$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 5PmnD+45fZeCGRS+8SAi7rSGFWoxXaEkJCpzGQVg8m0= Subject key identifier: 46:B6:1F:D4:DA:88:A4:C9:5B:24:73:05:14:96:B1:AD:11:AF:86:CB Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 24BCFA46FFA7023D10D4E103E5A692984141A009 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 04 Feb 2026 16:06:35 +0000 ROA not before: Wed 04 Feb 2026 16:01:35 +0000 ROA not after: Wed 03 Feb 2027 16:06:35 +0000 asID: 215364 IP address blocks: 2a14:7581:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 21:47:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bc:fa:46:ff:a7:02:3d:10:d4:e1:03:e5:a6:92:98:41:41:a0:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 4 16:01:35 2026 GMT Not After : Feb 3 16:06:35 2027 GMT Subject: CN=46B61FD4DA88A4C95B2473051496B1AD11AF86CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:af:27:ed:ca:af:60:b6:b0:12:ba:3b:d7:5c: ed:fd:3b:a1:5d:9f:35:fe:41:d7:59:74:60:24:62: 05:d9:11:93:e4:3c:b9:44:37:b5:55:c2:ee:e5:d0: 63:2e:a5:98:57:53:74:52:28:68:bd:dc:8e:8f:c7: 06:e3:b4:f2:17:ae:70:f0:f7:91:48:3c:53:14:1d: ff:73:7f:b3:ea:f2:e2:b3:04:a4:db:84:18:77:53: 07:a4:9e:44:7c:f6:9f:98:fe:05:a0:c4:bd:9f:e2: da:b8:94:61:9c:0c:06:7b:7c:ec:bc:8f:aa:9c:a2: ea:06:6a:76:4b:1b:04:3a:03:f5:5b:2d:12:29:09: f0:3e:f8:79:a7:bc:2e:54:2e:05:97:e3:70:1b:4d: e9:55:66:79:38:2d:61:33:fc:83:41:68:55:4a:5c: d5:3e:12:8f:91:38:59:11:f1:dc:09:c6:d9:56:d8: 23:88:a8:32:f5:75:99:b2:ca:15:bc:cc:40:e7:11: 81:42:2b:80:52:ee:d9:7e:9b:bd:4e:6f:95:9e:88: 15:56:19:03:5c:87:07:41:e0:c8:da:cb:52:4a:ca: 91:b9:a4:b5:ab:58:74:f8:ce:f5:bc:83:0e:fd:fa: 59:4c:b7:03:f8:e6:9a:ad:62:2d:1c:36:f3:a4:57: 62:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B6:1F:D4:DA:88:A4:C9:5B:24:73:05:14:96:B1:AD:11:AF:86:CB X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1008::/48 Signature Algorithm: sha256WithRSAEncryption 8f:65:7a:8e:b6:a3:e1:64:de:82:cc:eb:1d:6b:d0:20:63:44: 1f:94:d5:1e:6a:f9:c7:ee:e6:2b:d4:9e:4e:9e:97:58:2c:88: 09:eb:1d:10:92:7c:46:30:21:fd:ca:a0:07:fc:f8:c0:9b:d8: b7:be:df:84:9a:82:1c:4a:e5:36:f4:0b:fe:92:6f:13:8a:8a: 9b:3d:96:3a:69:32:a1:4f:c6:4b:61:e6:07:80:bd:f5:e7:98: e5:3f:5a:aa:ed:b2:c0:ae:18:1f:f1:4d:99:4b:1c:45:f4:f0: 2c:e5:60:cb:75:b6:5d:58:e0:ca:36:46:2c:2c:df:8a:be:b7: 61:c8:bd:5e:e0:55:14:66:25:26:da:79:b5:97:69:2b:0a:5b: 5b:6a:3a:60:0b:4f:21:c2:eb:68:9b:65:6c:45:5d:93:4b:bb: ba:59:ff:db:ff:eb:56:5d:58:41:d7:ca:9a:ef:7b:73:e2:56: e8:23:01:81:bb:57:8c:28:23:6a:5e:ea:a7:9a:ee:56:f5:24: 65:59:b6:ae:3a:b9:cf:4d:f6:18:82:2e:0d:f2:ab:0b:d8:70: c6:0b:dc:ec:e0:5c:37:ed:15:0a:cb:b0:26:ac:31:56:37:fe: 1b:bf:26:79:23:d7:27:8c:1d:f7:f0:13:bd:82:e3:45:92:55: d3:5a:58:d2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJLz6Rv+nAj0Q1OED5aaSmEFBoAkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMDQxNjAxMzVaFw0yNzAyMDMxNjA2MzVaMDMxMTAvBgNV BAMTKDQ2QjYxRkQ0REE4OEE0Qzk1QjI0NzMwNTE0OTZCMUFEMTFBRjg2Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzryftyq9gtrASujvXXO39O6Fd nzX+QddZdGAkYgXZEZPkPLlEN7VVwu7l0GMupZhXU3RSKGi93I6PxwbjtPIXrnDw 95FIPFMUHf9zf7Pq8uKzBKTbhBh3UweknkR89p+Y/gWgxL2f4tq4lGGcDAZ7fOy8 j6qcouoGanZLGwQ6A/VbLRIpCfA++HmnvC5ULgWX43AbTelVZnk4LWEz/INBaFVK XNU+Eo+ROFkR8dwJxtlW2COIqDL1dZmyyhW8zEDnEYFCK4BS7tl+m71Ob5WeiBVW GQNchwdB4Mjay1JKypG5pLWrWHT4zvW8gw79+llMtwP45pqtYi0cNvOkV2JrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURrYf1NqIpMlbJHMFFJaxrRGvhsswHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAIMA0GCSqGSIb3DQEBCwUAA4IBAQCP ZXqOtqPhZN6CzOsda9AgY0QflNUeavnH7uYr1J5OnpdYLIgJ6x0QknxGMCH9yqAH /PjAm9i3vt+EmoIcSuU29Av+km8TioqbPZY6aTKhT8ZLYeYHgL3155jlP1qq7bLA rhgf8U2ZSxxF9PAs5WDLdbZdWODKNkYsLN+KvrdhyL1e4FUUZiUm2nm1l2krCltb ajpgC08hwutom2VsRV2TS7u6Wf/b/+tWXVhB18qa73tz4lboIwGBu1eMKCNqXuqn mu5W9SRlWbauOrnPTfYYgi4N8qsL2HDGC9zs4Fw37RUKy7AmrDFWN/4bvyZ5I9cn jB338BO9guNFklXTWljS -----END CERTIFICATE-----Generated at Mon Mar 2 15:37:18 2026 by rpki-client