$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030303a3a2f34342d313238203d3e20323135313130.roa File: 326130393a353463333a363030303a3a2f34342d313238203d3e20323135313130.roa (raw, json) Hash identifier: yfuWP7yG7wZycm5FNAWN7L7AL5ePZ3cOQL4dLvNYem8= Subject key identifier: 60:C0:27:54:4A:EC:36:DA:4B:76:FC:77:AC:5A:E8:BC:53:1E:A4:C0 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 52A3AA134764E69CEDB9A314990B1B592DE5B30B Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030303a3a2f34342d313238203d3e20323135313130.roa Signing time: Sun 05 Apr 2026 21:33:45 +0000 ROA not before: Sun 05 Apr 2026 21:28:45 +0000 ROA not after: Sun 04 Apr 2027 21:33:45 +0000 asID: 215110 IP address blocks: 2a09:54c3:6000::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 21:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a3:aa:13:47:64:e6:9c:ed:b9:a3:14:99:0b:1b:59:2d:e5:b3:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Apr 5 21:28:45 2026 GMT Not After : Apr 4 21:33:45 2027 GMT Subject: CN=60C027544AEC36DA4B76FC77AC5AE8BC531EA4C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:cc:01:93:2c:7c:6a:1b:f3:c0:e1:c6:9b:00: a3:b9:3c:59:3c:36:3e:c8:3b:a1:ee:4f:be:ac:be: 83:1d:6d:60:e8:aa:8f:5a:bd:a2:0a:b4:27:59:fa: 46:d8:6e:d1:98:31:6a:04:c3:4c:45:bb:22:80:e2: c6:55:87:d6:54:42:e1:73:f5:26:42:71:ab:6c:25: 2c:35:ce:28:57:32:a4:eb:41:63:ca:09:9a:e2:ba: 5a:f3:39:a8:8c:06:65:a2:71:4e:57:ca:c7:b4:05: 49:30:30:57:04:60:4c:20:fa:9b:b3:e4:cf:00:33: 0e:e6:66:f5:56:4c:e4:57:1f:2e:53:ed:8e:93:03: 0e:95:bd:ef:39:6d:88:5e:62:5b:53:9a:36:25:47: f8:54:51:ae:9a:13:e2:5e:59:ae:7c:93:9a:ce:29: fc:fe:59:73:0c:4f:ff:c1:e1:dd:21:be:5f:36:a1: 54:04:f6:f2:36:97:6d:f4:2e:c8:92:8c:bd:3f:12: 25:e3:d5:78:88:e8:bd:65:7f:ae:51:78:87:6b:82: 67:7f:45:09:bd:f2:05:10:0f:0e:fd:e1:e5:53:f5: f2:2d:c2:41:ab:06:dd:65:74:a9:a8:65:7f:69:69: 22:0d:16:f3:a3:69:e7:32:de:1d:13:07:09:25:75: 0c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C0:27:54:4A:EC:36:DA:4B:76:FC:77:AC:5A:E8:BC:53:1E:A4:C0 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363030303a3a2f34342d313238203d3e20323135313130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:6000::/44 Signature Algorithm: sha256WithRSAEncryption ab:fc:f7:34:fe:d0:ac:1d:1f:81:48:3e:6f:53:b3:11:a5:1c: 5b:57:fd:1e:a6:a4:56:55:24:41:82:c2:2d:db:58:c3:6d:06: 61:1f:7a:53:e7:06:ea:40:c5:aa:44:83:e6:63:2e:49:aa:31: 5c:4f:10:cc:07:3d:0c:c4:ce:f8:b2:f3:86:b9:da:0d:53:9a: 14:5c:39:c8:0b:f1:b9:7b:23:11:d2:0f:f1:94:e1:30:cc:0c: 4b:ad:df:84:ea:1b:66:11:5c:f4:8a:7b:ee:b6:14:8f:1d:6d: e0:15:e5:e7:9a:58:d8:78:be:5e:c1:70:4c:31:94:b8:f1:b2: 26:a2:aa:77:dc:b0:a3:b6:a0:2a:23:9a:1a:77:14:84:2e:76: dc:b3:c9:1b:4b:cf:4a:ce:2a:64:cf:7d:89:12:6f:6c:c7:68: 4e:19:6a:f7:2f:3b:b8:c7:db:cd:fa:02:fc:59:ba:16:1a:d9: be:d3:ca:ed:7c:03:a8:b2:37:6e:40:62:61:e0:e6:91:c9:42: 2d:2a:7b:8a:e5:6a:aa:d7:21:6b:0e:86:fc:7f:f0:53:26:4a: 13:f9:36:e7:df:13:68:40:da:1a:38:a3:bd:61:3f:43:91:0b: c4:06:36:8d:4b:fc:53:e3:2e:00:3f:89:dc:81:f5:0d:23:8b: 73:3e:b7:ac -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUUqOqE0dk5pztuaMUmQsbWS3lswswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA0MDUyMTI4NDVaFw0yNzA0MDQyMTMzNDVaMDMxMTAvBgNV BAMTKDYwQzAyNzU0NEFFQzM2REE0Qjc2RkM3N0FDNUFFOEJDNTMxRUE0QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCHzAGTLHxqG/PA4cabAKO5PFk8 Nj7IO6HuT76svoMdbWDoqo9avaIKtCdZ+kbYbtGYMWoEw0xFuyKA4sZVh9ZUQuFz 9SZCcatsJSw1zihXMqTrQWPKCZriulrzOaiMBmWicU5Xyse0BUkwMFcEYEwg+puz 5M8AMw7mZvVWTORXHy5T7Y6TAw6Vve85bYheYltTmjYlR/hUUa6aE+JeWa58k5rO Kfz+WXMMT//B4d0hvl82oVQE9vI2l230LsiSjL0/EiXj1XiI6L1lf65ReIdrgmd/ RQm98gUQDw794eVT9fItwkGrBt1ldKmoZX9paSINFvOjaecy3h0TBwkldQw3AgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUYMAnVErsNtpLdvx3rFrovFMepMAwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMwMzAzMDNhM2EyZjM0MzQyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzMTMw LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcEKglUw2AAMA0GCSqGSIb3DQEBCwUAA4IBAQCr/Pc0/tCsHR+B SD5vU7MRpRxbV/0epqRWVSRBgsIt21jDbQZhH3pT5wbqQMWqRIPmYy5JqjFcTxDM Bz0MxM74svOGudoNU5oUXDnIC/G5eyMR0g/xlOEwzAxLrd+E6htmEVz0invuthSP HW3gFeXnmljYeL5ewXBMMZS48bImoqp33LCjtqAqI5oadxSELnbcs8kbS89Kzipk z32JEm9sx2hOGWr3Lzu4x9vN+gL8WboWGtm+08rtfAOosjduQGJh4OaRyUItKnuK 5Wqq1yFrDob8f/BTJkoT+Tbn3xNoQNoaOKO9YT9DkQvEBjaNS/xT4y4AP4ncgfUN I4tzPres -----END CERTIFICATE-----Generated at Sat Apr 18 07:28:33 2026 by rpki-client