$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: +HkEXWJnMNkqLcMHQ1DXhuOI1jBvZDFvEhgNll+1Gx0= Subject key identifier: 44:B8:E9:50:37:7C:9C:28:44:2F:5E:D2:17:45:65:8D:75:03:D4:C2 Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 380B6B1C9D7E0AF6E03045A42372365BB40976EC Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 02 May 2026 08:30:00 +0000 ROA not before: Sat 02 May 2026 08:25:00 +0000 ROA not after: Sat 01 May 2027 08:30:00 +0000 asID: 214344 IP address blocks: 2a14:7581:9903::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:0b:6b:1c:9d:7e:0a:f6:e0:30:45:a4:23:72:36:5b:b4:09:76:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 2 08:25:00 2026 GMT Not After : May 1 08:30:00 2027 GMT Subject: CN=44B8E950377C9C28442F5ED21745658D7503D4C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d4:67:d1:55:8d:4e:3c:61:d1:35:1b:2e:15: 91:41:5c:38:11:c3:97:d5:ed:f6:08:3b:b2:60:a1: d5:34:a3:30:79:7d:57:2f:60:d3:79:05:86:7d:35: 11:88:71:07:6c:3c:9f:de:82:db:5d:f7:91:3a:08: 94:2b:fc:1e:49:6b:de:91:ed:19:88:e6:f9:2f:28: df:59:6f:9b:f3:c9:ed:85:8f:bc:de:5c:f2:2b:6d: 0d:09:93:f0:0d:ec:09:a5:f9:4e:05:bc:46:5c:89: 8c:eb:ed:bb:11:0d:09:da:f3:3d:28:95:02:30:d8: de:be:54:27:e5:6d:c6:89:54:67:b6:11:17:ad:2b: 4a:c4:d0:1b:2d:c7:33:15:70:42:b4:7d:cb:e7:4d: 5d:ce:97:58:b3:bc:dd:72:98:21:3b:01:ee:8f:64: 9a:f0:36:8a:b8:60:cf:7b:2f:60:8c:e4:da:f6:66: bd:ef:fb:72:04:25:0c:d5:38:7c:96:61:bd:66:84: 7c:88:5f:d6:26:2a:4b:69:20:6a:a3:ac:0a:23:06: 93:91:c4:d4:a8:15:36:6f:c9:35:24:4c:d9:0b:48: 4e:3c:ac:26:9a:8c:4f:8e:02:33:f6:ca:4b:08:cd: 26:cd:87:0a:83:59:96:f5:65:18:be:48:bd:c1:f7: 71:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B8:E9:50:37:7C:9C:28:44:2F:5E:D2:17:45:65:8D:75:03:D4:C2 X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930333a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9903::/48 Signature Algorithm: sha256WithRSAEncryption 92:cf:90:0b:f8:fb:5e:f0:17:01:b3:ac:8a:16:5b:3b:21:fd: db:9c:a4:3b:2a:bc:f6:b4:89:2a:3d:2f:0a:1d:07:2c:87:5d: 41:99:0a:99:0d:04:4b:c9:3f:bd:f3:86:13:c5:28:ac:0d:62: 03:15:b2:45:4e:3f:5f:97:88:41:d8:7f:25:93:c7:f9:2f:80: 72:e1:0e:5b:b6:62:ce:8e:5e:3e:75:01:19:94:1b:2f:0f:26: 07:86:24:76:57:e8:86:50:69:18:d2:a9:ae:dd:2b:b9:e2:eb: 14:7c:16:17:f9:f6:c0:8a:7e:7f:30:18:9c:00:e4:28:c8:3c: 3c:4e:95:d1:4d:0f:5f:9f:b8:36:29:fc:19:7f:a0:64:10:5e: f4:d2:e2:a4:80:21:6e:f4:03:6a:90:4e:66:d8:9c:8f:c3:2c: 8e:3b:e8:a9:90:93:ae:3a:3d:6a:d2:c8:c5:50:34:4d:49:6a: 23:95:68:76:47:8f:cf:9a:c8:8d:59:92:b5:e8:3e:ad:03:f9: f8:18:cb:1c:c8:87:38:b3:2e:78:0d:26:24:bc:e6:f6:4b:ec: 00:c7:de:55:09:e8:f3:fb:f3:ea:cc:89:e6:b1:8b:fd:14:5c: 65:6b:5d:aa:f5:29:fd:f8:c4:18:01:1a:37:95:ba:99:0a:1a: 9e:c9:6b:09 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUOAtrHJ1+CvbgMEWkI3I2W7QJduwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDIwODI1MDBaFw0yNzA1MDEwODMwMDBaMDMxMTAvBgNV BAMTKDQ0QjhFOTUwMzc3QzlDMjg0NDJGNUVEMjE3NDU2NThENzUwM0Q0QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP1GfRVY1OPGHRNRsuFZFBXDgR w5fV7fYIO7JgodU0ozB5fVcvYNN5BYZ9NRGIcQdsPJ/egttd95E6CJQr/B5Ja96R 7RmI5vkvKN9Zb5vzye2Fj7zeXPIrbQ0Jk/AN7Aml+U4FvEZciYzr7bsRDQna8z0o lQIw2N6+VCflbcaJVGe2ERetK0rE0BstxzMVcEK0fcvnTV3Ol1izvN1ymCE7Ae6P ZJrwNoq4YM97L2CM5Nr2Zr3v+3IEJQzVOHyWYb1mhHyIX9YmKktpIGqjrAojBpOR xNSoFTZvyTUkTNkLSE48rCaajE+OAjP2yksIzSbNhwqDWZb1ZRi+SL3B93H/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURLjpUDd8nChEL17SF0VljXUD1MIwHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkDMA0GCSqGSIb3DQEBCwUAA4IBAQCS z5AL+Pte8BcBs6yKFls7If3bnKQ7Krz2tIkqPS8KHQcsh11BmQqZDQRLyT+984YT xSisDWIDFbJFTj9fl4hB2H8lk8f5L4By4Q5btmLOjl4+dQEZlBsvDyYHhiR2V+iG UGkY0qmu3Su54usUfBYX+fbAin5/MBicAOQoyDw8TpXRTQ9fn7g2KfwZf6BkEF70 0uKkgCFu9ANqkE5m2JyPwyyOO+ipkJOuOj1q0sjFUDRNSWojlWh2R4/PmsiNWZK1 6D6tA/n4GMscyIc4sy54DSYkvOb2S+wAx95VCejz+/PqzInmsYv9FFxla12q9Sn9 +MQYARo3lbqZChqeyWsJ -----END CERTIFICATE-----Generated at Wed May 13 09:44:24 2026 by rpki-client