$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/326131343a373538303a6163613a3a2f34382d3438203d3e203438323636.roa File: 326131343a373538303a6163613a3a2f34382d3438203d3e203438323636.roa (raw, json) Hash identifier: m0JZIjGPbuRcNff74X1PNepaT8iUZ69LeXHnRPJt/AQ= Subject key identifier: C0:3B:17:1B:59:BF:17:67:63:73:46:18:9C:7C:FC:12:63:DE:69:0A Certificate issuer: /CN=21B5CB0BFB54183A6334820D704EDBF79B04CB48 Certificate serial: 7456B9C91D88D824F4048576FC0C34CD39C12FA7 Authority key identifier: 21:B5:CB:0B:FB:54:18:3A:63:34:82:0D:70:4E:DB:F7:9B:04:CB:48 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/326131343a373538303a6163613a3a2f34382d3438203d3e203438323636.roa Signing time: Fri 27 Mar 2026 04:43:42 +0000 ROA not before: Fri 27 Mar 2026 04:38:42 +0000 ROA not after: Fri 26 Mar 2027 04:43:42 +0000 asID: 48266 IP address blocks: 2a14:7580:aca::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.crl rsync://rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 02:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:56:b9:c9:1d:88:d8:24:f4:04:85:76:fc:0c:34:cd:39:c1:2f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21B5CB0BFB54183A6334820D704EDBF79B04CB48 Validity Not Before: Mar 27 04:38:42 2026 GMT Not After : Mar 26 04:43:42 2027 GMT Subject: CN=C03B171B59BF1767637346189C7CFC1263DE690A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:51:12:d7:bb:63:70:a1:7e:2d:80:bf:24:be: ff:40:3f:dc:bf:65:8a:be:ad:c3:b0:e5:9a:9e:fe: d1:70:5c:3d:b7:0b:21:c2:2b:12:d0:a8:7b:3f:f7: 26:86:26:ff:9b:11:e8:62:a6:ba:4d:37:c9:19:a9: ea:08:39:5f:b3:47:56:91:68:bb:3e:24:31:bc:7a: 4d:d4:4d:4a:e0:65:7a:6d:df:08:6c:8f:03:10:dd: 1e:15:eb:d6:ac:54:ce:c0:4c:8e:35:01:56:ac:d3: c5:21:cc:3b:2e:b4:a3:5e:69:54:4e:4e:bd:82:6e: d9:52:ae:b6:05:23:7c:6b:74:5f:05:59:d4:54:de: aa:6a:0d:cb:43:ac:36:33:5f:f5:ae:bb:4b:a5:2e: bb:8d:cc:6f:fe:5a:70:3b:07:bd:b8:37:66:09:fd: a2:29:36:cc:4d:01:7c:07:64:b2:f0:25:67:a0:0c: b7:0a:78:cb:c2:56:04:b1:a4:00:47:d7:e9:65:98: 76:6c:91:1b:60:67:95:92:c2:5b:bb:59:46:7e:3a: 51:88:78:35:70:af:da:34:33:cd:26:6a:e4:80:13: 64:44:70:63:b5:24:56:bb:d3:75:6e:ae:c0:da:d2: f5:2e:78:71:53:2a:3d:38:15:18:7c:46:14:4a:57: 01:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:3B:17:1B:59:BF:17:67:63:73:46:18:9C:7C:FC:12:63:DE:69:0A X509v3 Authority Key Identifier: keyid:21:B5:CB:0B:FB:54:18:3A:63:34:82:0D:70:4E:DB:F7:9B:04:CB:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/21B5CB0BFB54183A6334820D704EDBF79B04CB48.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/40ca266a-df83-4bb2-8007-4f85b893dc70/0/326131343a373538303a6163613a3a2f34382d3438203d3e203438323636.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:aca::/48 Signature Algorithm: sha256WithRSAEncryption bf:77:f9:90:51:5a:d7:3b:84:a1:e8:6a:cf:f8:56:8e:3f:03: 42:b9:f9:35:7b:71:ed:39:af:f9:44:7d:0b:de:a9:56:17:5f: 49:00:ac:cd:83:03:d4:d0:53:3f:82:ab:32:b8:d0:93:70:6a: 41:8d:22:5e:2a:ad:0a:7c:e4:96:38:0e:41:d3:4c:c6:fc:b8: a5:75:25:82:06:82:f6:01:05:42:d5:20:ab:b2:fd:19:49:a5: fa:b3:fe:ea:bf:c0:21:83:26:a3:44:22:62:86:66:7a:64:cf: 12:63:3e:5f:00:be:41:2b:46:2f:69:64:03:5f:37:53:5f:29: 32:ee:37:b0:c1:69:eb:eb:56:9f:9f:7a:29:f5:91:12:3d:7e: 94:03:42:6e:cb:fe:f7:6c:96:a4:9a:38:a8:6c:cd:43:37:ff: 40:bb:34:51:45:61:9a:aa:52:19:cf:c0:21:09:9c:97:6c:0e: 1b:aa:fe:86:d8:a5:ba:23:90:49:ad:be:9e:2d:58:13:39:74: 7c:07:ee:70:78:33:73:91:6d:58:c5:76:7f:bd:e5:8d:cc:23: 4a:df:7f:06:d6:97:3e:a5:ec:04:c2:66:b4:41:4b:35:92:09: 2c:7e:e0:8e:5c:8d:a1:ac:16:b8:ff:e9:0a:ec:cc:19:57:85: 9c:75:de:8f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUdFa5yR2I2CT0BIV2/Aw0zTnBL6cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFCNUNCMEJGQjU0MTgzQTYzMzQ4MjBENzA0RURCRjc5 QjA0Q0I0ODAeFw0yNjAzMjcwNDM4NDJaFw0yNzAzMjYwNDQzNDJaMDMxMTAvBgNV BAMTKEMwM0IxNzFCNTlCRjE3Njc2MzczNDYxODlDN0NGQzEyNjNERTY5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXURLXu2NwoX4tgL8kvv9AP9y/ ZYq+rcOw5Zqe/tFwXD23CyHCKxLQqHs/9yaGJv+bEehiprpNN8kZqeoIOV+zR1aR aLs+JDG8ek3UTUrgZXpt3whsjwMQ3R4V69asVM7ATI41AVas08UhzDsutKNeaVRO Tr2CbtlSrrYFI3xrdF8FWdRU3qpqDctDrDYzX/Wuu0ulLruNzG/+WnA7B724N2YJ /aIpNsxNAXwHZLLwJWegDLcKeMvCVgSxpABH1+llmHZskRtgZ5WSwlu7WUZ+OlGI eDVwr9o0M80mauSAE2REcGO1JFa703VursDa0vUueHFTKj04FRh8RhRKVwGDAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUwDsXG1m/F2djc0YYnHz8EmPeaQowHwYDVR0j BBgwFoAUIbXLC/tUGDpjNIINcE7b95sEy0gwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDBjYTI2NmEtZGY4My00YmIyLTgwMDctNGY4NWI4OTNk YzcwLzAvMjFCNUNCMEJGQjU0MTgzQTYzMzQ4MjBENzA0RURCRjc5QjA0Q0I0OC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8yMUI1Q0IwQkZCNTQxODNBNjMzNDgyMEQ3 MDRFREJGNzlCMDRDQjQ4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80MGNhMjY2YS1kZjgzLTRiYjItODAwNy00Zjg1Yjg5M2RjNzAvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTYxNjM2MTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0Mzgz MjM2MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWACsowDQYJKoZIhvcNAQELBQADggEBAL93+ZBR Wtc7hKHoas/4Vo4/A0K5+TV7ce05r/lEfQveqVYXX0kArM2DA9TQUz+CqzK40JNw akGNIl4qrQp85JY4DkHTTMb8uKV1JYIGgvYBBULVIKuy/RlJpfqz/uq/wCGDJqNE ImKGZnpkzxJjPl8AvkErRi9pZANfN1NfKTLuN7DBaevrVp+fein1kRI9fpQDQm7L /vdslqSaOKhszUM3/0C7NFFFYZqqUhnPwCEJnJdsDhuq/obYpbojkEmtvp4tWBM5 dHwH7nB4M3ORbVjFdn+95Y3MI0rffwbWlz6l7ATCZrRBSzWSCSx+4I5cjaGsFrj/ 6QrszBlXhZx13o8= -----END CERTIFICATE-----Generated at Fri Apr 17 15:44:44 2026 by rpki-client