$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/326131343a373538333a656635303a3a2f34382d3438203d3e20323135333735.roa File: 326131343a373538333a656635303a3a2f34382d3438203d3e20323135333735.roa (raw, json) Hash identifier: QC+VLR1atMBjLZKqNKRIXRZjoNccmm6wjr6eMvg5Isw= Subject key identifier: AD:57:3A:76:6B:74:E1:6E:C1:23:75:B9:5B:66:1A:B1:1E:0A:63:1B Certificate issuer: /CN=B75F3781BC9C2E7301754988659F92686704E570 Certificate serial: 695D1D92FF4B15F9EDFBEBA1CF3A9636BEA7077A Authority key identifier: B7:5F:37:81:BC:9C:2E:73:01:75:49:88:65:9F:92:68:67:04:E5:70 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B75F3781BC9C2E7301754988659F92686704E570.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/326131343a373538333a656635303a3a2f34382d3438203d3e20323135333735.roa Signing time: Tue 26 May 2026 06:07:20 +0000 ROA not before: Tue 26 May 2026 06:02:20 +0000 ROA not after: Tue 25 May 2027 06:07:20 +0000 asID: 215375 IP address blocks: 2a14:7583:ef50::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/B75F3781BC9C2E7301754988659F92686704E570.crl rsync://rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/B75F3781BC9C2E7301754988659F92686704E570.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B75F3781BC9C2E7301754988659F92686704E570.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 18:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5d:1d:92:ff:4b:15:f9:ed:fb:eb:a1:cf:3a:96:36:be:a7:07:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B75F3781BC9C2E7301754988659F92686704E570 Validity Not Before: May 26 06:02:20 2026 GMT Not After : May 25 06:07:20 2027 GMT Subject: CN=AD573A766B74E16EC12375B95B661AB11E0A631B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:23:95:6e:f8:5c:bf:b6:a4:20:bf:69:75:d3: 7b:48:ef:88:06:93:3e:10:34:4a:b2:c3:49:f6:57: 4c:57:ef:c4:e7:94:07:ad:23:db:25:87:89:62:33: 5e:2b:78:28:1d:fc:bf:08:f9:20:0b:c4:37:c9:31: 7e:4d:03:12:a5:74:51:34:02:74:0d:9d:a4:06:6f: 10:f5:c8:8d:9d:cd:59:43:88:4d:52:48:e1:12:cb: 00:74:01:80:75:dc:91:29:6c:80:25:c5:75:42:c4: da:17:1a:71:f4:6c:6a:55:b9:c7:ee:86:85:bd:aa: 85:4b:d2:35:d4:b8:56:3a:9f:2a:03:b8:57:e6:1d: 32:7c:3e:b8:04:e3:48:28:ce:99:1d:c9:09:95:89: a3:32:d8:f2:11:b7:e4:01:10:c9:ed:d4:3a:d3:cc: 1b:12:43:44:cc:eb:0b:09:5e:09:53:1b:79:83:11: 82:b7:3d:0a:12:a1:71:8f:6f:59:35:35:89:00:db: e6:52:b4:b4:2d:da:5d:09:fe:dd:29:59:6d:e1:7c: fb:aa:0b:f6:88:07:26:9e:64:43:b0:7f:68:33:36: a8:95:7b:d4:5e:7f:be:b3:89:d5:1b:81:42:bd:96: 50:51:9b:7c:57:c5:ea:27:ed:8e:d5:4e:3a:9e:21: 75:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:57:3A:76:6B:74:E1:6E:C1:23:75:B9:5B:66:1A:B1:1E:0A:63:1B X509v3 Authority Key Identifier: keyid:B7:5F:37:81:BC:9C:2E:73:01:75:49:88:65:9F:92:68:67:04:E5:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/B75F3781BC9C2E7301754988659F92686704E570.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B75F3781BC9C2E7301754988659F92686704E570.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/37460529-6992-4fc5-8a17-525b6b275556/1/326131343a373538333a656635303a3a2f34382d3438203d3e20323135333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:ef50::/48 Signature Algorithm: sha256WithRSAEncryption 27:94:11:9b:dc:38:d7:75:bd:91:c0:e8:6c:de:61:3e:e3:e4: 08:4a:f3:a2:ee:a6:95:5f:37:bc:83:12:2c:2f:5a:6a:e0:7d: 2d:0c:a6:23:bd:74:59:7a:3d:ee:b3:59:ab:87:fc:ce:9c:a8: 51:4f:b5:d8:e9:4c:9a:12:b0:3a:3c:20:d2:c0:e5:87:8b:ab: 73:f1:bc:bc:3a:67:22:f4:6f:8a:b6:be:a3:d4:38:d7:4e:0b: cb:ec:e4:07:cb:a7:b2:14:bc:a2:0f:9d:6a:ea:6b:c6:65:3d: 68:d4:da:29:5b:6c:ab:cb:fe:02:09:e9:56:30:88:dc:f7:5f: 63:1e:84:ff:73:6e:f4:c1:d7:f4:0d:a5:de:7a:22:9f:2c:96: 26:f5:2d:0c:a2:fa:3d:58:7c:16:1f:35:d1:8a:45:39:47:fc: 22:70:27:99:61:7b:03:a3:cc:27:8c:60:6c:f4:fa:1d:66:0c: 67:c9:e7:f1:c0:81:31:a5:c4:8a:d1:e2:53:82:ed:af:59:61: e5:6d:ad:73:34:81:92:56:21:a7:32:89:83:ff:53:74:f1:b1: 0f:93:62:3a:54:99:81:9c:cd:a4:d8:91:30:19:d2:cd:7e:7b: 38:ca:fd:22:a7:e1:09:e6:16:81:50:7a:d1:83:80:c7:da:2a: 4e:28:dc:9b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUaV0dkv9LFfnt++uhzzqWNr6nB3owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjc1RjM3ODFCQzlDMkU3MzAxNzU0OTg4NjU5RjkyNjg2 NzA0RTU3MDAeFw0yNjA1MjYwNjAyMjBaFw0yNzA1MjUwNjA3MjBaMDMxMTAvBgNV BAMTKEFENTczQTc2NkI3NEUxNkVDMTIzNzVCOTVCNjYxQUIxMUUwQTYzMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYI5Vu+Fy/tqQgv2l103tI74gG kz4QNEqyw0n2V0xX78TnlAetI9slh4liM14reCgd/L8I+SALxDfJMX5NAxKldFE0 AnQNnaQGbxD1yI2dzVlDiE1SSOESywB0AYB13JEpbIAlxXVCxNoXGnH0bGpVucfu hoW9qoVL0jXUuFY6nyoDuFfmHTJ8PrgE40gozpkdyQmViaMy2PIRt+QBEMnt1DrT zBsSQ0TM6wsJXglTG3mDEYK3PQoSoXGPb1k1NYkA2+ZStLQt2l0J/t0pWW3hfPuq C/aIByaeZEOwf2gzNqiVe9Ref76zidUbgUK9llBRm3xXxeon7Y7VTjqeIXUzAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUrVc6dmt04W7BI3W5W2YasR4KYxswHwYDVR0j BBgwFoAUt183gbycLnMBdUmIZZ+SaGcE5XAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzc0NjA1MjktNjk5Mi00ZmM1LThhMTctNTI1YjZiMjc1 NTU2LzEvQjc1RjM3ODFCQzlDMkU3MzAxNzU0OTg4NjU5RjkyNjg2NzA0RTU3MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9CNzVGMzc4MUJDOUMyRTczMDE3NTQ5ODg2 NTlGOTI2ODY3MDRFNTcwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zNzQ2MDUyOS02OTkyLTRmYzUtOGExNy01MjViNmIyNzU1NTYvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY1NjYzNTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g+9QMA0GCSqGSIb3DQEBCwUAA4IBAQAn lBGb3DjXdb2RwOhs3mE+4+QISvOi7qaVXze8gxIsL1pq4H0tDKYjvXRZej3us1mr h/zOnKhRT7XY6UyaErA6PCDSwOWHi6tz8by8Omci9G+Ktr6j1DjXTgvL7OQHy6ey FLyiD51q6mvGZT1o1NopW2yry/4CCelWMIjc919jHoT/c270wdf0DaXeeiKfLJYm 9S0Movo9WHwWHzXRikU5R/wicCeZYXsDo8wnjGBs9PodZgxnyefxwIExpcSK0eJT gu2vWWHlba1zNIGSViGnMomD/1N08bEPk2I6VJmBnM2k2JEwGdLNfns4yv0ip+EJ 5haBUHrRg4DH2ipOKNyb -----END CERTIFICATE-----Generated at Sat Jun 13 06:40:53 2026 by rpki-client