$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: Z9OgX8hoFSw3y/saCuyggIXvZtqT90O2/9DTqoeuIT4= Subject key identifier: 7A:32:DE:D0:B6:03:61:74:30:40:29:C5:51:7E:6F:AF:69:67:8D:82 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 0474DCC2BEC613341D470721A0B829B98DF33EB2 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 04 Feb 2026 16:06:33 +0000 ROA not before: Wed 04 Feb 2026 16:01:33 +0000 ROA not after: Wed 03 Feb 2027 16:06:33 +0000 asID: 215364 IP address blocks: 2a14:7581:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:74:dc:c2:be:c6:13:34:1d:47:07:21:a0:b8:29:b9:8d:f3:3e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 4 16:01:33 2026 GMT Not After : Feb 3 16:06:33 2027 GMT Subject: CN=7A32DED0B6036174304029C5517E6FAF69678D82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e9:4e:23:d9:32:eb:04:34:67:70:ff:79:13: 5a:ce:f5:f3:a1:f4:77:e5:c3:cb:94:7b:8c:bf:74: 6e:b8:8f:f1:fe:33:6e:23:00:45:b4:73:36:3d:88: 4a:44:83:53:cc:11:26:e9:67:46:01:ba:06:9d:84: 49:90:69:13:92:ab:8a:ed:09:cd:94:af:67:25:49: 40:b0:37:11:6a:ca:97:7d:34:d0:22:9e:3f:36:db: 97:16:ba:ef:01:0c:14:33:f1:c9:fa:dd:df:3c:06: c9:f0:fc:30:a5:5e:17:ec:6c:5c:ce:95:f2:f7:22: 67:52:9f:05:df:bc:2c:0b:0c:68:7b:66:31:bb:31: c6:45:ce:ac:65:ca:0c:46:e8:30:2e:2d:58:ab:6e: b8:b4:14:de:c2:3a:e3:a9:1a:b2:5e:1e:df:14:be: fe:ce:79:07:43:59:bf:42:7f:41:37:dd:42:87:83: 0f:3f:f0:d1:cf:d1:65:79:56:95:a0:3b:73:93:c9: ec:23:d4:44:14:98:6e:16:20:6f:69:ce:3c:a2:ff: 90:18:5d:03:d4:0b:b3:a4:73:39:fb:e2:fc:be:82: fa:6f:2b:45:e7:5a:e0:b1:f9:b2:16:e8:49:89:eb: 76:04:ee:ad:5b:5f:8d:8f:e1:1d:42:51:cd:2b:bf: 93:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:32:DE:D0:B6:03:61:74:30:40:29:C5:51:7E:6F:AF:69:67:8D:82 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1001::/48 Signature Algorithm: sha256WithRSAEncryption 40:07:23:c7:ea:34:fd:b1:8a:0a:0a:e9:23:b3:f5:15:fa:fe: d4:a5:28:8b:ac:65:c1:22:1a:a4:e7:3a:5e:bc:ab:81:73:36: 54:ef:bd:bb:77:5d:1c:cd:04:0d:43:81:03:dd:45:b2:ba:41: 39:ed:e3:6c:ad:0c:02:c2:ab:24:f8:3c:e3:cf:fa:19:c3:54: 6c:66:34:5e:05:21:1d:87:cc:f2:5c:79:58:af:04:13:b3:2c: a6:8c:62:09:6e:20:c9:9c:31:5d:52:7f:50:bc:24:99:38:bb: 5e:dc:a3:53:a3:98:8d:d7:f8:cf:e5:db:26:45:4f:a9:bb:d2: af:2b:39:b3:09:96:5c:2c:ba:11:83:8e:ef:1a:ce:3a:68:9c: 0b:25:ee:54:7d:7a:52:9c:64:c2:a6:40:0a:d1:cd:d9:a3:38: 7b:ce:ad:82:33:e4:b5:ce:e2:b0:c9:e2:74:a8:2a:bb:74:4e: 7b:4c:db:49:72:dd:39:6c:eb:e5:ca:48:a8:64:7f:16:4a:2d: f3:5d:73:c8:a3:71:b3:05:e1:63:06:ff:d6:c0:19:71:d9:9c: f9:1b:12:26:dd:e5:99:21:cd:7d:e0:23:f1:0b:92:63:47:de: 17:52:e1:27:f2:94:2a:a9:4b:1d:2a:b4:ac:be:13:55:d3:d2: a0:3d:bd:5d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUBHTcwr7GEzQdRwchoLgpuY3zPrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMDQxNjAxMzNaFw0yNzAyMDMxNjA2MzNaMDMxMTAvBgNV BAMTKDdBMzJERUQwQjYwMzYxNzQzMDQwMjlDNTUxN0U2RkFGNjk2NzhEODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv6U4j2TLrBDRncP95E1rO9fOh 9Hflw8uUe4y/dG64j/H+M24jAEW0czY9iEpEg1PMESbpZ0YBugadhEmQaROSq4rt Cc2Ur2clSUCwNxFqypd9NNAinj8225cWuu8BDBQz8cn63d88Bsnw/DClXhfsbFzO lfL3ImdSnwXfvCwLDGh7ZjG7McZFzqxlygxG6DAuLVirbri0FN7COuOpGrJeHt8U vv7OeQdDWb9Cf0E33UKHgw8/8NHP0WV5VpWgO3OTyewj1EQUmG4WIG9pzjyi/5AY XQPUC7Okczn74vy+gvpvK0XnWuCx+bIW6EmJ63YE7q1bX42P4R1CUc0rv5PbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUejLe0LYDYXQwQCnFUX5vr2lnjYIwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRABMA0GCSqGSIb3DQEBCwUAA4IBAQBA ByPH6jT9sYoKCukjs/UV+v7UpSiLrGXBIhqk5zpevKuBczZU7727d10czQQNQ4ED 3UWyukE57eNsrQwCwqsk+Dzjz/oZw1RsZjReBSEdh8zyXHlYrwQTsyymjGIJbiDJ nDFdUn9QvCSZOLte3KNTo5iN1/jP5dsmRU+pu9KvKzmzCZZcLLoRg47vGs46aJwL Je5UfXpSnGTCpkAK0c3Zozh7zq2CM+S1zuKwyeJ0qCq7dE57TNtJct05bOvlykio ZH8WSi3zXXPIo3GzBeFjBv/WwBlx2Zz5GxIm3eWZIc194CPxC5JjR94XUuEn8pQq qUsdKrSsvhNV09KgPb1d -----END CERTIFICATE-----Generated at Mon Mar 2 15:41:41 2026 by rpki-client