$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa File: 326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa (raw, json) Hash identifier: eylv3pM8cCS5agfH8t/3YdzCfQAg5TuoUu9iOo1hCUQ= Subject key identifier: 92:F0:FB:71:80:62:87:CC:80:18:C7:CC:AC:9E:47:54:11:16:1F:70 Certificate issuer: /CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Certificate serial: 216DB5CBC61C17B8F20527449404DAB02C618A8C Authority key identifier: B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa Signing time: Fri 05 Jun 2026 13:25:51 +0000 ROA not before: Fri 05 Jun 2026 13:20:51 +0000 ROA not after: Fri 04 Jun 2027 13:25:51 +0000 asID: 216455 IP address blocks: 2a07:54c7:5000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 00:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6d:b5:cb:c6:1c:17:b8:f2:05:27:44:94:04:da:b0:2c:61:8a:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Validity Not Before: Jun 5 13:20:51 2026 GMT Not After : Jun 4 13:25:51 2027 GMT Subject: CN=92F0FB71806287CC8018C7CCAC9E475411161F70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a6:3e:82:36:45:dc:73:e9:f0:54:43:60:da: 13:e0:3c:fa:c7:ee:3e:63:76:d4:2d:29:56:a7:45: d5:db:89:d1:b5:7e:3d:8f:67:02:e8:da:13:87:96: 27:5d:0a:d4:69:fc:11:62:43:a8:1f:d8:3c:52:9d: eb:30:e2:10:c6:16:f5:9d:cf:d8:e8:99:d0:79:1c: 75:ca:11:48:d0:b0:23:9c:c0:7c:c6:a8:29:3e:2a: f1:f0:2c:29:b8:b4:04:ed:9e:bf:ec:7e:41:df:98: ab:ec:71:68:ea:00:63:dd:66:28:16:ab:60:eb:53: 22:ab:b5:a5:29:53:be:f0:ac:20:8c:cc:6d:9e:52: cd:b8:7e:80:f8:cb:b7:19:ac:3e:e3:c9:05:04:a8: eb:de:f3:48:de:74:9b:7a:26:49:22:cb:5f:64:ae: 85:aa:b1:92:0b:93:75:cf:bb:89:55:e4:ed:64:4b: 6f:43:05:b2:4e:47:41:89:f9:1c:03:89:26:37:bf: b1:6f:2f:93:bf:fb:44:da:5e:e9:62:3b:49:ac:1b: d9:ce:e9:ce:ea:b0:8f:de:cf:0d:d4:d5:95:43:ee: b2:e1:15:e2:57:a9:73:05:a1:0f:99:1f:c1:91:c0: 14:c4:b8:66:30:e1:11:42:ee:78:a8:5e:48:38:dc: 06:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F0:FB:71:80:62:87:CC:80:18:C7:CC:AC:9E:47:54:11:16:1F:70 X509v3 Authority Key Identifier: keyid:B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353030303a3a2f33362d3336203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5000::/36 Signature Algorithm: sha256WithRSAEncryption 82:77:7c:37:66:5e:23:1e:4e:f2:27:2a:df:eb:74:97:ff:41: 61:cd:09:ec:d1:a5:11:36:cf:73:ee:db:1f:4d:21:cc:08:91: 83:5a:dd:70:d4:11:fc:bc:fb:ce:71:e3:1d:58:c1:8b:48:29: 99:6f:68:78:d5:36:3d:a3:92:0b:a5:10:25:22:cf:fd:60:7d: bb:6f:ed:04:55:2c:8f:1e:3d:d6:1f:8a:97:86:0c:67:c9:76: db:54:d4:d7:76:62:97:01:2c:1c:80:c8:32:c4:88:e8:77:e6: bf:69:13:33:35:9c:96:7b:4e:69:d2:f5:23:cb:b2:8d:dc:3b: d9:ac:df:5b:cb:53:ba:27:56:de:8a:43:b8:82:b6:2b:0b:e9: 4b:b6:80:75:5b:4a:7c:6c:bf:d0:12:5a:6f:e6:1b:25:2c:14: 25:f6:7f:9a:92:3f:c3:69:8e:49:25:93:4c:63:1b:6a:f5:96: 76:2c:30:e1:ee:81:4f:6b:e6:01:8c:99:f4:8e:55:66:16:14: ac:c8:01:86:02:2e:30:27:af:22:b7:93:0e:e3:93:71:eb:b6: 42:6e:41:8d:e3:9b:38:7b:72:f2:e3:4f:fd:45:ca:b1:1e:d6: 6b:ab:b3:6e:c9:df:61:2a:cc:51:7f:c4:77:ab:9d:bf:b4:cc: 18:45:50:78 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUIW21y8YcF7jyBSdElATasCxhiowwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgy RkU2MjY3OTAeFw0yNjA2MDUxMzIwNTFaFw0yNzA2MDQxMzI1NTFaMDMxMTAvBgNV BAMTKDkyRjBGQjcxODA2Mjg3Q0M4MDE4QzdDQ0FDOUU0NzU0MTExNjFGNzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrpj6CNkXcc+nwVENg2hPgPPrH 7j5jdtQtKVanRdXbidG1fj2PZwLo2hOHliddCtRp/BFiQ6gf2DxSnesw4hDGFvWd z9jomdB5HHXKEUjQsCOcwHzGqCk+KvHwLCm4tATtnr/sfkHfmKvscWjqAGPdZigW q2DrUyKrtaUpU77wrCCMzG2eUs24foD4y7cZrD7jyQUEqOve80jedJt6Jkkiy19k roWqsZILk3XPu4lV5O1kS29DBbJOR0GJ+RwDiSY3v7FvL5O/+0TaXuliO0msG9nO 6c7qsI/ezw3U1ZVD7rLhFeJXqXMFoQ+ZH8GRwBTEuGYw4RFC7nioXkg43AaNAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUkvD7cYBih8yAGMfMrJ5HVBEWH3AwHwYDVR0j BBgwFoAUs/FzfpDyQNerszxy+E1xSC/mJnkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzIvQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgyRkU2MjY3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvNC9CM0YxNzM3RTkwRjI0MEQ3QUJCMzNDNzJG ODRENzE0ODJGRTYyNjc5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMi8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgdUx1AwDQYJKoZIhvcNAQELBQADggEBAIJ3 fDdmXiMeTvInKt/rdJf/QWHNCezRpRE2z3Pu2x9NIcwIkYNa3XDUEfy8+85x4x1Y wYtIKZlvaHjVNj2jkgulECUiz/1gfbtv7QRVLI8ePdYfipeGDGfJdttU1Nd2YpcB LByAyDLEiOh35r9pEzM1nJZ7TmnS9SPLso3cO9ms31vLU7onVt6KQ7iCtisL6Uu2 gHVbSnxsv9ASWm/mGyUsFCX2f5qSP8Npjkklk0xjG2r1lnYsMOHugU9r5gGMmfSO VWYWFKzIAYYCLjAnryK3kw7jk3HrtkJuQY3jmzh7cvLjT/1FyrEe1murs27J32Eq zFF/xHernb+0zBhFUHg= -----END CERTIFICATE-----Generated at Sat Jun 13 13:59:51 2026 by rpki-client