$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34382d3438203d3e20313533313736.roa File: 326131343a373538313a6632303a3a2f34382d3438203d3e20313533313736.roa (raw, json) Hash identifier: 8KUcwV+ZBGNa1TWr9TAbw1mQOwKknHp9Hus4NY1ZuW4= Subject key identifier: 4B:98:15:E5:58:AE:94:55:26:C8:05:73:E5:37:D3:CD:B4:4D:1E:17 Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 623F9021BEE5859B37D1BAA7B631E419BB3BDF32 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34382d3438203d3e20313533313736.roa Signing time: Sun 31 May 2026 15:36:27 +0000 ROA not before: Sun 31 May 2026 15:31:27 +0000 ROA not after: Sun 30 May 2027 15:36:27 +0000 asID: 153176 IP address blocks: 2a14:7581:f20::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:3f:90:21:be:e5:85:9b:37:d1:ba:a7:b6:31:e4:19:bb:3b:df:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: May 31 15:31:27 2026 GMT Not After : May 30 15:36:27 2027 GMT Subject: CN=4B9815E558AE945526C80573E537D3CDB44D1E17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7f:72:0c:c9:37:a6:0c:95:ce:64:bd:0a:3f: 9d:bb:54:b7:21:c5:76:eb:b3:72:6b:a0:d0:c6:86: 89:d5:6f:80:0b:47:8b:df:9f:b1:46:59:54:ed:78: dd:a2:84:60:a5:a1:8a:47:ac:40:b0:26:b3:4d:cb: dc:a0:98:b4:1a:04:3f:22:fa:2e:3b:56:0d:0b:39: d5:70:d8:26:bf:2c:05:5c:f4:eb:38:86:70:04:29: d8:4e:90:e4:96:56:d5:08:89:8f:27:56:d0:45:fc: 71:11:64:0e:00:19:64:a5:02:d2:20:b4:0f:aa:aa: cd:a4:80:7e:66:ec:8a:4e:23:a3:a7:a1:3f:ab:43: dd:8a:10:93:e8:46:12:f4:19:26:a7:1b:ca:b0:0d: 55:a3:9a:01:b0:7f:e4:d5:e8:f6:e7:e3:18:69:01: 64:a3:e2:7d:85:ba:49:35:38:2d:f1:97:37:88:f4: f1:84:93:d6:36:a6:ce:01:2e:b8:24:d8:f6:c0:7d: 62:92:10:2e:1b:12:65:fc:2d:94:1d:6a:da:f4:a5: a0:c0:50:74:d8:3b:23:5c:a1:0f:d2:be:2b:c2:91: 4e:6f:37:e1:61:51:b6:ff:5a:f9:67:11:a7:38:ba: 66:7a:3a:cf:2f:4e:9f:04:ee:4b:86:38:87:4a:5b: 01:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:98:15:E5:58:AE:94:55:26:C8:05:73:E5:37:D3:CD:B4:4D:1E:17 X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34382d3438203d3e20313533313736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:f20::/48 Signature Algorithm: sha256WithRSAEncryption 5e:2a:f9:0e:aa:ee:61:4c:7c:e5:97:2f:cb:56:7c:3c:09:ec: cc:90:17:90:d3:6f:83:ec:b6:2e:10:e9:e0:ea:41:bc:0c:6e: fb:49:f2:55:aa:3a:07:99:6b:3e:e6:73:a4:83:77:27:6e:5e: 7f:7e:b6:1c:78:2e:6d:de:3e:ae:aa:4d:44:a6:54:d1:89:01: 6d:32:57:83:9f:88:60:ed:5f:f4:0a:28:9f:68:92:63:7e:3c: d3:77:16:dc:c5:bc:56:16:b4:74:ae:8c:79:be:97:a9:02:f4: 1a:6e:ca:1f:f6:09:8c:23:09:60:27:16:8f:82:88:78:45:a5: d5:ac:40:41:69:d3:65:31:ad:7d:04:ac:39:e0:4e:40:02:fd: 51:e1:d4:08:7d:6e:0d:31:4d:40:64:98:85:4b:10:05:84:1b: b2:65:dd:41:6a:07:5b:ee:3e:94:dd:c5:f0:53:05:f2:be:66: ad:60:1d:7e:2c:9f:5b:0e:d6:c7:a8:66:18:77:90:a9:b4:7e: 0e:f1:12:96:d3:11:c4:17:0b:d4:47:02:33:fc:4c:b1:a6:20: f7:8d:97:33:fa:09:4b:d8:05:f0:84:41:62:a9:26:32:79:01: d0:7f:46:a0:b7:99:87:df:08:9c:f3:3f:43:97:c8:d3:3e:2d: bf:4a:12:9e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUYj+QIb7lhZs30bqntjHkGbs73zIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNjA1MzExNTMxMjdaFw0yNzA1MzAxNTM2MjdaMDMxMTAvBgNV BAMTKDRCOTgxNUU1NThBRTk0NTUyNkM4MDU3M0U1MzdEM0NEQjQ0RDFFMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDf3IMyTemDJXOZL0KP527VLch xXbrs3JroNDGhonVb4ALR4vfn7FGWVTteN2ihGCloYpHrECwJrNNy9ygmLQaBD8i +i47Vg0LOdVw2Ca/LAVc9Os4hnAEKdhOkOSWVtUIiY8nVtBF/HERZA4AGWSlAtIg tA+qqs2kgH5m7IpOI6OnoT+rQ92KEJPoRhL0GSanG8qwDVWjmgGwf+TV6Pbn4xhp AWSj4n2Fukk1OC3xlzeI9PGEk9Y2ps4BLrgk2PbAfWKSEC4bEmX8LZQdatr0paDA UHTYOyNcoQ/SvivCkU5vN+FhUbb/WvlnEac4umZ6Os8vTp8E7kuGOIdKWwFtAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUS5gV5ViulFUmyAVz5TfTzbRNHhcwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY2MzIzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUz MzMxMzczNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEPIDANBgkqhkiG9w0BAQsFAAOCAQEAXir5 DqruYUx85Zcvy1Z8PAnszJAXkNNvg+y2LhDp4OpBvAxu+0nyVao6B5lrPuZzpIN3 J25ef362HHgubd4+rqpNRKZU0YkBbTJXg5+IYO1f9Aoon2iSY34803cW3MW8Vha0 dK6Meb6XqQL0Gm7KH/YJjCMJYCcWj4KIeEWl1axAQWnTZTGtfQSsOeBOQAL9UeHU CH1uDTFNQGSYhUsQBYQbsmXdQWoHW+4+lN3F8FMF8r5mrWAdfiyfWw7Wx6hmGHeQ qbR+DvESltMRxBcL1EcCM/xMsaYg942XM/oJS9gF8IRBYqkmMnkB0H9GoLeZh98I nPM/Q5fI0z4tv0oSng== -----END CERTIFICATE-----Generated at Sun Jun 14 01:11:35 2026 by rpki-client