$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa File: 326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa (raw, json) Hash identifier: sHH5EXfl8KcOz9d8oEb74NyMVuJWDbdSziQULSKFDd4= Subject key identifier: E3:91:E4:A6:A6:2F:11:6F:1F:FF:E1:7F:69:60:1B:C2:BA:2E:A0:0C Certificate issuer: /CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Certificate serial: 53E0E2ECE49850E8E890E7B5A50C4ED33DE7FC59 Authority key identifier: 35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa Signing time: Thu 30 Apr 2026 16:30:32 +0000 ROA not before: Thu 30 Apr 2026 16:25:32 +0000 ROA not after: Thu 29 Apr 2027 16:30:32 +0000 asID: 396050 IP address blocks: 2a14:7581:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 23:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:e0:e2:ec:e4:98:50:e8:e8:90:e7:b5:a5:0c:4e:d3:3d:e7:fc:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B52EF20A5730A6261D6D1916C6B747FF3C2852 Validity Not Before: Apr 30 16:25:32 2026 GMT Not After : Apr 29 16:30:32 2027 GMT Subject: CN=E391E4A6A62F116F1FFFE17F69601BC2BA2EA00C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a0:0d:6a:da:62:80:99:e9:47:69:91:76:06: 6c:c5:fe:41:1b:42:d0:0a:47:97:d0:a4:c5:b1:02: 14:0b:85:61:05:23:65:8a:6e:66:88:9a:26:9a:81: 3a:04:d4:8f:6d:88:de:11:9f:62:60:4f:33:dc:7b: a8:a2:c0:bb:50:0d:78:d9:b9:e4:48:95:82:b8:82: c2:bb:11:bf:f3:67:81:10:e3:d3:e0:4a:b4:80:90: ec:03:7b:b2:cd:c1:9f:db:4b:9b:4b:12:45:29:f4: 3b:06:06:38:b8:77:54:f4:ad:09:74:e5:84:87:a7: ee:b0:e7:b0:1e:55:50:ed:e3:65:e7:8e:cd:05:02: c6:e6:a0:e8:4e:4a:cd:30:37:44:fc:fa:6c:12:35: c3:bf:e2:0e:90:10:8d:58:89:82:8b:9e:83:8d:49: 81:39:92:b5:9e:81:b9:bb:99:ae:01:9f:d8:15:aa: 9b:99:45:90:19:fc:96:74:33:3c:d8:15:9c:3b:15: 06:b6:7a:9d:b6:3f:9b:a8:03:b0:0c:8f:8b:fc:41: 7e:a9:8f:95:2c:b1:ab:a5:35:81:3d:69:83:dd:ce: 37:f7:32:97:58:60:bc:7a:14:65:e2:f0:25:df:d3: 8d:3a:e0:38:23:1a:3c:cd:47:ce:90:0b:57:62:dd: fe:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:91:E4:A6:A6:2F:11:6F:1F:FF:E1:7F:69:60:1B:C2:BA:2E:A0:0C X509v3 Authority Key Identifier: keyid:35:B5:2E:F2:0A:57:30:A6:26:1D:6D:19:16:C6:B7:47:FF:3C:28:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/35B52EF20A5730A6261D6D1916C6B747FF3C2852.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fadebb9d-33cc-429b-aa35-10634a8b1dd4/0/326131343a373538313a323030303a3a2f34302d3438203d3e20333936303530.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/40 Signature Algorithm: sha256WithRSAEncryption 2c:52:0e:3f:db:74:bf:91:19:03:bf:23:61:fe:8b:e7:ef:dd: 4b:94:81:e2:13:e5:3c:c2:de:fa:70:80:e0:9c:d5:2c:70:92: d4:76:b9:60:c9:ab:88:7d:83:09:54:5c:88:14:2a:88:6e:a9: 99:92:cf:f9:40:7d:77:a5:1d:3a:a4:13:82:85:0a:ee:1a:0c: 3f:a1:57:9d:1d:72:66:2f:b0:55:4d:69:fa:a8:27:1f:77:7b: 93:13:c0:f8:10:d5:45:2e:2a:92:da:e2:34:e2:e0:18:16:58: 03:95:c2:d8:50:38:4d:5d:39:fc:2f:4c:58:15:27:2a:27:3b: e2:3e:13:de:e6:7a:bb:4b:fd:f4:91:13:95:9d:d0:9d:27:d9: 2f:83:b5:1e:e6:7e:84:31:c0:72:9e:e6:fa:6e:f6:09:76:78: 5f:88:65:02:3d:24:03:f6:8e:2b:46:05:95:5b:9e:83:76:22: ee:b5:2b:89:d5:02:8e:e1:4b:f3:ed:3b:f4:99:1e:ce:82:64: 85:4f:cb:27:07:7c:c7:4b:d6:33:26:e1:dd:e5:77:37:6a:02: d7:67:a3:bf:be:10:7b:d5:d9:2f:04:9b:c5:c0:ff:b5:54:6d: 73:de:f8:2e:08:f6:87:33:e3:40:2e:d4:dc:42:59:10:73:5b: 18:f9:54:f9 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUU+Di7OSYUOjokOe1pQxO0z3n/FkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdG RjNDMjg1MjAeFw0yNjA0MzAxNjI1MzJaFw0yNzA0MjkxNjMwMzJaMDMxMTAvBgNV BAMTKEUzOTFFNEE2QTYyRjExNkYxRkZGRTE3RjY5NjAxQkMyQkEyRUEwMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgoA1q2mKAmelHaZF2BmzF/kEb QtAKR5fQpMWxAhQLhWEFI2WKbmaImiaagToE1I9tiN4Rn2JgTzPce6iiwLtQDXjZ ueRIlYK4gsK7Eb/zZ4EQ49PgSrSAkOwDe7LNwZ/bS5tLEkUp9DsGBji4d1T0rQl0 5YSHp+6w57AeVVDt42Xnjs0FAsbmoOhOSs0wN0T8+mwSNcO/4g6QEI1YiYKLnoON SYE5krWegbm7ma4Bn9gVqpuZRZAZ/JZ0MzzYFZw7FQa2ep22P5uoA7AMj4v8QX6p j5UssaulNYE9aYPdzjf3MpdYYLx6FGXi8CXf04064DgjGjzNR86QC1di3f6RAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU45HkpqYvEW8f/+F/aWAbwrouoAwwHwYDVR0j BBgwFoAUNbUu8gpXMKYmHW0ZFsa3R/88KFIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmFkZWJiOWQtMzNjYy00MjliLWFhMzUtMTA2MzRhOGIx ZGQ0LzAvMzVCNTJFRjIwQTU3MzBBNjI2MUQ2RDE5MTZDNkI3NDdGRjNDMjg1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zNUI1MkVGMjBBNTczMEE2MjYxRDZEMTkx NkM2Qjc0N0ZGM0MyODUyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYWRlYmI5ZC0zM2NjLTQyOWItYWEzNS0xMDYzNGE4YjFkZDQvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzMz OTM2MzAzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSAwDQYJKoZIhvcNAQELBQADggEBACxS Dj/bdL+RGQO/I2H+i+fv3UuUgeIT5TzC3vpwgOCc1SxwktR2uWDJq4h9gwlUXIgU KohuqZmSz/lAfXelHTqkE4KFCu4aDD+hV50dcmYvsFVNafqoJx93e5MTwPgQ1UUu KpLa4jTi4BgWWAOVwthQOE1dOfwvTFgVJyonO+I+E97mertL/fSRE5Wd0J0n2S+D tR7mfoQxwHKe5vpu9gl2eF+IZQI9JAP2jitGBZVbnoN2Iu61K4nVAo7hS/PtO/SZ Hs6CZIVPyycHfMdL1jMm4d3ldzdqAtdno7++EHvV2S8Em8XA/7VUbXPe+C4I9ocz 40Au1NxCWRBzWxj5VPk= -----END CERTIFICATE-----Generated at Wed May 13 09:10:19 2026 by rpki-client