$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635323a3a2f34382d3438203d3e20323039373130.roa File: 326131343a373538303a666635323a3a2f34382d3438203d3e20323039373130.roa (raw, json) Hash identifier: O87kVBfj2J0xa4geQQDpom/gGWGIsL/XNYxhJIFYJnU= Subject key identifier: 2F:E5:C0:E0:70:9E:03:EA:2B:D8:69:2E:38:59:6A:EA:51:A5:08:55 Certificate issuer: /CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Certificate serial: 6A1C569098D2C15BCA0E64D2D017C846120D885B Authority key identifier: 51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635323a3a2f34382d3438203d3e20323039373130.roa Signing time: Sat 18 Apr 2026 15:34:18 +0000 ROA not before: Sat 18 Apr 2026 15:29:18 +0000 ROA not after: Sat 17 Apr 2027 15:34:18 +0000 asID: 209710 IP address blocks: 2a14:7580:ff52::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 21:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1c:56:90:98:d2:c1:5b:ca:0e:64:d2:d0:17:c8:46:12:0d:88:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=51917E722DB03952D9056BED2F6BD4BF98B78976 Validity Not Before: Apr 18 15:29:18 2026 GMT Not After : Apr 17 15:34:18 2027 GMT Subject: CN=2FE5C0E0709E03EA2BD8692E38596AEA51A50855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:7f:64:7d:ee:39:ad:60:61:d3:85:20:5d: 2a:7a:58:fb:e0:31:d4:e1:0e:c2:05:ae:7a:56:7e: af:1b:17:86:ef:fd:54:1c:d0:cb:26:2b:1a:70:8d: c3:8d:2e:7f:52:2b:bb:66:12:a3:75:e3:50:b1:65: 06:54:e8:30:22:4f:37:f7:72:9e:9c:90:f3:e6:21: 17:25:f1:8f:e7:49:2c:fc:45:ab:6a:60:f5:c3:22: e4:da:0b:ec:e7:71:8d:7b:1b:4e:e0:9c:95:3b:e5: b1:16:8a:51:73:ab:b5:73:64:70:b1:12:af:a5:26: 26:e8:65:30:ba:5c:64:87:6a:c6:1d:07:49:e2:ac: 43:f2:36:a4:6d:c9:59:53:95:4d:71:4a:39:c7:d9: 82:b4:8c:0f:8c:22:b8:cf:9d:df:67:e5:bc:23:1b: 48:f0:5b:94:11:6f:fe:3f:cc:65:ef:c5:56:c8:c9: 8e:8f:0d:ad:30:f6:44:44:d2:01:23:6d:35:51:78: 81:7d:93:30:50:37:a2:c7:fa:ee:af:1d:a6:10:e6: 4e:4b:7f:d7:d5:8a:06:8f:09:26:1c:bf:b6:cf:68: 53:de:99:72:24:54:1b:e7:9c:65:5d:bc:f7:4a:51: 84:b6:58:c2:f5:ea:14:c0:1a:48:f9:6c:ca:11:07: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:E5:C0:E0:70:9E:03:EA:2B:D8:69:2E:38:59:6A:EA:51:A5:08:55 X509v3 Authority Key Identifier: keyid:51:91:7E:72:2D:B0:39:52:D9:05:6B:ED:2F:6B:D4:BF:98:B7:89:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/51917E722DB03952D9056BED2F6BD4BF98B78976.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/51917E722DB03952D9056BED2F6BD4BF98B78976.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9ecac413-4cd2-472c-b01e-74458cea386c/0/326131343a373538303a666635323a3a2f34382d3438203d3e20323039373130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff52::/48 Signature Algorithm: sha256WithRSAEncryption 18:18:aa:d8:47:95:b3:1b:ff:cb:a0:27:00:e4:99:44:5b:f6: 21:a7:ea:50:87:c5:d7:c4:ce:dd:22:37:b0:ec:f3:68:d7:16: 62:fc:f8:d0:55:25:44:8b:46:f7:8a:4a:08:77:2f:9b:79:77: 01:35:0a:99:02:eb:ff:f4:77:45:29:f2:5d:ff:cc:96:be:b2: 1d:8a:a8:e5:ff:f1:b0:89:40:7c:8c:82:56:9e:f8:d1:2e:80: a3:ad:9c:fe:55:59:1f:c0:3a:2e:14:2e:71:d0:b5:e8:6f:a7: 2d:4c:fb:18:78:3c:11:37:16:78:95:13:7c:f7:ae:f3:ba:48: 28:cc:0a:5a:b7:85:f4:15:8d:a6:0a:14:b5:f3:f6:d6:0a:74: 98:a2:ee:4f:88:2d:dc:71:e0:9b:76:0d:ba:66:c4:8b:c0:75: 4f:0f:30:28:7a:71:f5:15:97:6c:d0:ae:ed:a2:25:88:c2:81: 75:92:60:e8:0b:8c:c7:00:a1:b4:fe:74:15:3d:ea:88:16:6a: 88:07:5f:7f:02:06:77:36:14:94:ad:a2:f3:22:5d:7e:5d:88: 46:a4:fd:95:cb:e0:6b:0a:9b:8e:1f:54:80:09:52:54:3f:04: 21:d9:e4:06:6a:2f:d5:03:ec:cf:50:98:50:83:4c:02:c8:1e: 39:5a:3b:8e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUahxWkJjSwVvKDmTS0BfIRhINiFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5 OEI3ODk3NjAeFw0yNjA0MTgxNTI5MThaFw0yNzA0MTcxNTM0MThaMDMxMTAvBgNV BAMTKDJGRTVDMEUwNzA5RTAzRUEyQkQ4NjkyRTM4NTk2QUVBNTFBNTA4NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxGX9kfe45rWBh04UgXSp6WPvg MdThDsIFrnpWfq8bF4bv/VQc0MsmKxpwjcONLn9SK7tmEqN141CxZQZU6DAiTzf3 cp6ckPPmIRcl8Y/nSSz8RatqYPXDIuTaC+zncY17G07gnJU75bEWilFzq7VzZHCx Eq+lJiboZTC6XGSHasYdB0nirEPyNqRtyVlTlU1xSjnH2YK0jA+MIrjPnd9n5bwj G0jwW5QRb/4/zGXvxVbIyY6PDa0w9kRE0gEjbTVReIF9kzBQN6LH+u6vHaYQ5k5L f9fVigaPCSYcv7bPaFPemXIkVBvnnGVdvPdKUYS2WML16hTAGkj5bMoRB363AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUL+XA4HCeA+or2GkuOFlq6lGlCFUwHwYDVR0j BBgwFoAUUZF+ci2wOVLZBWvtL2vUv5i3iXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWVjYWM0MTMtNGNkMi00NzJjLWIwMWUtNzQ0NThjZWEz ODZjLzAvNTE5MTdFNzIyREIwMzk1MkQ5MDU2QkVEMkY2QkQ0QkY5OEI3ODk3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MTkxN0U3MjJEQjAzOTUyRDkwNTZCRUQy RjZCRDRCRjk4Qjc4OTc2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ZWNhYzQxMy00Y2QyLTQ3MmMtYjAxZS03NDQ1OGNlYTM4NmMvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNTMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM5MzczMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9SMA0GCSqGSIb3DQEBCwUAA4IBAQAY GKrYR5WzG//LoCcA5JlEW/Yhp+pQh8XXxM7dIjew7PNo1xZi/PjQVSVEi0b3ikoI dy+beXcBNQqZAuv/9HdFKfJd/8yWvrIdiqjl//GwiUB8jIJWnvjRLoCjrZz+VVkf wDouFC5x0LXob6ctTPsYeDwRNxZ4lRN8967zukgozApat4X0FY2mChS18/bWCnSY ou5PiC3cceCbdg26ZsSLwHVPDzAoenH1FZds0K7toiWIwoF1kmDoC4zHAKG0/nQV PeqIFmqIB19/AgZ3NhSUraLzIl1+XYhGpP2Vy+BrCpuOH1SACVJUPwQh2eQGai/V A+zPUJhQg0wCyB45WjuO -----END CERTIFICATE-----Generated at Wed May 13 14:23:30 2026 by rpki-client