$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623134303a3a2f34342d3438203d3e203230343733.roa File: 326130663a316363363a623134303a3a2f34342d3438203d3e203230343733.roa (raw, json) Hash identifier: 0uVBH5sUFKMTa796Uvv1SVvRGarUL75dm7ieOip7W/Q= Subject key identifier: 13:94:B6:3D:D7:A6:12:49:AE:C3:11:05:34:AE:E0:E5:0D:C9:96:30 Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 046407AB543FE3C364B99D94A0C75DCF48CF61D5 Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623134303a3a2f34342d3438203d3e203230343733.roa Signing time: Sat 14 Feb 2026 12:49:35 +0000 ROA not before: Sat 14 Feb 2026 12:44:35 +0000 ROA not after: Sat 13 Feb 2027 12:49:35 +0000 asID: 20473 IP address blocks: 2a0f:1cc6:b140::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 00:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:64:07:ab:54:3f:e3:c3:64:b9:9d:94:a0:c7:5d:cf:48:cf:61:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Feb 14 12:44:35 2026 GMT Not After : Feb 13 12:49:35 2027 GMT Subject: CN=1394B63DD7A61249AEC3110534AEE0E50DC99630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:16:8d:11:e6:48:03:40:66:96:01:32:cf:cc: e3:b6:a0:c2:d8:12:da:b9:63:7b:d6:9f:bd:5c:24: 8a:71:7c:c7:84:d3:4a:19:df:ce:57:b0:51:91:dc: 63:fe:59:cd:e8:f6:0a:7c:19:89:be:4e:cd:5e:cd: 38:91:a2:59:9c:ef:a2:55:df:c1:6d:2f:22:ee:19: d7:8e:32:49:b4:ad:ed:3f:c7:5a:6c:55:07:36:c1: 33:80:36:32:d1:9b:70:83:e5:68:67:99:0b:a2:d3: 84:17:3d:d4:8f:7f:9b:6d:46:95:69:9f:9d:09:b1: 45:51:f5:3b:4b:77:28:de:ef:a2:e1:fa:84:ac:76: 59:a6:cb:c8:7d:4a:7e:34:9f:d7:cb:32:32:87:57: b3:4c:58:45:c7:71:7d:64:6a:d5:1e:fd:08:40:81: a8:30:a3:cc:7d:90:c5:1a:1e:f4:b2:ac:f5:c7:28: 76:d2:88:bd:26:34:d5:7c:da:fc:6c:b0:31:47:90: 95:07:47:8a:82:96:37:0e:bf:f2:56:53:e0:e0:15: 70:d8:da:d8:4d:c2:e5:d5:2e:73:41:a4:68:b3:ee: 7e:2a:df:c1:db:c3:0a:95:b0:d7:c2:75:fa:b6:ac: 99:33:89:e6:88:0b:a9:12:ba:91:72:c4:34:4f:3b: ab:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:94:B6:3D:D7:A6:12:49:AE:C3:11:05:34:AE:E0:E5:0D:C9:96:30 X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623134303a3a2f34342d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:b140::/44 Signature Algorithm: sha256WithRSAEncryption aa:ed:8a:39:91:f3:9b:ae:d7:c0:6e:21:52:d3:52:03:8c:ac: 9a:99:d0:f7:fd:60:2c:f4:ff:d2:ed:63:be:5d:3d:69:de:5b: 9d:2f:78:eb:2b:9b:34:38:0d:4c:0e:f6:7e:09:94:8c:ec:b3: c4:bb:37:c4:98:f7:67:d7:74:44:2f:55:4b:3e:75:10:9b:6a: dd:b4:4d:56:69:e1:e4:4c:40:26:5c:00:2b:93:32:8f:af:58: cf:16:38:74:17:52:e2:76:2a:14:8d:1a:7e:2b:66:92:2d:1b: b8:27:13:ff:80:4a:82:d3:a9:9d:62:fe:c3:32:b9:bd:10:3f: 95:b2:5a:a2:cc:5e:0d:02:f0:24:b2:c7:35:0a:dd:e7:21:68: 63:36:e8:b2:f5:4c:91:36:88:d8:21:29:22:ae:80:a9:8a:d9: 6b:cb:45:94:30:15:7e:0e:ff:6d:2b:34:93:41:22:e0:7f:d2: 65:f5:12:3d:8d:6c:16:86:57:39:af:c0:07:f9:a6:18:5d:23: da:15:8f:98:99:b5:90:7a:3f:a8:10:3f:f8:6f:b2:14:1c:c6: a2:29:08:1b:17:ad:d0:a5:c3:17:9e:d5:fc:0e:98:98:cf:2a: 9c:f3:75:db:90:32:a0:45:9b:03:a0:dc:98:28:b5:bd:89:6c: ec:93:82:fa -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUBGQHq1Q/48NkuZ2UoMddz0jPYdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjAyMTQxMjQ0MzVaFw0yNzAyMTMxMjQ5MzVaMDMxMTAvBgNV BAMTKDEzOTRCNjNERDdBNjEyNDlBRUMzMTEwNTM0QUVFMEU1MERDOTk2MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClFo0R5kgDQGaWATLPzOO2oMLY Etq5Y3vWn71cJIpxfMeE00oZ385XsFGR3GP+Wc3o9gp8GYm+Ts1ezTiRolmc76JV 38FtLyLuGdeOMkm0re0/x1psVQc2wTOANjLRm3CD5WhnmQui04QXPdSPf5ttRpVp n50JsUVR9TtLdyje76Lh+oSsdlmmy8h9Sn40n9fLMjKHV7NMWEXHcX1katUe/QhA gagwo8x9kMUaHvSyrPXHKHbSiL0mNNV82vxssDFHkJUHR4qCljcOv/JWU+DgFXDY 2thNwuXVLnNBpGiz7n4q38HbwwqVsNfCdfq2rJkzieaIC6kSupFyxDRPO6vtAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUE5S2PdemEkmuwxEFNK7g5Q3JljAwHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTYyMzEzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MDM0MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoPHMaxQDANBgkqhkiG9w0BAQsFAAOCAQEAqu2K OZHzm67XwG4hUtNSA4ysmpnQ9/1gLPT/0u1jvl09ad5bnS946yubNDgNTA72fgmU jOyzxLs3xJj3Z9d0RC9VSz51EJtq3bRNVmnh5ExAJlwAK5Myj69YzxY4dBdS4nYq FI0afitmki0buCcT/4BKgtOpnWL+wzK5vRA/lbJaosxeDQLwJLLHNQrd5yFoYzbo svVMkTaI2CEpIq6AqYrZa8tFlDAVfg7/bSs0k0Ei4H/SZfUSPY1sFoZXOa/AB/mm GF0j2hWPmJm1kHo/qBA/+G+yFBzGoikIGxet0KXDF57V/A6YmM8qnPN125AyoEWb A6DcmCi1vYls7JOC+g== -----END CERTIFICATE-----Generated at Mon Mar 2 10:34:09 2026 by rpki-client