$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20323135333739.roa File: 326131343a373538313a343835663a3a2f34382d3438203d3e20323135333739.roa (raw, json) Hash identifier: W5Heh9gse8mKUAV/4KyRLY8JwjKj+jz/mhW/8Nexm6w= Subject key identifier: 2D:59:9D:53:49:DC:B6:06:13:58:46:43:EC:91:F2:47:F3:8E:AA:22 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 2B7F5E1222DA008486BA925D38BA37953727EA00 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20323135333739.roa Signing time: Sun 05 Apr 2026 12:01:31 +0000 ROA not before: Sun 05 Apr 2026 11:56:31 +0000 ROA not after: Sun 04 Apr 2027 12:01:31 +0000 asID: 215379 IP address blocks: 2a14:7581:485f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 12:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:7f:5e:12:22:da:00:84:86:ba:92:5d:38:ba:37:95:37:27:ea:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Apr 5 11:56:31 2026 GMT Not After : Apr 4 12:01:31 2027 GMT Subject: CN=2D599D5349DCB60613584643EC91F247F38EAA22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5a:01:df:ef:ef:9d:42:fe:e0:7f:e5:9e:45: 65:b5:6e:88:88:ff:2f:2a:19:3f:31:61:d5:41:86: 8e:35:6f:66:e9:f8:54:8a:85:b9:ea:c6:a4:8d:94: 06:d6:4d:d9:ed:b2:e7:70:86:ca:74:0b:a3:fb:59: 32:45:62:d6:8f:0c:85:e7:37:19:58:96:b6:68:7e: 5c:c8:06:5f:00:0a:f8:ed:37:f0:88:85:57:8e:04: af:cc:b9:18:e1:c7:2a:41:c8:a4:85:99:00:89:36: 99:c7:9d:55:e7:18:b1:8f:b0:91:64:ed:49:1a:dd: 6f:45:eb:70:4c:a1:d1:bb:d3:8a:03:18:c6:c7:ad: 88:25:42:62:c7:c9:a5:4c:9c:a7:99:9c:55:b5:23: 14:07:da:8a:f2:8d:c6:85:0b:40:d9:42:bc:be:de: 80:a4:b3:ac:02:4e:40:9e:b3:9c:50:df:77:b1:06: 7e:8f:47:37:e3:94:8c:45:f2:73:f1:1a:50:95:70: 5e:e4:ee:41:cc:6e:84:a3:af:07:17:6f:57:10:33: 88:d4:f8:63:d1:2d:f2:21:7c:a4:16:14:60:60:60: 4c:e4:88:c7:eb:a6:16:60:cc:1d:3c:59:b0:7b:06: 6a:7c:04:cc:2a:75:00:23:38:8e:45:71:e5:7f:84: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:59:9D:53:49:DC:B6:06:13:58:46:43:EC:91:F2:47:F3:8E:AA:22 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343835663a3a2f34382d3438203d3e20323135333739.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:485f::/48 Signature Algorithm: sha256WithRSAEncryption 02:4a:17:d7:21:c8:e5:a5:20:29:8a:b8:3a:9d:01:11:ac:d9: 17:72:69:94:d4:b4:df:7a:12:8b:12:73:ee:ae:dc:4e:27:14: 65:08:2a:c8:e9:56:2d:fa:b4:bb:29:ac:0c:e7:86:96:c5:c2: 95:ed:5c:f5:c1:57:73:55:9c:bf:79:7b:55:3f:ef:2d:78:6d: 33:09:d1:e9:2e:86:12:2d:9f:3c:0c:b3:73:7e:8c:00:d6:94: f7:a1:1e:50:e0:97:e3:85:5d:56:55:dd:7e:73:c4:6e:a6:b9: d2:d2:fe:db:23:c9:3c:13:7d:1c:07:b3:20:51:06:d2:84:80: e0:bf:e0:97:8a:df:28:73:00:56:9a:5c:52:0a:3f:3a:e5:26: 54:9f:ad:4b:49:e9:02:3d:c7:cf:2f:fd:5d:bf:ad:4b:90:b4: 2d:a5:ca:70:fd:bc:0f:06:f6:96:3d:95:b2:04:14:9d:c2:14: 83:1f:24:44:35:3c:77:f9:ae:a1:19:b6:31:fe:3e:cc:08:d1: 18:1d:d5:5f:be:a9:55:fd:e2:70:e3:eb:09:2c:90:53:2d:29: 3c:30:94:d4:29:72:28:04:f0:c7:b8:35:04:01:25:48:1e:63: b3:e3:b4:84:74:d1:83:a0:1f:28:d8:7b:e7:e2:21:b1:80:6b: 5a:cd:4b:bb -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUK39eEiLaAISGupJdOLo3lTcn6gAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjA0MDUxMTU2MzFaFw0yNzA0MDQxMjAxMzFaMDMxMTAvBgNV BAMTKDJENTk5RDUzNDlEQ0I2MDYxMzU4NDY0M0VDOTFGMjQ3RjM4RUFBMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNWgHf7++dQv7gf+WeRWW1boiI /y8qGT8xYdVBho41b2bp+FSKhbnqxqSNlAbWTdntsudwhsp0C6P7WTJFYtaPDIXn NxlYlrZoflzIBl8ACvjtN/CIhVeOBK/MuRjhxypByKSFmQCJNpnHnVXnGLGPsJFk 7Uka3W9F63BModG704oDGMbHrYglQmLHyaVMnKeZnFW1IxQH2oryjcaFC0DZQry+ 3oCks6wCTkCes5xQ33exBn6PRzfjlIxF8nPxGlCVcF7k7kHMboSjrwcXb1cQM4jU +GPRLfIhfKQWFGBgYEzkiMfrphZgzB08WbB7Bmp8BMwqdQAjOI5FceV/hAbHAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQULVmdU0nctgYTWEZD7JHyR/OOqiIwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzgzNTY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNzM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gUhfMA0GCSqGSIb3DQEBCwUAA4IBAQAC ShfXIcjlpSApirg6nQERrNkXcmmU1LTfehKLEnPurtxOJxRlCCrI6VYt+rS7KawM 54aWxcKV7Vz1wVdzVZy/eXtVP+8teG0zCdHpLoYSLZ88DLNzfowA1pT3oR5Q4Jfj hV1WVd1+c8RuprnS0v7bI8k8E30cB7MgUQbShIDgv+CXit8ocwBWmlxSCj865SZU n61LSekCPcfPL/1dv61LkLQtpcpw/bwPBvaWPZWyBBSdwhSDHyRENTx3+a6hGbYx /j7MCNEYHdVfvqlV/eJw4+sJLJBTLSk8MJTUKXIoBPDHuDUEASVIHmOz47SEdNGD oB8o2Hvn4iGxgGtazUu7 -----END CERTIFICATE-----Generated at Fri Apr 17 18:45:14 2026 by rpki-client