$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666630303a3a2f34302d3438203d3e20313939373934.roa File: 326130663a316363363a666630303a3a2f34302d3438203d3e20313939373934.roa (raw, json) Hash identifier: u2OSA0CA/LhD/ehNs3nGB0Ac0Hv0xN26zlrjRiwlUDk= Subject key identifier: 3D:7F:E0:41:25:5B:7A:B7:CC:96:FD:B9:1D:4B:F9:AF:E1:9A:35:DA Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 1E0DA05491452C7BC9EC993AA4CE2C3C3FD606CD Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666630303a3a2f34302d3438203d3e20313939373934.roa Signing time: Wed 08 Apr 2026 15:09:39 +0000 ROA not before: Wed 08 Apr 2026 15:04:39 +0000 ROA not after: Wed 07 Apr 2027 15:09:39 +0000 asID: 199794 IP address blocks: 2a0f:1cc6:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 10:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:0d:a0:54:91:45:2c:7b:c9:ec:99:3a:a4:ce:2c:3c:3f:d6:06:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Apr 8 15:04:39 2026 GMT Not After : Apr 7 15:09:39 2027 GMT Subject: CN=3D7FE041255B7AB7CC96FDB91D4BF9AFE19A35DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:0e:d8:8d:ff:e9:29:49:c5:91:47:68:c5: f4:eb:f9:3a:02:ad:7f:ee:93:d7:8f:26:49:8f:c0: 7e:a4:a7:aa:da:4c:ba:9c:4a:a8:f4:6c:90:9d:e6: 7b:35:d3:01:25:40:10:fb:be:d5:25:34:ac:e4:55: 6e:ae:12:7d:22:8d:31:59:11:1d:03:2c:a9:e3:2f: 53:c0:c7:96:56:85:25:07:f6:fa:e5:0e:2e:f0:02: 93:df:6a:03:46:3b:38:b9:93:81:d8:4a:37:16:00: 19:db:4c:53:56:04:42:67:80:27:17:9a:c4:51:12: 8f:21:28:44:cd:cb:7c:a7:53:8f:76:5b:37:f0:6c: f1:20:33:3c:0a:ee:4b:6d:00:b7:da:da:e6:c9:e3: f7:4e:38:cc:f1:92:11:92:be:31:ae:fe:04:32:78: 1e:7c:63:57:94:a9:75:2b:b5:f2:8d:ef:d8:ef:37: 7a:5c:a5:5e:c9:ee:02:6a:14:3c:10:2e:8a:76:79: d4:a3:1e:f7:ff:b6:d6:14:b9:fd:3d:50:f7:ba:dd: 8b:30:44:d0:ae:95:05:a2:a6:8b:bd:c7:84:6f:5f: 8a:32:53:1e:75:70:4b:2c:e4:b4:f8:cb:ca:08:de: 29:28:2f:23:a3:8d:4f:7c:ec:86:c3:77:58:b2:bd: 3c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7F:E0:41:25:5B:7A:B7:CC:96:FD:B9:1D:4B:F9:AF:E1:9A:35:DA X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a666630303a3a2f34302d3438203d3e20313939373934.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 2c:c3:dd:a1:74:89:6b:3f:c3:36:a2:24:0d:a0:22:dc:63:b5: 1d:68:c1:17:1d:e2:04:dc:89:f6:d4:66:01:5c:34:11:f8:d9: e7:ba:7f:1c:90:8c:ad:3a:83:9e:4c:e8:ad:74:fd:25:a8:ef: 6f:bf:21:3c:bf:07:7e:2b:e1:3b:8b:3b:65:1d:b5:ed:91:0e: eb:ef:81:23:4c:03:17:87:f9:13:87:28:bd:bc:d6:85:fc:98: 0c:c6:09:6f:7f:f4:42:94:82:e8:41:f7:72:42:ec:0c:e9:f8: 34:16:1d:a4:13:bd:e6:29:cc:f5:dc:20:97:6d:16:4b:0c:5d: fd:dc:d1:09:44:61:4a:9b:ce:df:b8:b0:04:82:71:80:39:3f: 48:74:a4:6e:d0:04:8a:7f:1f:6f:0c:e2:2e:68:32:95:cf:3f: c7:e7:18:e7:f8:e0:85:dc:f7:b7:2f:18:4b:21:0d:43:d0:9d: f7:2a:be:14:42:ab:50:ab:bb:c0:c6:3d:cf:a8:2a:a8:59:ea: a8:32:21:09:20:c5:ef:e8:d5:59:7c:94:3c:5c:4d:fa:12:4a: fe:10:82:f3:de:a9:b2:e4:4b:63:29:d1:bd:12:7a:1b:6c:99: 18:ff:2e:8d:b9:b9:b0:33:f9:43:a9:19:93:b2:e5:f6:1e:63: 35:78:08:a7 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUHg2gVJFFLHvJ7Jk6pM4sPD/WBs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjA0MDgxNTA0MzlaFw0yNzA0MDcxNTA5MzlaMDMxMTAvBgNV BAMTKDNEN0ZFMDQxMjU1QjdBQjdDQzk2RkRCOTFENEJGOUFGRTE5QTM1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtlQ7Yjf/pKUnFkUdoxfTr+ToC rX/uk9ePJkmPwH6kp6raTLqcSqj0bJCd5ns10wElQBD7vtUlNKzkVW6uEn0ijTFZ ER0DLKnjL1PAx5ZWhSUH9vrlDi7wApPfagNGOzi5k4HYSjcWABnbTFNWBEJngCcX msRREo8hKETNy3ynU492WzfwbPEgMzwK7kttALfa2ubJ4/dOOMzxkhGSvjGu/gQy eB58Y1eUqXUrtfKN79jvN3pcpV7J7gJqFDwQLop2edSjHvf/ttYUuf09UPe63Ysw RNCulQWipou9x4RvX4oyUx51cEss5LT4y8oI3ikoLyOjjU987IbDd1iyvTxTAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUPX/gQSVberfMlv25HUv5r+GaNdowHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTY2NjYzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzEz OTM5MzczOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKg8cxv8wDQYJKoZIhvcNAQELBQADggEBACzD 3aF0iWs/wzaiJA2gItxjtR1owRcd4gTcifbUZgFcNBH42ee6fxyQjK06g55M6K10 /SWo72+/ITy/B34r4TuLO2Udte2RDuvvgSNMAxeH+ROHKL281oX8mAzGCW9/9EKU guhB93JC7Azp+DQWHaQTveYpzPXcIJdtFksMXf3c0QlEYUqbzt+4sASCcYA5P0h0 pG7QBIp/H28M4i5oMpXPP8fnGOf44IXc97cvGEshDUPQnfcqvhRCq1Cru8DGPc+o KqhZ6qgyIQkgxe/o1Vl8lDxcTfoSSv4QgvPeqbLkS2Mp0b0SehtsmRj/Lo25ubAz +UOpGZOy5fYeYzV4CKc= -----END CERTIFICATE-----Generated at Fri Apr 17 17:38:01 2026 by rpki-client