$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa File: 326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa (raw, json) Hash identifier: KwLIWCSeFKTrv4VaOW0JjqLpPgihB6aRK4CEWI2xsJA= Subject key identifier: 42:52:C8:F5:64:16:9F:86:88:3F:BD:3D:8E:F3:C6:60:5F:B9:F7:82 Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 69024D91168E97474BAB633833457F4AAF4809D6 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa Signing time: Tue 28 Apr 2026 14:37:57 +0000 ROA not before: Tue 28 Apr 2026 14:32:57 +0000 ROA not after: Tue 27 Apr 2027 14:37:57 +0000 asID: 53667 IP address blocks: 2a14:7581:d100::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 15:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:02:4d:91:16:8e:97:47:4b:ab:63:38:33:45:7f:4a:af:48:09:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: Apr 28 14:32:57 2026 GMT Not After : Apr 27 14:37:57 2027 GMT Subject: CN=4252C8F564169F86883FBD3D8EF3C6605FB9F782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:07:e8:62:38:b3:dd:e2:d3:1b:d0:32:41: a1:d1:9c:08:ad:d8:c1:9f:c4:d2:e4:b3:32:59:6d: d4:77:0f:53:ea:04:56:52:51:76:6e:56:70:ee:f9: e4:96:28:52:55:03:bf:c5:29:0b:17:e0:8f:be:30: 87:ad:07:c4:01:3e:f2:c8:f9:2e:77:0a:d5:ab:e0: ab:94:d8:a3:e5:e9:8d:69:0b:6d:1d:ec:d1:9c:08: 04:32:59:fe:92:dd:14:d8:e9:0c:d8:e4:0f:17:87: 6f:f8:db:31:9d:d3:3a:47:e8:d2:a7:d3:73:d0:76: 8f:61:29:5f:36:93:6a:69:86:45:c1:92:0f:0f:25: e2:d2:e7:70:47:5f:26:be:d7:f1:df:16:92:c8:37: 17:0e:38:58:7f:38:37:10:fa:90:bb:cb:4f:6b:e4: 45:06:71:59:8f:01:db:a0:03:66:81:63:17:53:e0: db:2e:89:ac:81:e8:10:86:65:24:3b:b6:be:52:99: db:97:5b:5e:15:05:69:b2:08:ba:42:21:02:e6:4f: 39:82:09:d7:7b:74:b6:8b:7f:5e:dd:ea:90:5f:ee: 7c:2d:28:9c:e6:67:06:58:15:df:a7:9a:a5:81:8d: 28:35:7a:f5:76:00:93:ae:fb:a4:9b:47:25:5b:2a: 36:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:52:C8:F5:64:16:9F:86:88:3F:BD:3D:8E:F3:C6:60:5F:B9:F7:82 X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643130303a3a2f34302d3430203d3e203533363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d100::/40 Signature Algorithm: sha256WithRSAEncryption 3b:9b:d9:3e:1b:0a:51:aa:82:23:49:9c:8c:72:b2:77:ea:6a: 17:63:10:75:9c:5f:90:f7:e0:1a:d7:8b:5f:49:7b:36:a4:0e: fb:61:70:0d:d0:50:9d:50:65:13:b8:9e:bb:79:74:55:44:04: 5e:03:92:f9:d2:2f:eb:d1:d1:7e:ea:e9:62:07:62:80:d9:d1: 9c:6f:cc:6d:40:11:88:a6:c9:67:1e:0e:8a:dd:d5:b8:19:e9: 2c:cb:00:92:c2:35:8a:e7:9c:83:8c:5f:6a:2c:cb:ab:2d:18: 87:67:04:59:ba:a2:f7:75:fb:c0:d8:5f:77:ae:23:7a:5f:12: 28:80:9d:a0:8c:5d:77:36:76:da:44:64:6a:94:c0:53:13:45: 89:77:bc:ea:76:67:77:ae:ee:2d:44:59:2b:58:cf:55:ef:04: 0c:ab:85:b5:98:1e:b3:60:be:5a:e3:cf:1b:da:3c:77:d3:b0: 39:c2:4a:3a:8a:08:f5:4e:99:ca:b4:c5:dd:40:ee:d1:10:d9: dc:19:2a:22:5f:27:0a:44:27:3b:15:c0:ae:8d:9c:b9:03:75: 0c:b3:81:67:28:29:dc:b6:9a:d4:9b:93:21:b1:fc:f2:72:78: 5a:ab:67:48:3a:ed:e2:b0:11:61:28:1d:e1:7d:1d:1d:cf:f0: a6:d7:7f:7f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUaQJNkRaOl0dLq2M4M0V/Sq9ICdYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNjA0MjgxNDMyNTdaFw0yNzA0MjcxNDM3NTdaMDMxMTAvBgNV BAMTKDQyNTJDOEY1NjQxNjlGODY4ODNGQkQzRDhFRjNDNjYwNUZCOUY3ODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKFAfoYjiz3eLTG9AyQaHRnAit 2MGfxNLkszJZbdR3D1PqBFZSUXZuVnDu+eSWKFJVA7/FKQsX4I++MIetB8QBPvLI +S53CtWr4KuU2KPl6Y1pC20d7NGcCAQyWf6S3RTY6QzY5A8Xh2/42zGd0zpH6NKn 03PQdo9hKV82k2pphkXBkg8PJeLS53BHXya+1/HfFpLINxcOOFh/ODcQ+pC7y09r 5EUGcVmPAdugA2aBYxdT4NsuiayB6BCGZSQ7tr5SmduXW14VBWmyCLpCIQLmTzmC Cdd7dLaLf17d6pBf7nwtKJzmZwZYFd+nmqWBjSg1evV2AJOu+6SbRyVbKjZlAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUQlLI9WQWn4aIP709jvPGYF+594IwHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzEzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUz MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHRMA0GCSqGSIb3DQEBCwUAA4IBAQA7m9k+ GwpRqoIjSZyMcrJ36moXYxB1nF+Q9+Aa14tfSXs2pA77YXAN0FCdUGUTuJ67eXRV RAReA5L50i/r0dF+6uliB2KA2dGcb8xtQBGIpslnHg6K3dW4GeksywCSwjWK55yD jF9qLMurLRiHZwRZuqL3dfvA2F93riN6XxIogJ2gjF13NnbaRGRqlMBTE0WJd7zq dmd3ru4tRFkrWM9V7wQMq4W1mB6zYL5a488b2jx307A5wko6igj1TpnKtMXdQO7R ENncGSoiXycKRCc7FcCujZy5A3UMs4FnKCnctprUm5Mhsfzycnhaq2dIOu3isBFh KB3hfR0dz/Cm139/ -----END CERTIFICATE-----Generated at Wed May 13 04:55:48 2026 by rpki-client