$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930323a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930323a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: pdi0gEMaG5/D7JK9Zh5vusH8qIO/fIfz8EKZlEVkW00= Subject key identifier: 90:14:22:FA:DA:B6:91:74:52:9C:10:85:15:CE:27:33:EA:C2:C9:7A Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 5931B89D4D45076DCD678D80440AED047023FA83 Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930323a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 02 May 2026 08:29:47 +0000 ROA not before: Sat 02 May 2026 08:24:47 +0000 ROA not after: Sat 01 May 2027 08:29:47 +0000 asID: 214344 IP address blocks: 2a14:7581:9902::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:31:b8:9d:4d:45:07:6d:cd:67:8d:80:44:0a:ed:04:70:23:fa:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 2 08:24:47 2026 GMT Not After : May 1 08:29:47 2027 GMT Subject: CN=901422FADAB69174529C108515CE2733EAC2C97A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:73:1a:b2:22:f8:0a:76:0d:a5:8f:2a:cc:5d: 47:95:92:dc:75:3f:f3:1e:e4:f6:54:10:e1:f9:fa: 22:91:b2:b5:68:0a:3f:9c:64:70:88:f2:ed:9b:d5: 14:20:50:33:86:1b:2d:fb:9d:42:29:c5:6f:d4:1a: ed:ad:12:aa:6a:2b:ba:ca:d3:93:9c:6f:23:45:c3: 69:a9:1a:45:50:8f:09:dd:8f:9a:f9:7d:9b:af:f5: 52:d8:c5:17:f4:fa:f4:55:04:f4:30:b5:82:18:5f: e4:32:12:49:65:6f:61:72:79:18:c7:c2:e9:41:45: e6:f8:3e:6b:df:35:1a:de:83:d5:86:46:2e:2d:8f: 0f:18:07:cf:f9:34:6f:50:ee:89:92:85:cf:25:08: 7f:24:c5:94:6f:21:c3:14:0f:a7:d4:89:6c:66:68: a4:86:37:cb:76:bc:2b:a2:ce:46:12:8a:e5:01:ca: 4b:9f:b9:bf:59:51:4a:ed:81:18:e7:4f:2e:ab:bc: aa:04:76:65:1b:be:4c:fe:8a:b5:53:c0:57:37:be: 0b:13:4a:bf:a0:d5:5c:d0:49:23:1e:a6:58:7e:d8: 9f:8a:6b:e9:66:9c:70:ea:08:d0:3b:8e:ad:40:28: b1:d9:c6:88:b0:71:38:94:0a:9f:0e:19:65:28:a9: 87:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:14:22:FA:DA:B6:91:74:52:9C:10:85:15:CE:27:33:EA:C2:C9:7A X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930323a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9902::/48 Signature Algorithm: sha256WithRSAEncryption 17:72:1f:c0:32:0d:8d:70:58:0b:b8:a0:af:da:54:54:f5:b3: 84:6b:fa:65:31:ef:ed:9a:83:51:52:45:b3:fe:62:00:b8:19: b7:53:04:3b:a8:8b:2e:43:a3:00:b4:cf:a9:84:65:26:d2:e0: 3b:b5:d0:10:52:b8:e5:fb:76:82:42:29:2d:1e:86:59:bd:a0: 1e:7d:4a:d3:89:80:86:fb:c6:d0:22:af:54:ca:28:8e:e4:c5: 9f:0d:90:39:a3:d8:5c:fa:a5:f6:42:42:76:61:48:84:2c:cd: 35:d0:72:8c:ff:a3:a6:e4:8c:77:95:d1:d7:6f:b8:92:b2:00: 2c:91:5b:68:5d:0a:6a:5f:cf:cd:ba:52:bb:a5:64:8c:26:52: aa:09:76:15:f9:7c:f1:6d:71:15:fc:2a:25:35:69:35:b2:d0: 02:6d:05:0b:69:a0:2e:56:bd:8d:6f:b9:79:d0:95:1c:01:68: 71:c9:ce:54:68:b9:04:e1:45:fc:44:93:b2:99:6e:cf:ce:69: e6:eb:bf:df:1c:24:d1:f1:e1:4f:8c:97:19:d0:7e:f0:9c:c1: e4:ef:b8:c4:dd:b3:8b:b4:db:0b:5e:10:6a:dc:20:c4:56:e2: e2:bd:81:e1:8c:31:53:f2:d5:01:02:29:6d:7f:da:b5:b5:a3: 63:67:df:d9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUWTG4nU1FB23NZ42ARArtBHAj+oMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDIwODI0NDdaFw0yNzA1MDEwODI5NDdaMDMxMTAvBgNV BAMTKDkwMTQyMkZBREFCNjkxNzQ1MjlDMTA4NTE1Q0UyNzMzRUFDMkM5N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVcxqyIvgKdg2ljyrMXUeVktx1 P/Me5PZUEOH5+iKRsrVoCj+cZHCI8u2b1RQgUDOGGy37nUIpxW/UGu2tEqpqK7rK 05OcbyNFw2mpGkVQjwndj5r5fZuv9VLYxRf0+vRVBPQwtYIYX+QyEkllb2FyeRjH wulBReb4PmvfNRreg9WGRi4tjw8YB8/5NG9Q7omShc8lCH8kxZRvIcMUD6fUiWxm aKSGN8t2vCuizkYSiuUBykufub9ZUUrtgRjnTy6rvKoEdmUbvkz+irVTwFc3vgsT Sr+g1VzQSSMeplh+2J+Ka+lmnHDqCNA7jq1AKLHZxoiwcTiUCp8OGWUoqYehAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUkBQi+tq2kXRSnBCFFc4nM+rCyXowHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkCMA0GCSqGSIb3DQEBCwUAA4IBAQAX ch/AMg2NcFgLuKCv2lRU9bOEa/plMe/tmoNRUkWz/mIAuBm3UwQ7qIsuQ6MAtM+p hGUm0uA7tdAQUrjl+3aCQiktHoZZvaAefUrTiYCG+8bQIq9UyiiO5MWfDZA5o9hc +qX2QkJ2YUiELM010HKM/6Om5Ix3ldHXb7iSsgAskVtoXQpqX8/NulK7pWSMJlKq CXYV+XzxbXEV/ColNWk1stACbQULaaAuVr2Nb7l50JUcAWhxyc5UaLkE4UX8RJOy mW7Pzmnm67/fHCTR8eFPjJcZ0H7wnMHk77jE3bOLtNsLXhBq3CDEVuLivYHhjDFT 8tUBAiltf9q1taNjZ9/Z -----END CERTIFICATE-----Generated at Wed May 13 10:26:23 2026 by rpki-client