$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393966663a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393966663a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: t4EI/Mk5YhylQpYGn3RlsMvjC7W6xYVw8s3ZATd/tDM= Subject key identifier: 5E:FB:A8:1D:8F:0B:DF:43:9B:F0:84:FB:A2:10:EA:8D:05:19:FD:AA Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 21E3B5ADD494AAA39837C2A424FB45CC530AB98A Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393966663a3a2f34382d3438203d3e20323134333434.roa Signing time: Thu 07 May 2026 04:49:08 +0000 ROA not before: Thu 07 May 2026 04:44:08 +0000 ROA not after: Thu 06 May 2027 04:49:08 +0000 asID: 214344 IP address blocks: 2a14:7581:99ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:e3:b5:ad:d4:94:aa:a3:98:37:c2:a4:24:fb:45:cc:53:0a:b9:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: May 7 04:44:08 2026 GMT Not After : May 6 04:49:08 2027 GMT Subject: CN=5EFBA81D8F0BDF439BF084FBA210EA8D0519FDAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:b0:33:23:3d:b0:fb:3e:75:97:79:2b:7e: 3f:b4:62:40:08:22:c1:b6:67:a9:25:08:09:6e:84: 89:0b:f6:44:b0:e6:02:76:b6:b9:69:ce:f9:c4:de: f3:89:54:89:11:b6:54:7a:7f:4e:24:3f:5a:cf:65: f6:d1:69:28:a1:71:01:ae:e6:e8:45:df:23:d7:4b: c8:01:0c:60:e8:f7:7e:63:f2:ba:7e:b8:3a:56:5a: 2d:ad:bf:3b:ba:8c:a4:31:43:29:90:ae:f7:4a:39: 4c:b2:1f:c9:7e:39:80:5a:f7:fb:6f:8d:f8:d5:a6: 0a:1a:fd:ba:99:89:05:49:e2:4c:17:86:f8:29:c5: c1:46:15:c5:c6:70:88:8a:5a:a2:15:8d:d6:cc:dc: 8c:56:87:05:61:d0:76:87:07:ae:06:0c:87:a1:4c: 74:fd:8d:cf:ba:d2:24:37:2c:28:99:d0:0a:88:72: c7:18:c1:c2:72:bc:f2:b8:ea:ad:4e:00:10:d8:fd: 06:f5:8c:95:88:ba:b5:2c:24:2a:e0:0f:1f:71:09: f4:f5:7a:37:92:15:d9:c5:66:49:83:ac:4d:9f:95: 31:d2:15:5a:c3:7f:d0:8e:f4:34:5b:8c:77:09:f0: 49:c2:fe:4b:5e:db:cf:87:4c:93:d4:4a:8c:1b:3a: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:FB:A8:1D:8F:0B:DF:43:9B:F0:84:FB:A2:10:EA:8D:05:19:FD:AA X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393966663a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:99ff::/48 Signature Algorithm: sha256WithRSAEncryption 4a:91:46:a1:55:06:44:4d:fe:d2:0b:88:84:57:62:5f:c9:a2: 06:3a:d0:ac:5b:fd:0a:49:12:1d:15:bd:c8:b0:3b:2b:72:b1: 92:73:d5:b7:73:5e:5c:f3:37:cd:ba:22:0b:92:01:8e:0d:2e: 44:f6:b2:15:52:b1:7f:a1:f0:26:fc:12:c2:bf:6f:0f:40:59: ce:e2:08:0d:94:28:7c:45:e0:48:9b:e3:71:73:aa:a3:6f:d0: 40:60:5b:b9:06:23:70:5e:d4:ec:cd:68:96:f5:3a:51:00:75: ee:36:55:cf:f9:2a:7d:af:e7:c3:ed:a0:82:70:f0:f2:3a:62: f5:c5:0f:1d:33:1e:bb:27:14:d1:9d:bc:4c:db:e7:76:84:15: d3:1e:ab:54:82:f4:39:b9:df:cb:fe:91:9e:81:73:f0:a1:9e: 8a:31:70:c0:18:b4:b4:5b:d0:3a:ba:b3:07:32:ac:24:8b:f0: 19:5a:8d:1f:7a:d9:32:68:67:7e:62:ea:30:24:ac:89:17:d6: 89:11:a5:08:cb:20:58:d3:07:fe:17:ef:03:ce:51:9f:f2:0c: 48:0f:f1:55:ac:5b:1a:6e:38:51:28:4f:96:89:2e:85:f0:43: 2c:fa:9f:c2:5d:ba:ad:f0:ae:93:c8:8b:17:18:74:71:e9:24: 97:0c:84:60 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIeO1rdSUqqOYN8KkJPtFzFMKuYowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA1MDcwNDQ0MDhaFw0yNzA1MDYwNDQ5MDhaMDMxMTAvBgNV BAMTKDVFRkJBODFEOEYwQkRGNDM5QkYwODRGQkEyMTBFQThEMDUxOUZEQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFvLAzIz2w+z51l3krfj+0YkAI IsG2Z6klCAluhIkL9kSw5gJ2trlpzvnE3vOJVIkRtlR6f04kP1rPZfbRaSihcQGu 5uhF3yPXS8gBDGDo935j8rp+uDpWWi2tvzu6jKQxQymQrvdKOUyyH8l+OYBa9/tv jfjVpgoa/bqZiQVJ4kwXhvgpxcFGFcXGcIiKWqIVjdbM3IxWhwVh0HaHB64GDIeh THT9jc+60iQ3LCiZ0AqIcscYwcJyvPK46q1OABDY/Qb1jJWIurUsJCrgDx9xCfT1 ejeSFdnFZkmDrE2flTHSFVrDf9CO9DRbjHcJ8EnC/kte28+HTJPUSowbOv0TAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUXvuoHY8L30Ob8IT7ohDqjQUZ/aowHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5Mzk2NjY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZn/MA0GCSqGSIb3DQEBCwUAA4IBAQBK kUahVQZETf7SC4iEV2JfyaIGOtCsW/0KSRIdFb3IsDsrcrGSc9W3c15c8zfNuiIL kgGODS5E9rIVUrF/ofAm/BLCv28PQFnO4ggNlCh8ReBIm+Nxc6qjb9BAYFu5BiNw XtTszWiW9TpRAHXuNlXP+Sp9r+fD7aCCcPDyOmL1xQ8dMx67JxTRnbxM2+d2hBXT HqtUgvQ5ud/L/pGegXPwoZ6KMXDAGLS0W9A6urMHMqwki/AZWo0fetkyaGd+Yuow JKyJF9aJEaUIyyBY0wf+F+8DzlGf8gxID/FVrFsabjhRKE+WiS6F8EMs+p/CXbqt 8K6TyIsXGHRx6SSXDIRg -----END CERTIFICATE-----Generated at Wed May 13 12:14:02 2026 by rpki-client