$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa File: 326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa (raw, json) Hash identifier: sGk7ACRgj2xUOc33oWusMkib/NoqUeSQmBUzgrM/Pzk= Subject key identifier: 2A:23:D9:06:FE:16:AC:6C:97:65:82:8F:AA:40:0C:96:47:08:8D:32 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 593A02E5897079F90A3593CFCE7617B525B61E47 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa Signing time: Tue 28 Apr 2026 14:37:57 +0000 ROA not before: Tue 28 Apr 2026 14:32:57 +0000 ROA not after: Tue 27 Apr 2027 14:37:57 +0000 asID: 37988 IP address blocks: 2a14:7581:d000::/41 maxlen: 41 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 15:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:3a:02:e5:89:70:79:f9:0a:35:93:cf:ce:76:17:b5:25:b6:1e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: Apr 28 14:32:57 2026 GMT Not After : Apr 27 14:37:57 2027 GMT Subject: CN=2A23D906FE16AC6C9765828FAA400C9647088D32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ac:df:83:7d:e3:13:98:a9:d9:2d:c6:42:50: c5:62:27:8d:b6:98:54:c1:02:fd:36:2d:e9:3f:b5: c5:90:42:15:f1:bb:5c:f3:25:b1:7d:7f:6f:1d:58: bf:21:3b:24:8a:e9:60:b4:85:51:25:5e:b6:91:1b: b0:d1:b5:c5:c3:9a:3e:ec:ec:65:c8:81:2c:8f:b3: 6a:9a:54:a9:56:74:80:db:ab:f0:b0:58:93:71:77: f3:9d:63:91:e8:9e:23:42:7c:9a:e9:96:5e:66:6a: f6:fa:0d:d2:6d:f2:50:b4:ce:71:b2:65:b5:71:8b: 97:8a:4e:03:ba:36:40:e2:2f:de:a5:a1:55:5d:24: 01:4e:f4:d1:b5:b9:27:1f:17:48:e1:37:cc:7d:6e: 1a:b4:44:ed:19:b9:fb:62:9c:bf:e3:cc:55:d8:45: c6:29:a7:54:57:e9:a4:19:01:7f:11:73:ef:c5:ca: b6:c0:29:d5:5c:3f:32:5c:89:4c:8f:9b:8d:27:c3: 60:28:26:a2:b7:d1:a0:bd:d6:ac:eb:78:b3:59:c2: 7b:95:23:b9:8e:a1:08:13:0c:42:88:ad:ac:dc:c3: 6e:0f:a3:9e:75:f9:18:df:94:41:a9:8f:4d:91:05: b3:47:75:f1:69:8d:97:c3:12:b7:37:ae:3f:67:03: 2a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:23:D9:06:FE:16:AC:6C:97:65:82:8F:AA:40:0C:96:47:08:8D:32 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643030303a3a2f34312d3431203d3e203337393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d000::/41 Signature Algorithm: sha256WithRSAEncryption 64:92:9d:a3:94:e4:b5:c4:a8:52:57:d2:73:a1:52:42:30:b4: e6:06:94:ac:a5:fc:37:4d:ba:6c:da:f4:bf:ce:f9:9f:d1:58: d9:e1:0a:e6:e8:86:5d:af:fb:6c:32:0d:ce:8c:b5:f5:c2:a2: f8:92:be:32:3c:4b:d1:bf:c7:de:cd:34:ee:06:7c:cf:1e:99: 4e:0e:97:fd:ae:75:c8:a1:7e:4d:ac:1b:48:fe:5c:fd:47:74: 8e:0d:c9:3a:c8:fc:23:a5:87:cc:f2:0d:21:e5:ef:86:2a:7b: e2:d8:3c:88:2c:52:9b:91:f4:49:bf:44:a5:b7:81:17:a6:03: 81:c7:37:15:14:2d:2d:e0:06:2c:30:cf:f7:1c:7c:20:64:d8: 4e:3d:85:4a:a8:ea:78:1d:ac:d4:dc:99:77:4c:ba:e8:1c:61: b6:3b:9d:82:e4:4c:ae:ed:f1:e4:45:5d:56:59:3e:ab:9b:54: 00:df:99:97:bb:24:7b:76:91:22:bb:31:57:cd:2a:94:fe:d2: 9b:77:68:a6:3e:21:df:d9:5f:7e:db:8c:09:17:1d:75:6c:78: ba:ec:73:fc:f9:93:b2:86:4a:3a:77:6c:60:6b:c2:37:da:ef: e7:33:f6:ca:e6:05:af:15:20:54:f1:ee:7a:d3:dc:40:68:94: 0f:41:f2:a7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUWToC5YlwefkKNZPPznYXtSW2HkcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNjA0MjgxNDMyNTdaFw0yNzA0MjcxNDM3NTdaMDMxMTAvBgNV BAMTKDJBMjNEOTA2RkUxNkFDNkM5NzY1ODI4RkFBNDAwQzk2NDcwODhEMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTrN+DfeMTmKnZLcZCUMViJ422 mFTBAv02Lek/tcWQQhXxu1zzJbF9f28dWL8hOySK6WC0hVElXraRG7DRtcXDmj7s 7GXIgSyPs2qaVKlWdIDbq/CwWJNxd/OdY5HoniNCfJrpll5mavb6DdJt8lC0znGy ZbVxi5eKTgO6NkDiL96loVVdJAFO9NG1uScfF0jhN8x9bhq0RO0ZuftinL/jzFXY RcYpp1RX6aQZAX8Rc+/FyrbAKdVcPzJciUyPm40nw2AoJqK30aC91qzreLNZwnuV I7mOoQgTDEKIrazcw24Po551+RjflEGpj02RBbNHdfFpjZfDErc3rj9nAyqPAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUKiPZBv4WrGyXZYKPqkAMlkcIjTIwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDMwM2EzYTJmMzQzMTJkMzQzMTIwM2QzZTIwMzMz NzM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHByoUdYHQADANBgkqhkiG9w0BAQsFAAOCAQEAZJKd o5TktcSoUlfSc6FSQjC05gaUrKX8N026bNr0v875n9FY2eEK5uiGXa/7bDINzoy1 9cKi+JK+MjxL0b/H3s007gZ8zx6ZTg6X/a51yKF+TawbSP5c/Ud0jg3JOsj8I6WH zPINIeXvhip74tg8iCxSm5H0Sb9EpbeBF6YDgcc3FRQtLeAGLDDP9xx8IGTYTj2F SqjqeB2s1NyZd0y66BxhtjudguRMru3x5EVdVlk+q5tUAN+Zl7ske3aRIrsxV80q lP7Sm3dopj4h39lfftuMCRcddWx4uuxz/PmTsoZKOndsYGvCN9rv5zP2yuYFrxUg VPHuetPcQGiUD0Hypw== -----END CERTIFICATE-----Generated at Wed May 13 07:54:22 2026 by rpki-client