49:59:22:a5:1c:7f:92:9b:a6:aa:03:47:43: 4e:8f:45:6f:e4:bf:38:6a:cf:8d:2d:fb:1f:25:f7:33:43:02: e9:22:99:6b:5f:b6:a9:5e:3a:67:71:5c:c4:9c:dc:34:25:5d: 7e:d7:52:61:62:c2:5d:60:0a:5a:98:8a:d7:81:5d:3e:01:cf: ee:0e:21:1a:cb:49:6d:98:1c:61:8b:86:f4:13:93:4e:68:03: f7:97:69:23:d6:ba:c1:a2:63:d4:ad:23:53:70:29:f7:50:f8: 81:a0:cd:21:5a:e2:a6:46:2b:18:37:a0:06:f4:e6:b9:3f:e4: b0:f3:22:2a -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUcyB0t0kouQzXMqUlVLTxuRd2JRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNjA1MDkyMjMxMjdaFw0yNzA1MDgyMjM2MjdaMDMxMTAvBgNV BAMTKDUyMTVBRDI5NTYwODg4NjFBOUQ3QjZENTk3RjQ5MzE4ODg1RTkzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsOJ6QIOwHaT90Zurl1RQk2onI 0l0QVydtHZE7xPVhTv9ir5+1FGrqiNBR3B9AMao1ZNxfmkw0MkQkjH2sms4ugiry lBkXN3NlklMzsYQTUOnqW5c06ZxsBctGNLCo/qESs3W+GJu5cLIkVS4oy4kVwAKB xy8HWDWA/qQOiU+ZZ6NnIKHGK65q+aAowXBEhPelFIO9YyZFrnSVJaSeyeZtjMzd NUUq7oXjOuXDsyrDOnLVdJFoUarpt/0e3RHV+OOIbBd8X0ab3QG3vJJz9VSlVnPF pgCCDazH1KAe3wj6FhpquJMTjTiIboB+PC8PzLo+C88KrXXRcTGqVm2MuepRAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUUhWtKVYIiGGp17bVl/STGIhek3UwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTYxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NTMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYEKMA0GCSqGSIb3DQEBCwUAA4IBAQAtFoYd ++29bEZKNFVFVKnNbV0auZ9ECAzG52Clz7nU/CXiBxdE72WGrtrcMbjpr3Qj/Mtp y+MgE9srMQjetD28iwC+Aq7USlz1+jfXRCJ8WHT8eJjXlk900TrOFaCTfGbMSPHD nXT1LGDojbKHsRW/XB3gtg5aOiCww9DmhONJBJ+Y1klZIqUcf5KbpqoDR0NOj0Vv 5L84as+NLfsfJfczQwLpIplrX7apXjpncVzEnNw0JV1+11JhYsJdYApamIrXgV0+ Ac/uDiEay0ltmBxhi4b0E5NOaAP3l2kj1rrBomPUrSNTcCn3UPiBoM0hWuKmRisY N6AG9Oa5P+Sw8yIq -----END CERTIFICATE-----Generated at Wed May 13 11:42:06 2026 by rpki-client