$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa File: 326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa (raw, json) Hash identifier: qE8L39SpyoEHdTGvG8S7ZOvpv47dDhK0u7Idd96jQN8= Subject key identifier: 90:5E:56:31:DC:45:23:66:83:68:A7:85:28:0A:AF:95:1B:64:39:C4 Certificate issuer: /CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Certificate serial: 3E48B5D97B07905A46924E3334832497462162DF Authority key identifier: 0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa Signing time: Fri 12 Jun 2026 02:42:17 +0000 ROA not before: Fri 12 Jun 2026 02:37:17 +0000 ROA not after: Fri 11 Jun 2027 02:42:17 +0000 asID: 31898 IP address blocks: 2a14:7581:d00::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 14:43:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:48:b5:d9:7b:07:90:5a:46:92:4e:33:34:83:24:97:46:21:62:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45 Validity Not Before: Jun 12 02:37:17 2026 GMT Not After : Jun 11 02:42:17 2027 GMT Subject: CN=905E5631DC4523668368A785280AAF951B6439C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:27:df:98:e2:3c:08:90:e3:c3:bf:f9:db: a0:c9:eb:85:1d:c0:16:95:bb:b7:e3:02:07:71:bd: 5e:75:3c:4b:b9:11:ce:0b:f1:98:6d:45:2d:79:9b: e9:5f:a6:70:f2:ec:f0:03:32:d5:6c:48:6f:c9:45: 4c:3c:1d:de:4e:10:36:5d:3e:c4:cd:ce:ee:b0:20: 61:73:73:a0:d0:9e:d1:5d:cc:4c:52:4c:29:be:6a: 84:83:b5:2b:ff:14:0a:2a:7b:91:fb:65:ac:e1:a4: c3:c2:1f:1a:3b:4e:f6:68:8b:a1:30:1e:2d:0b:78: eb:eb:79:95:86:34:b3:65:4c:62:22:ff:ff:cf:c9: 7f:3d:cc:6d:0d:2c:68:7d:a9:91:5b:1b:e4:2b:9e: 21:ea:3c:1c:f7:88:33:68:2e:88:84:e9:c1:4c:31: 64:6c:d0:c3:b8:26:1b:2c:0b:ee:4e:0f:16:e3:f6: dd:93:7f:71:72:d2:4c:c9:32:b2:ad:b5:a9:c0:65: f6:31:fe:d1:ee:4b:3d:14:18:ef:c9:9e:34:c0:bc: 51:ab:8e:0a:ec:0b:aa:b3:e8:22:9a:13:0c:2f:d6: bf:a5:6f:28:50:01:a3:8a:39:26:4b:6e:0f:df:8e: f7:b2:b6:e7:07:f1:e5:b9:5c:73:dc:d0:ca:bc:53: ba:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5E:56:31:DC:45:23:66:83:68:A7:85:28:0A:AF:95:1B:64:39:C4 X509v3 Authority Key Identifier: keyid:0A:8B:61:A8:44:D6:C2:C7:AF:38:ED:CB:D1:65:D0:EF:FB:82:3E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/0A8B61A844D6C2C7AF38EDCBD165D0EFFB823E45.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/72c405f1-c32d-47ce-8943-0752ed13d8ef/1/326131343a373538313a6430303a3a2f34342d3438203d3e203331383938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:d00::/44 Signature Algorithm: sha256WithRSAEncryption 1a:91:4e:5e:55:35:59:08:6b:3a:30:be:cb:6a:a9:dd:dc:05: ca:a0:3f:fd:df:bc:1b:64:fd:bd:82:c0:33:00:e3:68:ac:3f: 5f:9f:cf:64:3b:08:38:f4:35:2e:de:e2:b0:b1:cd:1e:bc:ea: 50:a1:48:ae:86:ac:a9:d1:be:75:20:2c:7a:4a:a3:b1:18:5e: ae:65:7c:3e:95:3b:52:61:ea:d6:e4:d4:6c:f6:44:5b:64:63: fb:77:f5:8a:b9:23:5f:c3:4e:50:52:b6:34:42:a1:76:7f:20: b0:ce:25:d6:d0:71:3b:52:21:f3:eb:04:52:bf:df:33:49:5e: 22:8a:ad:b5:29:51:70:ca:df:94:00:4e:d3:b9:35:6e:1c:68: 5a:e9:a5:94:e8:a0:82:36:65:3a:3b:26:ca:b7:d6:58:ad:66: be:14:d8:d2:ce:06:03:b3:c7:f7:d7:78:0a:bc:b8:42:50:d1: de:39:dd:31:77:bc:cc:59:73:b2:ab:fe:a0:1f:63:31:18:56: 4d:27:29:02:d8:cd:e2:05:e9:35:03:ac:9c:c8:50:e2:8a:52: 05:4e:45:16:17:ce:d3:46:1c:b2:d9:3b:65:de:d3:39:a0:46: 76:79:a2:c5:7b:b3:53:a5:b0:cb:98:1a:33:64:cb:fa:c5:06: 50:9e:eb:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUPki12XsHkFpGkk4zNIMkl0YhYt8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZG QjgyM0U0NTAeFw0yNjA2MTIwMjM3MTdaFw0yNzA2MTEwMjQyMTdaMDMxMTAvBgNV BAMTKDkwNUU1NjMxREM0NTIzNjY4MzY4QTc4NTI4MEFBRjk1MUI2NDM5QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2hSffmOI8CJDjw7/526DJ64Ud wBaVu7fjAgdxvV51PEu5Ec4L8ZhtRS15m+lfpnDy7PADMtVsSG/JRUw8Hd5OEDZd PsTNzu6wIGFzc6DQntFdzExSTCm+aoSDtSv/FAoqe5H7ZazhpMPCHxo7TvZoi6Ew Hi0LeOvreZWGNLNlTGIi///PyX89zG0NLGh9qZFbG+QrniHqPBz3iDNoLoiE6cFM MWRs0MO4JhssC+5ODxbj9t2Tf3Fy0kzJMrKttanAZfYx/tHuSz0UGO/JnjTAvFGr jgrsC6qz6CKaEwwv1r+lbyhQAaOKOSZLbg/fjveytucH8eW5XHPc0Mq8U7ohAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUkF5WMdxFI2aDaKeFKAqvlRtkOcQwHwYDVR0j BBgwFoAUCothqETWwsevOO3L0WXQ7/uCPkUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzJjNDA1ZjEtYzMyZC00N2NlLTg5NDMtMDc1MmVkMTNk OGVmLzEvMEE4QjYxQTg0NEQ2QzJDN0FGMzhFRENCRDE2NUQwRUZGQjgyM0U0NS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8wQThCNjFBODQ0RDZDMkM3QUYzOEVEQ0JE MTY1RDBFRkZCODIzRTQ1LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MmM0MDVmMS1jMzJkLTQ3Y2UtODk0My0wNzUyZWQxM2Q4ZWYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY0MzAzMDNhM2EyZjM0MzQyZDM0MzgyMDNkM2UyMDMzMzEz ODM5Mzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwQqFHWBDQAwDQYJKoZIhvcNAQELBQADggEBABqRTl5V NVkIazowvstqqd3cBcqgP/3fvBtk/b2CwDMA42isP1+fz2Q7CDj0NS7e4rCxzR68 6lChSK6GrKnRvnUgLHpKo7EYXq5lfD6VO1Jh6tbk1Gz2RFtkY/t39Yq5I1/DTlBS tjRCoXZ/ILDOJdbQcTtSIfPrBFK/3zNJXiKKrbUpUXDK35QATtO5NW4caFrppZTo oII2ZTo7Jsq31litZr4U2NLOBgOzx/fXeAq8uEJQ0d453TF3vMxZc7Kr/qAfYzEY Vk0nKQLYzeIF6TUDrJzIUOKKUgVORRYXztNGHLLZO2Xe0zmgRnZ5osV7s1OlsMuY GjNky/rFBlCe6xE= -----END CERTIFICATE-----Generated at Sun Jun 14 04:51:01 2026 by rpki-client