$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: F9mRpzr2v6L8Td4iT+tkeDw/6kUMQOvkCFSGTWhVtQU= Subject key identifier: 04:9F:C6:E1:7A:65:75:0A:73:73:28:C1:33:A6:EE:F1:36:5A:9B:29 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 23D185710FC5BDB0035B454044055B2243B78CCD Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 04 Feb 2026 16:06:33 +0000 ROA not before: Wed 04 Feb 2026 16:01:33 +0000 ROA not after: Wed 03 Feb 2027 16:06:33 +0000 asID: 215364 IP address blocks: 2a14:7581:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d1:85:71:0f:c5:bd:b0:03:5b:45:40:44:05:5b:22:43:b7:8c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 4 16:01:33 2026 GMT Not After : Feb 3 16:06:33 2027 GMT Subject: CN=049FC6E17A65750A737328C133A6EEF1365A9B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6e:84:46:0a:2a:79:7d:07:99:f6:61:c4:60: 5a:a3:ec:f0:50:4d:d3:cf:e7:32:aa:21:9e:95:e9: b1:30:1d:51:6f:6c:7f:a7:ca:93:9d:ae:66:2c:e8: a1:2a:36:16:b9:d0:26:da:33:44:a3:72:44:05:0a: f1:52:d4:04:92:83:44:9b:15:38:d5:87:49:3d:46: c3:49:04:c5:3e:05:47:2f:e3:dd:8f:cf:69:6b:c3: 58:90:56:87:48:e7:d3:af:f8:f9:95:cc:16:d3:64: c0:7b:16:1b:30:1e:46:a8:b1:df:42:b5:53:a7:fa: 6f:36:7b:14:38:1e:ef:bf:85:36:de:c8:bb:bf:4f: e4:fa:59:cb:d0:b4:ba:25:a5:df:ef:08:03:a5:61: ee:be:86:7a:51:06:3d:4c:32:e3:b3:c0:de:bc:95: 95:9f:17:2a:2c:ed:12:75:f5:08:9f:f9:bc:f1:d9: 68:4a:91:2f:b5:4c:4b:cf:41:0e:cb:07:2c:15:8f: 14:2b:10:c3:30:e9:b4:60:0c:7a:ef:fc:22:94:bd: 7d:bd:0b:61:b9:fe:5e:89:f2:7d:31:21:17:35:b4: 87:c3:38:65:dc:fd:b8:77:92:b4:33:5d:c2:a4:6c: 79:a3:fa:29:8b:76:7c:2e:bf:39:bc:0d:43:64:21: a9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9F:C6:E1:7A:65:75:0A:73:73:28:C1:33:A6:EE:F1:36:5A:9B:29 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1007::/48 Signature Algorithm: sha256WithRSAEncryption 2c:2d:0c:4e:b7:cf:d9:70:e4:a7:98:5a:3f:c9:e6:ee:50:6b: 2a:93:15:f1:7b:23:4c:34:5a:e8:7c:14:0d:7c:8d:12:a9:1e: 1b:75:78:4b:2f:e5:95:bc:fd:03:dd:f3:77:91:9e:9a:a3:ad: 3e:cc:0e:ff:c2:5d:e0:12:2b:af:6f:f3:19:ea:c5:f7:01:e7: ef:6f:dc:46:87:30:dc:51:f2:98:7f:6b:b8:2e:de:69:01:e5: 7c:76:9d:ce:77:06:f8:4c:6e:7b:29:7e:b0:18:a5:8d:ad:87: d2:a3:19:98:4a:58:fd:3a:38:42:86:a2:30:98:aa:2a:2a:46: 44:f5:fa:65:65:d3:05:02:e8:ab:f0:81:23:9d:67:d7:60:2e: 70:3f:79:7a:2a:5e:b6:09:56:4f:20:e4:d2:18:8b:49:00:9a: 9c:31:cc:67:7c:ac:3b:07:39:01:90:f3:1c:6f:74:c4:14:75: ea:7c:2e:7d:ca:cb:79:1f:6a:e9:d0:2a:b8:b9:c4:57:3f:4c: 66:1f:1d:1d:c4:60:f8:9a:9d:b9:66:21:d1:06:a5:5e:3f:5e: 0d:88:b9:e4:7d:44:96:e1:4f:ef:2b:4b:31:d9:06:94:99:9f: ef:73:be:34:3b:16:7a:92:d1:a8:2a:f6:d3:cd:ba:51:96:82: d3:69:c9:b6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUI9GFcQ/FvbADW0VARAVbIkO3jM0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMDQxNjAxMzNaFw0yNzAyMDMxNjA2MzNaMDMxMTAvBgNV BAMTKDA0OUZDNkUxN0E2NTc1MEE3MzczMjhDMTMzQTZFRUYxMzY1QTlCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuboRGCip5fQeZ9mHEYFqj7PBQ TdPP5zKqIZ6V6bEwHVFvbH+nypOdrmYs6KEqNha50CbaM0SjckQFCvFS1ASSg0Sb FTjVh0k9RsNJBMU+BUcv492Pz2lrw1iQVodI59Ov+PmVzBbTZMB7FhswHkaosd9C tVOn+m82exQ4Hu+/hTbeyLu/T+T6WcvQtLolpd/vCAOlYe6+hnpRBj1MMuOzwN68 lZWfFyos7RJ19Qif+bzx2WhKkS+1TEvPQQ7LBywVjxQrEMMw6bRgDHrv/CKUvX29 C2G5/l6J8n0xIRc1tIfDOGXc/bh3krQzXcKkbHmj+imLdnwuvzm8DUNkIalXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUBJ/G4XpldQpzcyjBM6bu8TZamykwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAHMA0GCSqGSIb3DQEBCwUAA4IBAQAs LQxOt8/ZcOSnmFo/yebuUGsqkxXxeyNMNFrofBQNfI0SqR4bdXhLL+WVvP0D3fN3 kZ6ao60+zA7/wl3gEiuvb/MZ6sX3Aefvb9xGhzDcUfKYf2u4Lt5pAeV8dp3Odwb4 TG57KX6wGKWNrYfSoxmYSlj9OjhChqIwmKoqKkZE9fplZdMFAuir8IEjnWfXYC5w P3l6Kl62CVZPIOTSGItJAJqcMcxnfKw7BzkBkPMcb3TEFHXqfC59yst5H2rp0Cq4 ucRXP0xmHx0dxGD4mp25ZiHRBqVeP14NiLnkfUSW4U/vK0sx2QaUmZ/vc740OxZ6 ktGoKvbTzbpRloLTacm2 -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:46 2026 by rpki-client