$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666131303a3a2f34342d3434203d3e20323134333434.roa File: 326131343a373538303a666131303a3a2f34342d3434203d3e20323134333434.roa (raw, json) Hash identifier: t+dQbhe0o/A21YGqm9dCw1DWi/aebT8VS3kHcNUIfSg= Subject key identifier: D6:8E:96:90:C2:9B:1C:B6:B2:BF:EE:22:F2:5D:EB:DC:E1:0B:CE:B3 Certificate issuer: /CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Certificate serial: 661A54238618592BE4C5742317D5A9DA08D86C42 Authority key identifier: 77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666131303a3a2f34342d3434203d3e20323134333434.roa Signing time: Sat 09 May 2026 12:17:00 +0000 ROA not before: Sat 09 May 2026 12:12:00 +0000 ROA not after: Sat 08 May 2027 12:17:00 +0000 asID: 214344 IP address blocks: 2a14:7580:fa10::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:1a:54:23:86:18:59:2b:e4:c5:74:23:17:d5:a9:da:08:d8:6c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Validity Not Before: May 9 12:12:00 2026 GMT Not After : May 8 12:17:00 2027 GMT Subject: CN=D68E9690C29B1CB6B2BFEE22F25DEBDCE10BCEB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:c3:87:38:21:a2:3e:c2:9e:04:28:85:e4: 9b:88:d5:29:0c:18:9e:2c:1f:07:68:1d:ad:25:7c: 35:7e:45:4a:ab:3e:e1:03:30:31:05:c0:0b:60:45: 4b:68:87:fa:97:07:38:ed:d9:54:14:59:a0:89:63: a8:2a:f0:da:96:71:c5:d7:f6:28:bf:eb:5b:ce:02: d7:3c:a2:71:d9:01:fe:ad:d1:13:0e:01:5a:43:dd: 32:77:c6:9a:71:6d:57:37:49:cc:41:06:56:56:f8: c5:69:17:2e:4a:f4:9e:d1:dc:1f:a2:94:dd:05:c1: 1e:b9:a1:7c:6b:3c:26:67:58:49:79:fd:77:7e:57: 49:a7:34:67:2d:5d:51:ed:c8:0b:12:75:85:30:48: 21:9b:58:63:10:96:cb:98:7e:28:29:52:76:12:98: 05:97:8f:22:3b:9e:73:a5:84:fe:90:4c:17:98:0b: 9d:1a:4b:7f:16:0a:c1:b6:f0:f0:5f:5f:a6:db:da: 56:16:ad:8c:34:90:64:d0:bf:e3:12:7d:bb:ce:ba: f1:22:59:99:6d:ca:13:86:05:5a:51:c7:8a:54:3b: a8:32:7e:c1:d4:6b:3f:36:b0:bf:10:02:15:e6:c2: 88:29:89:ad:43:c8:ab:a9:58:fe:f2:9d:c9:b2:cb: 4f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8E:96:90:C2:9B:1C:B6:B2:BF:EE:22:F2:5D:EB:DC:E1:0B:CE:B3 X509v3 Authority Key Identifier: keyid:77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666131303a3a2f34342d3434203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa10::/44 Signature Algorithm: sha256WithRSAEncryption 37:42:96:d3:04:c3:ac:9b:91:ad:51:bd:49:b5:cb:1a:7c:e2: 3e:96:6d:05:a1:e8:c9:a7:ae:a5:0e:b1:c0:e8:f0:af:c3:4a: 3a:83:1f:69:12:54:67:9c:49:3c:dc:d7:e5:d4:f1:c2:90:ae: 9e:72:b8:97:d5:45:7b:37:d2:a1:1e:84:f9:4a:ca:cf:e2:97: 28:68:9f:45:0e:2c:c0:13:00:a5:dc:d0:53:4d:76:0a:bf:63: a9:7c:43:9b:c3:f9:fc:52:cb:38:be:f5:f5:e4:62:75:8b:6c: 5f:c1:d7:01:da:db:9f:56:a8:dd:f3:b8:6f:9b:de:1a:ad:07: 57:29:c9:94:2d:4e:2c:d1:15:5d:68:27:19:33:37:ca:18:d3: d7:95:f1:74:f0:e1:38:b0:63:d8:ee:a1:f6:c5:c8:9d:f5:aa: fc:31:99:5e:e2:95:4e:84:b7:6d:b9:3e:7a:36:5c:f8:1e:40: d8:d6:13:50:85:32:66:b8:65:fe:d4:7a:5d:23:38:ad:13:86: 7a:9f:a8:c6:2c:42:34:87:da:df:2e:db:5d:e3:47:a9:77:b4: 49:75:04:c6:32:4b:f4:51:3e:d1:3f:c4:86:c1:af:32:ab:e8: 75:c8:7e:f7:da:cb:a4:52:98:0e:74:22:90:24:b6:76:f2:2a: e7:79:ba:3a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZhpUI4YYWSvkxXQjF9Wp2gjYbEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVF RkMzRURBNTAeFw0yNjA1MDkxMjEyMDBaFw0yNzA1MDgxMjE3MDBaMDMxMTAvBgNV BAMTKEQ2OEU5NjkwQzI5QjFDQjZCMkJGRUUyMkYyNURFQkRDRTEwQkNFQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3m8OHOCGiPsKeBCiF5JuI1SkM GJ4sHwdoHa0lfDV+RUqrPuEDMDEFwAtgRUtoh/qXBzjt2VQUWaCJY6gq8NqWccXX 9ii/61vOAtc8onHZAf6t0RMOAVpD3TJ3xppxbVc3ScxBBlZW+MVpFy5K9J7R3B+i lN0FwR65oXxrPCZnWEl5/Xd+V0mnNGctXVHtyAsSdYUwSCGbWGMQlsuYfigpUnYS mAWXjyI7nnOlhP6QTBeYC50aS38WCsG28PBfX6bb2lYWrYw0kGTQv+MSfbvOuvEi WZltyhOGBVpRx4pUO6gyfsHUaz82sL8QAhXmwogpia1DyKupWP7yncmyy09ZAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU1o6WkMKbHLayv+4i8l3r3OELzrMwHwYDVR0j BBgwFoAUd+TSPQ/azuKTPZptMDPN9e/D7aUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzEvNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVFRkMzRURBNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83N0U0RDIzRDBGREFDRUUyOTMzRDlBNkQz MDMzQ0RGNUVGQzNFREE1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzMTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPoQMA0GCSqGSIb3DQEBCwUAA4IBAQA3 QpbTBMOsm5GtUb1JtcsafOI+lm0FoejJp66lDrHA6PCvw0o6gx9pElRnnEk83Nfl 1PHCkK6ecriX1UV7N9KhHoT5SsrP4pcoaJ9FDizAEwCl3NBTTXYKv2OpfEObw/n8 Uss4vvX15GJ1i2xfwdcB2tufVqjd87hvm94arQdXKcmULU4s0RVdaCcZMzfKGNPX lfF08OE4sGPY7qH2xcid9ar8MZle4pVOhLdtuT56Nlz4HkDY1hNQhTJmuGX+1Hpd IzitE4Z6n6jGLEI0h9rfLttd40epd7RJdQTGMkv0UT7RP8SGwa8yq+h1yH732suk UpgOdCKQJLZ28irnebo6 -----END CERTIFICATE-----Generated at Wed May 13 10:39:30 2026 by rpki-client