$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3130353a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: k/xjVwbbjjZY7+6rR9AuzqxcM69hgoTZLDajCdM2/uc= Subject key identifier: 1F:AA:67:FD:6E:CC:A5:4E:75:75:AE:F9:F6:3A:66:77:59:1A:3A:82 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 735C8BC4CB21AD84FCADA78FDA015093615ECA07 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e20323136333234.roa Signing time: Mon 23 Feb 2026 07:01:24 +0000 ROA not before: Mon 23 Feb 2026 06:56:24 +0000 ROA not after: Mon 22 Feb 2027 07:01:24 +0000 asID: 216324 IP address blocks: 2a14:7581:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 14:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5c:8b:c4:cb:21:ad:84:fc:ad:a7:8f:da:01:50:93:61:5e:ca:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Feb 23 06:56:24 2026 GMT Not After : Feb 22 07:01:24 2027 GMT Subject: CN=1FAA67FD6ECCA54E7575AEF9F63A6677591A3A82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:61:ed:4c:1c:54:bc:f1:75:89:ab:17:63:cd: 64:ac:5e:be:c0:98:f2:cd:28:bc:9e:c5:2a:e0:fe: a4:ab:76:55:2c:0d:6e:ff:36:ff:fd:39:48:bd:4c: 7e:00:d7:5e:70:13:4c:92:83:16:c0:78:dc:35:64: b3:b9:d4:98:cd:ac:df:92:1c:13:02:44:94:0e:33: 64:ef:70:c6:6f:f3:37:fa:81:b7:61:75:16:a1:22: 93:0d:21:9d:76:37:16:7c:27:10:6a:de:b9:2c:9c: e7:f8:8d:12:23:8f:e5:0a:2e:bf:52:e3:e8:9c:b1: 2a:f3:9c:d6:5a:6e:90:83:3a:d4:63:01:71:ce:9a: 55:2f:24:39:40:d5:40:be:dd:56:60:c7:a4:7e:03: 89:a9:b9:a7:eb:12:7c:9d:0f:20:ff:0f:7e:c2:8f: 15:9c:37:a8:e6:94:0f:23:96:b2:73:53:96:56:df: 9d:bd:18:cc:c5:36:1d:1b:e6:3b:e5:b0:a0:a8:a1: d9:d7:2e:b8:f5:4a:52:8e:f7:ba:05:1c:09:fb:80: 10:7c:74:70:0d:74:2e:51:fd:0e:0a:05:99:70:f8: 70:a4:d1:32:84:7d:75:71:2d:fe:bb:53:b0:e6:57: fe:01:af:0b:0b:0e:17:b3:02:a1:e2:87:4c:28:33: ff:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:AA:67:FD:6E:CC:A5:4E:75:75:AE:F9:F6:3A:66:77:59:1A:3A:82 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:105::/48 Signature Algorithm: sha256WithRSAEncryption 86:32:a8:db:69:6e:41:b2:08:82:ab:6c:f6:7c:a0:a4:d0:ff: 97:8c:59:ca:fd:81:fe:cb:9b:6d:dc:35:e9:76:92:6e:72:01: 4c:64:c6:0a:81:8f:79:d4:6d:36:85:f3:85:91:b3:25:dc:b8: 94:4b:4e:86:bc:f5:ac:0e:cb:dd:db:37:14:9c:00:03:29:3a: fc:4c:34:02:e9:ea:3f:5b:54:c3:4b:f2:9e:ae:62:f6:b8:4c: f3:4b:c0:bf:a7:82:7e:1b:53:6d:cf:e0:14:f2:a8:2f:2d:ff: 85:21:de:24:a3:58:46:24:1c:30:3d:49:ee:f0:08:d1:8b:f0: dc:fe:06:0e:06:87:ca:ad:18:48:60:21:58:59:88:fc:39:bf: 7d:3f:e2:cc:b5:13:0c:1c:6c:29:4c:d8:5e:f1:e2:c1:ea:76: 3d:8b:9f:a7:76:df:f5:a6:28:85:59:f7:55:f8:13:27:50:8d: 7f:fb:92:f6:56:79:34:44:7c:ad:e4:11:7e:1a:cc:2c:80:21: 11:f5:61:99:e4:d3:ab:60:03:f7:6d:93:ae:00:0a:ac:d9:65: 8f:61:ba:38:cd:b3:5b:2c:ce:49:fd:98:8a:8b:73:c1:ae:14: 0a:61:18:22:8b:44:bb:5a:bb:c2:f9:e9:44:bf:56:91:62:2c: 13:d3:a9:77 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUc1yLxMshrYT8raeP2gFQk2FeygcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNjAyMjMwNjU2MjRaFw0yNzAyMjIwNzAxMjRaMDMxMTAvBgNV BAMTKDFGQUE2N0ZENkVDQ0E1NEU3NTc1QUVGOUY2M0E2Njc3NTkxQTNBODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHYe1MHFS88XWJqxdjzWSsXr7A mPLNKLyexSrg/qSrdlUsDW7/Nv/9OUi9TH4A115wE0ySgxbAeNw1ZLO51JjNrN+S HBMCRJQOM2TvcMZv8zf6gbdhdRahIpMNIZ12NxZ8JxBq3rksnOf4jRIjj+UKLr9S 4+icsSrznNZabpCDOtRjAXHOmlUvJDlA1UC+3VZgx6R+A4mpuafrEnydDyD/D37C jxWcN6jmlA8jlrJzU5ZW3529GMzFNh0b5jvlsKCoodnXLrj1SlKO97oFHAn7gBB8 dHANdC5R/Q4KBZlw+HCk0TKEfXVxLf67U7DmV/4BrwsLDhezAqHih0woM//rAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUH6pn/W7MpU51da759jpmd1kaOoIwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEBBTANBgkqhkiG9w0BAQsFAAOCAQEAhjKo 22luQbIIgqts9nygpND/l4xZyv2B/subbdw16XaSbnIBTGTGCoGPedRtNoXzhZGz Jdy4lEtOhrz1rA7L3ds3FJwAAyk6/Ew0AunqP1tUw0vynq5i9rhM80vAv6eCfhtT bc/gFPKoLy3/hSHeJKNYRiQcMD1J7vAI0Yvw3P4GDgaHyq0YSGAhWFmI/Dm/fT/i zLUTDBxsKUzYXvHiwep2PYufp3bf9aYohVn3VfgTJ1CNf/uS9lZ5NER8reQRfhrM LIAhEfVhmeTTq2AD922TrgAKrNllj2G6OM2zWyzOSf2Yiotzwa4UCmEYIotEu1q7 wvnpRL9WkWIsE9Opdw== -----END CERTIFICATE-----Generated at Tue Mar 3 00:45:34 2026 by rpki-client