$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623330303a3a2f34322d3432203d3e20323134383039.roa File: 326130613a363034343a623330303a3a2f34322d3432203d3e20323134383039.roa (raw, json) Hash identifier: BTLRcVPEb+mlVG5DuFyrRpHPvxtI1AwdQSn94JOGmgg= Subject key identifier: F9:4F:8D:24:CD:CC:B4:2F:17:88:56:7C:A3:DD:4E:25:0D:E7:95:B6 Certificate issuer: /CN=575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C Certificate serial: 6C7DCAF468007357C108AA3725D1DC8D5C51CB25 Authority key identifier: 57:50:51:DD:9A:9B:FA:57:BC:C3:A2:B9:82:F2:4E:11:D9:BA:D6:3C Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623330303a3a2f34322d3432203d3e20323134383039.roa Signing time: Sat 21 Feb 2026 23:03:07 +0000 ROA not before: Sat 21 Feb 2026 22:58:07 +0000 ROA not after: Sat 20 Feb 2027 23:03:07 +0000 asID: 214809 IP address blocks: 2a0a:6044:b300::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.crl rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.mft rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Mar 2026 07:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7d:ca:f4:68:00:73:57:c1:08:aa:37:25:d1:dc:8d:5c:51:cb:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C Validity Not Before: Feb 21 22:58:07 2026 GMT Not After : Feb 20 23:03:07 2027 GMT Subject: CN=F94F8D24CDCCB42F1788567CA3DD4E250DE795B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f5:9d:11:6b:ab:68:23:d4:00:f8:ba:b4:af: 94:b0:3d:9a:54:7d:c7:ed:12:6f:b2:f4:fd:83:97: 74:f3:b4:86:3b:df:a9:85:47:12:62:8f:2b:7b:07: b4:b2:e4:91:a4:d2:82:18:46:22:34:19:95:a7:cc: c3:81:5b:90:bf:f9:d8:fe:e9:69:50:ac:a9:2c:ce: 79:51:93:e8:cd:14:ab:ff:91:6e:2a:fe:33:18:26: c7:c0:fe:f1:0e:01:d5:1c:5c:45:e5:6e:e6:8a:85: 69:d4:50:f2:74:57:b3:6e:7f:59:0f:be:57:d4:bc: bc:a0:e4:b7:2f:83:4a:4b:c3:2f:f9:eb:c4:ce:3c: 8c:14:05:ff:49:30:da:88:ec:35:a9:2c:96:13:64: 33:66:76:22:85:4c:de:07:11:c4:06:a5:ae:23:b0: aa:4a:81:62:e4:60:c8:77:a5:22:9d:57:b5:0c:2d: 16:83:7a:6b:c9:0e:9f:ad:c6:0a:94:1b:37:20:57: 80:67:75:bb:2e:28:8f:85:ad:a1:93:0a:fd:ba:67: 3c:91:bb:fb:17:bc:89:78:15:df:9e:b1:da:79:ca: 27:12:e9:46:8b:09:96:03:ec:6c:bd:e2:00:d3:c4: b2:ec:c5:57:2a:cd:70:cc:f6:4a:f6:f8:3c:43:de: 08:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:4F:8D:24:CD:CC:B4:2F:17:88:56:7C:A3:DD:4E:25:0D:E7:95:B6 X509v3 Authority Key Identifier: keyid:57:50:51:DD:9A:9B:FA:57:BC:C3:A2:B9:82:F2:4E:11:D9:BA:D6:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623330303a3a2f34322d3432203d3e20323134383039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b300::/42 Signature Algorithm: sha256WithRSAEncryption 53:bb:53:f9:bc:bb:49:26:c3:c5:b2:82:5f:10:22:6e:69:05: e9:67:fa:43:50:e2:8f:7e:96:a5:fa:59:1c:00:78:1e:ed:77: 83:73:86:43:7e:a3:96:44:ed:7c:ca:5a:1b:c1:83:46:31:2c: 4e:95:3a:ea:06:9f:62:8d:b5:eb:77:7f:a9:4f:b8:c1:ea:16: f0:40:4a:35:ef:bf:6b:bf:79:49:a1:8f:e3:f1:89:a3:d2:20: d9:8b:02:27:9e:57:19:c3:0b:23:14:82:9f:6c:4e:f1:a0:a6: fb:3b:d8:96:ff:d5:e0:aa:5c:74:11:37:52:15:5c:9e:e0:9b: 10:e0:7a:f3:42:01:cd:0e:b2:8d:70:62:af:ef:3e:18:0d:7c: 63:fa:8c:4b:5c:58:60:10:a5:4e:cc:64:a8:7e:1c:e7:f2:52: f4:85:0a:e6:58:6a:50:69:d7:bd:0f:e2:75:84:4e:54:ce:1a: c0:ad:9d:bf:a8:80:57:e6:d9:f4:77:3e:0c:4a:2a:7c:c9:b5: bb:97:2e:31:93:93:43:a0:9a:55:4b:4d:55:0a:b8:b9:c9:81: 56:c0:ae:d5:a9:9a:9e:3c:bc:ce:39:1c:be:cf:74:55:20:36: 15:c7:70:9b:ba:8d:47:ea:af:f9:be:c7:ef:90:da:41:85:cb: 7c:06:35:50 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUbH3K9GgAc1fBCKo3JdHcjVxRyyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1MDUxREQ5QTlCRkE1N0JDQzNBMkI5ODJGMjRFMTFE OUJBRDYzQzAeFw0yNjAyMjEyMjU4MDdaFw0yNzAyMjAyMzAzMDdaMDMxMTAvBgNV BAMTKEY5NEY4RDI0Q0RDQ0I0MkYxNzg4NTY3Q0EzREQ0RTI1MERFNzk1QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV9Z0Ra6toI9QA+Lq0r5SwPZpU fcftEm+y9P2Dl3TztIY736mFRxJijyt7B7Sy5JGk0oIYRiI0GZWnzMOBW5C/+dj+ 6WlQrKksznlRk+jNFKv/kW4q/jMYJsfA/vEOAdUcXEXlbuaKhWnUUPJ0V7Nuf1kP vlfUvLyg5Lcvg0pLwy/568TOPIwUBf9JMNqI7DWpLJYTZDNmdiKFTN4HEcQGpa4j sKpKgWLkYMh3pSKdV7UMLRaDemvJDp+txgqUGzcgV4BndbsuKI+FraGTCv26ZzyR u/sXvIl4Fd+esdp5yicS6UaLCZYD7Gy94gDTxLLsxVcqzXDM9kr2+DxD3giBAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQU+U+NJM3MtC8XiFZ8o91OJQ3nlbYwHwYDVR0j BBgwFoAUV1BR3Zqb+le8w6K5gvJOEdm61jwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzEwOThjMjMtYTk3Ny00ZjlhLTk3YzktY2Q0ZTc1OWRl YTA5LzIvNTc1MDUxREQ5QTlCRkE1N0JDQzNBMkI5ODJGMjRFMTFEOUJBRDYzQy5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS81NzUwNTFERDlBOUJGQTU3QkNDM0EyQjk4 MkYyNEUxMUQ5QkFENjNDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTA5OGMyMy1hOTc3LTRmOWEtOTdjOS1jZDRlNzU5ZGVhMDkvMi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyMzMzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM0MzgzMDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgpgRLMAMA0GCSqGSIb3DQEBCwUAA4IBAQBT u1P5vLtJJsPFsoJfECJuaQXpZ/pDUOKPfpal+lkcAHge7XeDc4ZDfqOWRO18ylob wYNGMSxOlTrqBp9ijbXrd3+pT7jB6hbwQEo1779rv3lJoY/j8Ymj0iDZiwInnlcZ wwsjFIKfbE7xoKb7O9iW/9Xgqlx0ETdSFVye4JsQ4HrzQgHNDrKNcGKv7z4YDXxj +oxLXFhgEKVOzGSofhzn8lL0hQrmWGpQade9D+J1hE5UzhrArZ2/qIBX5tn0dz4M Sip8ybW7ly4xk5NDoJpVS01VCri5yYFWwK7VqZqePLzOORy+z3RVIDYVx3Cbuo1H 6q/5vsfvkNpBhct8BjVQ -----END CERTIFICATE-----Generated at Mon Mar 2 15:01:25 2026 by rpki-client