$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3330303a3a2f34302d3438203d3e20323134393239.roa File: 326130363a396634313a3330303a3a2f34302d3438203d3e20323134393239.roa (raw, json) Hash identifier: nHehWoxWXf1o0dbPZ/QJuze/UCT4m10ZkG52IDHzFmw= Subject key identifier: 20:62:40:74:F1:56:7B:35:F2:95:0C:6A:41:74:9C:6D:B3:EA:49:86 Certificate issuer: /CN=06DB699D191D4B0289910C88E99CF94A671142F5 Certificate serial: 650D87D679D5C22EDDC08B3D1CAC0EA36E939E9E Authority key identifier: 06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3330303a3a2f34302d3438203d3e20323134393239.roa Signing time: Thu 05 Feb 2026 07:45:00 +0000 ROA not before: Thu 05 Feb 2026 07:40:00 +0000 ROA not after: Thu 04 Feb 2027 07:45:00 +0000 asID: 214929 IP address blocks: 2a06:9f41:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 20:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:0d:87:d6:79:d5:c2:2e:dd:c0:8b:3d:1c:ac:0e:a3:6e:93:9e:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06DB699D191D4B0289910C88E99CF94A671142F5 Validity Not Before: Feb 5 07:40:00 2026 GMT Not After : Feb 4 07:45:00 2027 GMT Subject: CN=20624074F1567B35F2950C6A41749C6DB3EA4986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:4a:2c:c8:a8:c5:21:98:dc:0e:d5:fd:f3:8d: 31:1a:2a:a1:20:c3:86:cd:05:18:d2:9a:b2:2e:97: d5:a9:00:d5:3d:be:df:0f:26:e8:cf:a4:90:15:16: 8e:74:5c:06:03:eb:73:e7:ec:b0:eb:c8:b0:d6:1f: 23:76:50:73:c9:b7:40:8b:68:1e:31:ae:9c:cc:fe: b1:ef:e3:ee:cf:55:5a:c3:c3:6a:55:32:c8:fb:62: 48:17:55:8e:34:67:2d:20:a6:48:e2:0d:f1:61:8d: 75:25:a0:2c:41:a3:15:79:e3:c4:2e:ba:5a:fa:e6: 5b:99:d6:37:63:67:44:25:36:a0:96:9f:bb:bf:8b: 37:2f:05:ee:f0:b1:c1:5d:bb:0b:9e:71:d2:12:f2: f0:60:ba:93:34:86:66:f3:35:14:5b:bb:0b:e5:f7: 55:4d:c6:44:fe:85:26:23:63:ba:00:df:3d:3e:55: 5e:6e:e7:ba:51:a1:6f:36:9b:9b:a1:69:99:42:55: f6:e1:07:e8:4d:fb:e3:57:53:7e:85:11:3a:a3:50: aa:6b:36:2b:fe:34:ad:50:26:2e:ed:43:6f:cd:0b: b0:98:33:ad:99:8b:37:7e:da:23:55:ce:23:4c:4d: 21:e9:64:17:84:e7:cf:b0:b4:f5:13:cf:f1:f5:5b: e4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:62:40:74:F1:56:7B:35:F2:95:0C:6A:41:74:9C:6D:B3:EA:49:86 X509v3 Authority Key Identifier: keyid:06:DB:69:9D:19:1D:4B:02:89:91:0C:88:E9:9C:F9:4A:67:11:42:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/06DB699D191D4B0289910C88E99CF94A671142F5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/06DB699D191D4B0289910C88E99CF94A671142F5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3011944d-7eb3-4f63-a159-cff02c026abf/2/326130363a396634313a3330303a3a2f34302d3438203d3e20323134393239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f41:300::/40 Signature Algorithm: sha256WithRSAEncryption 6e:55:b6:ea:cc:2e:ab:64:a3:58:18:1b:fa:89:1a:f9:f6:9e: c1:06:4e:22:6d:22:c8:d2:ed:af:54:84:e3:f7:2d:20:8f:0e: 76:50:5c:07:1f:5f:1a:f1:d4:dc:a0:ab:30:e7:65:b3:95:da: eb:36:40:9c:e7:11:bd:63:86:9a:c8:db:d0:29:5d:9d:44:f1: 4b:e0:fb:39:81:3a:0b:f8:e8:0d:90:b4:c2:a5:a6:57:cc:37: 03:4a:0b:b2:0b:64:31:8d:29:a1:42:78:c2:96:72:a4:26:38: 9e:95:2e:ac:93:54:8b:b5:88:2d:24:b1:86:bb:a5:23:57:c7: 7f:2f:9c:77:43:74:2f:4d:47:d8:f8:2d:68:60:37:71:9d:2f: a9:b3:13:69:b5:17:48:93:48:b8:14:42:b3:84:7c:01:b7:af: 9d:80:aa:ea:51:70:cd:4f:73:e5:32:86:f6:25:2c:87:88:ad: 1e:13:35:2b:26:6d:01:19:b4:ab:04:88:f8:ff:14:cc:aa:64: cc:6a:54:0a:6b:9e:42:f6:a3:cf:d7:bc:d0:d7:3a:04:e6:49: f7:3e:eb:18:ca:7a:8b:a8:1b:e6:ce:f5:94:a6:34:6f:80:d8: a7:20:34:9a:a6:1d:0b:e3:0f:7a:f6:16:e9:36:a2:e9:c3:4e: 86:bd:2e:3a -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUZQ2H1nnVwi7dwIs9HKwOo26Tnp4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2 NzExNDJGNTAeFw0yNjAyMDUwNzQwMDBaFw0yNzAyMDQwNzQ1MDBaMDMxMTAvBgNV BAMTKDIwNjI0MDc0RjE1NjdCMzVGMjk1MEM2QTQxNzQ5QzZEQjNFQTQ5ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCKSizIqMUhmNwO1f3zjTEaKqEg w4bNBRjSmrIul9WpANU9vt8PJujPpJAVFo50XAYD63Pn7LDryLDWHyN2UHPJt0CL aB4xrpzM/rHv4+7PVVrDw2pVMsj7YkgXVY40Zy0gpkjiDfFhjXUloCxBoxV548Qu ulr65luZ1jdjZ0QlNqCWn7u/izcvBe7wscFduwuecdIS8vBgupM0hmbzNRRbuwvl 91VNxkT+hSYjY7oA3z0+VV5u57pRoW82m5uhaZlCVfbhB+hN++NXU36FETqjUKpr Niv+NK1QJi7tQ2/NC7CYM62Zizd+2iNVziNMTSHpZBeE58+wtPUTz/H1W+Q3AgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUIGJAdPFWezXylQxqQXScbbPqSYYwHwYDVR0j BBgwFoAUBttpnRkdSwKJkQyI6Zz5SmcRQvUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQtN2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2 YWJmLzIvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzExNDJGNS5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMDZEQjY5OUQxOTFENEIwMjg5OTEwQzg4RTk5Q0Y5NEE2NzEx NDJGNS5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzAxMTk0NGQt N2ViMy00ZjYzLWExNTktY2ZmMDJjMDI2YWJmLzIvMzI2MTMwMzYzYTM5NjYzNDMx M2EzMzMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMxMzQzOTMyMzkucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAqBp9BAzANBgkqhkiG9w0BAQsFAAOCAQEAblW26swuq2SjWBgb+oka +faewQZOIm0iyNLtr1SE4/ctII8OdlBcBx9fGvHU3KCrMOdls5Xa6zZAnOcRvWOG msjb0CldnUTxS+D7OYE6C/joDZC0wqWmV8w3A0oLsgtkMY0poUJ4wpZypCY4npUu rJNUi7WILSSxhrulI1fHfy+cd0N0L01H2PgtaGA3cZ0vqbMTabUXSJNIuBRCs4R8 AbevnYCq6lFwzU9z5TKG9iUsh4itHhM1KyZtARm0qwSI+P8UzKpkzGpUCmueQvaj z9e80Nc6BOZJ9z7rGMp6i6gb5s71lKY0b4DYpyA0mqYdC+MPevYW6Tai6cNOhr0u Og== -----END CERTIFICATE-----Generated at Mon Mar 2 11:41:59 2026 by rpki-client