$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3530303a3a2f34302d3438203d3e20323134393239.roa File: 326130363a396634313a3530303a3a2f34302d3438203d3e20323134393239.roa (raw, json) Hash identifier: wyHm6Xb4TACq8vR/cNeWh2WnIEs/uh/Bf1AaKmhxFVI= Subject key identifier: D1:1B:98:E0:67:E9:94:84:5C:BE:02:A8:99:DD:0A:61:EF:3D:DB:8C Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 20FD46830F86CDE3E944E6B997654CCD04E01856 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3530303a3a2f34302d3438203d3e20323134393239.roa Signing time: Wed 01 Apr 2026 06:18:23 +0000 ROA not before: Wed 01 Apr 2026 06:13:23 +0000 ROA not after: Wed 31 Mar 2027 06:18:23 +0000 asID: 214929 IP address blocks: 2a06:9f41:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 09:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:fd:46:83:0f:86:cd:e3:e9:44:e6:b9:97:65:4c:cd:04:e0:18:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Apr 1 06:13:23 2026 GMT Not After : Mar 31 06:18:23 2027 GMT Subject: CN=D11B98E067E994845CBE02A899DD0A61EF3DDB8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:47:c1:bd:66:e6:a5:9d:15:68:d9:75:85:a0: c3:4f:78:61:a3:2a:4b:ee:cf:6c:f8:0f:c8:de:e3: e8:6f:cd:fe:a1:9d:0e:3f:5a:2f:05:01:ce:4e:f6: 31:e4:43:72:74:29:62:aa:26:28:b5:00:e5:0c:a7: 99:51:47:28:86:ab:59:0a:57:ed:45:67:1d:2a:1d: 1f:51:bb:b6:19:de:5f:c6:f7:1c:69:95:6f:72:6b: 11:de:16:68:53:68:28:54:f5:92:ff:21:f7:62:bd: db:61:3d:0f:fb:95:e6:b4:3e:56:16:01:78:aa:48: 7e:2b:84:3f:11:06:11:d6:87:21:ec:39:5a:57:1f: aa:25:81:76:f6:e8:59:dc:7c:f5:20:df:a2:04:cd: c9:f2:45:c8:e5:04:8f:c4:6a:ad:66:26:cb:fe:50: a4:8b:ae:93:ad:7d:17:7b:95:22:c9:4a:5d:d0:26: 1d:ae:7f:e4:cf:fa:a5:f2:5b:09:8f:25:c6:39:91: 7d:ed:bd:d5:3e:d1:7e:95:c2:b6:be:3a:02:33:6a: 24:84:8d:76:65:20:dc:30:0f:26:1c:9c:86:d9:fe: d4:c9:bd:47:f9:74:b9:c0:ac:73:50:9d:98:f2:4a: 2f:34:06:40:c6:8e:39:2e:ad:2f:e6:a6:68:88:6b: 8b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1B:98:E0:67:E9:94:84:5C:BE:02:A8:99:DD:0A:61:EF:3D:DB:8C X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3530303a3a2f34302d3438203d3e20323134393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:500::/40 Signature Algorithm: sha256WithRSAEncryption 90:0c:9e:ff:ee:b6:13:c4:4f:f7:40:d0:89:2f:6a:c4:19:00: 68:db:87:e2:8f:f1:ab:63:d7:ef:17:5e:49:eb:2f:92:e3:42: 0e:98:1a:e2:b9:19:66:6f:38:c5:3d:d0:74:13:ab:95:f2:69: ea:98:0e:d0:de:20:61:6a:b1:83:7b:af:82:91:70:23:8c:d5: 91:4e:63:47:f3:a4:01:d8:74:35:9c:29:db:88:e4:79:c7:3c: 66:46:74:35:d3:ee:db:8f:a1:e9:c1:1c:84:65:9e:99:b9:7e: 65:dd:98:26:04:78:6e:29:f3:a2:df:ac:0f:ee:4b:87:5a:79: 6c:a4:41:25:2d:03:31:03:6b:db:0e:9f:09:f7:c3:23:37:a2: fa:66:f4:50:ba:72:89:7d:f2:9f:a1:3e:fb:b9:f8:c5:74:6d: f7:97:94:67:da:c7:ac:8a:0d:0a:b8:67:6a:7a:67:18:91:82: b7:85:d4:fe:d1:6d:01:0f:2a:ec:63:5d:d5:15:9e:d4:f0:7d: b2:7b:36:86:7a:dc:26:3a:27:bb:7a:0b:d4:d1:82:93:15:7e: 49:88:ce:f0:a8:6d:de:a8:2c:da:3a:4b:f7:1e:c1:a7:45:9d: 8e:a2:79:ca:b4:74:96:4b:70:8d:dd:aa:0f:ff:bd:3f:da:96: df:0d:b4:6e -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUIP1Ggw+GzePpROa5l2VMzQTgGFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjA0MDEwNjEzMjNaFw0yNzAzMzEwNjE4MjNaMDMxMTAvBgNV BAMTKEQxMUI5OEUwNjdFOTk0ODQ1Q0JFMDJBODk5REQwQTYxRUYzRERCOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjR8G9ZualnRVo2XWFoMNPeGGj Kkvuz2z4D8je4+hvzf6hnQ4/Wi8FAc5O9jHkQ3J0KWKqJii1AOUMp5lRRyiGq1kK V+1FZx0qHR9Ru7YZ3l/G9xxplW9yaxHeFmhTaChU9ZL/IfdivdthPQ/7lea0PlYW AXiqSH4rhD8RBhHWhyHsOVpXH6olgXb26FncfPUg36IEzcnyRcjlBI/Eaq1mJsv+ UKSLrpOtfRd7lSLJSl3QJh2uf+TP+qXyWwmPJcY5kX3tvdU+0X6Vwra+OgIzaiSE jXZlINwwDyYcnIbZ/tTJvUf5dLnArHNQnZjySi80BkDGjjkurS/mpmiIa4tFAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQU0RuY4GfplIRcvgKomd0KYe8924wwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzNTMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMxMzQzOTMyMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqBp9BBTANBgkqhkiG9w0BAQsFAAOCAQEAkAye/+62E8RP90DQiS9q xBkAaNuH4o/xq2PX7xdeSesvkuNCDpga4rkZZm84xT3QdBOrlfJp6pgO0N4gYWqx g3uvgpFwI4zVkU5jR/OkAdh0NZwp24jkecc8ZkZ0NdPu24+h6cEchGWembl+Zd2Y JgR4binzot+sD+5Lh1p5bKRBJS0DMQNr2w6fCffDIzei+mb0ULpyiX3yn6E++7n4 xXRt95eUZ9rHrIoNCrhnanpnGJGCt4XU/tFtAQ8q7GNd1RWe1PB9sns2hnrcJjon u3oL1NGCkxV+SYjO8Kht3qgs2jpL9x7Bp0WdjqJ5yrR0lktwjd2qD/+9P9qW3w20 bg== -----END CERTIFICATE-----Generated at Fri Apr 17 18:35:26 2026 by rpki-client