$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930313a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930313a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: U3VxlYVJDi8xV7CxMMI72zfRcW4i6iOC2MTfg2xraIY= Subject key identifier: D9:01:B8:81:CB:18:12:45:22:DB:E8:83:3F:50:7F:AF:97:36:36:A3 Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 6A7891A242D10DB817B7C7E85EC59388B40C45D2 Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930313a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 02 May 2026 08:29:36 +0000 ROA not before: Sat 02 May 2026 08:24:36 +0000 ROA not after: Sat 01 May 2027 08:29:36 +0000 asID: 214344 IP address blocks: 2a14:7581:9901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:78:91:a2:42:d1:0d:b8:17:b7:c7:e8:5e:c5:93:88:b4:0c:45:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 2 08:24:36 2026 GMT Not After : May 1 08:29:36 2027 GMT Subject: CN=D901B881CB18124522DBE8833F507FAF973636A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:57:e9:29:90:91:76:84:56:48:53:32:bb: 7d:67:75:96:10:7a:e2:d5:1f:ce:51:95:1c:fc:51: a3:40:61:46:36:ef:c1:2f:04:77:ff:db:2a:d3:77: 12:8a:d4:53:2d:b9:df:b7:8f:60:16:5e:17:39:ae: 1f:fe:4b:b8:0d:82:52:b7:63:ea:1b:37:cc:42:2e: 13:9a:41:05:bd:05:01:4c:c2:c9:da:cc:ee:79:32: 17:30:26:e7:bc:aa:65:29:27:3e:8d:63:bb:fa:41: 06:66:5d:be:59:b1:fb:a5:6b:1f:30:10:94:a5:7a: 3a:c2:13:f4:a6:59:6d:b4:a9:91:a6:ce:43:c8:77: 16:69:b3:3a:1f:d9:35:31:36:b9:5c:03:ec:6d:40: 4d:94:e6:a9:48:37:81:f9:1f:f2:a1:a6:65:03:02: 65:ab:bf:df:86:9e:3d:16:d4:46:e8:61:98:d3:b4: d5:03:2b:55:37:63:d5:d6:3d:45:da:74:ba:11:e2: 5f:b4:a3:5b:9c:96:f9:fa:55:94:e7:8d:50:f9:d9: ab:62:d6:76:93:87:75:a4:09:59:d1:ae:de:1f:01: 89:00:d3:78:52:db:1a:28:e2:40:ef:f0:78:2e:d5: 19:24:ab:e5:1e:11:75:29:d3:ec:4e:85:da:78:44: 9f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:01:B8:81:CB:18:12:45:22:DB:E8:83:3F:50:7F:AF:97:36:36:A3 X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930313a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9901::/48 Signature Algorithm: sha256WithRSAEncryption cf:d0:7f:ce:8b:5f:49:a4:76:78:37:1a:2d:6b:99:4c:90:34: 74:82:72:62:f5:b9:82:81:89:9c:04:81:d1:d2:6a:d3:63:9e: 8b:19:6a:f0:a9:7a:e8:3a:d1:97:18:82:49:cb:e8:d8:06:83: 4b:6e:24:e3:ba:a6:1a:b5:57:8a:e8:9f:44:02:f0:10:ee:e4: 3d:d7:64:37:62:a4:33:e7:da:98:86:82:ab:11:db:14:b3:90: 88:2c:b1:fd:3a:c5:22:11:2e:51:56:51:09:c1:4a:22:73:28: 03:32:d2:73:2c:bb:f2:26:12:74:32:9a:dd:63:42:ac:0c:f9: f5:60:d4:d8:a9:24:c3:a3:4a:af:ee:2b:09:0c:8c:19:dd:7b: a4:a3:98:dc:50:79:b8:d3:b8:f1:67:da:96:11:04:a2:6a:61: a2:ea:3a:c4:e2:82:d0:51:f3:aa:bf:bb:3d:6a:0b:e1:59:65: 45:b2:16:1a:4a:24:b3:0f:42:12:f1:35:b0:87:bb:2c:f1:56: eb:57:9e:3f:39:24:c1:30:b3:72:d8:dc:d7:f4:11:a7:d9:e4: 6b:28:c6:24:7a:0d:bc:33:0d:d6:ed:88:f4:23:35:fe:c4:75: a6:a6:b3:74:8b:a2:4d:79:a5:fe:35:5c:16:7d:07:c8:73:3c: 46:ca:a1:d9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUaniRokLRDbgXt8foXsWTiLQMRdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDIwODI0MzZaFw0yNzA1MDEwODI5MzZaMDMxMTAvBgNV BAMTKEQ5MDFCODgxQ0IxODEyNDUyMkRCRTg4MzNGNTA3RkFGOTczNjM2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpTVfpKZCRdoRWSFMyu31ndZYQ euLVH85RlRz8UaNAYUY278EvBHf/2yrTdxKK1FMtud+3j2AWXhc5rh/+S7gNglK3 Y+obN8xCLhOaQQW9BQFMwsnazO55MhcwJue8qmUpJz6NY7v6QQZmXb5Zsfulax8w EJSlejrCE/SmWW20qZGmzkPIdxZpszof2TUxNrlcA+xtQE2U5qlIN4H5H/KhpmUD AmWrv9+Gnj0W1EboYZjTtNUDK1U3Y9XWPUXadLoR4l+0o1uclvn6VZTnjVD52ati 1naTh3WkCVnRrt4fAYkA03hS2xoo4kDv8Hgu1Rkkq+UeEXUp0+xOhdp4RJ9VAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU2QG4gcsYEkUi2+iDP1B/r5c2NqMwHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkBMA0GCSqGSIb3DQEBCwUAA4IBAQDP 0H/Oi19JpHZ4Nxota5lMkDR0gnJi9bmCgYmcBIHR0mrTY56LGWrwqXroOtGXGIJJ y+jYBoNLbiTjuqYatVeK6J9EAvAQ7uQ912Q3YqQz59qYhoKrEdsUs5CILLH9OsUi ES5RVlEJwUoicygDMtJzLLvyJhJ0MprdY0KsDPn1YNTYqSTDo0qv7isJDIwZ3Xuk o5jcUHm407jxZ9qWEQSiamGi6jrE4oLQUfOqv7s9agvhWWVFshYaSiSzD0IS8TWw h7ss8VbrV54/OSTBMLNy2NzX9BGn2eRrKMYkeg28Mw3W7Yj0IzX+xHWmprN0i6JN eaX+NVwWfQfIczxGyqHZ -----END CERTIFICATE-----Generated at Wed May 13 10:42:59 2026 by rpki-client