$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930363a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930363a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: BMn6K19jJ4iJtuNC2KsrQMJBXSWVJ59FtRrnw8F8pV8= Subject key identifier: C4:44:BF:9A:84:1C:B5:96:B8:6C:05:DB:CB:10:34:83:19:65:D3:9F Certificate issuer: /CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Certificate serial: 0F9800AC37E774D8759F40A0C967A14BD705DDC1 Authority key identifier: 62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930363a3a2f34382d3438203d3e20323134333434.roa Signing time: Sat 13 Jun 2026 12:31:42 +0000 ROA not before: Sat 13 Jun 2026 12:26:42 +0000 ROA not after: Sat 12 Jun 2027 12:31:42 +0000 asID: 214344 IP address blocks: 2a14:7581:9906::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:98:00:ac:37:e7:74:d8:75:9f:40:a0:c9:67:a1:4b:d7:05:dd:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62D29A0648EE6D89D9E9A6A9AC15B4A692B22536 Validity Not Before: Jun 13 12:26:42 2026 GMT Not After : Jun 12 12:31:42 2027 GMT Subject: CN=C444BF9A841CB596B86C05DBCB1034831965D39F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fb:13:8e:da:57:03:65:8e:d7:cd:1a:05:c3: b7:4c:60:0f:60:c1:25:60:1f:79:e7:46:ff:87:26: f3:61:e6:21:e7:26:fa:83:97:8b:b5:f1:3f:d2:39: 2e:32:54:09:cf:63:19:06:a5:20:6b:b1:c1:48:dd: ad:1e:34:cf:81:4d:87:d3:c0:b4:30:6c:9f:1b:32: 85:ed:fa:90:08:fa:0a:19:08:47:c2:4d:d4:85:d1: 94:01:e0:92:e6:ad:ae:77:9b:1a:4d:ef:c4:e3:94: db:e1:e0:4e:3b:86:e2:b3:8d:68:d5:ab:34:5c:9c: 31:db:43:30:57:d1:7e:a0:75:cd:3d:20:f5:7f:c5: d2:cb:5c:83:7b:8e:42:c5:2f:ca:19:7d:9a:1e:5d: b6:ff:23:81:e3:ba:19:17:c7:d7:9a:a0:5e:4d:43: 90:1a:32:1d:f0:27:18:fe:70:92:88:6d:56:f4:5d: 93:0e:c6:42:c9:47:9d:3a:1d:66:42:36:ac:64:ce: 9b:5c:84:9e:1c:2b:6e:9e:1e:0a:06:2e:f1:5f:7e: e9:ce:20:1c:b0:f1:9e:f4:07:f2:76:3d:3b:29:90: ad:f1:8e:be:79:d4:5c:bd:35:31:ab:8f:2d:3e:24: 1f:98:32:3e:bc:7f:f1:23:65:68:bb:37:cd:4a:43: 46:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:44:BF:9A:84:1C:B5:96:B8:6C:05:DB:CB:10:34:83:19:65:D3:9F X509v3 Authority Key Identifier: keyid:62:D2:9A:06:48:EE:6D:89:D9:E9:A6:A9:AC:15:B4:A6:92:B2:25:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/62D29A0648EE6D89D9E9A6A9AC15B4A692B22536.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b96b6113-85ea-4fc2-aed4-1f865d0ad444/2/326131343a373538313a393930363a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9906::/48 Signature Algorithm: sha256WithRSAEncryption a5:21:20:2a:4d:8c:20:24:38:d7:89:fc:56:98:79:09:9b:15: b8:8f:0f:e4:0e:aa:7d:86:6c:dd:bc:8d:bf:f3:43:2e:21:63: b8:5e:59:37:1f:9a:68:63:ad:14:ce:a8:6e:fe:3a:0b:d5:9b: 98:cb:fe:f4:4d:66:3d:2d:85:f5:65:10:cc:6e:4d:20:2d:c3: b6:23:0e:01:79:da:59:2e:a2:f4:97:75:55:67:f0:b0:f8:5e: bb:02:19:ca:f3:27:4d:20:a1:a6:82:17:ba:9e:13:49:c2:10: c8:91:f3:78:4a:f7:8f:a9:c3:8d:cc:bf:29:db:d1:2b:0d:a7: 0d:47:a0:02:f1:49:b2:ca:0b:0a:a7:18:61:6b:a5:12:85:18: a1:5b:91:52:6b:3c:0f:45:08:8c:e3:15:d4:96:b9:4c:42:44: cb:d5:10:b0:4c:29:62:7a:e0:da:c2:ef:d0:36:70:e0:72:63: 5d:98:14:61:87:c5:74:14:14:14:fd:1e:8d:36:f2:9e:24:23: fc:f8:83:fd:a5:f1:e8:6b:f8:81:4d:33:4c:63:e9:05:09:74: 4c:8d:d8:e8:33:49:cf:82:74:2e:66:3e:72:04:20:2c:17:c5: 02:94:32:e5:22:75:fa:31:2f:82:80:a0:f6:31:3c:a9:77:ad: bf:98:9e:ff -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUD5gArDfndNh1n0CgyWehS9cF3cEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5 MkIyMjUzNjAeFw0yNjA2MTMxMjI2NDJaFw0yNzA2MTIxMjMxNDJaMDMxMTAvBgNV BAMTKEM0NDRCRjlBODQxQ0I1OTZCODZDMDVEQkNCMTAzNDgzMTk2NUQzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk+xOO2lcDZY7XzRoFw7dMYA9g wSVgH3nnRv+HJvNh5iHnJvqDl4u18T/SOS4yVAnPYxkGpSBrscFI3a0eNM+BTYfT wLQwbJ8bMoXt+pAI+goZCEfCTdSF0ZQB4JLmra53mxpN78TjlNvh4E47huKzjWjV qzRcnDHbQzBX0X6gdc09IPV/xdLLXIN7jkLFL8oZfZoeXbb/I4HjuhkXx9eaoF5N Q5AaMh3wJxj+cJKIbVb0XZMOxkLJR506HWZCNqxkzptchJ4cK26eHgoGLvFffunO IByw8Z70B/J2PTspkK3xjr551Fy9NTGrjy0+JB+YMj68f/EjZWi7N81KQ0b1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUxES/moQctZa4bAXbyxA0gxll058wHwYDVR0j BBgwFoAUYtKaBkjubYnZ6aaprBW0ppKyJTYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjk2YjYxMTMtODVlYS00ZmMyLWFlZDQtMWY4NjVkMGFk NDQ0LzIvNjJEMjlBMDY0OEVFNkQ4OUQ5RTlBNkE5QUMxNUI0QTY5MkIyMjUzNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC82MkQyOUEwNjQ4RUU2RDg5RDlFOUE2QTlB QzE1QjRBNjkyQjIyNTM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iOTZiNjExMy04NWVhLTRmYzItYWVkNC0xZjg2NWQwYWQ0NDQvMi8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkGMA0GCSqGSIb3DQEBCwUAA4IBAQCl ISAqTYwgJDjXifxWmHkJmxW4jw/kDqp9hmzdvI2/80MuIWO4Xlk3H5poY60Uzqhu /joL1ZuYy/70TWY9LYX1ZRDMbk0gLcO2Iw4BedpZLqL0l3VVZ/Cw+F67AhnK8ydN IKGmghe6nhNJwhDIkfN4SvePqcONzL8p29ErDacNR6AC8UmyygsKpxhha6UShRih W5FSazwPRQiM4xXUlrlMQkTL1RCwTClieuDawu/QNnDgcmNdmBRhh8V0FBQU/R6N NvKeJCP8+IP9pfHoa/iBTTNMY+kFCXRMjdjoM0nPgnQuZj5yBCAsF8UClDLlInX6 MS+CgKD2MTypd62/mJ7/ -----END CERTIFICATE-----Generated at Sat Jun 13 21:53:01 2026 by rpki-client