$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: wEMGZrCtu1LWG7PsjYCGBaqElxaJ0d3n3p0/eC+2AiU= Subject key identifier: 76:37:46:34:6F:E8:09:8C:72:01:86:1F:18:BF:87:2C:43:64:72:5A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 645056B6216CB5ED80E097A35C718948628365B6 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 04 Feb 2026 16:06:34 +0000 ROA not before: Wed 04 Feb 2026 16:01:34 +0000 ROA not after: Wed 03 Feb 2027 16:06:34 +0000 asID: 215364 IP address blocks: 2a14:7581:1006::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:50:56:b6:21:6c:b5:ed:80:e0:97:a3:5c:71:89:48:62:83:65:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 4 16:01:34 2026 GMT Not After : Feb 3 16:06:34 2027 GMT Subject: CN=763746346FE8098C7201861F18BF872C4364725A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:53:14:c5:fe:07:43:ed:47:d7:98:34:7c:42: 58:ea:4b:a0:e5:a0:56:97:c5:4a:f6:12:78:d5:cc: 68:65:79:0c:a1:6f:08:66:9d:db:01:d4:70:3e:37: 2e:05:99:82:45:fe:35:eb:8e:61:e7:eb:db:13:76: 2f:81:ac:d3:85:8f:a2:d6:7b:62:ad:fe:24:ba:11: c4:81:5e:05:1c:39:27:91:87:03:6d:33:fa:23:c3: cb:5b:e8:df:d6:01:7f:f3:30:1d:07:68:f6:bc:48: c1:79:98:80:4c:4c:bb:f6:f7:da:df:31:49:de:2d: 6f:14:4f:db:22:c3:62:26:51:24:8e:80:9c:44:55: 87:e9:53:70:76:d5:8d:4b:09:68:0e:4a:aa:6b:82: 85:60:80:77:e1:a0:a2:92:74:3b:eb:87:fb:f7:b6: 18:fb:7f:7c:c5:81:46:24:7a:13:80:bc:a6:ff:7b: db:da:c1:a5:fd:9d:6e:94:9a:46:dd:1f:60:6b:45: eb:84:4a:2b:08:f0:ad:b8:43:5a:d8:81:85:fa:17: 67:3f:70:1f:3b:75:61:e8:f3:4b:bf:45:01:99:6e: 2f:42:6c:2a:b3:46:a9:10:7f:06:19:67:34:1b:10: 7d:b6:43:34:05:42:42:fa:64:07:75:92:f6:87:ed: 65:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:37:46:34:6F:E8:09:8C:72:01:86:1F:18:BF:87:2C:43:64:72:5A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1006::/48 Signature Algorithm: sha256WithRSAEncryption 3e:35:b2:7b:db:86:7f:10:86:6a:14:cd:64:f8:7c:7b:af:04: 39:d2:78:62:e8:4c:e2:ba:eb:a3:75:9e:c3:90:d0:65:40:30: 83:e7:ed:0a:23:84:9c:a6:01:ef:cd:6a:35:fd:d2:51:63:3b: c0:a1:82:00:8f:f2:0e:f4:c8:36:37:01:b4:cc:b1:43:36:22: 0d:c4:28:3c:a1:8f:71:13:e2:8a:0c:fe:d0:e0:38:62:98:5d: 53:87:ab:7e:25:59:81:f8:b9:b9:3f:81:8c:49:63:86:03:dc: f7:0f:22:2c:4b:2b:70:e9:e2:d4:54:50:38:5d:66:2c:3e:5c: da:3f:99:dc:c8:27:53:fc:d0:b8:fb:cd:45:57:76:d7:17:db: a4:71:18:23:5b:2c:51:89:7d:9f:44:63:a0:c0:90:7e:2a:fb: a3:2e:ac:04:86:a6:69:64:4d:c0:1d:41:81:c9:5e:a7:25:ab: db:f9:87:5d:34:b9:85:60:65:bc:b2:65:39:3e:f0:67:1f:ed: 7d:5f:c0:8b:b8:41:2e:7d:02:25:78:d0:d3:33:c3:97:29:59: 20:60:02:97:ff:5e:a2:c7:7e:19:2d:c4:8f:1c:19:90:03:7a: b3:09:7b:85:61:61:92:02:f5:9b:61:cb:2b:b4:1f:a4:f4:13: f2:ba:e9:cd -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZFBWtiFste2A4JejXHGJSGKDZbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMDQxNjAxMzRaFw0yNzAyMDMxNjA2MzRaMDMxMTAvBgNV BAMTKDc2Mzc0NjM0NkZFODA5OEM3MjAxODYxRjE4QkY4NzJDNDM2NDcyNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoUxTF/gdD7UfXmDR8QljqS6Dl oFaXxUr2EnjVzGhleQyhbwhmndsB1HA+Ny4FmYJF/jXrjmHn69sTdi+BrNOFj6LW e2Kt/iS6EcSBXgUcOSeRhwNtM/ojw8tb6N/WAX/zMB0HaPa8SMF5mIBMTLv299rf MUneLW8UT9siw2ImUSSOgJxEVYfpU3B21Y1LCWgOSqprgoVggHfhoKKSdDvrh/v3 thj7f3zFgUYkehOAvKb/e9vawaX9nW6UmkbdH2BrReuESisI8K24Q1rYgYX6F2c/ cB87dWHo80u/RQGZbi9CbCqzRqkQfwYZZzQbEH22QzQFQkL6ZAd1kvaH7WVjAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUdjdGNG/oCYxyAYYfGL+HLENkclowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAGMA0GCSqGSIb3DQEBCwUAA4IBAQA+ NbJ724Z/EIZqFM1k+Hx7rwQ50nhi6EziuuujdZ7DkNBlQDCD5+0KI4ScpgHvzWo1 /dJRYzvAoYIAj/IO9Mg2NwG0zLFDNiINxCg8oY9xE+KKDP7Q4DhimF1Th6t+JVmB +Lm5P4GMSWOGA9z3DyIsSytw6eLUVFA4XWYsPlzaP5ncyCdT/NC4+81FV3bXF9uk cRgjWyxRiX2fRGOgwJB+KvujLqwEhqZpZE3AHUGByV6nJavb+YddNLmFYGW8smU5 PvBnH+19X8CLuEEufQIleNDTM8OXKVkgYAKX/16ix34ZLcSPHBmQA3qzCXuFYWGS AvWbYcsrtB+k9BPyuunN -----END CERTIFICATE-----Generated at Mon Mar 2 15:18:34 2026 by rpki-client