$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 7JXjeUXiLJJbyhvOq6qeohsmRnkOPoIfFYmodDgZPHU= Subject key identifier: A7:2C:D8:7C:96:C3:3C:DF:F0:2B:94:1E:B5:AF:39:84:95:1F:EF:DE Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 28376EB55FD3F8573CE542DB21E72DCC2F38D4FA Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 04 Feb 2026 16:06:33 +0000 ROA not before: Wed 04 Feb 2026 16:01:33 +0000 ROA not after: Wed 03 Feb 2027 16:06:33 +0000 asID: 215364 IP address blocks: 2a14:7581:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:37:6e:b5:5f:d3:f8:57:3c:e5:42:db:21:e7:2d:cc:2f:38:d4:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 4 16:01:33 2026 GMT Not After : Feb 3 16:06:33 2027 GMT Subject: CN=A72CD87C96C33CDFF02B941EB5AF3984951FEFDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d4:16:cf:25:33:4f:36:67:f6:36:33:9c:09: 39:1c:99:c1:cb:1c:50:d8:13:fb:fa:07:06:70:7d: 0a:a4:e1:26:15:e3:5a:87:41:8e:71:93:6c:06:a6: 19:29:49:30:79:5e:65:67:1b:0e:cf:c9:97:2b:9a: 6a:d7:be:98:2d:ca:65:7a:f5:8b:79:56:af:28:82: 0c:65:5b:cc:f6:cc:c3:51:d8:d2:b8:80:f9:cd:50: 94:1d:6d:bd:85:e9:00:cb:d2:85:9f:44:00:c3:c9: 92:52:77:df:2f:6a:05:5a:c1:5d:db:59:1c:8c:05: b1:ee:4d:c3:44:f8:bc:75:cf:fb:21:7e:3a:45:84: ee:89:84:79:4d:c0:51:df:df:35:29:5e:83:f4:2f: a8:12:87:59:d2:55:1c:ac:3a:a9:41:ba:4e:2f:df: d1:c1:ba:0f:4f:6c:a9:54:4b:69:4e:b1:2c:bc:b8: ca:2e:f2:7a:a4:17:20:b4:bd:01:6b:90:de:85:43: 79:2e:57:d1:2f:50:eb:a5:6d:fa:6b:1d:9a:70:46: 8a:23:a6:2b:02:3b:a2:ae:87:42:98:27:4f:0e:5c: 75:15:83:64:cf:5a:03:f2:0d:25:6e:8a:0e:90:c1: d2:01:a2:f9:ce:b2:48:01:40:61:37:76:65:54:d1: 00:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2C:D8:7C:96:C3:3C:DF:F0:2B:94:1E:B5:AF:39:84:95:1F:EF:DE X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1003::/48 Signature Algorithm: sha256WithRSAEncryption 97:a4:19:e1:48:1e:a3:eb:30:ce:60:9c:2f:10:08:92:76:2f: ad:11:5b:e7:35:a0:11:c3:32:93:00:43:45:61:37:a4:cc:dd: e0:87:1e:b6:09:1a:14:93:95:02:20:0b:3d:00:1d:64:70:28: 2e:2a:bf:fe:12:95:7b:94:8f:95:ef:7b:a0:f2:09:fe:56:03: cc:f3:7e:fb:8e:bd:55:85:b8:71:fc:cc:73:a1:8d:89:dd:3d: 66:37:1a:61:8c:c6:c6:79:b3:69:ac:c3:f5:ea:01:44:3d:6c: 8a:91:3c:9c:ce:25:6c:fc:89:4f:5e:11:f0:60:1c:b5:1d:24: 37:c7:6a:c6:e1:9d:1b:43:d0:aa:7b:ea:db:69:f1:0e:bc:96: f0:64:75:9e:d9:db:f2:03:ec:99:0d:85:84:11:32:ab:5c:50: 33:56:60:7e:22:e8:c1:b0:fc:d7:cc:a7:97:10:2d:c8:b1:10: f8:84:cb:a5:02:c5:e2:f5:47:24:14:20:7b:73:0e:b0:e8:f2: f6:51:8b:85:28:e6:70:15:dc:9f:95:77:d9:4d:0a:ce:7b:46: ae:ec:08:54:55:0f:62:76:d4:6f:89:b7:94:08:71:fe:e8:b1: 18:04:b0:90:83:0a:ea:01:39:d8:32:b7:51:3c:55:47:e5:34: 9d:f7:eb:7b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKDdutV/T+Fc85ULbIectzC841PowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMDQxNjAxMzNaFw0yNzAyMDMxNjA2MzNaMDMxMTAvBgNV BAMTKEE3MkNEODdDOTZDMzNDREZGMDJCOTQxRUI1QUYzOTg0OTUxRkVGREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf1BbPJTNPNmf2NjOcCTkcmcHL HFDYE/v6BwZwfQqk4SYV41qHQY5xk2wGphkpSTB5XmVnGw7PyZcrmmrXvpgtymV6 9Yt5Vq8oggxlW8z2zMNR2NK4gPnNUJQdbb2F6QDL0oWfRADDyZJSd98vagVawV3b WRyMBbHuTcNE+Lx1z/shfjpFhO6JhHlNwFHf3zUpXoP0L6gSh1nSVRysOqlBuk4v 39HBug9PbKlUS2lOsSy8uMou8nqkFyC0vQFrkN6FQ3kuV9EvUOulbfprHZpwRooj pisCO6Kuh0KYJ08OXHUVg2TPWgPyDSVuig6QwdIBovnOskgBQGE3dmVU0QAbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUpyzYfJbDPN/wK5Qeta85hJUf794wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRADMA0GCSqGSIb3DQEBCwUAA4IBAQCX pBnhSB6j6zDOYJwvEAiSdi+tEVvnNaARwzKTAENFYTekzN3ghx62CRoUk5UCIAs9 AB1kcCguKr/+EpV7lI+V73ug8gn+VgPM8377jr1Vhbhx/MxzoY2J3T1mNxphjMbG ebNprMP16gFEPWyKkTycziVs/IlPXhHwYBy1HSQ3x2rG4Z0bQ9Cqe+rbafEOvJbw ZHWe2dvyA+yZDYWEETKrXFAzVmB+IujBsPzXzKeXEC3IsRD4hMulAsXi9UckFCB7 cw6w6PL2UYuFKOZwFdyflXfZTQrOe0au7AhUVQ9idtRvibeUCHH+6LEYBLCQgwrq ATnYMrdRPFVH5TSd9+t7 -----END CERTIFICATE-----Generated at Mon Mar 2 15:39:03 2026 by rpki-client