$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa File: 326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa (raw, json) Hash identifier: wItkpJymrUCqPyPQxmidR50wXi9vPRRLUnb7cZMe6Lc= Subject key identifier: 75:8D:70:AC:B0:45:A6:54:69:25:47:05:1C:7F:AE:D8:F0:4F:57:CF Certificate issuer: /CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Certificate serial: 066F627FCF3A179B9C60D00E2D6CEBBA98EB31AC Authority key identifier: 1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa Signing time: Wed 29 Apr 2026 01:37:58 +0000 ROA not before: Wed 29 Apr 2026 01:32:58 +0000 ROA not after: Wed 28 Apr 2027 01:37:58 +0000 asID: 7545 IP address blocks: 2a14:7581:d300::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 15:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6f:62:7f:cf:3a:17:9b:9c:60:d0:0e:2d:6c:eb:ba:98:eb:31:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F4C828276A9966865AB2B59533D1CB1BEC890BB Validity Not Before: Apr 29 01:32:58 2026 GMT Not After : Apr 28 01:37:58 2027 GMT Subject: CN=758D70ACB045A654692547051C7FAED8F04F57CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:51:98:4a:62:ef:83:b6:11:24:db:84:13: eb:a3:de:c5:76:de:dd:fe:8a:46:2d:7e:0f:b2:7b: 28:65:01:83:e3:5a:62:af:f0:0e:da:c9:4b:87:0f: 62:16:e0:32:bd:41:e3:16:f2:a9:58:da:3c:cc:af: 3d:11:58:24:a1:ce:a9:74:b3:73:84:29:ce:95:a8: cd:a4:bf:16:d2:33:25:59:dc:b0:27:97:68:aa:ad: 15:40:ff:05:b9:b3:41:ec:03:f4:c7:c4:5b:f5:da: b4:6f:82:cf:38:97:25:d6:c8:69:99:19:bb:30:95: 16:18:41:8f:fd:6b:de:35:41:32:b6:c7:05:ca:f9: 91:72:6e:cc:a9:2f:fc:43:c0:d8:b4:22:ce:d0:c9: a7:02:18:a7:bf:96:7b:41:0a:25:72:db:88:c6:79: 44:cf:19:2e:bf:20:4e:86:9a:24:87:27:d2:53:89: 87:43:67:e5:dc:71:ff:60:27:69:99:3a:42:b8:91: 72:ce:93:ed:74:7d:b9:cd:39:2d:d2:b2:ed:ac:e4: c7:98:5d:33:fc:a3:f9:7c:b3:6c:d5:5a:b5:ce:2c: 4a:55:79:db:89:f2:31:3d:4e:aa:35:93:7b:c9:97: 9f:2a:f6:41:1e:54:e1:94:13:3a:27:cc:d4:39:17: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:8D:70:AC:B0:45:A6:54:69:25:47:05:1C:7F:AE:D8:F0:4F:57:CF X509v3 Authority Key Identifier: keyid:1F:4C:82:82:76:A9:96:68:65:AB:2B:59:53:3D:1C:B1:BE:C8:90:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/1F4C828276A9966865AB2B59533D1CB1BEC890BB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b59c106c-53b4-4e92-9fba-d60827b5bdb8/0/326131343a373538313a643330303a3a2f34302d3430203d3e2037353435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d300::/40 Signature Algorithm: sha256WithRSAEncryption 53:0e:3c:e4:bd:05:c4:fe:17:3f:cf:bf:9b:2a:24:01:a3:31: 99:71:03:17:88:3a:3a:aa:9b:82:f3:d0:8f:18:7c:d9:4f:91: 23:7a:22:61:63:c1:47:e3:2e:94:7a:50:e0:5a:74:53:e1:be: 6b:3a:71:5f:cd:68:ba:e1:da:8e:8e:8f:71:3d:16:91:54:00: e3:fb:79:86:c2:8d:e6:05:d2:99:9c:60:d0:f2:cb:24:48:0a: 6c:cc:bf:42:a9:f3:fb:57:03:39:a4:cd:e6:89:13:8d:db:fa: 05:79:8e:d2:84:07:ac:9c:2f:19:4e:4a:a8:f4:a4:e5:a9:d3: 7c:16:37:ff:cd:db:90:52:ff:97:75:02:d7:41:61:9a:5e:1b: 1b:c9:d0:f7:27:c8:28:a4:2b:cc:3c:a8:17:ec:c3:3a:b2:17: 00:42:74:2c:ff:3b:8a:7c:3c:94:74:de:5b:7d:61:99:25:0b: 1f:9a:85:5a:07:5b:5b:33:70:03:1b:89:9c:39:7b:3e:db:5b: a1:5b:44:3f:31:f7:db:32:21:ac:68:92:f5:57:d0:e9:9d:a2: d4:71:51:0b:6c:f7:92:0b:7e:64:15:fd:02:fa:19:3a:53:c1: e3:52:0b:1a:57:69:d8:01:bf:f6:c0:8f:1e:80:3b:2e:2f:61: 52:e1:3f:98 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIUBm9if886F5ucYNAOLWzrupjrMawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFC RUM4OTBCQjAeFw0yNjA0MjkwMTMyNThaFw0yNzA0MjgwMTM3NThaMDMxMTAvBgNV BAMTKDc1OEQ3MEFDQjA0NUE2NTQ2OTI1NDcwNTFDN0ZBRUQ4RjA0RjU3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsZFGYSmLvg7YRJNuEE+uj3sV2 3t3+ikYtfg+yeyhlAYPjWmKv8A7ayUuHD2IW4DK9QeMW8qlY2jzMrz0RWCShzql0 s3OEKc6VqM2kvxbSMyVZ3LAnl2iqrRVA/wW5s0HsA/THxFv12rRvgs84lyXWyGmZ GbswlRYYQY/9a941QTK2xwXK+ZFybsypL/xDwNi0Is7QyacCGKe/lntBCiVy24jG eUTPGS6/IE6GmiSHJ9JTiYdDZ+Xccf9gJ2mZOkK4kXLOk+10fbnNOS3Ssu2s5MeY XTP8o/l8s2zVWrXOLEpVeduJ8jE9Tqo1k3vJl58q9kEeVOGUEzonzNQ5FzGtAgMB AAGjggKAMIICfDAdBgNVHQ4EFgQUdY1wrLBFplRpJUcFHH+u2PBPV88wHwYDVR0j BBgwFoAUH0yCgnaplmhlqytZUz0csb7IkLswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjU5YzEwNmMtNTNiNC00ZTkyLTlmYmEtZDYwODI3YjVi ZGI4LzAvMUY0QzgyODI3NkE5OTY2ODY1QUIyQjU5NTMzRDFDQjFCRUM4OTBCQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8xRjRDODI4Mjc2QTk5NjY4NjVBQjJCNTk1 MzNEMUNCMUJFQzg5MEJCLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iNTljMTA2Yy01M2I0LTRlOTItOWZiYS1kNjA4MjdiNWJkYjgvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzMzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzcz NTM0MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgAqFHWB0zANBgkqhkiG9w0BAQsFAAOCAQEAUw485L0F xP4XP8+/myokAaMxmXEDF4g6OqqbgvPQjxh82U+RI3oiYWPBR+MulHpQ4Fp0U+G+ azpxX81ouuHajo6PcT0WkVQA4/t5hsKN5gXSmZxg0PLLJEgKbMy/Qqnz+1cDOaTN 5okTjdv6BXmO0oQHrJwvGU5KqPSk5anTfBY3/83bkFL/l3UC10Fhml4bG8nQ9yfI KKQrzDyoF+zDOrIXAEJ0LP87inw8lHTeW31hmSULH5qFWgdbWzNwAxuJnDl7Pttb oVtEPzH32zIhrGiS9VfQ6Z2i1HFRC2z3kgt+ZBX9AvoZOlPB41ILGldp2AG/9sCP HoA7Li9hUuE/mA== -----END CERTIFICATE-----Generated at Wed May 13 04:35:21 2026 by rpki-client