$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/326131343a373538343a333030303a3a2f33362d3336203d3e20323135383439.roa File: 326131343a373538343a333030303a3a2f33362d3336203d3e20323135383439.roa (raw, json) Hash identifier: EhQvT5ZMCX9huG89IO3Xb6heQ+ZoxMGHcoAExi8XBfA= Subject key identifier: EC:DB:27:AC:EC:71:81:FC:32:1D:94:1A:D8:57:13:0E:2A:47:C0:BC Certificate issuer: /CN=52722DE3E767BA8FC1EB29A7D1679F734C55966D Certificate serial: 127A0D3C85C55358C1A82A2FD5C36CDDC4C33660 Authority key identifier: 52:72:2D:E3:E7:67:BA:8F:C1:EB:29:A7:D1:67:9F:73:4C:55:96:6D Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52722DE3E767BA8FC1EB29A7D1679F734C55966D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/326131343a373538343a333030303a3a2f33362d3336203d3e20323135383439.roa Signing time: Sat 06 Jun 2026 15:36:32 +0000 ROA not before: Sat 06 Jun 2026 15:31:32 +0000 ROA not after: Sat 05 Jun 2027 15:36:32 +0000 asID: 215849 IP address blocks: 2a14:7584:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/52722DE3E767BA8FC1EB29A7D1679F734C55966D.crl rsync://rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/52722DE3E767BA8FC1EB29A7D1679F734C55966D.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52722DE3E767BA8FC1EB29A7D1679F734C55966D.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 14:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:7a:0d:3c:85:c5:53:58:c1:a8:2a:2f:d5:c3:6c:dd:c4:c3:36:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52722DE3E767BA8FC1EB29A7D1679F734C55966D Validity Not Before: Jun 6 15:31:32 2026 GMT Not After : Jun 5 15:36:32 2027 GMT Subject: CN=ECDB27ACEC7181FC321D941AD857130E2A47C0BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c7:0f:fa:3e:8a:82:d7:cc:4e:93:38:0f:b0: 5b:20:a4:e8:5c:c2:a2:41:46:48:c2:c5:7a:d1:c7: 90:85:a7:87:b1:35:2f:62:d7:05:1b:1a:d6:6b:35: cd:fa:f3:5f:6b:39:49:65:fe:4e:2a:16:ae:f9:a9: 60:aa:fd:35:17:0e:1f:21:be:f9:c9:d2:d4:bf:21: f2:9b:fa:04:2a:b9:59:72:ec:ab:e0:5f:29:01:fa: 3b:cb:cb:f3:38:81:2e:eb:cc:17:4f:2c:20:17:2d: e8:c5:7a:ae:a2:6e:43:85:a1:98:27:b7:29:b5:b6: be:b5:1b:5c:a0:eb:c6:12:a1:15:d2:33:48:b5:2d: 4f:f9:50:42:e4:50:05:a5:8a:28:b6:b7:43:06:f9: 5d:36:97:37:a7:a0:74:14:db:9d:15:6c:35:f6:5c: 4e:3b:54:f7:c3:b2:08:fe:29:f6:8b:44:81:db:03: f1:1a:31:2d:c7:30:7c:82:d3:61:fc:04:1f:d6:02: c1:3d:85:f0:6b:0f:dc:d7:98:5b:40:33:8e:15:81: c7:6f:73:2f:45:3a:f9:42:8e:9a:94:34:ba:ef:56: 98:0b:9f:02:21:0b:93:fb:f9:c5:74:aa:c7:ad:e8: 29:60:24:f6:77:a4:34:ce:a2:af:f5:69:34:e4:ce: d5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:DB:27:AC:EC:71:81:FC:32:1D:94:1A:D8:57:13:0E:2A:47:C0:BC X509v3 Authority Key Identifier: keyid:52:72:2D:E3:E7:67:BA:8F:C1:EB:29:A7:D1:67:9F:73:4C:55:96:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/52722DE3E767BA8FC1EB29A7D1679F734C55966D.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52722DE3E767BA8FC1EB29A7D1679F734C55966D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8062bfa6-93db-4d59-9a45-81f82a8c2c76/1/326131343a373538343a333030303a3a2f33362d3336203d3e20323135383439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7584:3000::/36 Signature Algorithm: sha256WithRSAEncryption 5f:e9:66:44:11:33:64:b0:54:39:77:7c:ef:04:2d:11:a5:05: 17:b6:2b:fc:81:8d:0b:6b:e3:d9:30:c3:b7:d2:8d:07:08:e7: 58:e9:14:8c:2e:73:db:fd:26:07:e3:52:e9:3e:0c:e3:1e:ab: e0:14:79:3c:36:02:6c:6f:fb:c7:fd:67:42:c8:54:71:c8:95: e8:77:f6:d8:c8:4d:03:d4:01:17:1f:77:89:50:ee:90:05:66: a4:c7:c3:e7:17:7c:07:4d:cd:8a:f6:2a:f2:bd:bd:7f:11:51: 94:f5:81:98:e9:27:0e:a8:60:76:be:ec:2b:1b:d5:91:a8:de: bf:03:88:d6:d9:22:93:61:3b:c2:e0:53:bb:e3:9f:5f:3f:bb: 8b:df:88:e7:bb:dd:9b:f2:a9:38:0a:40:c0:db:60:10:2c:11: a4:1e:5f:4f:39:e4:bb:d6:48:fa:8e:e1:fd:48:da:ad:26:90: 20:1f:01:d3:59:b9:57:e9:9c:b3:21:15:71:d9:9c:d3:18:75: 2b:70:5f:1b:93:57:8f:01:c8:13:9c:06:0b:bf:b1:96:a6:3d: cd:90:e5:34:19:c6:e7:9e:64:25:81:d5:c3:d9:e9:2a:48:bf: 6f:58:03:64:e7:a3:ed:cc:99:0a:8b:84:43:6b:84:48:9b:76: d0:f1:5d:99 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUEnoNPIXFU1jBqCov1cNs3cTDNmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI3MjJERTNFNzY3QkE4RkMxRUIyOUE3RDE2NzlGNzM0 QzU1OTY2RDAeFw0yNjA2MDYxNTMxMzJaFw0yNzA2MDUxNTM2MzJaMDMxMTAvBgNV BAMTKEVDREIyN0FDRUM3MTgxRkMzMjFEOTQxQUQ4NTcxMzBFMkE0N0MwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXxw/6PoqC18xOkzgPsFsgpOhc wqJBRkjCxXrRx5CFp4exNS9i1wUbGtZrNc36819rOUll/k4qFq75qWCq/TUXDh8h vvnJ0tS/IfKb+gQquVly7KvgXykB+jvLy/M4gS7rzBdPLCAXLejFeq6ibkOFoZgn tym1tr61G1yg68YSoRXSM0i1LU/5UELkUAWliii2t0MG+V02lzenoHQU250VbDX2 XE47VPfDsgj+KfaLRIHbA/EaMS3HMHyC02H8BB/WAsE9hfBrD9zXmFtAM44Vgcdv cy9FOvlCjpqUNLrvVpgLnwIhC5P7+cV0qset6ClgJPZ3pDTOoq/1aTTkztUFAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU7NsnrOxxgfwyHZQa2FcTDipHwLwwHwYDVR0j BBgwFoAUUnIt4+dnuo/B6ymn0Wefc0xVlm0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODA2MmJmYTYtOTNkYi00ZDU5LTlhNDUtODFmODJhOGMy Yzc2LzEvNTI3MjJERTNFNzY3QkE4RkMxRUIyOUE3RDE2NzlGNzM0QzU1OTY2RC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjcyMkRFM0U3NjdCQThGQzFFQjI5QTdE MTY3OUY3MzRDNTU5NjZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84MDYyYmZhNi05M2RiLTRkNTktOWE0NS04MWY4MmE4YzJjNzYvMS8zMjYxMzEz NDNhMzczNTM4MzQzYTMzMzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzgzNDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1hDAwDQYJKoZIhvcNAQELBQADggEBAF/p ZkQRM2SwVDl3fO8ELRGlBRe2K/yBjQtr49kww7fSjQcI51jpFIwuc9v9JgfjUuk+ DOMeq+AUeTw2Amxv+8f9Z0LIVHHIleh39tjITQPUARcfd4lQ7pAFZqTHw+cXfAdN zYr2KvK9vX8RUZT1gZjpJw6oYHa+7Csb1ZGo3r8DiNbZIpNhO8LgU7vjn18/u4vf iOe73ZvyqTgKQMDbYBAsEaQeX0855LvWSPqO4f1I2q0mkCAfAdNZuVfpnLMhFXHZ nNMYdStwXxuTV48ByBOcBgu/sZamPc2Q5TQZxueeZCWB1cPZ6SpIv29YA2Tno+3M mQqLhENrhEibdtDxXZk= -----END CERTIFICATE-----Generated at Sat Jun 13 21:34:10 2026 by rpki-client