$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34302d3430203d3e20323039373130.roa File: 326131343a373538303a3530303a3a2f34302d3430203d3e20323039373130.roa (raw, json) Hash identifier: neZNgw7PLsgojfCmijqKDTuLqRpUvAzbBuxRqQ5exHY= Subject key identifier: 11:10:6E:11:76:07:1A:B6:33:B2:5F:03:CC:4D:67:07:3C:E8:FE:DD Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 13D0CB337A7D5378D415FBDB76E8463224CC2098 Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34302d3430203d3e20323039373130.roa Signing time: Tue 28 Apr 2026 10:34:24 +0000 ROA not before: Tue 28 Apr 2026 10:29:24 +0000 ROA not after: Tue 27 Apr 2027 10:34:24 +0000 asID: 209710 IP address blocks: 2a14:7580:500::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 21:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d0:cb:33:7a:7d:53:78:d4:15:fb:db:76:e8:46:32:24:cc:20:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: Apr 28 10:29:24 2026 GMT Not After : Apr 27 10:34:24 2027 GMT Subject: CN=11106E1176071AB633B25F03CC4D67073CE8FEDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:64:f0:3f:62:80:6c:63:9c:36:d8:ed:38: 07:82:1d:37:f0:b1:cd:47:81:f0:1d:13:fd:c2:81: 6e:cc:ef:aa:fe:12:ba:17:bd:0a:47:e8:2c:3d:63: fe:48:bc:02:b7:c9:1e:ed:bb:8f:2a:4c:3a:2c:8c: 4c:14:b1:97:cd:26:a4:6d:5e:bb:2c:f1:a0:04:ee: ca:12:a4:62:39:69:41:6c:7a:e4:70:9a:46:3d:b8: 83:a7:15:3c:ba:31:69:53:8f:f2:81:3d:2d:ce:76: c3:44:57:2c:6b:92:b4:98:b7:ac:f9:17:84:7b:84: e9:1e:28:a2:ba:20:18:ee:5d:27:95:72:58:9d:48: 7c:d3:af:97:ed:1e:a4:1b:03:34:68:d4:71:50:62: bb:f7:10:56:82:43:3f:b0:15:fd:1f:0a:30:66:b0: 55:c0:a0:df:e9:b8:7f:aa:6b:7f:4a:52:2c:a9:1c: c3:15:6d:8e:15:bf:52:58:f5:d0:7f:ab:be:df:12: 50:d3:52:41:23:44:41:c7:77:2c:e9:7e:a1:a8:a3: 01:ca:00:f1:ba:85:a3:be:e1:a0:94:0d:ee:f5:67: 84:2c:bf:ba:93:aa:cd:ea:1c:1d:4c:f3:85:04:2c: fa:79:b0:52:3b:c5:1d:bc:96:4b:83:a3:5d:32:f5: 34:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:10:6E:11:76:07:1A:B6:33:B2:5F:03:CC:4D:67:07:3C:E8:FE:DD X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a3530303a3a2f34302d3430203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:500::/40 Signature Algorithm: sha256WithRSAEncryption 2b:e0:63:ac:30:8e:30:ea:d0:ca:e2:8f:87:df:7a:c7:a8:c8: 70:e4:a4:61:21:95:dd:81:5a:b4:c6:2d:d4:fd:dd:c2:44:cb: ec:62:1b:3c:98:ad:42:3a:72:d6:56:c8:cf:7a:ed:78:9d:77: 6a:b9:02:90:a8:fd:10:b8:72:84:b8:08:5f:59:07:19:55:59: b8:19:48:f5:d2:68:d6:c8:11:12:35:d2:e8:8d:98:8c:3f:5a: 90:97:e4:ab:50:76:ec:11:e3:e3:5c:a8:8b:36:c3:11:a8:15: d3:71:e4:3f:56:76:20:1a:4b:70:c8:67:3d:14:17:50:19:d9: 85:c7:b1:ac:2b:74:9a:25:58:8b:4f:67:4e:fb:30:7f:86:dc: d0:dd:b9:e9:26:e0:03:5a:e4:49:be:cc:93:04:3b:a1:3a:d6: 25:c8:88:92:7c:e9:df:7a:34:9e:2d:2c:76:67:7a:d6:b8:87: d7:4d:87:f9:3a:af:07:63:20:40:7b:4d:32:39:cd:fc:b8:54: 60:1a:51:07:a1:17:19:1e:20:b1:c8:ff:8e:25:18:e7:9c:01: 7f:c5:ee:6f:ee:fd:f7:38:18:a5:8f:0f:0c:7e:39:f8:a8:b9: a6:fa:e7:a8:8c:e0:f8:01:07:40:0d:78:ec:6c:5c:5d:95:a8: 7b:f7:0c:46 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUE9DLM3p9U3jUFfvbduhGMiTMIJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNjA0MjgxMDI5MjRaFw0yNzA0MjcxMDM0MjRaMDMxMTAvBgNV BAMTKDExMTA2RTExNzYwNzFBQjYzM0IyNUYwM0NDNEQ2NzA3M0NFOEZFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq62TwP2KAbGOcNtjtOAeCHTfw sc1HgfAdE/3CgW7M76r+EroXvQpH6Cw9Y/5IvAK3yR7tu48qTDosjEwUsZfNJqRt Xrss8aAE7soSpGI5aUFseuRwmkY9uIOnFTy6MWlTj/KBPS3OdsNEVyxrkrSYt6z5 F4R7hOkeKKK6IBjuXSeVclidSHzTr5ftHqQbAzRo1HFQYrv3EFaCQz+wFf0fCjBm sFXAoN/puH+qa39KUiypHMMVbY4Vv1JY9dB/q77fElDTUkEjREHHdyzpfqGoowHK APG6haO+4aCUDe71Z4Qsv7qTqs3qHB1M84UELPp5sFI7xR28lkuDo10y9TS7AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUERBuEXYHGrYzsl8DzE1nBzzo/t0wHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTM1MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzAz OTM3MzEzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYAFMA0GCSqGSIb3DQEBCwUAA4IBAQAr4GOs MI4w6tDK4o+H33rHqMhw5KRhIZXdgVq0xi3U/d3CRMvsYhs8mK1COnLWVsjPeu14 nXdquQKQqP0QuHKEuAhfWQcZVVm4GUj10mjWyBESNdLojZiMP1qQl+SrUHbsEePj XKiLNsMRqBXTceQ/VnYgGktwyGc9FBdQGdmFx7GsK3SaJViLT2dO+zB/htzQ3bnp JuADWuRJvsyTBDuhOtYlyIiSfOnfejSeLSx2Z3rWuIfXTYf5Oq8HYyBAe00yOc38 uFRgGlEHoRcZHiCxyP+OJRjnnAF/xe5v7v33OBiljw8Mfjn4qLmm+ueojOD4AQdA DXjsbFxdlah79wxG -----END CERTIFICATE-----Generated at Wed May 13 09:02:24 2026 by rpki-client