$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666135303a3a2f34342d3434203d3e20323134333434.roa File: 326131343a373538303a666135303a3a2f34342d3434203d3e20323134333434.roa (raw, json) Hash identifier: XN77Gl/F1X8F/1Vc/pLvFz1IwnKTsO6iTufij6RmXVY= Subject key identifier: 7C:EA:22:2D:07:87:39:AD:E1:C4:F0:4D:41:9D:FF:00:FD:35:B9:50 Certificate issuer: /CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Certificate serial: 422ADFD71D24FBBE01EA52B86E75D813E0AA29DB Authority key identifier: 77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666135303a3a2f34342d3434203d3e20323134333434.roa Signing time: Sat 09 May 2026 12:20:38 +0000 ROA not before: Sat 09 May 2026 12:15:38 +0000 ROA not after: Sat 08 May 2027 12:20:38 +0000 asID: 214344 IP address blocks: 2a14:7580:fa50::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:2a:df:d7:1d:24:fb:be:01:ea:52:b8:6e:75:d8:13:e0:aa:29:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5 Validity Not Before: May 9 12:15:38 2026 GMT Not After : May 8 12:20:38 2027 GMT Subject: CN=7CEA222D078739ADE1C4F04D419DFF00FD35B950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:68:ca:ce:79:b4:46:87:4a:8f:95:68:83:dd: 1b:1c:fe:4e:c7:5e:9f:a1:80:c6:72:46:00:45:43: 72:a1:ff:63:2a:7e:53:e7:25:2b:84:0f:88:53:81: 8b:3e:68:b5:87:b5:dd:ba:af:50:27:30:6b:ee:bc: 27:aa:7e:ed:f3:6f:7c:9a:e7:07:ee:a3:c7:cc:7b: b4:7b:26:b7:1e:63:30:6e:25:8b:14:22:75:39:65: 7d:68:79:9a:8d:20:07:c4:18:b7:c0:52:41:6c:1b: 63:24:98:e7:f6:75:c9:f5:a2:d8:12:b4:d0:6b:e2: 0f:79:28:58:cd:24:2d:66:81:ef:ac:88:e6:84:f7: 93:f1:08:ac:d1:d6:0f:14:25:88:42:75:b5:d8:16: d3:1d:be:b6:07:5e:91:f8:07:e6:58:07:90:85:76: fa:04:23:74:ac:58:35:5e:a0:0d:3e:01:58:12:e4: 67:7a:d2:de:08:ca:d2:6a:a4:f9:b3:c6:97:91:f6: 44:bb:63:54:5c:11:e2:5f:6e:af:86:c7:65:c6:f7: 4c:e7:fd:72:f5:1d:24:92:a0:3d:a9:51:f4:6f:d6: 3f:d7:33:2a:57:b8:64:12:7f:b8:91:1c:89:5d:97: e1:18:de:6b:c6:4c:6e:a3:05:7a:f4:84:21:26:e2: ec:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EA:22:2D:07:87:39:AD:E1:C4:F0:4D:41:9D:FF:00:FD:35:B9:50 X509v3 Authority Key Identifier: keyid:77:E4:D2:3D:0F:DA:CE:E2:93:3D:9A:6D:30:33:CD:F5:EF:C3:ED:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/77E4D23D0FDACEE2933D9A6D3033CDF5EFC3EDA5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/1/326131343a373538303a666135303a3a2f34342d3434203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa50::/44 Signature Algorithm: sha256WithRSAEncryption 3f:0a:d7:50:e1:be:58:bf:a3:30:d3:c3:0f:2e:34:92:21:da: 41:6c:75:41:d6:bd:00:8e:a2:fc:69:03:ed:e0:93:1c:89:69: e0:28:c8:cc:95:79:09:21:84:bf:f1:11:05:14:55:69:33:1c: 84:f2:f3:92:f4:ae:1a:fb:d6:df:15:67:ca:50:9a:f2:ac:20: d3:ed:03:3b:84:93:85:7f:0d:2b:46:e1:1d:4c:0b:b3:6c:a9: f0:c4:00:11:e8:49:da:56:9e:48:9b:3e:ac:9a:68:c5:74:70: 0e:4f:4a:d9:2d:b5:b5:8a:18:18:f3:ce:37:1e:11:05:ee:60: e8:ac:af:ff:65:a9:16:f7:74:d0:fb:03:4b:17:45:3e:4d:fc: 65:d4:4e:da:96:2a:e8:aa:05:6c:2d:24:23:fc:79:08:b8:13: 74:b8:99:b7:8a:04:e2:0d:8e:29:f3:19:f9:c6:b4:d9:43:85: 74:ae:5b:1f:0a:fc:84:61:7e:91:85:20:5f:a2:4c:88:b6:50: a8:1d:98:70:78:30:a3:88:13:eb:87:11:0b:a2:7e:9e:c0:d8: 81:8d:76:cb:76:17:27:63:8e:7f:e8:f2:e7:4c:7b:ba:e5:35: 4e:c7:a3:00:da:ca:bf:82:1a:62:79:65:78:c4:4d:6a:2d:a9: bf:8d:45:c8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQirf1x0k+74B6lK4bnXYE+CqKdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVF RkMzRURBNTAeFw0yNjA1MDkxMjE1MzhaFw0yNzA1MDgxMjIwMzhaMDMxMTAvBgNV BAMTKDdDRUEyMjJEMDc4NzM5QURFMUM0RjA0RDQxOURGRjAwRkQzNUI5NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCaMrOebRGh0qPlWiD3Rsc/k7H Xp+hgMZyRgBFQ3Kh/2MqflPnJSuED4hTgYs+aLWHtd26r1AnMGvuvCeqfu3zb3ya 5wfuo8fMe7R7JrceYzBuJYsUInU5ZX1oeZqNIAfEGLfAUkFsG2MkmOf2dcn1otgS tNBr4g95KFjNJC1mge+siOaE95PxCKzR1g8UJYhCdbXYFtMdvrYHXpH4B+ZYB5CF dvoEI3SsWDVeoA0+AVgS5Gd60t4IytJqpPmzxpeR9kS7Y1RcEeJfbq+Gx2XG90zn /XL1HSSSoD2pUfRv1j/XMypXuGQSf7iRHIldl+EY3mvGTG6jBXr0hCEm4ux/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUfOoiLQeHOa3hxPBNQZ3/AP01uVAwHwYDVR0j BBgwFoAUd+TSPQ/azuKTPZptMDPN9e/D7aUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzEvNzdFNEQyM0QwRkRBQ0VFMjkzM0Q5QTZEMzAzM0NERjVFRkMzRURBNS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83N0U0RDIzRDBGREFDRUUyOTMzRDlBNkQz MDMzQ0RGNUVGQzNFREE1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzNTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPpQMA0GCSqGSIb3DQEBCwUAA4IBAQA/ CtdQ4b5Yv6Mw08MPLjSSIdpBbHVB1r0AjqL8aQPt4JMciWngKMjMlXkJIYS/8REF FFVpMxyE8vOS9K4a+9bfFWfKUJryrCDT7QM7hJOFfw0rRuEdTAuzbKnwxAAR6Ena Vp5Imz6smmjFdHAOT0rZLbW1ihgY8843HhEF7mDorK//ZakW93TQ+wNLF0U+Tfxl 1E7aliroqgVsLSQj/HkIuBN0uJm3igTiDY4p8xn5xrTZQ4V0rlsfCvyEYX6RhSBf okyItlCoHZhweDCjiBPrhxELon6ewNiBjXbLdhcnY45/6PLnTHu65TVOx6MA2sq/ ghpieWV4xE1qLam/jUXI -----END CERTIFICATE-----Generated at Wed May 13 12:06:13 2026 by rpki-client