$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393938383a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393938383a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: O1DOX7fA9jfnoSeWMa11Wp/d995uhroRM2jfe2mLRug= Subject key identifier: C7:75:34:E2:F4:C6:5C:86:5A:4D:39:8B:27:02:65:D8:E5:D7:EA:41 Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 2037F595487AC656B66F062BC44C34CE343C6FB4 Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393938383a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 02 May 2026 08:30:19 +0000 ROA not before: Sat 02 May 2026 08:25:19 +0000 ROA not after: Sat 01 May 2027 08:30:19 +0000 asID: 214344 IP address blocks: 2a14:7581:9988::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:37:f5:95:48:7a:c6:56:b6:6f:06:2b:c4:4c:34:ce:34:3c:6f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 2 08:25:19 2026 GMT Not After : May 1 08:30:19 2027 GMT Subject: CN=C77534E2F4C65C865A4D398B270265D8E5D7EA41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:16:ec:8c:bd:b3:f3:37:c8:24:86:70:e6:89: 96:4e:79:8d:13:d8:f6:f6:75:bf:fc:b0:a3:df:87: 20:db:23:45:cb:74:6f:b7:77:8a:2a:dc:7e:de:cc: 1e:35:d9:c5:2f:83:9b:e4:82:4e:4b:8a:77:81:d5: 46:c1:f8:3c:13:ee:56:71:b6:cf:f8:3b:a9:3f:3b: 69:ea:71:60:3d:3f:7d:f4:6a:99:d4:17:0a:8b:27: 14:dd:ed:f3:b3:d9:e8:28:86:6a:f5:1c:78:e3:cc: 90:b0:dc:16:4e:87:ec:ce:3e:a1:e3:d3:ac:4b:0e: ba:1e:f7:d4:71:7c:28:c9:73:3f:f1:d3:e5:bb:ce: 1a:43:57:02:30:dd:1f:3e:f2:ec:59:69:15:c5:02: 1c:c9:f2:d8:96:53:2a:a5:ed:65:90:1b:b5:96:c8: 08:33:99:91:58:c2:5e:3a:30:24:bf:bc:84:a2:42: 8f:3a:cf:58:f1:fb:e8:ca:72:54:ea:2a:04:68:4c: 70:44:cf:72:5e:1f:b9:3f:15:9e:e1:2a:f5:7e:7b: ba:19:f5:09:c7:7e:1f:1f:e9:2f:4f:03:4d:fa:f5: 40:b9:3c:f0:20:44:bd:e8:ad:76:90:4b:9c:8f:ee: 17:e4:7e:c3:7d:5d:ab:cb:ad:22:a4:f2:19:ea:dc: db:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:75:34:E2:F4:C6:5C:86:5A:4D:39:8B:27:02:65:D8:E5:D7:EA:41 X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393938383a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9988::/48 Signature Algorithm: sha256WithRSAEncryption 4d:81:44:bb:86:4b:e6:17:24:8b:92:fa:d1:00:26:c7:89:e6: ee:8d:93:4d:de:d7:e0:60:0a:77:1c:88:97:77:93:8f:d6:d3: 70:17:76:68:54:ea:e6:f1:33:85:ca:91:21:64:92:0a:14:de: 49:d5:8f:2b:73:1c:0c:f6:4d:b3:fe:e8:41:cc:e6:e4:29:4c: ef:39:1b:84:fa:9d:79:39:ab:fd:c7:3e:71:a7:3b:6f:b9:5d: 2a:4c:49:1e:9a:23:44:45:7e:f3:75:88:f2:ad:46:aa:23:8c: bc:81:e7:da:23:f7:4c:e3:92:2c:7a:9b:a1:58:68:e1:40:ee: 99:64:73:e9:4a:b0:db:08:cd:d6:4d:11:a4:a7:16:81:25:c4: da:81:53:92:0c:37:0d:4e:1a:2c:ce:18:63:d1:c5:71:d1:c6: d0:c3:c6:2e:0f:90:e5:5d:19:3c:e6:36:0c:b0:ac:62:4b:59: 59:5a:2b:21:9a:e5:23:d2:67:0f:4d:da:82:13:df:f1:05:e7: 3c:8b:35:ec:b7:c6:8a:b1:02:07:de:9c:e5:64:d1:f8:16:31: 9a:ff:86:95:ff:db:a1:f3:45:5b:0c:5e:8a:19:b5:99:52:4a: 5a:6c:88:15:d1:ff:bf:78:b5:eb:63:bc:9f:ff:d0:14:57:ee: e5:6d:07:a2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIDf1lUh6xla2bwYrxEw0zjQ8b7QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDIwODI1MTlaFw0yNzA1MDEwODMwMTlaMDMxMTAvBgNV BAMTKEM3NzUzNEUyRjRDNjVDODY1QTREMzk4QjI3MDI2NUQ4RTVEN0VBNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgFuyMvbPzN8gkhnDmiZZOeY0T 2Pb2db/8sKPfhyDbI0XLdG+3d4oq3H7ezB412cUvg5vkgk5LineB1UbB+DwT7lZx ts/4O6k/O2nqcWA9P330apnUFwqLJxTd7fOz2egohmr1HHjjzJCw3BZOh+zOPqHj 06xLDroe99RxfCjJcz/x0+W7zhpDVwIw3R8+8uxZaRXFAhzJ8tiWUyql7WWQG7WW yAgzmZFYwl46MCS/vISiQo86z1jx++jKclTqKgRoTHBEz3JeH7k/FZ7hKvV+e7oZ 9QnHfh8f6S9PA0369UC5PPAgRL3orXaQS5yP7hfkfsN9XavLrSKk8hnq3Nt9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUx3U04vTGXIZaTTmLJwJl2OXX6kEwHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzODM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZmIMA0GCSqGSIb3DQEBCwUAA4IBAQBN gUS7hkvmFySLkvrRACbHiebujZNN3tfgYAp3HIiXd5OP1tNwF3ZoVOrm8TOFypEh ZJIKFN5J1Y8rcxwM9k2z/uhBzObkKUzvORuE+p15Oav9xz5xpztvuV0qTEkemiNE RX7zdYjyrUaqI4y8gefaI/dM45IsepuhWGjhQO6ZZHPpSrDbCM3WTRGkpxaBJcTa gVOSDDcNThoszhhj0cVx0cbQw8YuD5DlXRk85jYMsKxiS1lZWishmuUj0mcPTdqC E9/xBec8izXst8aKsQIH3pzlZNH4FjGa/4aV/9uh80VbDF6KGbWZUkpabIgV0f+/ eLXrY7yf/9AUV+7lbQei -----END CERTIFICATE-----Generated at Wed May 13 10:20:39 2026 by rpki-client