$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534323a3a2f34342d3434203d3e20323134343531.roa File: 326130623a396534323a3a2f34342d3434203d3e20323134343531.roa (raw, json) Hash identifier: iXnMc+V769vdVg0NEzGcTcO7c12YMN36cAwaBoXuTwg= Subject key identifier: 26:BD:E3:B5:95:E0:7C:C0:D6:63:D3:67:D8:26:3B:80:68:F0:3C:04 Certificate issuer: /CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Certificate serial: 1E9FD922B87FC8583F793AAACB59E139F6F32BF7 Authority key identifier: B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534323a3a2f34342d3434203d3e20323134343531.roa Signing time: Thu 16 Apr 2026 05:55:11 +0000 ROA not before: Thu 16 Apr 2026 05:50:11 +0000 ROA not after: Thu 15 Apr 2027 05:55:11 +0000 asID: 214451 IP address blocks: 2a0b:9e42::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 22:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:9f:d9:22:b8:7f:c8:58:3f:79:3a:aa:cb:59:e1:39:f6:f3:2b:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5F5EC5C567FD489BE73902862EBEE81CCDEE35C Validity Not Before: Apr 16 05:50:11 2026 GMT Not After : Apr 15 05:55:11 2027 GMT Subject: CN=26BDE3B595E07CC0D663D367D8263B8068F03C04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a0:7e:41:af:b9:d7:78:20:4e:87:b5:46:ae: da:d8:93:fc:41:41:04:58:37:0b:d7:0e:73:1b:de: 17:63:60:1d:74:20:a3:68:83:bb:6d:9a:af:58:40: 1f:a2:47:e9:1b:ae:88:c8:18:54:2d:a6:64:59:db: 1c:fd:6b:b3:75:fd:e5:1f:66:e1:6d:ab:c0:3a:e0: 63:8d:0d:94:27:14:80:d3:c5:14:0b:c8:83:cb:2e: 70:c8:60:74:ec:68:78:db:a2:9b:13:e1:68:fd:e6: 65:8d:1e:5e:34:f9:29:ad:7e:3c:20:d3:6d:f5:9c: 69:b2:f7:bc:9c:b1:77:d2:8e:35:d2:3d:07:8b:5e: b7:d6:38:7b:aa:97:68:1c:6e:bb:04:6b:7c:e7:11: eb:53:9f:d1:9d:2f:48:23:29:3e:38:1a:3d:e8:8f: 63:5e:1a:66:42:44:42:e1:ef:43:fd:dc:f4:e2:0a: b8:ed:16:b4:58:72:73:85:c0:77:52:65:a2:48:bf: d3:4c:74:d8:99:a5:93:f2:81:39:bd:dc:1d:1b:0b: 51:bb:7a:9a:22:55:07:b7:74:98:14:98:b2:57:1f: 40:b7:f5:a3:fc:4b:8c:6e:58:1d:bf:8e:81:0d:1c: e7:d9:fd:79:3d:58:6a:1b:36:95:4b:a1:8b:15:13: cb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BD:E3:B5:95:E0:7C:C0:D6:63:D3:67:D8:26:3B:80:68:F0:3C:04 X509v3 Authority Key Identifier: keyid:B5:F5:EC:5C:56:7F:D4:89:BE:73:90:28:62:EB:EE:81:CC:DE:E3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/B5F5EC5C567FD489BE73902862EBEE81CCDEE35C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/5/326130623a396534323a3a2f34342d3434203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:9e42::/44 Signature Algorithm: sha256WithRSAEncryption cc:a2:58:d2:56:41:80:2c:0e:d8:57:4f:96:ba:a2:f0:9b:9a: 5c:ee:19:ca:1a:26:4c:38:c5:b4:f3:cb:76:b2:b8:89:99:b4: ae:ae:85:25:66:c8:4f:56:29:d5:cd:e7:c9:c5:8f:f2:cc:8b: ab:c8:ab:8e:97:7a:6e:6c:f9:89:21:63:b1:e9:af:c7:17:ab: 3a:9f:9f:52:65:e0:21:ae:3f:7a:a3:7c:b3:9e:9b:df:5d:7e: 5b:6e:0e:45:1f:7f:34:a0:82:d8:9f:84:01:dc:fe:5a:ea:50: a6:60:65:cb:3f:75:af:15:33:44:77:2d:25:fd:14:23:e0:a1: 75:a0:a0:04:ef:7f:f9:fc:d6:29:5b:b8:11:ab:84:68:0d:15: f3:83:11:c2:9c:28:9e:e3:b1:b7:0a:a3:38:3c:eb:5a:c8:ec: 61:85:ee:7d:4d:a2:08:11:38:53:86:f1:65:87:51:f4:39:ff: f9:a6:2b:21:19:28:ba:ac:d6:e6:1c:07:c1:c9:d9:40:34:09: 2c:9a:1c:04:83:c9:25:cb:5d:7f:11:8b:ed:08:f1:7c:d9:a8: f6:ab:aa:f3:05:02:b2:33:d1:d6:0a:3a:cb:70:e3:54:eb:92: 74:ab:30:c6:a3:33:d5:07:8d:03:04:b1:78:dd:54:c8:6d:61: 67:55:e8:22 -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgIUHp/ZIrh/yFg/eTqqy1nhOfbzK/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFD Q0RFRTM1QzAeFw0yNjA0MTYwNTUwMTFaFw0yNzA0MTUwNTU1MTFaMDMxMTAvBgNV BAMTKDI2QkRFM0I1OTVFMDdDQzBENjYzRDM2N0Q4MjYzQjgwNjhGMDNDMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLoH5Br7nXeCBOh7VGrtrYk/xB QQRYNwvXDnMb3hdjYB10IKNog7ttmq9YQB+iR+kbrojIGFQtpmRZ2xz9a7N1/eUf ZuFtq8A64GONDZQnFIDTxRQLyIPLLnDIYHTsaHjbopsT4Wj95mWNHl40+Smtfjwg 0231nGmy97ycsXfSjjXSPQeLXrfWOHuql2gcbrsEa3znEetTn9GdL0gjKT44Gj3o j2NeGmZCRELh70P93PTiCrjtFrRYcnOFwHdSZaJIv9NMdNiZpZPygTm93B0bC1G7 epoiVQe3dJgUmLJXH0C39aP8S4xuWB2/joENHOfZ/Xk9WGobNpVLoYsVE8tzAgMB AAGjggJwMIICbDAdBgNVHQ4EFgQUJr3jtZXgfMDWY9Nn2CY7gGjwPAQwHwYDVR0j BBgwFoAUtfXsXFZ/1Im+c5AoYuvugcze41wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzUvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RFRTM1Qy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQjVGNUVDNUM1NjdGRDQ4OUJFNzM5MDI4NjJFQkVFODFDQ0RF RTM1Qy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjJjZjhiYTct Y2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdlOTUwLzUvMzI2MTMwNjIzYTM5NjUzNDMy M2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIzMTM0MzQzNTMxLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcE KgueQgAAMA0GCSqGSIb3DQEBCwUAA4IBAQDMoljSVkGALA7YV0+WuqLwm5pc7hnK GiZMOMW088t2sriJmbSuroUlZshPVinVzefJxY/yzIuryKuOl3pubPmJIWOx6a/H F6s6n59SZeAhrj96o3yznpvfXX5bbg5FH380oILYn4QB3P5a6lCmYGXLP3WvFTNE dy0l/RQj4KF1oKAE73/5/NYpW7gRq4RoDRXzgxHCnCie47G3CqM4POtayOxhhe59 TaIIEThThvFlh1H0Of/5pishGSi6rNbmHAfBydlANAksmhwEg8kly11/EYvtCPF8 2aj2q6rzBQKyM9HWCjrLcONU65J0qzDGozPVB40DBLF43VTIbWFnVegi -----END CERTIFICATE-----Generated at Fri Apr 17 05:24:59 2026 by rpki-client