$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa File: 326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa (raw, json) Hash identifier: IPmhuzBuQk0H65gj7yTl9nlDYGhk58il9d6iAo3tkJ8= Subject key identifier: FE:91:7F:6F:CF:D7:22:0E:5B:26:82:44:90:E8:B0:6E:16:F3:C6:03 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 23C6D5DF442AC0D951E151370CF1FBA30158C990 Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa Signing time: Thu 04 Jun 2026 19:25:48 +0000 ROA not before: Thu 04 Jun 2026 19:20:48 +0000 ROA not after: Thu 03 Jun 2027 19:25:48 +0000 asID: 207682 IP address blocks: 2a06:9f41:a900::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 13:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c6:d5:df:44:2a:c0:d9:51:e1:51:37:0c:f1:fb:a3:01:58:c9:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Jun 4 19:20:48 2026 GMT Not After : Jun 3 19:25:48 2027 GMT Subject: CN=FE917F6FCFD7220E5B26824490E8B06E16F3C603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:07:d2:3a:1f:7f:bc:2a:af:4a:4e:6e:c4: c5:b5:2d:b7:00:67:7e:3c:ed:e7:8e:83:53:21:d3: 4c:74:18:e1:d0:db:49:95:15:b1:12:86:87:6d:32: d7:1e:4e:24:48:59:6e:97:28:01:57:b2:cc:6c:bb: cb:f2:90:a0:2d:a6:43:e2:de:83:e9:b5:c0:fe:b1: 34:01:6b:53:cf:06:4a:b5:68:b8:44:ca:67:45:7d: aa:0b:6c:60:4f:86:64:90:24:3a:55:8d:8e:05:55: 61:47:68:cf:8a:48:b1:b4:ed:e0:c6:ea:37:6f:28: 8c:9c:9a:1b:3c:be:f9:e0:7a:00:fb:af:5e:80:49: d3:2d:b2:32:dd:30:04:f3:d4:78:3a:d4:a5:3b:7f: 9d:6d:fa:c5:03:72:23:cb:48:4e:69:45:a3:30:16: 67:de:aa:b0:fd:6d:90:5c:77:a4:f5:b3:a1:6d:6c: b9:84:2a:d2:09:7b:e0:0f:5f:c4:09:b9:dc:09:6f: 03:90:57:05:7e:53:5e:9a:20:26:4b:17:af:ca:df: 19:0f:db:18:dc:74:3c:bc:83:d5:b9:36:b0:23:df: 27:84:03:6e:dc:7d:0e:8a:f0:56:2e:23:97:13:96: 5e:49:b6:b6:87:4a:37:b2:78:f2:a8:91:98:44:7d: 25:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:91:7F:6F:CF:D7:22:0E:5B:26:82:44:90:E8:B0:6E:16:F3:C6:03 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a613930303a3a2f34382d3438203d3e20323037363832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:a900::/48 Signature Algorithm: sha256WithRSAEncryption 63:04:a2:73:e0:4c:b5:94:81:4f:fd:45:e8:02:cd:39:4c:f0: d5:85:d4:26:84:a1:f1:8a:a0:2f:6b:67:18:cc:50:7c:93:47: 88:1f:34:01:4b:f4:ea:74:47:1b:25:97:a1:f8:6c:b4:ac:17: d0:d5:22:17:dc:f4:e9:45:19:ee:3b:b0:2b:40:26:8f:c1:66: c8:e1:c1:0b:b7:1b:06:45:db:c7:8d:0b:10:11:04:12:fb:84: 1d:e5:4e:53:86:e9:bc:cf:d3:1b:87:ac:fb:87:e2:4a:50:44: a8:a0:f1:f9:65:81:03:e0:7d:d7:0d:fc:7f:a4:dc:71:d1:04: a0:e8:ec:39:5e:4e:46:35:fd:2f:c6:8e:50:32:da:0e:81:1b: 34:4c:c8:0a:34:8a:f1:30:d0:e9:d8:b8:48:4a:81:22:2e:8e: 16:8a:bd:2a:1d:43:ef:eb:94:dd:ef:b5:a8:c8:8f:20:62:2b: 62:84:47:e6:11:b3:2c:29:6e:74:db:b6:e2:af:ba:ca:58:1f: 07:33:71:98:68:bc:5e:4d:72:2c:9c:f3:7d:a4:ea:de:3e:8e: d4:85:86:45:af:d1:15:38:8c:fc:44:b2:f7:b5:28:0d:1d:a2: e6:35:00:7b:73:f8:04:2f:7d:dd:bb:c9:6d:0d:a3:18:fc:ba: 72:4a:f5:a0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUI8bV30QqwNlR4VE3DPH7owFYyZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjA2MDQxOTIwNDhaFw0yNzA2MDMxOTI1NDhaMDMxMTAvBgNV BAMTKEZFOTE3RjZGQ0ZENzIyMEU1QjI2ODI0NDkwRThCMDZFMTZGM0M2MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzuwfSOh9/vCqvSk5uxMW1LbcA Z3487eeOg1Mh00x0GOHQ20mVFbEShodtMtceTiRIWW6XKAFXssxsu8vykKAtpkPi 3oPptcD+sTQBa1PPBkq1aLhEymdFfaoLbGBPhmSQJDpVjY4FVWFHaM+KSLG07eDG 6jdvKIycmhs8vvngegD7r16ASdMtsjLdMATz1Hg61KU7f51t+sUDciPLSE5pRaMw FmfeqrD9bZBcd6T1s6FtbLmEKtIJe+APX8QJudwJbwOQVwV+U16aICZLF6/K3xkP 2xjcdDy8g9W5NrAj3yeEA27cfQ6K8FYuI5cTll5JtraHSjeyePKokZhEfSXRAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQU/pF/b8/XIg5bJoJEkOiwbhbzxgMwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2E2MTM5MzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzNzM2MzgzMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoGn0GpADANBgkqhkiG9w0BAQsFAAOCAQEAYwSic+BMtZSBT/1F 6ALNOUzw1YXUJoSh8YqgL2tnGMxQfJNHiB80AUv06nRHGyWXofhstKwX0NUiF9z0 6UUZ7juwK0Amj8FmyOHBC7cbBkXbx40LEBEEEvuEHeVOU4bpvM/TG4es+4fiSlBE qKDx+WWBA+B91w38f6TccdEEoOjsOV5ORjX9L8aOUDLaDoEbNEzICjSK8TDQ6di4 SEqBIi6OFoq9Kh1D7+uU3e+1qMiPIGIrYoRH5hGzLCludNu24q+6ylgfBzNxmGi8 Xk1yLJzzfaTq3j6O1IWGRa/RFTiM/ESy97UoDR2i5jUAe3P4BC993bvJbQ2jGPy6 ckr1oA== -----END CERTIFICATE-----Generated at Sun Jun 14 02:16:15 2026 by rpki-client