$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666133303a3a2f34342d3434203d3e20323134333434.roa File: 326131343a373538303a666133303a3a2f34342d3434203d3e20323134333434.roa (raw, json) Hash identifier: BBvLVobm31lHE2YSVEFw7pK4NXtwbn4C2tTQjbanPbk= Subject key identifier: CD:C3:8F:DD:23:84:37:98:E2:91:19:E8:B9:EB:B4:E1:76:FE:08:A0 Certificate issuer: /CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Certificate serial: 760CC805A348332D620A926022F931654559126F Authority key identifier: 77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666133303a3a2f34342d3434203d3e20323134333434.roa Signing time: Sat 09 May 2026 12:17:44 +0000 ROA not before: Sat 09 May 2026 12:12:44 +0000 ROA not after: Sat 08 May 2027 12:17:44 +0000 asID: 214344 IP address blocks: 2a14:7580:fa30::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:0c:c8:05:a3:48:33:2d:62:0a:92:60:22:f9:31:65:45:59:12:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Validity Not Before: May 9 12:12:44 2026 GMT Not After : May 8 12:17:44 2027 GMT Subject: CN=CDC38FDD23843798E29119E8B9EBB4E176FE08A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:91:fe:8f:24:6b:9c:d4:a6:66:0d:64:03:51: 2c:c7:e4:0c:df:1b:e0:76:2e:ea:c9:63:a6:5e:6d: 8a:c1:60:4c:35:ba:77:0f:32:f3:68:01:f1:b4:13: 65:0e:7f:b0:8b:60:19:20:39:f7:93:53:51:a6:5d: d6:ea:69:17:b0:d6:27:1d:93:28:dc:91:8d:f9:78: e0:c4:c6:92:5d:d5:5e:ee:1b:6e:12:b2:93:72:98: de:6b:34:7d:d6:a0:23:ac:dc:e0:74:d4:7a:85:ef: dd:9c:32:f5:12:a5:25:5c:56:f8:c0:d0:5c:2d:f3: f8:67:f8:c3:05:6a:19:97:8f:dc:0c:66:54:20:1d: 30:36:84:25:51:d4:4b:40:96:8d:2a:01:60:6f:3f: 13:b6:94:88:01:21:1d:25:8b:82:f0:34:2d:e4:3d: e4:80:ab:eb:c6:ad:ad:9f:7e:6a:57:e7:dc:d6:f0: c4:65:d2:7d:fb:ee:8e:6b:2c:21:cc:8c:2a:b4:c8: dd:f1:52:47:a8:53:6f:09:ef:bf:14:25:53:c9:5e: 5c:33:72:96:9b:7e:63:54:00:2a:b3:e1:02:dc:f6: ef:28:05:0e:7c:3c:5c:05:68:af:5b:30:10:f4:e8: fb:0d:2f:3b:ee:c4:df:ce:f8:ad:08:a2:7e:42:b4: f3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C3:8F:DD:23:84:37:98:E2:91:19:E8:B9:EB:B4:E1:76:FE:08:A0 X509v3 Authority Key Identifier: keyid:77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666133303a3a2f34342d3434203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa30::/44 Signature Algorithm: sha256WithRSAEncryption 5a:21:43:de:51:ae:c9:62:6c:2a:31:39:74:94:b4:00:2b:9e: dc:4c:88:90:26:bf:7f:53:16:41:1d:ea:80:02:98:50:34:8c: e6:45:88:6b:b5:54:b5:ed:14:26:0d:34:42:79:dc:6b:46:36: 53:91:4a:1e:2d:45:56:07:c5:8e:7b:7c:37:09:cb:26:ff:52: ca:e4:e0:09:fc:bc:9a:dd:21:43:42:95:f1:46:c1:61:2b:70: 7c:3e:ee:2d:ee:25:90:c7:8e:13:41:38:9f:94:b8:46:d0:8f: a3:48:bc:2e:61:9b:39:0a:43:19:ee:6e:9b:18:10:8b:79:a8: 1f:4f:5a:b0:5c:c4:a4:09:c2:a0:d3:3a:51:d2:46:50:31:45: b9:8e:96:59:19:db:07:81:06:6c:45:02:80:20:8a:07:3d:37: 78:24:c8:a1:49:04:38:f2:bb:68:a1:9b:b3:93:bb:1f:20:03: b8:50:1f:ca:77:26:3f:22:4d:0e:4d:1c:4f:1c:b7:02:22:f5: 34:4e:d6:76:0b:43:87:ff:bc:f7:fc:42:59:2f:2a:3f:78:7b: 50:60:98:8a:be:76:c3:5e:91:63:c1:3d:45:d2:37:1b:ba:2a: 87:34:2d:d3:48:f3:d3:1d:7a:b2:93:20:35:c3:a1:b3:cf:1e: cb:01:10:7c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUdgzIBaNIMy1iCpJgIvkxZUVZEm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVF RkMzRURBNTAeFw0yNjA1MDkxMjEyNDRaFw0yNzA1MDgxMjE3NDRaMDMxMTAvBgNV BAMTKENEQzM4RkREMjM4NDM3OThFMjkxMTlFOEI5RUJCNEUxNzZGRTA4QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChkf6PJGuc1KZmDWQDUSzH5Azf G+B2LurJY6ZebYrBYEw1uncPMvNoAfG0E2UOf7CLYBkgOfeTU1GmXdbqaRew1icd kyjckY35eODExpJd1V7uG24SspNymN5rNH3WoCOs3OB01HqF792cMvUSpSVcVvjA 0Fwt8/hn+MMFahmXj9wMZlQgHTA2hCVR1EtAlo0qAWBvPxO2lIgBIR0li4LwNC3k PeSAq+vGra2ffmpX59zW8MRl0n377o5rLCHMjCq0yN3xUkeoU28J778UJVPJXlwz cpabfmNUACqz4QLc9u8oBQ58PFwFaK9bMBD06PsNLzvuxN/O+K0Ion5CtPMvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUzcOP3SOEN5jikRnoueu04Xb+CKAwHwYDVR0j BBgwFoAUd+TSPQ/azuKTPZptMDPN9e/D7aUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzEvNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVFRkMzRURBNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83N0U0RDIzRDBGREFDRUUyOTMzRDlBNkQz MDMzQ0RGNUVGQzNFREE1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzMzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPowMA0GCSqGSIb3DQEBCwUAA4IBAQBa IUPeUa7JYmwqMTl0lLQAK57cTIiQJr9/UxZBHeqAAphQNIzmRYhrtVS17RQmDTRC edxrRjZTkUoeLUVWB8WOe3w3Ccsm/1LK5OAJ/Lya3SFDQpXxRsFhK3B8Pu4t7iWQ x44TQTiflLhG0I+jSLwuYZs5CkMZ7m6bGBCLeagfT1qwXMSkCcKg0zpR0kZQMUW5 jpZZGdsHgQZsRQKAIIoHPTd4JMihSQQ48rtooZuzk7sfIAO4UB/KdyY/Ik0OTRxP HLcCIvU0TtZ2C0OH/7z3/EJZLyo/eHtQYJiKvnbDXpFjwT1F0jcbuiqHNC3TSPPT HXqykyA1w6Gzzx7LARB8 -----END CERTIFICATE-----Generated at Wed May 13 12:41:40 2026 by rpki-client