$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa File: 326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa (raw, json) Hash identifier: UXWml1Lhai6XsZe/+0NNX1kVxg/g2Ofeo4uBVrbG2X4= Subject key identifier: 81:87:71:E3:A7:9A:B1:64:FC:F1:C1:03:59:E1:61:E0:5F:BF:51:D9 Certificate issuer: /CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Certificate serial: 1A8FAA67F52D149A51A5477C3DFE3280D7FB946F Authority key identifier: B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa Signing time: Fri 05 Jun 2026 13:25:51 +0000 ROA not before: Fri 05 Jun 2026 13:20:51 +0000 ROA not after: Fri 04 Jun 2027 13:25:51 +0000 asID: 216455 IP address blocks: 2a07:54c7:5999::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/6FF76AC421894FD5CCD6332FA2A9CF330312CEA8.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 00:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8f:aa:67:f5:2d:14:9a:51:a5:47:7c:3d:fe:32:80:d7:fb:94:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B3F1737E90F240D7ABB33C72F84D71482FE62679 Validity Not Before: Jun 5 13:20:51 2026 GMT Not After : Jun 4 13:25:51 2027 GMT Subject: CN=818771E3A79AB164FCF1C10359E161E05FBF51D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d6:e1:95:b1:56:23:07:ca:a4:51:52:dc:e5: a6:dc:cd:24:0e:07:3a:31:39:2b:75:c5:28:01:0d: ea:89:cb:64:f5:80:90:31:79:52:3a:92:48:fd:2a: df:64:f9:bc:0f:b8:12:14:2f:34:3e:9a:19:9a:89: 3a:ab:53:da:3c:a7:0a:c3:95:e9:64:b1:de:35:be: 31:cd:84:05:3b:55:4c:31:7b:4d:98:3f:94:2c:83: d7:13:84:21:45:e7:aa:4a:50:e2:1c:42:1f:01:77: 50:48:51:58:53:d0:a7:72:51:18:e1:12:07:6b:83: 59:23:2a:15:7d:c3:5d:4e:98:b3:db:fa:e5:1c:ed: d1:9a:3d:89:e1:63:d1:14:aa:dc:a8:d3:72:5f:98: 44:35:b0:9f:1f:ff:57:9c:39:21:8e:73:58:93:20: 16:2c:5b:d6:d7:72:d4:51:96:a9:e0:ed:aa:34:98: 7b:3f:90:1a:37:4c:84:7c:46:2b:44:cc:de:f3:44: ad:75:74:23:96:ca:2a:1e:52:4c:40:5f:05:dd:94: b0:0b:8c:ad:97:02:39:7f:9b:02:7c:f4:b9:04:d6: a4:4a:ab:f2:ae:fe:0f:0b:e5:c7:01:03:19:cb:50: 93:ee:33:c6:08:1f:0f:f0:cf:c0:20:74:25:71:7e: e3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:87:71:E3:A7:9A:B1:64:FC:F1:C1:03:59:E1:61:E0:5F:BF:51:D9 X509v3 Authority Key Identifier: keyid:B3:F1:73:7E:90:F2:40:D7:AB:B3:3C:72:F8:4D:71:48:2F:E6:26:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/B3F1737E90F240D7ABB33C72F84D71482FE62679.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/4/B3F1737E90F240D7ABB33C72F84D71482FE62679.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/5821c47e-e815-42de-bd6b-19a2e1ae564a/2/326130373a353463373a353939393a3a2f34382d3438203d3e20323136343535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:5999::/48 Signature Algorithm: sha256WithRSAEncryption 53:3b:e1:1e:a0:2b:ba:47:e3:ca:f3:12:81:b7:ed:b8:61:89: d8:a0:88:cc:04:64:b3:e3:a6:66:77:e0:13:a9:ee:84:12:c5: 85:0b:cd:ed:a8:2a:bb:0a:82:03:f6:8f:12:70:fc:05:20:26: b6:6b:dc:5e:db:17:8e:2b:4c:df:1d:d1:09:64:86:86:11:00: ca:23:a5:d7:9a:cf:28:0a:31:89:eb:e1:84:14:02:71:03:83: 11:50:37:be:40:a3:7a:69:5e:e7:81:25:7e:cb:e6:d4:7d:2b: ad:04:ee:02:fe:77:57:fb:e5:f4:3b:c1:37:bc:2f:ae:87:23: 47:f9:07:09:30:4e:52:21:0e:ad:4b:39:d8:a7:eb:9b:81:b5: 3b:99:86:1a:75:27:62:08:c0:37:47:33:eb:b2:90:12:3e:c4: dd:bb:4c:fc:32:55:d6:65:eb:1a:4c:87:58:f7:9d:b4:8a:7e: 5c:dc:0c:7f:73:81:a1:41:98:3c:a4:39:33:11:28:c0:fb:6f: 1b:01:31:7b:66:4f:a2:f3:86:ef:6c:4f:4e:62:e6:9e:75:ac: 85:7d:86:71:6c:87:fe:84:a0:d2:ad:e6:9c:41:03:6a:d2:72: 19:84:a0:2f:64:6b:9d:a2:33:fc:14:16:41:e1:28:be:12:47: 0e:c0:c2:b5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUGo+qZ/UtFJpRpUd8Pf4ygNf7lG8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgy RkU2MjY3OTAeFw0yNjA2MDUxMzIwNTFaFw0yNzA2MDQxMzI1NTFaMDMxMTAvBgNV BAMTKDgxODc3MUUzQTc5QUIxNjRGQ0YxQzEwMzU5RTE2MUUwNUZCRjUxRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr1uGVsVYjB8qkUVLc5abczSQO BzoxOSt1xSgBDeqJy2T1gJAxeVI6kkj9Kt9k+bwPuBIULzQ+mhmaiTqrU9o8pwrD lelksd41vjHNhAU7VUwxe02YP5Qsg9cThCFF56pKUOIcQh8Bd1BIUVhT0KdyURjh Egdrg1kjKhV9w11OmLPb+uUc7dGaPYnhY9EUqtyo03JfmEQ1sJ8f/1ecOSGOc1iT IBYsW9bXctRRlqng7ao0mHs/kBo3TIR8RitEzN7zRK11dCOWyioeUkxAXwXdlLAL jK2XAjl/mwJ89LkE1qRKq/Ku/g8L5ccBAxnLUJPuM8YIHw/wz8AgdCVxfuObAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUgYdx46easWT88cEDWeFh4F+/UdkwHwYDVR0j BBgwFoAUs/FzfpDyQNerszxy+E1xSC/mJnkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTgyMWM0N2UtZTgxNS00MmRlLWJkNmItMTlhMmUxYWU1 NjRhLzIvQjNGMTczN0U5MEYyNDBEN0FCQjMzQzcyRjg0RDcxNDgyRkU2MjY3OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvNC9CM0YxNzM3RTkwRjI0MEQ3QUJCMzNDNzJG ODRENzE0ODJGRTYyNjc5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODIxYzQ3ZS1lODE1LTQyZGUtYmQ2Yi0xOWEyZTFhZTU2NGEvMi8zMjYxMzAz NzNhMzUzNDYzMzczYTM1MzkzOTM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzQzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUx1mZMA0GCSqGSIb3DQEBCwUAA4IBAQBT O+EeoCu6R+PK8xKBt+24YYnYoIjMBGSz46Zmd+ATqe6EEsWFC83tqCq7CoID9o8S cPwFICa2a9xe2xeOK0zfHdEJZIaGEQDKI6XXms8oCjGJ6+GEFAJxA4MRUDe+QKN6 aV7ngSV+y+bUfSutBO4C/ndX++X0O8E3vC+uhyNH+QcJME5SIQ6tSznYp+ubgbU7 mYYadSdiCMA3RzPrspASPsTdu0z8MlXWZesaTIdY9520in5c3Ax/c4GhQZg8pDkz ESjA+28bATF7Zk+i84bvbE9OYuaedayFfYZxbIf+hKDSreacQQNq0nIZhKAvZGud ojP8FBZB4Si+EkcOwMK1 -----END CERTIFICATE-----Generated at Sat Jun 13 16:31:40 2026 by rpki-client