$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa File: 326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa (raw, json) Hash identifier: JCFWJgEKOIfNC/UVmwFEJVNgIuAfElA5+DwW/Ff9XGw= Subject key identifier: 0C:3A:EE:7C:23:6D:E9:DF:6F:9F:4D:D6:C0:8A:1E:20:B4:EC:73:D3 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 57880F8D7E3D2FD1BE4A1EBCB6EB7EC1DD544008 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa Signing time: Fri 17 Apr 2026 17:01:31 +0000 ROA not before: Fri 17 Apr 2026 16:56:31 +0000 ROA not after: Fri 16 Apr 2027 17:01:31 +0000 asID: 216375 IP address blocks: 2a14:7581:4550::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 16:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:88:0f:8d:7e:3d:2f:d1:be:4a:1e:bc:b6:eb:7e:c1:dd:54:40:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Apr 17 16:56:31 2026 GMT Not After : Apr 16 17:01:31 2027 GMT Subject: CN=0C3AEE7C236DE9DF6F9F4DD6C08A1E20B4EC73D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fd:30:d7:da:af:d1:5e:3a:0b:a6:4f:6b:64: 30:bd:87:fa:91:44:af:17:ec:26:dd:7a:52:4d:22: 86:e9:c3:f9:cb:68:e1:e3:6b:4d:8a:1d:28:22:50: c1:60:77:da:3e:5b:50:fd:85:2d:60:49:bc:00:64: 20:cf:f8:2c:0f:ac:16:7c:c8:ca:79:65:b5:96:1c: b2:0b:4f:ae:a1:a1:b0:7f:55:cb:1d:a4:25:68:85: 06:bf:da:9b:21:67:e4:42:22:62:1f:03:af:96:40: aa:ec:5a:35:ee:50:6e:de:97:d2:2f:81:e1:6a:e1: 5c:37:ff:01:08:69:8c:d0:af:d3:7c:eb:6f:1d:21: 7b:20:00:13:91:a0:21:7a:b9:aa:f4:82:19:1b:45: 1f:36:ce:57:45:b0:ea:92:d1:8b:2e:3c:1e:44:f9: 3c:a2:07:44:79:3f:be:57:48:d8:5a:6b:29:17:2b: 9c:6c:66:9d:8b:a9:d3:e7:3f:96:05:84:9c:4d:ea: 36:cc:bf:40:f6:9c:16:5d:59:27:bc:c9:6c:01:25: 5c:1b:f6:ba:cb:27:37:5d:3c:74:4b:3b:b8:5f:c9: 7d:7e:91:6a:49:b0:13:2f:3e:41:7b:56:ad:43:c7: a7:af:7d:fb:3d:60:92:a9:0e:f5:18:04:98:b4:29: 72:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3A:EE:7C:23:6D:E9:DF:6F:9F:4D:D6:C0:8A:1E:20:B4:EC:73:D3 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535303a3a2f34342d3438203d3e20323136333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4550::/44 Signature Algorithm: sha256WithRSAEncryption 87:10:f2:81:a5:dd:51:92:da:f2:9b:14:44:55:d7:e1:12:5d: ed:e6:34:7d:01:80:7f:d8:36:fa:4e:a5:cb:1d:ac:c4:71:97: e5:3f:a3:f6:09:0f:42:fe:86:f7:9f:5b:72:b9:ca:53:61:32: c0:f9:4a:b5:19:e3:06:a7:4d:aa:a4:da:f7:a3:fa:05:38:41: d1:e3:d6:40:14:71:5e:b7:fd:b0:de:39:cb:0f:01:22:b6:49: 40:f9:f4:eb:40:1b:31:1c:90:60:7e:62:a3:ba:66:4e:9e:e0: c9:80:15:ce:eb:a9:34:be:4a:6c:a2:73:bc:5c:71:67:3d:e3: fa:3a:1a:0e:6c:fa:72:47:1f:a3:e7:b8:34:4c:8e:ae:fc:9a: 04:1f:65:ea:eb:69:bb:5b:a7:7d:1c:93:13:74:cd:05:f4:72: 54:1a:77:9a:0c:71:7b:3d:24:f8:35:81:15:33:4d:52:b3:c4: db:3b:d5:93:f8:51:78:0d:6d:bd:ec:3d:45:17:bd:8b:3e:6b: 1b:69:9e:a2:37:59:23:88:29:0f:d6:8c:8b:50:81:e2:41:1a: e8:cf:58:64:6d:da:04:4b:c5:ed:59:13:28:7b:0d:31:71:81: 2a:93:a6:72:ab:10:a0:f4:0e:25:e1:30:6e:59:11:20:a1:10: aa:6f:5d:aa -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUV4gPjX49L9G+Sh68tut+wd1UQAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjA0MTcxNjU2MzFaFw0yNzA0MTYxNzAxMzFaMDMxMTAvBgNV BAMTKDBDM0FFRTdDMjM2REU5REY2RjlGNERENkMwOEExRTIwQjRFQzczRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD/TDX2q/RXjoLpk9rZDC9h/qR RK8X7CbdelJNIobpw/nLaOHja02KHSgiUMFgd9o+W1D9hS1gSbwAZCDP+CwPrBZ8 yMp5ZbWWHLILT66hobB/VcsdpCVohQa/2pshZ+RCImIfA6+WQKrsWjXuUG7el9Iv geFq4Vw3/wEIaYzQr9N8628dIXsgABORoCF6uar0ghkbRR82zldFsOqS0YsuPB5E +TyiB0R5P75XSNhaaykXK5xsZp2LqdPnP5YFhJxN6jbMv0D2nBZdWSe8yWwBJVwb 9rrLJzddPHRLO7hfyX1+kWpJsBMvPkF7Vq1Dx6evffs9YJKpDvUYBJi0KXLhAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUDDrufCNt6d9vn03WwIoeILTsc9MwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzUzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM2MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUVQMA0GCSqGSIb3DQEBCwUAA4IBAQCH EPKBpd1RktrymxREVdfhEl3t5jR9AYB/2Db6TqXLHazEcZflP6P2CQ9C/ob3n1ty ucpTYTLA+Uq1GeMGp02qpNr3o/oFOEHR49ZAFHFet/2w3jnLDwEitklA+fTrQBsx HJBgfmKjumZOnuDJgBXO66k0vkpsonO8XHFnPeP6OhoObPpyRx+j57g0TI6u/JoE H2Xq62m7W6d9HJMTdM0F9HJUGneaDHF7PST4NYEVM01Ss8TbO9WT+FF4DW297D1F F72LPmsbaZ6iN1kjiCkP1oyLUIHiQRroz1hkbdoES8XtWRMoew0xcYEqk6ZyqxCg 9A4l4TBuWREgoRCqb12q -----END CERTIFICATE-----Generated at Fri Apr 17 23:42:09 2026 by rpki-client