$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343331303a3a2f34342d3438203d3e20323135313731.roa File: 326131343a373538313a343331303a3a2f34342d3438203d3e20323135313731.roa (raw, json) Hash identifier: GiP4GD8ggd65aZhgm+mIHhBgcxctP4oM9yKA+INTEK4= Subject key identifier: 6B:8B:94:28:03:AD:08:34:9A:9E:0B:FE:46:A7:57:E0:0D:7D:53:D2 Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 28BBB270DF639CB7B293C1323B2FC8CC0E54B18B Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343331303a3a2f34342d3438203d3e20323135313731.roa Signing time: Sat 07 Feb 2026 07:01:31 +0000 ROA not before: Sat 07 Feb 2026 06:56:31 +0000 ROA not after: Sat 06 Feb 2027 07:01:31 +0000 asID: 215171 IP address blocks: 2a14:7581:4310::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 06:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:bb:b2:70:df:63:9c:b7:b2:93:c1:32:3b:2f:c8:cc:0e:54:b1:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Feb 7 06:56:31 2026 GMT Not After : Feb 6 07:01:31 2027 GMT Subject: CN=6B8B942803AD08349A9E0BFE46A757E00D7D53D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:19:d3:f8:b7:6c:2d:d6:d9:96:ae:cb:43:5a: e7:a8:1a:8a:65:de:b9:6d:57:ba:8f:57:c6:48:12: 5f:78:0d:3b:7b:68:b2:84:e0:8c:46:39:e4:0d:14: 62:9a:f0:de:2b:c5:e5:e1:60:2f:c7:9e:37:a4:f6: ca:53:31:46:db:6b:49:51:e1:fb:bb:40:62:ab:ee: 3e:01:58:9b:7f:2c:e7:e9:dc:27:f7:30:f7:ab:5a: 93:43:dd:9b:b1:17:a8:f6:cb:f5:33:ac:56:31:b7: c4:e5:67:85:e5:7b:36:80:1f:92:9a:6e:fb:ff:24: 2a:9a:25:93:2e:03:8d:b5:03:d4:a1:e8:df:c1:c6: 46:7f:fd:99:11:e3:70:3a:77:b9:a2:5c:e2:6f:c7: 63:53:e8:8d:74:9f:67:c4:fe:25:6b:94:e3:52:e3: 09:47:e6:f9:73:32:51:3c:9f:6e:4b:15:69:4e:c1: da:5a:c4:31:95:0b:8a:34:79:7a:c2:4a:fd:60:1a: cc:04:37:1a:12:76:39:3f:c6:4f:b3:0a:4d:ae:ee: 7c:13:26:4e:ec:68:0d:30:fa:5d:87:83:8a:0a:8e: f7:b0:c1:94:7c:d7:4a:31:cc:de:d7:a2:c4:e8:c4: 89:ea:ba:c2:33:25:08:15:73:22:08:c1:d9:0c:71: 8a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8B:94:28:03:AD:08:34:9A:9E:0B:FE:46:A7:57:E0:0D:7D:53:D2 X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343331303a3a2f34342d3438203d3e20323135313731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4310::/44 Signature Algorithm: sha256WithRSAEncryption 1c:75:4f:7c:20:d7:21:79:6e:c0:21:78:82:42:51:0f:8a:79: 02:8f:f2:46:75:c2:ee:54:a2:f4:f8:90:e8:06:0c:c2:cb:5c: 96:52:5f:a7:fe:89:7b:7b:c8:ba:b3:4d:1f:a0:fe:b3:4f:65: 54:6e:b1:f1:b9:54:b4:79:14:63:04:57:77:31:d6:a1:08:11: c6:79:7f:75:23:f7:3d:ab:31:89:28:b9:d0:fa:f0:9d:a8:63: 58:2f:ab:9f:e5:23:f3:6f:86:7b:b6:57:3b:5e:69:59:27:93: b0:4d:7c:26:ee:53:ca:3d:39:b6:5f:fb:98:b4:5c:92:33:21: 38:9d:62:aa:36:23:13:87:04:eb:3d:ca:2a:4a:55:57:71:d5: de:4d:7d:44:08:2d:e6:fd:58:4e:87:f3:ee:98:40:a8:d5:3d: 37:3d:bb:41:e5:1a:56:73:ad:63:42:94:32:1b:4e:23:52:48: a6:a4:fc:70:3d:44:27:77:d0:b2:1b:c9:ee:fe:c6:ad:37:93: d3:fd:b0:ec:fe:58:27:8c:da:18:56:7d:c3:f3:e7:81:f9:f4: 1c:c4:65:0e:63:ef:8b:73:1e:b8:49:d7:05:81:a4:3d:d4:2b: 7c:09:a4:21:66:50:e9:54:30:69:4a:87:5b:7c:76:05:a6:7b: ab:e2:8a:a8 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKLuycN9jnLeyk8EyOy/IzA5UsYswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNjAyMDcwNjU2MzFaFw0yNzAyMDYwNzAxMzFaMDMxMTAvBgNV BAMTKDZCOEI5NDI4MDNBRDA4MzQ5QTlFMEJGRTQ2QTc1N0UwMEQ3RDUzRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTGdP4t2wt1tmWrstDWueoGopl 3rltV7qPV8ZIEl94DTt7aLKE4IxGOeQNFGKa8N4rxeXhYC/Hnjek9spTMUbba0lR 4fu7QGKr7j4BWJt/LOfp3Cf3MPerWpND3ZuxF6j2y/UzrFYxt8TlZ4XlezaAH5Ka bvv/JCqaJZMuA421A9Sh6N/BxkZ//ZkR43A6d7miXOJvx2NT6I10n2fE/iVrlONS 4wlH5vlzMlE8n25LFWlOwdpaxDGVC4o0eXrCSv1gGswENxoSdjk/xk+zCk2u7nwT Jk7saA0w+l2Hg4oKjvewwZR810oxzN7XosToxInqusIzJQgVcyIIwdkMcYo/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUa4uUKAOtCDSangv+RqdX4A19U9IwHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzMzMTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gUMQMA0GCSqGSIb3DQEBCwUAA4IBAQAc dU98INcheW7AIXiCQlEPinkCj/JGdcLuVKL0+JDoBgzCy1yWUl+n/ol7e8i6s00f oP6zT2VUbrHxuVS0eRRjBFd3MdahCBHGeX91I/c9qzGJKLnQ+vCdqGNYL6uf5SPz b4Z7tlc7XmlZJ5OwTXwm7lPKPTm2X/uYtFySMyE4nWKqNiMThwTrPcoqSlVXcdXe TX1ECC3m/VhOh/PumECo1T03PbtB5RpWc61jQpQyG04jUkimpPxwPUQnd9CyG8nu /satN5PT/bDs/lgnjNoYVn3D8+eB+fQcxGUOY++Lcx64SdcFgaQ91Ct8CaQhZlDp VDBpSodbfHYFpnur4oqo -----END CERTIFICATE-----Generated at Sun Mar 1 14:49:19 2026 by rpki-client