$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383931613a3a2f34382d3438203d3e20313939373436.roa File: 326130363a313238333a383931613a3a2f34382d3438203d3e20313939373436.roa (raw, json) Hash identifier: 27E7afgP0hO3dUqwB9VvWiaUiMnlRrtyS2bbqw41+ew= Subject key identifier: 22:53:3A:D3:3D:20:C4:10:19:3E:7B:65:F7:F7:15:AE:34:D9:B2:96 Certificate issuer: /CN=5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9 Certificate serial: 56488B482153AB9AFDD648DCC2491DF3B9F7F4AE Authority key identifier: 5F:BB:D0:F3:D7:B8:1E:8A:FD:99:E5:A3:4B:67:83:4D:D3:CD:13:C9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383931613a3a2f34382d3438203d3e20313939373436.roa Signing time: Thu 11 Jun 2026 22:09:51 +0000 ROA not before: Thu 11 Jun 2026 22:04:51 +0000 ROA not after: Thu 10 Jun 2027 22:09:51 +0000 asID: 199746 IP address blocks: 2a06:1283:891a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.crl rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.mft rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/D54D443B67C1CC5EA1B5446EA0643CAC3A7A8B2C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/4/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/4807C118BD348934B5CC59B3E8A7A8C14F29C3FB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 10:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:48:8b:48:21:53:ab:9a:fd:d6:48:dc:c2:49:1d:f3:b9:f7:f4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9 Validity Not Before: Jun 11 22:04:51 2026 GMT Not After : Jun 10 22:09:51 2027 GMT Subject: CN=22533AD33D20C410193E7B65F7F715AE34D9B296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:77:f0:70:6c:e9:a3:a8:0e:f8:c5:5e:0c:f0: 0b:18:47:de:73:08:f7:40:a1:de:0b:3b:5a:8a:0f: 89:67:70:7e:b7:c9:de:47:fd:2a:72:e4:66:33:52: 0c:2e:c7:44:f8:73:a8:34:5b:88:7b:9d:8f:e0:55: a8:ad:b1:25:44:6a:0a:00:ae:50:66:34:c5:20:b2: bf:ed:14:d5:ae:b8:0c:75:c0:8d:1f:ae:28:15:d3: a6:9d:87:38:38:b2:ac:a7:b2:cc:8a:23:4c:dd:13: 55:31:e8:00:0a:ea:0f:db:1c:49:91:55:c6:ef:c1: 5f:1d:0d:29:eb:d1:f3:2f:b2:a4:4b:90:38:3f:ce: 7d:ba:c5:c5:0f:7b:bf:e7:ee:4a:14:bb:f8:fc:66: 69:99:80:63:e8:56:e7:02:e4:d8:c7:c4:62:98:a8: 69:92:1d:f3:b3:59:4d:d3:d0:46:39:8f:d3:b7:ab: 1b:f3:12:84:3a:3a:ca:f1:06:88:d2:43:0a:96:07: 83:7c:c7:46:55:f8:93:5a:7d:a6:26:ca:37:37:94: 15:0f:87:e8:eb:a1:93:92:05:6a:2b:5a:4d:05:94: 06:d1:e4:31:e4:ba:2a:6e:c6:75:6b:96:b7:c9:93: 55:f3:d4:fb:94:c9:2b:13:16:99:a2:8c:a8:9b:76: 9f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:53:3A:D3:3D:20:C4:10:19:3E:7B:65:F7:F7:15:AE:34:D9:B2:96 X509v3 Authority Key Identifier: keyid:5F:BB:D0:F3:D7:B8:1E:8A:FD:99:E5:A3:4B:67:83:4D:D3:CD:13:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/6/5FBBD0F3D7B81E8AFD99E5A34B67834DD3CD13C9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/78e61611-3b0b-41ce-88cd-e560353f6942/1/326130363a313238333a383931613a3a2f34382d3438203d3e20313939373436.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:891a::/48 Signature Algorithm: sha256WithRSAEncryption 75:5d:66:44:63:d1:5c:0b:21:12:d0:5e:c7:cf:14:b6:0d:69: fb:20:4f:81:a5:6c:4f:ea:16:d4:b1:8b:74:00:8c:63:07:7f: 9e:66:7d:f0:88:70:6f:fa:e2:37:3f:94:e5:55:9d:8b:ac:07: e4:c4:76:94:ca:3c:3c:69:3d:7f:8f:0e:4f:3e:14:03:16:d4: 46:e4:4e:ce:dc:9a:cc:66:23:7c:9f:ba:dc:24:d0:e0:ec:0b: 1e:6a:a2:97:9f:48:fe:fb:44:a7:9a:be:d8:71:aa:1c:d4:f1: e9:87:e6:14:20:05:e0:ba:3b:6b:a9:cc:6f:58:5b:3e:4b:ee: 0f:9e:ee:ec:a3:06:f3:bd:07:3a:b8:3f:07:3b:01:e2:41:7f: ea:2f:b7:a5:ab:e5:78:4f:bb:a5:63:ce:b2:8e:24:63:2c:b1: 9c:50:60:c8:28:e1:d9:52:dc:e9:fe:22:89:f2:a4:19:fe:66: b7:b5:82:93:98:14:2a:4d:fe:eb:e9:89:72:6e:72:5c:97:da: 60:66:f8:57:6f:5f:53:4c:18:1f:e0:ab:94:41:6f:f2:ef:04: 82:43:c9:2e:a6:9e:79:52:ef:14:41:8f:d8:50:e3:cc:71:95: 10:d1:7b:c3:7f:b9:fc:3e:59:bb:e5:c4:62:a8:ff:0d:0b:5f: c7:49:d2:30 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVkiLSCFTq5r91kjcwkkd87n39K4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUZCQkQwRjNEN0I4MUU4QUZEOTlFNUEzNEI2NzgzNERE M0NEMTNDOTAeFw0yNjA2MTEyMjA0NTFaFw0yNzA2MTAyMjA5NTFaMDMxMTAvBgNV BAMTKDIyNTMzQUQzM0QyMEM0MTAxOTNFN0I2NUY3RjcxNUFFMzREOUIyOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4d/BwbOmjqA74xV4M8AsYR95z CPdAod4LO1qKD4lncH63yd5H/Spy5GYzUgwux0T4c6g0W4h7nY/gVaitsSVEagoA rlBmNMUgsr/tFNWuuAx1wI0frigV06adhzg4sqynssyKI0zdE1Ux6AAK6g/bHEmR VcbvwV8dDSnr0fMvsqRLkDg/zn26xcUPe7/n7koUu/j8ZmmZgGPoVucC5NjHxGKY qGmSHfOzWU3T0EY5j9O3qxvzEoQ6OsrxBojSQwqWB4N8x0ZV+JNafaYmyjc3lBUP h+jroZOSBWorWk0FlAbR5DHkuipuxnVrlrfJk1Xz1PuUySsTFpmijKibdp+LAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIlM60z0gxBAZPntl9/cVrjTZspYwHwYDVR0j BBgwFoAUX7vQ89e4Hor9meWjS2eDTdPNE8kwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzhlNjE2MTEtM2IwYi00MWNlLTg4Y2QtZTU2MDM1M2Y2 OTQyLzEvNUZCQkQwRjNEN0I4MUU4QUZEOTlFNUEzNEI2NzgzNEREM0NEMTNDOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82OGFiYWJiYi1mMDQ4LTRk ZTEtOTIwNi04ZDQwZjA3MTgwOGIvNi81RkJCRDBGM0Q3QjgxRThBRkQ5OUU1QTM0 QjY3ODM0REQzQ0QxM0M5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83OGU2MTYxMS0zYjBiLTQxY2UtODhjZC1lNTYwMzUzZjY5NDIvMS8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzkzMTYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz OTM5MzczNDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg4kaMA0GCSqGSIb3DQEBCwUAA4IBAQB1 XWZEY9FcCyES0F7HzxS2DWn7IE+BpWxP6hbUsYt0AIxjB3+eZn3wiHBv+uI3P5Tl VZ2LrAfkxHaUyjw8aT1/jw5PPhQDFtRG5E7O3JrMZiN8n7rcJNDg7AseaqKXn0j+ +0Snmr7Ycaoc1PHph+YUIAXgujtrqcxvWFs+S+4Pnu7sowbzvQc6uD8HOwHiQX/q L7elq+V4T7ulY86yjiRjLLGcUGDIKOHZUtzp/iKJ8qQZ/ma3tYKTmBQqTf7r6Yly bnJcl9pgZvhXb19TTBgf4KuUQW/y7wSCQ8kupp55Uu8UQY/YUOPMcZUQ0XvDf7n8 Plm75cRiqP8NC1/HSdIw -----END CERTIFICATE-----Generated at Sat Jun 13 22:52:21 2026 by rpki-client