$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa File: 326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa (raw, json) Hash identifier: uQ6YdX5/WUQ6EE4b+PyH9fVZLMZegSMvb7FY+FXaqfI= Subject key identifier: C3:25:08:5A:95:3C:A2:0D:98:AB:BA:A3:8F:9F:90:C3:3B:A6:E4:9A Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 3C84C382758AF491327863DE1989A35E539ECD43 Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa Signing time: Thu 30 Apr 2026 17:37:58 +0000 ROA not before: Thu 30 Apr 2026 17:32:58 +0000 ROA not after: Thu 29 Apr 2027 17:37:58 +0000 asID: 53667 IP address blocks: 2a14:7581:d200::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 15:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:84:c3:82:75:8a:f4:91:32:78:63:de:19:89:a3:5e:53:9e:cd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: Apr 30 17:32:58 2026 GMT Not After : Apr 29 17:37:58 2027 GMT Subject: CN=C325085A953CA20D98ABBAA38F9F90C33BA6E49A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:31:69:b6:69:10:56:94:c2:cd:d3:b7:d3:ee: 4b:1c:a1:3e:e9:8d:6f:7c:15:42:f3:7c:8c:19:88: 78:02:1a:bc:8e:d7:9d:cd:5e:ee:d2:4c:9d:73:6a: fd:17:da:a1:cd:07:1e:d7:ba:02:3d:3b:26:54:da: de:f0:42:99:c5:4b:ab:ef:d1:8c:10:bc:82:7d:ba: 0e:36:f6:39:24:c4:58:bc:fe:ef:a3:02:a4:ed:d5: 64:75:c4:1e:c1:10:a9:6d:d8:12:17:7e:7e:27:7f: 36:ad:05:b1:d3:01:5e:c0:2a:c7:cc:1b:42:29:d3: 06:3e:58:d2:d6:94:a0:6f:4d:16:c8:bf:c0:34:08: 70:f8:e6:47:ad:0b:d0:c1:98:f5:4d:35:16:84:87: 02:e7:98:5a:62:9a:ad:09:94:fb:2e:de:44:ac:08: e7:a4:66:d4:77:0a:c3:5b:4d:8d:ac:64:06:08:24: 28:01:6c:41:cb:cf:21:7e:87:6f:b7:2d:01:14:24: b1:e3:da:ca:25:07:27:c2:eb:4e:12:db:69:51:02: 59:6c:f0:a4:fa:3e:49:4d:bc:3f:4f:88:7c:b5:ae: 95:ae:a8:f3:73:25:6d:97:31:db:7f:e7:1e:e2:97: 51:b6:6a:30:1a:ee:80:5e:22:15:e4:c1:23:3f:96: df:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:25:08:5A:95:3C:A2:0D:98:AB:BA:A3:8F:9F:90:C3:3B:A6:E4:9A X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643230303a3a2f34302d3430203d3e203533363637.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d200::/40 Signature Algorithm: sha256WithRSAEncryption 01:09:88:4a:a9:b8:f5:b6:7e:62:70:24:27:c1:ee:8e:88:72: d0:e8:79:02:9a:5a:62:86:62:43:45:3e:c2:e9:ef:b5:53:f3: a7:f3:e9:cd:5f:6d:d3:f0:5a:50:75:04:64:73:dc:fe:c9:2a: 6a:b7:b3:18:ed:8a:30:3e:f8:3c:f6:f6:9b:a3:07:c9:7e:55: 67:69:5e:bf:f8:06:0b:03:87:4c:b8:db:26:b5:34:e6:2a:9c: b5:91:30:f2:aa:f6:0e:cf:8c:08:92:4f:06:34:46:8c:fa:ec: 11:63:7a:24:52:7e:2c:5b:eb:44:e3:51:36:0b:68:d4:14:04: 30:af:c6:ac:18:34:0f:4d:f5:80:9b:dd:64:a1:7a:2f:fe:8e: e4:60:c3:5f:60:1e:8a:43:4c:96:4f:66:48:a7:d8:ec:65:d4: 45:11:c3:0a:ff:a7:ac:14:27:af:17:e5:0b:f4:3b:f9:ae:a0: 95:9d:9f:c0:3b:e2:b1:32:50:61:bc:c4:8b:75:95:47:5d:86: 5f:c6:cb:ff:ed:f6:eb:a8:a5:a1:3c:e8:f5:44:f4:ae:a8:85: 1e:85:24:ea:82:d8:c2:c8:25:f2:cd:68:8b:6a:7e:8b:cb:37: e7:1c:d0:1a:5e:c1:75:f0:d0:5b:9a:34:f2:27:2f:44:a7:23: 7e:ab:f6:59 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUPITDgnWK9JEyeGPeGYmjXlOezUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNjA0MzAxNzMyNThaFw0yNzA0MjkxNzM3NThaMDMxMTAvBgNV BAMTKEMzMjUwODVBOTUzQ0EyMEQ5OEFCQkFBMzhGOUY5MEMzM0JBNkU0OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmMWm2aRBWlMLN07fT7kscoT7p jW98FULzfIwZiHgCGryO153NXu7STJ1zav0X2qHNBx7XugI9OyZU2t7wQpnFS6vv 0YwQvIJ9ug429jkkxFi8/u+jAqTt1WR1xB7BEKlt2BIXfn4nfzatBbHTAV7AKsfM G0Ip0wY+WNLWlKBvTRbIv8A0CHD45ketC9DBmPVNNRaEhwLnmFpimq0JlPsu3kSs COekZtR3CsNbTY2sZAYIJCgBbEHLzyF+h2+3LQEUJLHj2solByfC604S22lRAlls 8KT6PklNvD9PiHy1rpWuqPNzJW2XMdt/5x7il1G2ajAa7oBeIhXkwSM/lt/fAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUwyUIWpU8og2Yq7qjj5+Qwzum5JowHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzIzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzUz MzM2MzYzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYHSMA0GCSqGSIb3DQEBCwUAA4IBAQABCYhK qbj1tn5icCQnwe6OiHLQ6HkCmlpihmJDRT7C6e+1U/On8+nNX23T8FpQdQRkc9z+ ySpqt7MY7YowPvg89vabowfJflVnaV6/+AYLA4dMuNsmtTTmKpy1kTDyqvYOz4wI kk8GNEaM+uwRY3okUn4sW+tE41E2C2jUFAQwr8asGDQPTfWAm91koXov/o7kYMNf YB6KQ0yWT2ZIp9jsZdRFEcMK/6esFCevF+UL9Dv5rqCVnZ/AO+KxMlBhvMSLdZVH XYZfxsv/7fbrqKWhPOj1RPSuqIUehSTqgtjCyCXyzWiLan6LyzfnHNAaXsF18NBb mjTyJy9EpyN+q/ZZ -----END CERTIFICATE-----Generated at Wed May 13 04:59:10 2026 by rpki-client