$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323135333634.roa File: 326131343a373538313a323030303a3a2f34302d3438203d3e20323135333634.roa (raw, json) Hash identifier: Qbpxn6m6N57BLQ/qLjGEPLIZz8aoJQbWLiHDKsDlsdk= Subject key identifier: 29:3C:4E:CA:F7:13:9F:57:C7:AE:AC:29:19:F1:AA:00:A7:80:E6:A3 Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 0A948CDADDB5D88A72035469CD17FCC6A1B2849E Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323135333634.roa Signing time: Thu 30 Apr 2026 16:30:30 +0000 ROA not before: Thu 30 Apr 2026 16:25:30 +0000 ROA not after: Thu 29 Apr 2027 16:30:30 +0000 asID: 215364 IP address blocks: 2a14:7581:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 06:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:94:8c:da:dd:b5:d8:8a:72:03:54:69:cd:17:fc:c6:a1:b2:84:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Apr 30 16:25:30 2026 GMT Not After : Apr 29 16:30:30 2027 GMT Subject: CN=293C4ECAF7139F57C7AEAC2919F1AA00A780E6A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7b:9f:f8:44:14:c3:43:69:0c:bd:df:1e:fb: d3:a3:1c:59:b9:6c:13:4f:84:20:14:f8:f3:29:44: b7:ec:cb:65:3a:58:70:e5:e9:19:8b:18:a1:d0:87: e1:d3:4c:65:a3:eb:a6:28:b0:9a:fb:ef:b0:18:63: 71:0b:5b:de:cb:59:7b:a6:5c:f6:18:1b:5f:71:9b: 13:a1:c7:51:95:dc:6c:1c:5d:16:01:42:78:a1:43: 48:1a:e0:0a:69:35:aa:3c:e8:94:66:ad:14:57:0b: ce:01:e7:0e:44:c6:07:0b:d9:89:c6:18:68:8e:42: 4b:f1:ff:02:da:1b:aa:31:d2:21:b4:b5:85:2c:59: 43:01:8c:3c:d9:31:dc:81:b3:09:6b:49:d6:4e:c9: 4e:6b:e1:be:70:46:35:32:df:9a:fd:17:73:65:e4: 37:1e:d4:28:ed:22:84:43:ce:88:f5:7a:59:f7:13: c5:ac:20:bd:b5:fe:54:93:c8:51:9c:7e:fd:b1:4f: 46:61:bb:3a:b4:1b:a5:1a:d0:61:34:0a:04:5b:15: 02:fd:ae:c4:13:df:4b:87:f4:86:bb:db:18:fd:7e: 43:39:b7:31:51:f4:a1:c8:27:b9:f6:88:d7:20:e4: 44:da:b2:8c:13:23:04:49:32:a5:13:7a:d6:a7:1e: 51:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3C:4E:CA:F7:13:9F:57:C7:AE:AC:29:19:F1:AA:00:A7:80:E6:A3 X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/40 Signature Algorithm: sha256WithRSAEncryption 86:37:72:21:4f:7f:17:d6:e2:e8:f9:42:de:1a:8c:c1:2a:9e: ce:7a:91:b3:54:bc:6e:05:9c:0a:f5:89:8f:da:2f:8f:83:17: cf:87:a6:39:90:5c:e6:86:27:b1:03:76:98:89:62:b9:6e:67: 38:d8:44:52:72:84:0e:d1:e0:0e:b5:e9:b6:68:e4:bb:c7:48: c9:e6:32:46:a7:6d:4f:26:2c:17:38:5e:ff:96:88:6a:77:7f: 30:cd:56:14:06:ad:39:a8:45:8f:4f:09:40:aa:f2:77:d8:a8: e8:9b:d3:15:c0:5e:47:ae:e6:f5:12:28:7c:73:89:b7:15:54: 07:0b:d5:f5:78:a0:0a:91:e7:76:8b:4d:3a:dc:a9:06:8c:0a: 11:38:49:87:0a:46:22:82:ca:74:b7:0f:02:b6:47:32:f0:48: 90:ce:70:f2:14:5e:25:e7:3e:13:27:a9:91:bf:0f:cb:d7:7c: 0d:47:62:09:91:0a:5f:67:cb:4e:59:a2:70:d7:0a:39:cd:57: 8a:b1:ec:c0:a3:a0:f4:e4:27:c7:b7:cf:b5:d2:7b:97:c4:ca: ed:38:6a:61:14:dc:0b:8a:85:ad:fc:9a:29:0e:fa:48:1a:41: a5:c5:26:d2:37:e6:ea:1b:86:03:29:bd:fc:3c:c6:86:fd:7d: 94:e8:6e:f1 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUCpSM2t212IpyA1RpzRf8xqGyhJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNjA0MzAxNjI1MzBaFw0yNzA0MjkxNjMwMzBaMDMxMTAvBgNV BAMTKDI5M0M0RUNBRjcxMzlGNTdDN0FFQUMyOTE5RjFBQTAwQTc4MEU2QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCme5/4RBTDQ2kMvd8e+9OjHFm5 bBNPhCAU+PMpRLfsy2U6WHDl6RmLGKHQh+HTTGWj66YosJr777AYY3ELW97LWXum XPYYG19xmxOhx1GV3GwcXRYBQnihQ0ga4AppNao86JRmrRRXC84B5w5ExgcL2YnG GGiOQkvx/wLaG6ox0iG0tYUsWUMBjDzZMdyBswlrSdZOyU5r4b5wRjUy35r9F3Nl 5Dce1CjtIoRDzoj1eln3E8WsIL21/lSTyFGcfv2xT0Zhuzq0G6Ua0GE0CgRbFQL9 rsQT30uH9Ia72xj9fkM5tzFR9KHIJ7n2iNcg5ETasowTIwRJMqUTetanHlGDAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUKTxOyvcTn1fHrqwpGfGqAKeA5qMwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSAwDQYJKoZIhvcNAQELBQADggEBAIY3 ciFPfxfW4uj5Qt4ajMEqns56kbNUvG4FnAr1iY/aL4+DF8+HpjmQXOaGJ7EDdpiJ YrluZzjYRFJyhA7R4A616bZo5LvHSMnmMkanbU8mLBc4Xv+WiGp3fzDNVhQGrTmo RY9PCUCq8nfYqOib0xXAXkeu5vUSKHxzibcVVAcL1fV4oAqR53aLTTrcqQaMChE4 SYcKRiKCynS3DwK2RzLwSJDOcPIUXiXnPhMnqZG/D8vXfA1HYgmRCl9ny05ZonDX CjnNV4qx7MCjoPTkJ8e3z7XSe5fEyu04amEU3AuKha38mikO+kgaQaXFJtI35uob hgMpvfw8xob9fZTobvE= -----END CERTIFICATE-----Generated at Wed May 13 11:11:18 2026 by rpki-client