$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6331303a3a2f34342d3434203d3e203136353039.roa File: 326130663a316363353a6331303a3a2f34342d3434203d3e203136353039.roa (raw, json) Hash identifier: ATedQ+3zQziEY8U3qucxBIEqTX/EAoCEJyo6U7SVoEs= Subject key identifier: 4C:12:F6:17:C3:2F:CC:9F:78:10:49:79:CF:6A:A2:FA:B8:21:0D:47 Certificate issuer: /CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Certificate serial: 722C577204FFF956E3ADBFCC271919DC016C7A70 Authority key identifier: 47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6331303a3a2f34342d3434203d3e203136353039.roa Signing time: Fri 10 Apr 2026 03:26:44 +0000 ROA not before: Fri 10 Apr 2026 03:21:44 +0000 ROA not after: Fri 09 Apr 2027 03:26:44 +0000 asID: 16509 IP address blocks: 2a0f:1cc5:c10::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 Apr 2026 14:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2c:57:72:04:ff:f9:56:e3:ad:bf:cc:27:19:19:dc:01:6c:7a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Validity Not Before: Apr 10 03:21:44 2026 GMT Not After : Apr 9 03:26:44 2027 GMT Subject: CN=4C12F617C32FCC9F78104979CF6AA2FAB8210D47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:24:4a:ce:b7:db:73:04:da:a9:ef:20:fa: 71:3b:98:e8:ab:b0:62:05:69:d0:9b:ef:a7:33:6b: 53:09:da:0c:99:32:f0:b3:31:34:c9:9a:9e:a4:a4: 7c:ed:7e:55:0c:f0:9f:10:df:aa:c7:31:9b:4a:c0: e6:5b:67:cf:87:91:5b:c4:06:fd:23:8b:0f:a0:04: d8:2c:59:44:92:51:ef:74:cd:7e:d3:83:58:e4:15: e0:b4:74:2d:1b:7f:3d:47:73:53:66:4d:05:1c:ee: 0f:d3:93:ce:fb:8b:e7:54:f0:a3:65:f2:5f:85:84: d3:06:17:5f:f2:55:dd:93:a9:0f:98:14:cb:53:21: fb:8b:2d:46:f1:a0:b3:b0:83:cf:6f:0b:65:b0:c9: d6:4f:62:3e:ec:37:41:2e:6b:ea:26:74:6d:70:8e: 50:2a:75:80:b9:95:1c:5a:ac:a4:05:1c:46:dc:f0: 22:bc:18:81:5f:76:b5:d8:95:0e:22:b1:e0:14:62: 65:7f:f7:d4:bc:fa:a1:5a:83:b5:d5:b7:29:69:b9: 8a:26:13:93:cc:fa:cd:0e:5b:3b:e3:46:88:06:2e: e3:83:fc:cb:ca:a2:ab:3b:2a:e4:84:f2:6a:30:28: e8:d5:a5:e7:17:f3:89:bc:44:9b:b3:a9:f0:6f:9c: e0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:12:F6:17:C3:2F:CC:9F:78:10:49:79:CF:6A:A2:FA:B8:21:0D:47 X509v3 Authority Key Identifier: keyid:47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6331303a3a2f34342d3434203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:c10::/44 Signature Algorithm: sha256WithRSAEncryption 5d:b5:3e:f9:73:19:aa:99:a8:22:e9:0b:a3:a1:8f:56:ac:7e: b2:cb:d8:06:49:80:85:6f:1d:97:c0:c2:60:e3:10:93:8a:64: f2:71:ea:df:61:19:52:2a:ae:8e:6f:6a:40:9d:a5:99:15:ae: 6a:6c:5b:40:3c:fd:23:b0:95:8c:53:cc:31:4e:ea:a3:1a:0c: b5:b7:e9:7a:17:ee:2e:da:56:21:57:6e:49:35:44:cb:ec:ca: 38:24:e3:37:b6:50:5d:48:b1:b5:45:73:24:dd:50:63:e5:66: 5d:dc:73:ad:9b:9e:ca:69:73:d2:f6:74:64:c4:8c:81:b8:a4: 56:1e:bc:fc:50:a9:26:8f:85:40:d5:d5:25:0f:79:e8:99:86: 26:e0:a5:20:53:fe:cd:50:a0:d8:cf:3f:15:61:10:4d:85:5f: 74:e7:86:cf:7f:c0:87:d7:6a:9e:8e:7d:f9:71:4a:e8:2e:dc: 40:f6:7f:72:3f:a6:51:40:a7:fd:82:3a:71:08:0f:de:b7:a7: 95:cd:74:d2:d3:de:f9:5d:ad:ab:ce:07:70:16:ac:fd:ef:cf: e2:e3:fa:56:36:62:40:31:16:61:63:f4:67:92:db:2f:30:da: 06:a2:95:e9:00:37:0c:0c:7f:db:1c:f6:2d:5d:69:0e:90:ff: fe:cb:85:7b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUcixXcgT/+Vbjrb/MJxkZ3AFsenAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2 NDg0MkM5MDAeFw0yNjA0MTAwMzIxNDRaFw0yNzA0MDkwMzI2NDRaMDMxMTAvBgNV BAMTKDRDMTJGNjE3QzMyRkNDOUY3ODEwNDk3OUNGNkFBMkZBQjgyMTBENDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+aSRKzrfbcwTaqe8g+nE7mOir sGIFadCb76cza1MJ2gyZMvCzMTTJmp6kpHztflUM8J8Q36rHMZtKwOZbZ8+HkVvE Bv0jiw+gBNgsWUSSUe90zX7Tg1jkFeC0dC0bfz1Hc1NmTQUc7g/Tk877i+dU8KNl 8l+FhNMGF1/yVd2TqQ+YFMtTIfuLLUbxoLOwg89vC2WwydZPYj7sN0Eua+omdG1w jlAqdYC5lRxarKQFHEbc8CK8GIFfdrXYlQ4iseAUYmV/99S8+qFag7XVtylpuYom E5PM+s0OWzvjRogGLuOD/MvKoqs7KuSE8mowKOjVpecX84m8RJuzqfBvnOBzAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUTBL2F8MvzJ94EEl5z2qi+rghDUcwHwYDVR0j BBgwFoAURz8ghbve4lh1vaeP5EaavWSELJAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjgxMmQzZWYtYzVmYy00NWIwLTk1NGEtOGE1MjIxMGMy ZTkwLzIvNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2NDg0MkM5MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC80NzNGMjA4NUJCREVFMjU4NzVCREE3OEZF NDQ2OUFCRDY0ODQyQzkwLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mODEyZDNlZi1jNWZjLTQ1YjAtOTU0YS04YTUyMjEwYzJlOTAvMi8zMjYxMzA2 NjNhMzE2MzYzMzUzYTYzMzEzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzYz NTMwMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwQqDxzFDBAwDQYJKoZIhvcNAQELBQADggEBAF21Pvlz GaqZqCLpC6Ohj1asfrLL2AZJgIVvHZfAwmDjEJOKZPJx6t9hGVIqro5vakCdpZkV rmpsW0A8/SOwlYxTzDFO6qMaDLW36XoX7i7aViFXbkk1RMvsyjgk4ze2UF1IsbVF cyTdUGPlZl3cc62bnsppc9L2dGTEjIG4pFYevPxQqSaPhUDV1SUPeeiZhibgpSBT /s1QoNjPPxVhEE2FX3Tnhs9/wIfXap6OfflxSugu3ED2f3I/plFAp/2COnEID963 p5XNdNLT3vldravOB3AWrP3vz+Lj+lY2YkAxFmFj9GeS2y8w2gailekANwwMf9sc 9i1daQ6Q//7LhXs= -----END CERTIFICATE-----Generated at Fri Apr 17 08:14:31 2026 by rpki-client