$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643038303a3a2f34312d3431203d3e203337393838.roa File: 326131343a373538313a643038303a3a2f34312d3431203d3e203337393838.roa (raw, json) Hash identifier: Kd+QOrRraURrnm7DiXTAoMIjS5JdQwzRrqoABDmfXRA= Subject key identifier: 31:2A:CE:4E:3A:2F:A5:62:67:FD:9F:60:9A:4E:39:AA:F4:09:51:1F Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 5B477F409E2EDB44FA15CD6ED29DA87545DE1B02 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643038303a3a2f34312d3431203d3e203337393838.roa Signing time: Tue 28 Apr 2026 14:37:57 +0000 ROA not before: Tue 28 Apr 2026 14:32:57 +0000 ROA not after: Tue 27 Apr 2027 14:37:57 +0000 asID: 37988 IP address blocks: 2a14:7581:d080::/41 maxlen: 41 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 15:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:47:7f:40:9e:2e:db:44:fa:15:cd:6e:d2:9d:a8:75:45:de:1b:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: Apr 28 14:32:57 2026 GMT Not After : Apr 27 14:37:57 2027 GMT Subject: CN=312ACE4E3A2FA56267FD9F609A4E39AAF409511F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2e:49:7d:02:c8:48:a7:90:db:17:8a:b0:3a: 63:19:56:f6:61:fc:94:f2:32:a4:27:29:34:c6:f8: 8e:4b:cb:29:4d:d8:e6:4a:6d:39:77:82:24:e8:02: 52:91:28:cf:44:a9:a9:23:ef:f3:fa:2a:e0:e3:57: f1:b0:16:b8:37:2d:a0:b8:62:00:fb:1c:0f:9a:8f: e4:2e:68:b5:f6:57:c8:a8:52:52:f7:39:49:1a:1c: 91:24:68:94:9c:60:39:51:fb:7b:3c:20:e9:ae:6e: fc:5f:e4:91:6d:ef:67:4e:5d:ad:30:cb:88:23:eb: 48:29:f4:83:9b:54:7f:86:ab:19:b6:ee:c0:46:39: 33:ce:96:7c:c6:c7:c9:df:a5:cc:1c:db:72:7c:4d: 97:22:dd:56:80:01:3e:0b:a3:7b:8e:b8:a0:9b:f9: d1:e0:26:1d:a0:7b:c1:83:2d:73:91:f2:27:13:23: a1:7c:fa:6d:2e:e2:ca:92:8d:7f:8e:3a:3b:fa:e8: 09:6d:b3:92:8a:7f:8b:90:08:c7:5a:aa:b5:01:a6: 1e:15:46:af:c1:49:57:e5:a3:df:7e:d7:1e:ef:c0: d8:7a:b7:69:4b:7a:66:0e:01:2d:eb:9d:88:af:a9: 9e:20:46:4e:08:55:87:35:11:6a:8e:68:a6:02:9f: 4b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2A:CE:4E:3A:2F:A5:62:67:FD:9F:60:9A:4E:39:AA:F4:09:51:1F X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643038303a3a2f34312d3431203d3e203337393838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d080::/41 Signature Algorithm: sha256WithRSAEncryption 28:5a:11:8f:c1:e1:9c:7e:79:de:94:fb:c4:1f:f9:d9:f2:62: 8a:dc:bc:e0:61:e1:4a:eb:76:b8:c4:eb:27:ae:6f:65:0c:bb: a9:53:22:0f:b3:94:3c:7f:99:3d:8d:b2:52:7a:36:14:08:74: d4:09:f7:22:c2:2f:86:cc:fc:a9:c8:af:aa:db:c1:13:c0:92: ee:a4:ef:b9:61:69:00:2f:57:09:ea:bf:a6:00:38:f9:39:9b: 58:8c:25:b9:29:9f:5b:78:7e:ba:47:75:7a:ed:b7:c6:83:ae: f7:c6:f7:c2:68:ad:b4:6b:b2:30:6a:55:3d:be:3b:53:30:30: 8e:62:37:c4:f1:33:da:f4:5c:4f:cf:a8:a8:eb:c3:2e:d2:e9: 56:8c:18:0a:26:aa:79:b2:c9:e6:57:31:8d:40:63:18:ed:c9: 36:dc:e6:01:09:71:4f:46:5b:cb:f3:21:7b:2d:b5:a7:fc:89: fc:c7:e5:84:66:eb:f7:b9:cf:f9:9f:3b:7a:bf:3a:4e:77:7a: 0a:d0:80:02:77:f7:46:2b:7c:5c:bd:1f:88:04:de:cc:d4:80: 82:b3:3f:a3:29:ca:08:5a:a8:a8:c4:fe:76:27:94:3c:d0:cb: a7:5c:38:2b:d2:dd:63:a1:79:f3:6c:b2:2b:01:c8:7a:54:11: 25:97:d2:38 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUW0d/QJ4u20T6Fc1u0p2odUXeGwIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNjA0MjgxNDMyNTdaFw0yNzA0MjcxNDM3NTdaMDMxMTAvBgNV BAMTKDMxMkFDRTRFM0EyRkE1NjI2N0ZEOUY2MDlBNEUzOUFBRjQwOTUxMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHLkl9AshIp5DbF4qwOmMZVvZh /JTyMqQnKTTG+I5LyylN2OZKbTl3giToAlKRKM9Eqakj7/P6KuDjV/GwFrg3LaC4 YgD7HA+aj+QuaLX2V8ioUlL3OUkaHJEkaJScYDlR+3s8IOmubvxf5JFt72dOXa0w y4gj60gp9IObVH+Gqxm27sBGOTPOlnzGx8nfpcwc23J8TZci3VaAAT4Lo3uOuKCb +dHgJh2ge8GDLXOR8icTI6F8+m0u4sqSjX+OOjv66Alts5KKf4uQCMdaqrUBph4V Rq/BSVflo99+1x7vwNh6t2lLemYOAS3rnYivqZ4gRk4IVYc1EWqOaKYCn0sjAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUMSrOTjovpWJn/Z9gmk45qvQJUR8wHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzODMwM2EzYTJmMzQzMTJkMzQzMTIwM2QzZTIwMzMz NzM5MzgzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHByoUdYHQgDANBgkqhkiG9w0BAQsFAAOCAQEAKFoR j8HhnH553pT7xB/52fJiity84GHhSut2uMTrJ65vZQy7qVMiD7OUPH+ZPY2yUno2 FAh01An3IsIvhsz8qcivqtvBE8CS7qTvuWFpAC9XCeq/pgA4+TmbWIwluSmfW3h+ ukd1eu23xoOu98b3wmittGuyMGpVPb47UzAwjmI3xPEz2vRcT8+oqOvDLtLpVowY CiaqebLJ5lcxjUBjGO3JNtzmAQlxT0Zby/Mhey21p/yJ/MflhGbr97nP+Z87er86 Tnd6CtCAAnf3Rit8XL0fiATezNSAgrM/oynKCFqoqMT+dieUPNDLp1w4K9LdY6F5 82yyKwHIelQRJZfSOA== -----END CERTIFICATE-----Generated at Wed May 13 07:10:10 2026 by rpki-client