$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a633330303a3a2f34302d313238203d3e20323130343634.roa File: 326131343a373538303a633330303a3a2f34302d313238203d3e20323130343634.roa (raw, json) Hash identifier: IxwgCbk25nW4zIf3Ev9+/v30oO87JlPDOY2TfrlWzrc= Subject key identifier: F4:60:61:CA:17:11:89:93:99:2A:C8:14:D1:00:75:E5:2E:85:3E:90 Certificate issuer: /CN=9B848163C7049122702E8D37941241ED5ADD94D9 Certificate serial: 38F8EA1E4C4A888DAF39FF106B0A7D5095877C6B Authority key identifier: 9B:84:81:63:C7:04:91:22:70:2E:8D:37:94:12:41:ED:5A:DD:94:D9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a633330303a3a2f34302d313238203d3e20323130343634.roa Signing time: Fri 10 Apr 2026 10:15:09 +0000 ROA not before: Fri 10 Apr 2026 10:10:09 +0000 ROA not after: Fri 09 Apr 2027 10:15:09 +0000 asID: 210464 IP address blocks: 2a14:7580:c300::/40 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 10:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:f8:ea:1e:4c:4a:88:8d:af:39:ff:10:6b:0a:7d:50:95:87:7c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B848163C7049122702E8D37941241ED5ADD94D9 Validity Not Before: Apr 10 10:10:09 2026 GMT Not After : Apr 9 10:15:09 2027 GMT Subject: CN=F46061CA17118993992AC814D10075E52E853E90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fe:f4:5a:1f:fb:f9:af:89:fa:19:d1:4e:de: 88:d9:79:8a:75:ec:bc:c6:4a:35:16:34:76:96:c3: 21:1d:4f:22:dc:10:18:ab:e9:8c:f5:1b:62:ca:b2: 24:96:20:24:ac:80:b6:2d:f5:02:c6:36:6e:d0:59: b5:4c:ba:2e:b0:9e:6a:5a:88:0e:7e:00:26:9a:a2: d8:92:b5:64:a8:df:bc:c8:0f:13:ef:f1:b1:15:a5: 89:57:ce:59:e6:46:81:0c:fb:74:5e:3d:cd:7a:96: 10:13:9c:73:d8:da:46:65:89:46:bb:26:ce:4d:99: 56:21:5c:b1:73:7f:4c:36:0c:b3:be:ba:b4:2b:9f: 5c:93:e6:bb:55:a7:6e:c4:49:94:7f:59:0a:01:2c: a9:e7:a0:e2:be:89:13:43:a0:16:eb:98:93:7a:27: e5:5c:1c:ac:38:07:4e:be:8b:b5:57:b3:5a:2c:e7: ea:9d:8c:4e:ba:43:19:43:d3:10:29:67:ff:22:a6: 06:ff:a5:50:b9:00:70:a3:31:62:22:6a:ac:22:b5: cf:0a:72:70:9e:fc:b3:6a:e5:05:52:4d:cb:b5:cf: a5:23:f0:7d:98:48:10:69:e4:a5:14:6b:ea:e5:81: a0:a4:db:20:bc:47:2c:78:02:b3:e7:e5:72:30:8b: 24:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:60:61:CA:17:11:89:93:99:2A:C8:14:D1:00:75:E5:2E:85:3E:90 X509v3 Authority Key Identifier: keyid:9B:84:81:63:C7:04:91:22:70:2E:8D:37:94:12:41:ED:5A:DD:94:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a633330303a3a2f34302d313238203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:c300::/40 Signature Algorithm: sha256WithRSAEncryption 74:9e:56:a2:77:6c:52:e6:1b:70:58:37:c7:b2:b9:34:7a:5f: a6:3d:c5:ab:3a:0d:13:26:78:d3:14:57:96:13:6c:3b:4e:97: 7c:b7:7e:1d:2a:e0:85:6e:ed:d9:83:ae:dd:82:50:33:0f:76: fc:ca:5b:86:d4:7b:60:3b:43:d4:45:fa:44:9f:67:a7:0f:f0: 74:b1:ab:9a:24:44:1b:64:85:c0:d9:86:b4:d8:a8:71:a3:f8: 58:15:bf:69:0f:60:b2:4c:cf:42:b2:8e:d6:80:86:a6:71:ad: 34:b4:0a:2e:21:c6:9b:43:27:9b:c4:9d:61:61:6d:41:ec:36: 5f:dd:23:4b:73:f8:13:d4:cc:56:a0:ba:0b:f4:25:47:28:ca: ba:47:42:2f:4f:e7:54:6a:48:07:e1:16:69:e0:31:45:e2:d3: 98:c2:18:4f:49:73:d0:7e:13:22:0d:89:17:0d:0e:5d:a3:97: a0:ee:6f:62:aa:75:41:29:7f:50:72:e6:3d:21:05:20:f4:65: ec:9f:c5:35:98:a7:cd:ea:ab:e8:44:12:54:9d:89:94:00:1e: ec:4e:07:10:30:8c:33:d3:4b:4e:d4:c7:71:ea:6d:e1:db:44: 8a:7a:ce:09:b7:e5:07:d9:d9:0e:57:c3:c7:c7:f4:ad:1d:1b: 11:f5:d2:53 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIUOPjqHkxKiI2vOf8Qawp9UJWHfGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4NDgxNjNDNzA0OTEyMjcwMkU4RDM3OTQxMjQxRUQ1 QUREOTREOTAeFw0yNjA0MTAxMDEwMDlaFw0yNzA0MDkxMDE1MDlaMDMxMTAvBgNV BAMTKEY0NjA2MUNBMTcxMTg5OTM5OTJBQzgxNEQxMDA3NUU1MkU4NTNFOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj/vRaH/v5r4n6GdFO3ojZeYp1 7LzGSjUWNHaWwyEdTyLcEBir6Yz1G2LKsiSWICSsgLYt9QLGNm7QWbVMui6wnmpa iA5+ACaaotiStWSo37zIDxPv8bEVpYlXzlnmRoEM+3RePc16lhATnHPY2kZliUa7 Js5NmVYhXLFzf0w2DLO+urQrn1yT5rtVp27ESZR/WQoBLKnnoOK+iRNDoBbrmJN6 J+VcHKw4B06+i7VXs1os5+qdjE66QxlD0xApZ/8ipgb/pVC5AHCjMWIiaqwitc8K cnCe/LNq5QVSTcu1z6Uj8H2YSBBp5KUUa+rlgaCk2yC8Ryx4ArPn5XIwiySjAgMB AAGjggKGMIICgjAdBgNVHQ4EFgQU9GBhyhcRiZOZKsgU0QB15S6FPpAwHwYDVR0j BBgwFoAUm4SBY8cEkSJwLo03lBJB7VrdlNkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNmM0M2QzYTYtN2QxMy00ODk1LTk1OWQtNDE5YjlhNmVi MzRiLzMvOUI4NDgxNjNDNzA0OTEyMjcwMkU4RDM3OTQxMjQxRUQ1QUREOTREOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85Qjg0ODE2M0M3MDQ5MTIyNzAyRThEMzc5 NDEyNDFFRDVBREQ5NEQ5LmNlcjCBuQYIKwYBBQUHAQsEgawwgakwgaYGCCsGAQUF BzALhoGZcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82YzQzZDNhNi03ZDEzLTQ4OTUtOTU5ZC00MTliOWE2ZWIzNGIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTYzMzMzMDMwM2EzYTJmMzQzMDJkMzEzMjM4MjAzZDNlMjAz MjMxMzAzNDM2MzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYB BQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqFHWAwzANBgkqhkiG9w0BAQsFAAOCAQEA dJ5WondsUuYbcFg3x7K5NHpfpj3FqzoNEyZ40xRXlhNsO06XfLd+HSrghW7t2YOu 3YJQMw92/MpbhtR7YDtD1EX6RJ9npw/wdLGrmiREG2SFwNmGtNiocaP4WBW/aQ9g skzPQrKO1oCGpnGtNLQKLiHGm0Mnm8SdYWFtQew2X90jS3P4E9TMVqC6C/QlRyjK ukdCL0/nVGpIB+EWaeAxReLTmMIYT0lz0H4TIg2JFw0OXaOXoO5vYqp1QSl/UHLm PSEFIPRl7J/FNZinzeqr6EQSVJ2JlAAe7E4HEDCMM9NLTtTHcept4dtEinrOCbfl B9nZDlfDx8f0rR0bEfXSUw== -----END CERTIFICATE-----Generated at Fri Apr 17 20:25:20 2026 by rpki-client