$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20313531373034.roa File: 326130623a346530373a316330323a3a2f34382d3438203d3e20313531373034.roa (raw, json) Hash identifier: KL/ldm3b1AJMdY1QolVaUnbSkBg2mqpZUeWvBmihjnM= Subject key identifier: 12:5D:8F:EC:02:83:52:DA:11:90:6F:9A:CA:BF:22:19:3A:D6:20:54 Certificate issuer: /CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6 Certificate serial: 27687BF769C97A073A9599AA848F1D09FEAF0B48 Authority key identifier: 0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20313531373034.roa Signing time: Tue 10 Feb 2026 21:42:44 +0000 ROA not before: Tue 10 Feb 2026 21:37:44 +0000 ROA not after: Tue 09 Feb 2027 21:42:44 +0000 asID: 151704 IP address blocks: 2a0b:4e07:1c02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.crl rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:68:7b:f7:69:c9:7a:07:3a:95:99:aa:84:8f:1d:09:fe:af:0b:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BC6D225F0CE3E607712A9A98C4561912F3432B6 Validity Not Before: Feb 10 21:37:44 2026 GMT Not After : Feb 9 21:42:44 2027 GMT Subject: CN=125D8FEC028352DA11906F9ACABF22193AD62054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:85:d4:2c:81:b1:6e:0a:cc:1e:28:77:82: 2a:ca:d7:a4:4f:03:74:64:bc:e9:f1:dc:92:ee:8d: 48:59:0a:e3:7f:d0:90:d9:01:24:b6:76:4c:0f:9c: 1b:00:80:f5:3e:a8:37:f3:1a:af:08:e6:64:42:bf: aa:a8:e0:57:ff:7e:17:1f:71:be:bf:10:34:73:09: 94:09:98:99:70:68:9b:d2:76:86:0c:ff:de:e4:f0: 55:63:81:10:c8:79:6e:88:87:e5:96:6f:74:91:ed: c6:71:5e:d1:ed:54:fe:91:75:c3:eb:96:56:50:8b: af:34:72:bf:84:dc:cc:c6:47:c6:62:9a:ef:9e:28: 8f:83:72:8f:e9:ec:54:8c:3b:31:28:74:78:25:0b: a9:f2:6f:c7:e7:fe:92:52:4b:00:04:e4:46:3b:a6: 0e:7f:90:c6:ab:4c:c0:6e:fb:3e:92:8f:eb:ef:38: 9b:09:30:6a:c9:f9:6e:7a:1e:68:3e:23:c5:ee:30: 88:db:56:f3:30:15:9a:75:81:0e:81:3e:c2:24:1d: b4:3e:25:39:c9:23:f4:fd:40:ae:38:4a:13:d0:d0: 3f:ea:ad:a2:5d:a7:70:f0:15:f1:f4:14:b9:51:57: 56:55:84:5a:66:c7:1d:20:9b:50:27:93:5f:2f:6b: fa:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5D:8F:EC:02:83:52:DA:11:90:6F:9A:CA:BF:22:19:3A:D6:20:54 X509v3 Authority Key Identifier: keyid:0B:C6:D2:25:F0:CE:3E:60:77:12:A9:A9:8C:45:61:91:2F:34:32:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/0BC6D225F0CE3E607712A9A98C4561912F3432B6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/0BC6D225F0CE3E607712A9A98C4561912F3432B6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/531e9720-0b62-43a8-8e1f-230684eaf9af/3/326130623a346530373a316330323a3a2f34382d3438203d3e20313531373034.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:1c02::/48 Signature Algorithm: sha256WithRSAEncryption b3:87:bb:09:76:fb:97:1c:55:63:19:49:cb:17:6c:af:e9:a8: 77:4a:06:72:98:0a:29:e6:16:b2:02:29:b3:04:32:ca:82:27: 9e:45:aa:a0:a3:77:2d:64:b4:4e:b8:c4:8e:05:ef:b7:29:9b: 9f:a4:2a:9f:0a:b9:6b:a9:df:f2:3a:05:01:1f:f6:b1:f6:37: ff:c3:bb:8e:84:9b:c0:51:6b:a9:8b:e4:6c:3c:b7:ba:2a:3d: e0:1b:3c:08:42:d1:05:7d:7b:21:0b:09:1f:42:3a:4b:b4:59: 79:94:bd:2d:b7:ed:19:b8:58:2a:40:80:78:4b:d3:7d:08:33: 76:38:f2:33:8c:be:a8:da:2b:fd:22:0a:aa:2a:c9:1d:84:bb: 0c:37:66:db:2b:41:35:2b:e2:7d:98:4c:d1:3d:0e:d9:99:5e: 1b:9c:77:c7:bc:94:a3:73:38:d5:5e:31:f9:b7:ba:0d:08:72: 4b:d7:a6:4c:bb:e4:47:b7:26:80:c7:2a:29:a6:bd:13:d9:bf: 36:56:f5:16:25:3f:d6:da:9a:4a:7f:40:8e:a4:2c:28:6b:96: 4d:5a:57:65:1f:a1:8c:e5:fe:df:20:8c:eb:b5:eb:45:c7:74: a5:be:e7:fb:01:9b:84:c3:5a:46:e8:4e:27:65:12:d5:ec:89: 97:70:2a:c1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUJ2h792nJegc6lZmqhI8dCf6vC0gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEy RjM0MzJCNjAeFw0yNjAyMTAyMTM3NDRaFw0yNzAyMDkyMTQyNDRaMDMxMTAvBgNV BAMTKDEyNUQ4RkVDMDI4MzUyREExMTkwNkY5QUNBQkYyMjE5M0FENjIwNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFxoXULIGxbgrMHih3girK16RP A3RkvOnx3JLujUhZCuN/0JDZASS2dkwPnBsAgPU+qDfzGq8I5mRCv6qo4Ff/fhcf cb6/EDRzCZQJmJlwaJvSdoYM/97k8FVjgRDIeW6Ih+WWb3SR7cZxXtHtVP6RdcPr llZQi680cr+E3MzGR8Zimu+eKI+Dco/p7FSMOzEodHglC6nyb8fn/pJSSwAE5EY7 pg5/kMarTMBu+z6Sj+vvOJsJMGrJ+W56Hmg+I8XuMIjbVvMwFZp1gQ6BPsIkHbQ+ JTnJI/T9QK44ShPQ0D/qraJdp3DwFfH0FLlRV1ZVhFpmxx0gm1Ank18va/r/AgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUEl2P7AKDUtoRkG+ayr8iGTrWIFQwHwYDVR0j BBgwFoAUC8bSJfDOPmB3EqmpjEVhkS80MrYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAtMGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFm OWFmLzMvMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEyRjM0MzJCNi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvMEJDNkQyMjVGMENFM0U2MDc3MTJBOUE5OEM0NTYxOTEyRjM0 MzJCNi5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTMxZTk3MjAt MGI2Mi00M2E4LThlMWYtMjMwNjg0ZWFmOWFmLzMvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMTYzMzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzUzMTM3MzAzNC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgccAjANBgkqhkiG9w0BAQsFAAOCAQEAs4e7CXb7lxxVYxlJ yxdsr+mod0oGcpgKKeYWsgIpswQyyoInnkWqoKN3LWS0TrjEjgXvtymbn6Qqnwq5 a6nf8joFAR/2sfY3/8O7joSbwFFrqYvkbDy3uio94Bs8CELRBX17IQsJH0I6S7RZ eZS9LbftGbhYKkCAeEvTfQgzdjjyM4y+qNor/SIKqirJHYS7DDdm2ytBNSvifZhM 0T0O2ZleG5x3x7yUo3M41V4x+be6DQhyS9emTLvkR7cmgMcqKaa9E9m/Nlb1FiU/ 1tqaSn9AjqQsKGuWTVpXZR+hjOX+3yCM67XrRcd0pb7n+wGbhMNaRuhOJ2US1eyJ l3AqwQ== -----END CERTIFICATE-----Generated at Mon Mar 2 13:16:59 2026 by rpki-client