$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031303a3a2f34342d313238203d3e20323135313437.roa File: 326130393a353463333a363031303a3a2f34342d313238203d3e20323135313437.roa (raw, json) Hash identifier: /uKkUitQmfvZHwOyXacfV/Jk4h2wHyCXDmi/rApbaHk= Subject key identifier: 86:AA:A2:06:6E:CE:30:B2:C1:FF:19:EA:17:CE:52:71:40:35:50:D2 Certificate issuer: /CN=A912092CFA11F378852F52266C793AB678233205 Certificate serial: 42340F1BEB9133F1AC7AAD5A47369C70FA08473F Authority key identifier: A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031303a3a2f34342d313238203d3e20323135313437.roa Signing time: Tue 14 Apr 2026 05:04:12 +0000 ROA not before: Tue 14 Apr 2026 04:59:12 +0000 ROA not after: Tue 13 Apr 2027 05:04:12 +0000 asID: 215147 IP address blocks: 2a09:54c3:6010::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 15:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:34:0f:1b:eb:91:33:f1:ac:7a:ad:5a:47:36:9c:70:fa:08:47:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912092CFA11F378852F52266C793AB678233205 Validity Not Before: Apr 14 04:59:12 2026 GMT Not After : Apr 13 05:04:12 2027 GMT Subject: CN=86AAA2066ECE30B2C1FF19EA17CE5271403550D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:01:04:5e:e7:24:d0:34:67:76:31:0a:e5:bb: 2b:6e:e4:f9:67:34:69:45:f7:f8:2d:09:f0:cb:d2: de:ed:8e:5d:97:ba:c6:ba:43:73:28:ac:93:43:86: 02:57:a8:eb:32:07:36:46:df:aa:5d:ea:9a:06:d5: c4:d7:9a:0c:9d:eb:ac:e2:e3:3a:b2:33:35:21:b3: bb:ff:c9:29:cd:76:89:7a:63:08:12:d4:7e:d9:03: b5:57:e3:26:1d:36:77:a2:cd:25:ec:0b:97:2a:c5: 23:ed:d6:13:9b:a0:6f:53:22:91:01:e8:b3:2f:76: 16:de:b6:14:24:3e:59:09:78:33:4c:bc:c2:e3:33: bf:bd:bb:94:29:2c:16:21:4c:ba:59:c1:f5:43:7a: 17:37:22:c8:64:ea:20:ca:d0:2a:6f:47:e1:1f:ee: 54:17:32:bc:8f:ac:b9:56:ef:22:87:44:5e:be:91: 3b:d5:0c:7e:56:ed:6b:9d:04:71:1f:c5:23:6a:ab: a0:26:9d:0f:1f:d7:5c:69:57:65:1d:3b:82:da:25: 8e:2e:76:6e:4d:0d:a2:ea:0f:e8:a6:db:0d:02:b3: 3c:12:7f:25:66:d8:7d:ef:de:67:08:25:36:7a:72: 6a:af:0c:42:03:0a:ae:90:d0:ff:b2:00:48:e3:18: b5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AA:A2:06:6E:CE:30:B2:C1:FF:19:EA:17:CE:52:71:40:35:50:D2 X509v3 Authority Key Identifier: keyid:A9:12:09:2C:FA:11:F3:78:85:2F:52:26:6C:79:3A:B6:78:23:32:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/A912092CFA11F378852F52266C793AB678233205.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/A912092CFA11F378852F52266C793AB678233205.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/5/326130393a353463333a363031303a3a2f34342d313238203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c3:6010::/44 Signature Algorithm: sha256WithRSAEncryption c9:3a:68:2a:1f:c3:21:5e:4a:01:53:ea:1f:46:91:bd:8f:00: 6d:c5:1f:ea:64:46:b3:2d:02:c1:33:b5:f4:fd:c1:9e:ee:8a: 5a:d9:00:f5:41:b1:7c:9d:6e:ed:e1:58:8c:d3:5b:67:16:a3: 3f:fb:4e:37:a7:88:4c:9f:91:9c:6f:a8:3c:88:66:43:e4:95: 72:d4:bb:15:ec:64:73:ae:be:14:a2:c8:c4:70:75:24:62:85: a9:b3:b1:b9:54:af:fa:70:35:29:40:23:7c:10:81:56:60:e5: e8:a8:8d:cb:b6:a2:39:fd:a2:2d:7c:0d:83:99:42:31:f7:4a: b1:3c:0f:68:a9:a4:de:c6:50:ed:71:d2:91:13:2e:ae:ef:d2: fa:11:d9:63:5d:d8:5d:12:43:07:a4:bd:37:51:f1:f5:7a:31: 9e:7a:b0:82:84:64:54:d9:10:60:9c:b3:85:ca:f4:5d:36:22: 91:e5:20:e6:dd:64:12:65:f4:05:f1:0c:21:a6:fb:e5:45:60: 51:9c:ff:b9:40:f1:f2:bb:42:42:fc:80:52:3e:c1:d0:c2:b9: 56:b9:42:5e:d5:f0:ef:0d:58:20:29:fb:1f:39:ac:76:07:22: e6:26:b5:29:ae:b5:16:c8:ac:9f:8a:ea:de:16:1b:c8:22:96: f7:64:07:7b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIUQjQPG+uRM/Gseq1aRzaccPoIRz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3 ODIzMzIwNTAeFw0yNjA0MTQwNDU5MTJaFw0yNzA0MTMwNTA0MTJaMDMxMTAvBgNV BAMTKDg2QUFBMjA2NkVDRTMwQjJDMUZGMTlFQTE3Q0U1MjcxNDAzNTUwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMAQRe5yTQNGd2MQrluytu5Pln NGlF9/gtCfDL0t7tjl2Xusa6Q3MorJNDhgJXqOsyBzZG36pd6poG1cTXmgyd66zi 4zqyMzUhs7v/ySnNdol6YwgS1H7ZA7VX4yYdNneizSXsC5cqxSPt1hOboG9TIpEB 6LMvdhbethQkPlkJeDNMvMLjM7+9u5QpLBYhTLpZwfVDehc3Ishk6iDK0CpvR+Ef 7lQXMryPrLlW7yKHRF6+kTvVDH5W7WudBHEfxSNqq6AmnQ8f11xpV2UdO4LaJY4u dm5NDaLqD+im2w0CszwSfyVm2H3v3mcIJTZ6cmqvDEIDCq6Q0P+yAEjjGLVTAgMB AAGjggJ8MIICeDAdBgNVHQ4EFgQUhqqiBm7OMLLB/xnqF85ScUA1UNIwHwYDVR0j BBgwFoAUqRIJLPoR83iFL1ImbHk6tngjMgUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzUvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIzMzIwNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvQTkxMjA5MkNGQTExRjM3ODg1MkY1MjI2NkM3OTNBQjY3ODIz MzIwNS5jZXIwgbkGCCsGAQUFBwELBIGsMIGpMIGmBggrBgEFBQcwC4aBmXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNjhhYmFiYmIt ZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4MDhiLzUvMzI2MTMwMzkzYTM1MzQ2MzMz M2EzNjMwMzEzMDNhM2EyZjM0MzQyZDMxMzIzODIwM2QzZTIwMzIzMTM1MzEzNDM3 LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMw ETAPBAIAAjAJAwcEKglUw2AQMA0GCSqGSIb3DQEBCwUAA4IBAQDJOmgqH8MhXkoB U+ofRpG9jwBtxR/qZEazLQLBM7X0/cGe7opa2QD1QbF8nW7t4ViM01tnFqM/+043 p4hMn5Gcb6g8iGZD5JVy1LsV7GRzrr4UosjEcHUkYoWps7G5VK/6cDUpQCN8EIFW YOXoqI3LtqI5/aItfA2DmUIx90qxPA9oqaTexlDtcdKREy6u79L6EdljXdhdEkMH pL03UfH1ejGeerCChGRU2RBgnLOFyvRdNiKR5SDm3WQSZfQF8QwhpvvlRWBRnP+5 QPHyu0JC/IBSPsHQwrlWuUJe1fDvDVggKfsfOax2ByLmJrUprrUWyKyfiureFhvI Ipb3ZAd7 -----END CERTIFICATE-----Generated at Fri Apr 17 21:13:05 2026 by rpki-client