$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930343a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930343a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: nZjZ1BnZI0dBzNhskqIxoEygMMm+y+RvaVl8qJu9fX4= Subject key identifier: C3:C3:FA:13:BD:36:F3:D3:1A:05:5D:22:4E:14:E5:2F:84:58:0A:D2 Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 0E556BC94E23E28A61989CC3024171662B8758D0 Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930343a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 02 May 2026 08:30:14 +0000 ROA not before: Sat 02 May 2026 08:25:14 +0000 ROA not after: Sat 01 May 2027 08:30:14 +0000 asID: 214344 IP address blocks: 2a14:7581:9904::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:55:6b:c9:4e:23:e2:8a:61:98:9c:c3:02:41:71:66:2b:87:58:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 2 08:25:14 2026 GMT Not After : May 1 08:30:14 2027 GMT Subject: CN=C3C3FA13BD36F3D31A055D224E14E52F84580AD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:64:8a:fc:67:56:7e:95:ff:29:4e:fd:05:32: 6d:2d:5c:14:87:05:30:03:a2:57:7d:81:b6:fd:cb: 4e:7a:8a:a6:53:00:a6:7f:5b:03:d7:f0:06:03:72: fa:5b:a3:3a:d8:54:17:04:e8:74:f5:06:08:7d:ea: 92:d8:ae:6c:72:ec:67:47:07:52:df:b3:a1:06:f5: 4a:29:07:20:31:b3:50:f0:c0:e7:d4:33:17:23:4e: dc:53:f4:91:87:e4:61:90:d3:e5:59:f7:94:43:18: de:dc:d0:c3:da:24:e4:f1:13:1a:e1:b1:e1:38:00: 6a:4d:42:49:66:b7:ba:18:59:50:e7:47:b8:cd:b7: b7:95:49:dd:81:3f:ea:df:14:95:71:3a:a4:42:39: 9c:bc:ab:ac:da:70:e8:cd:aa:70:71:2b:17:dd:22: c3:54:5f:5c:e2:33:84:a3:26:c9:fe:86:ef:e3:69: 3a:4e:36:47:14:6d:89:4d:71:f0:1e:73:18:65:57: 2a:75:fc:a2:d8:71:dd:df:dc:9f:45:7f:b8:a1:d9: 6b:28:af:79:46:19:ad:f3:3d:bd:a8:90:27:5b:00: 58:68:27:c8:8b:ba:71:fd:26:ad:fb:53:79:74:57: 33:d5:00:54:f4:c0:ef:74:b1:60:e5:be:3f:46:00: 3e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C3:FA:13:BD:36:F3:D3:1A:05:5D:22:4E:14:E5:2F:84:58:0A:D2 X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930343a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9904::/48 Signature Algorithm: sha256WithRSAEncryption bd:df:29:8b:42:58:b0:65:a4:93:6f:7d:ed:be:90:fa:2e:60: 8b:74:2a:ab:ad:00:98:65:81:e9:7a:c2:a7:31:26:18:6c:43: 3a:8b:1e:bb:3d:99:23:8d:83:96:50:22:3c:41:c6:61:23:59: bf:1f:b6:98:b2:40:cd:2a:12:8b:b6:d8:e2:55:1d:bd:69:c9: 47:86:58:99:45:6e:21:e0:6e:84:96:4f:05:60:a7:ba:05:72: 3d:c6:a4:f6:50:67:40:41:c4:da:30:ca:32:e2:c0:f2:2f:d3: 15:9a:2b:72:79:f5:79:d6:7b:b9:f7:f2:3b:87:45:dd:30:98: 3d:ac:f1:69:cf:a4:cc:9f:a8:37:40:f2:13:b6:81:b4:94:63: fb:ba:42:87:4a:9b:2b:21:ae:50:a3:6f:fe:8f:53:ee:81:0e: 49:70:0b:34:c4:9a:6c:67:33:19:47:fc:24:d8:3c:46:72:f8: 62:e2:e8:d3:d6:c3:05:bc:ef:30:36:29:4e:33:2b:c8:3f:9a: e2:2e:57:68:7e:e0:de:5d:22:3f:8d:a4:de:b9:82:d3:1e:76: c8:af:87:4e:a3:95:42:52:73:e2:12:d9:d8:e8:c2:d4:34:f8: 20:28:bf:99:88:d5:22:a5:6b:6f:f2:bd:0f:3b:0f:7d:e4:e8: db:5f:18:2c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUDlVryU4j4ophmJzDAkFxZiuHWNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDIwODI1MTRaFw0yNzA1MDEwODMwMTRaMDMxMTAvBgNV BAMTKEMzQzNGQTEzQkQzNkYzRDMxQTA1NUQyMjRFMTRFNTJGODQ1ODBBRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6ZIr8Z1Z+lf8pTv0FMm0tXBSH BTADold9gbb9y056iqZTAKZ/WwPX8AYDcvpbozrYVBcE6HT1Bgh96pLYrmxy7GdH B1Lfs6EG9UopByAxs1DwwOfUMxcjTtxT9JGH5GGQ0+VZ95RDGN7c0MPaJOTxExrh seE4AGpNQklmt7oYWVDnR7jNt7eVSd2BP+rfFJVxOqRCOZy8q6zacOjNqnBxKxfd IsNUX1ziM4SjJsn+hu/jaTpONkcUbYlNcfAecxhlVyp1/KLYcd3f3J9Ff7ih2Wso r3lGGa3zPb2okCdbAFhoJ8iLunH9Jq37U3l0VzPVAFT0wO90sWDlvj9GAD6HAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUw8P6E70289MaBV0iThTlL4RYCtIwHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkEMA0GCSqGSIb3DQEBCwUAA4IBAQC9 3ymLQliwZaSTb33tvpD6LmCLdCqrrQCYZYHpesKnMSYYbEM6ix67PZkjjYOWUCI8 QcZhI1m/H7aYskDNKhKLttjiVR29aclHhliZRW4h4G6Elk8FYKe6BXI9xqT2UGdA QcTaMMoy4sDyL9MVmityefV51nu59/I7h0XdMJg9rPFpz6TMn6g3QPITtoG0lGP7 ukKHSpsrIa5Qo2/+j1PugQ5JcAs0xJpsZzMZR/wk2DxGcvhi4ujT1sMFvO8wNilO MyvIP5riLldofuDeXSI/jaTeuYLTHnbIr4dOo5VCUnPiEtnY6MLUNPggKL+ZiNUi pWtv8r0POw995OjbXxgs -----END CERTIFICATE-----Generated at Wed May 13 09:14:43 2026 by rpki-client