$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656438303a3a2f34362d3438203d3e20323135393536.roa File: 326131343a373538303a656438303a3a2f34362d3438203d3e20323135393536.roa (raw, json) Hash identifier: rQpkbR3KnFklDT79Uov6DCq1Gnx5Be1AdlKjkMipdro= Subject key identifier: 6B:D5:42:F1:3B:93:1C:9B:07:E0:B4:0E:5D:B9:41:FF:B1:0F:A9:4F Certificate issuer: /CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Certificate serial: 4E04B5735243B282B60BC34EB1B68313C3DF51D1 Authority key identifier: 9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656438303a3a2f34362d3438203d3e20323135393536.roa Signing time: Tue 12 May 2026 06:53:26 +0000 ROA not before: Tue 12 May 2026 06:48:26 +0000 ROA not after: Tue 11 May 2027 06:53:26 +0000 asID: 215956 IP address blocks: 2a14:7580:ed80::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 01:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:04:b5:73:52:43:b2:82:b6:0b:c3:4e:b1:b6:83:13:c3:df:51:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B Validity Not Before: May 12 06:48:26 2026 GMT Not After : May 11 06:53:26 2027 GMT Subject: CN=6BD542F13B931C9B07E0B40E5DB941FFB10FA94F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:9c:99:ed:29:21:87:4c:c5:ba:0b:00:1f: 0b:10:e3:cd:0b:c5:53:2d:33:0b:2a:4a:c1:48:4a: 4b:ad:14:8a:88:a5:df:46:e8:e9:03:71:e2:d5:a9: 03:b4:03:4c:b2:fc:e2:a7:35:4c:93:9b:32:7c:0a: f4:74:65:24:10:8b:cd:14:61:16:56:9a:b3:f1:05: 10:62:83:16:49:c8:4f:8d:d7:a8:ff:76:a2:8b:a1: 05:7c:ee:6d:2d:a3:73:12:1c:36:54:8a:1d:2a:2b: 0a:68:e7:c8:d7:41:3c:f2:0b:df:13:91:b3:3b:cd: 26:8f:18:bc:ff:d1:c7:83:54:3f:e3:55:ca:44:1b: ad:8e:f4:5c:04:5f:a9:b9:48:98:57:37:81:76:74: a3:dd:5c:c4:54:e6:44:3d:b9:d7:44:21:3c:9c:56: 42:97:b1:23:da:08:9b:a9:56:10:d9:b3:35:d8:e1: f8:69:ed:9c:53:47:b0:3a:f6:a3:58:38:db:57:4f: 08:75:2b:c9:f1:a6:3a:a0:2c:9a:18:21:a6:18:38: af:7d:92:65:ed:c6:63:d8:63:fa:ca:17:f4:aa:9a: d7:a0:14:1b:7b:aa:bd:ab:18:62:87:e8:ca:96:80: c4:37:ae:f1:a9:d4:0b:3b:e1:75:70:1c:ec:fe:7e: 13:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D5:42:F1:3B:93:1C:9B:07:E0:B4:0E:5D:B9:41:FF:B1:0F:A9:4F X509v3 Authority Key Identifier: keyid:9C:82:12:C5:D1:DD:E8:4B:55:73:EF:C7:3D:AB:84:2D:9B:8D:90:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9C8212C5D1DDE84B5573EFC73DAB842D9B8D902B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/3/326131343a373538303a656438303a3a2f34362d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ed80::/46 Signature Algorithm: sha256WithRSAEncryption 1e:80:2f:bc:56:81:ba:ec:c0:f7:53:18:ca:8b:71:ae:56:40: 8d:09:14:6f:42:1d:36:23:a2:70:94:89:b7:a1:25:34:e0:46: 41:d1:05:72:3c:80:ec:f1:dc:f1:75:04:8b:78:89:99:eb:77: 18:3f:c6:63:12:df:85:bf:b8:a9:3c:13:b9:99:29:96:bd:11: df:c2:88:74:e9:8c:c7:3c:ee:32:d7:a3:68:1d:12:43:4e:d4: 69:11:00:f4:9e:42:60:30:8c:dd:df:f5:63:1b:ab:d8:99:3f: e1:e7:88:aa:bb:21:81:ae:a8:d8:04:0f:ab:7c:f2:6c:f5:52: 3b:01:ef:03:23:c6:07:bf:67:8a:c3:9e:de:3f:fb:0a:88:7a: 5c:4e:8c:2a:9b:88:8b:8b:47:06:1e:d8:95:fe:3a:79:f9:9d: 8d:75:d9:34:38:31:91:33:95:ea:38:09:8b:70:df:aa:f9:3e: b0:35:7e:6c:2c:79:28:c2:fc:87:02:20:dc:a0:cd:1e:ae:f1: 2c:b7:e3:e3:38:86:d3:63:17:eb:33:68:34:71:fb:83:5f:b7: a4:ee:6b:4d:a8:f9:f9:ed:93:eb:74:76:f8:2b:3c:ac:bb:48: 2d:a4:49:02:e8:9a:b3:67:d7:03:87:fe:00:ab:f8:bf:f8:8a: 72:9a:92:d2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTgS1c1JDsoK2C8NOsbaDE8PfUdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5 QjhEOTAyQjAeFw0yNjA1MTIwNjQ4MjZaFw0yNzA1MTEwNjUzMjZaMDMxMTAvBgNV BAMTKDZCRDU0MkYxM0I5MzFDOUIwN0UwQjQwRTVEQjk0MUZGQjEwRkE5NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDVJyZ7Skhh0zFugsAHwsQ480L xVMtMwsqSsFISkutFIqIpd9G6OkDceLVqQO0A0yy/OKnNUyTmzJ8CvR0ZSQQi80U YRZWmrPxBRBigxZJyE+N16j/dqKLoQV87m0to3MSHDZUih0qKwpo58jXQTzyC98T kbM7zSaPGLz/0ceDVD/jVcpEG62O9FwEX6m5SJhXN4F2dKPdXMRU5kQ9uddEITyc VkKXsSPaCJupVhDZszXY4fhp7ZxTR7A69qNYONtXTwh1K8nxpjqgLJoYIaYYOK99 kmXtxmPYY/rKF/SqmtegFBt7qr2rGGKH6MqWgMQ3rvGp1As74XVwHOz+fhN9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUa9VC8TuTHJsH4LQOXblB/7EPqU8wHwYDVR0j BBgwFoAUnIISxdHd6EtVc+/HPauELZuNkCswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzMvOUM4MjEyQzVEMURERTg0QjU1NzNFRkM3M0RBQjg0MkQ5QjhEOTAyQi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85QzgyMTJDNUQxRERFODRCNTU3M0VGQzcz REFCODQyRDlCOEQ5MDJCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTY1NjQzODMwM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKhR1gO2AMA0GCSqGSIb3DQEBCwUAA4IBAQAe gC+8VoG67MD3UxjKi3GuVkCNCRRvQh02I6JwlIm3oSU04EZB0QVyPIDs8dzxdQSL eImZ63cYP8ZjEt+Fv7ipPBO5mSmWvRHfwoh06YzHPO4y16NoHRJDTtRpEQD0nkJg MIzd3/VjG6vYmT/h54iquyGBrqjYBA+rfPJs9VI7Ae8DI8YHv2eKw57eP/sKiHpc Towqm4iLi0cGHtiV/jp5+Z2Nddk0ODGRM5XqOAmLcN+q+T6wNX5sLHkowvyHAiDc oM0ervEst+PjOIbTYxfrM2g0cfuDX7ek7mtNqPn57ZPrdHb4Kzysu0gtpEkC6Jqz Z9cDh/4Aq/i/+IpympLS -----END CERTIFICATE-----Generated at Wed May 13 15:47:43 2026 by rpki-client