$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa File: 326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa (raw, json) Hash identifier: PYUZfxiEyn8hXYt+1cuoAJSsYY9rYNGWkjKHW4eXgHI= Subject key identifier: A5:19:1B:B1:AE:16:A3:96:92:15:20:4D:BF:31:B5:BE:39:AD:DD:CF Certificate issuer: /CN=575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C Certificate serial: 600DA458618F0F595D9B8530BA4F97598D50B599 Authority key identifier: 57:50:51:DD:9A:9B:FA:57:BC:C3:A2:B9:82:F2:4E:11:D9:BA:D6:3C Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa Signing time: Sat 21 Feb 2026 23:03:07 +0000 ROA not before: Sat 21 Feb 2026 22:58:07 +0000 ROA not after: Sat 20 Feb 2027 23:03:07 +0000 asID: 44733 IP address blocks: 2a0a:6044:b3c0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.crl rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.mft rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 11:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0d:a4:58:61:8f:0f:59:5d:9b:85:30:ba:4f:97:59:8d:50:b5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C Validity Not Before: Feb 21 22:58:07 2026 GMT Not After : Feb 20 23:03:07 2027 GMT Subject: CN=A5191BB1AE16A3969215204DBF31B5BE39ADDDCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5b:12:bb:ed:2a:4c:bb:23:3e:4d:a8:3f:3c: 1a:6e:72:20:ba:61:4c:77:03:ee:a3:e0:ef:d3:85: 7b:cc:90:9b:93:f0:b6:56:ef:c3:d5:bd:25:26:b1: bd:13:31:62:3b:28:05:cb:9a:aa:cd:47:04:6f:95: a2:0f:f8:2f:0c:58:ef:9a:4c:5d:30:dc:d8:37:7c: 08:86:59:f8:0f:b9:93:9d:0d:24:44:23:5e:42:d0: d5:2b:df:ff:97:f4:6b:48:49:a7:06:45:13:be:c6: 46:e5:9c:63:0a:0b:e8:de:d0:35:fd:56:9d:f3:88: 9f:63:4e:0d:a8:9b:5f:7d:a3:02:17:90:78:00:1f: a7:9f:f3:f5:db:01:d0:78:d6:3d:40:8a:e9:9a:5e: 7d:3c:4f:52:cf:4a:c3:d3:b7:91:14:f6:28:10:c2: ac:cf:56:4b:cd:4b:1a:0e:c1:89:ac:eb:54:f8:56: d6:26:28:7f:d4:de:a3:16:3f:1f:4f:95:93:b9:67: 2f:0e:4f:e7:6f:50:cb:56:ff:6a:db:d4:10:7d:91: d4:ea:88:1c:3b:2d:03:7b:03:c6:83:e4:e7:14:f9: 2d:54:c3:d5:8c:7a:6c:c4:35:13:67:ed:12:f6:71: 3d:92:fc:50:96:16:20:58:f7:16:3d:2c:f2:2d:ee: 5f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:19:1B:B1:AE:16:A3:96:92:15:20:4D:BF:31:B5:BE:39:AD:DD:CF X509v3 Authority Key Identifier: keyid:57:50:51:DD:9A:9B:FA:57:BC:C3:A2:B9:82:F2:4E:11:D9:BA:D6:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/575051DD9A9BFA57BCC3A2B982F24E11D9BAD63C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71098c23-a977-4f9a-97c9-cd4e759dea09/2/326130613a363034343a623363303a3a2f34342d3434203d3e203434373333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:b3c0::/44 Signature Algorithm: sha256WithRSAEncryption 86:4a:15:b2:7e:eb:d0:9e:b9:b5:1b:16:19:73:20:9c:b9:58: fb:a0:73:52:89:59:da:0d:79:db:54:1d:70:fc:ce:2a:03:84: ab:4b:d8:49:03:e5:12:f9:88:85:a0:cd:54:92:0b:94:1c:0c: 2b:bd:91:46:1c:1a:71:b8:11:92:0d:b7:72:d1:d6:b4:a8:f4: 60:28:c7:d2:db:21:09:72:32:e5:e8:5d:f5:e7:99:9c:19:8c: b8:ba:ab:71:4e:19:44:6f:e2:4d:ae:21:20:1c:91:bf:83:61: ed:e4:ae:e4:62:19:81:91:ad:b6:77:9f:58:be:31:f6:ab:d1: 6c:ef:ea:1e:40:4b:cd:6a:44:be:e0:73:9a:6a:64:b1:bd:aa: b3:a6:b9:2d:13:19:25:62:2a:02:39:49:fc:15:fd:dd:b1:16: 24:d9:68:2b:5b:3a:f5:02:28:e1:e2:ea:00:85:62:2e:34:65: 0b:24:7e:9e:1c:0a:09:fd:46:5c:58:5f:af:77:87:66:0c:c1: d8:1c:4a:0d:cf:2a:8b:5c:70:42:79:40:ba:da:8d:24:78:e4: c0:52:da:99:da:62:60:6b:f8:33:3a:12:07:4c:d1:29:f0:66: 19:70:4c:a6:90:89:53:65:c0:ab:bd:06:ea:68:c9:82:5c:63: 60:55:3c:c0 -----BEGIN CERTIFICATE----- MIIFSTCCBDGgAwIBAgIUYA2kWGGPD1ldm4Uwuk+XWY1QtZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1MDUxREQ5QTlCRkE1N0JDQzNBMkI5ODJGMjRFMTFE OUJBRDYzQzAeFw0yNjAyMjEyMjU4MDdaFw0yNzAyMjAyMzAzMDdaMDMxMTAvBgNV BAMTKEE1MTkxQkIxQUUxNkEzOTY5MjE1MjA0REJGMzFCNUJFMzlBREREQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwWxK77SpMuyM+Tag/PBpuciC6 YUx3A+6j4O/ThXvMkJuT8LZW78PVvSUmsb0TMWI7KAXLmqrNRwRvlaIP+C8MWO+a TF0w3Ng3fAiGWfgPuZOdDSREI15C0NUr3/+X9GtISacGRRO+xkblnGMKC+je0DX9 Vp3ziJ9jTg2om199owIXkHgAH6ef8/XbAdB41j1AiumaXn08T1LPSsPTt5EU9igQ wqzPVkvNSxoOwYms61T4VtYmKH/U3qMWPx9PlZO5Zy8OT+dvUMtW/2rb1BB9kdTq iBw7LQN7A8aD5OcU+S1Uw9WMemzENRNn7RL2cT2S/FCWFiBY9xY9LPIt7l+RAgMB AAGjggJTMIICTzAdBgNVHQ4EFgQUpRkbsa4Wo5aSFSBNvzG1vjmt3c8wHwYDVR0j BBgwFoAUV1BR3Zqb+le8w6K5gvJOEdm61jwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzEwOThjMjMtYTk3Ny00ZjlhLTk3YzktY2Q0ZTc1OWRl YTA5LzIvNTc1MDUxREQ5QTlCRkE1N0JDQzNBMkI5ODJGMjRFMTFEOUJBRDYzQy5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS81NzUwNTFERDlBOUJGQTU3QkNDM0EyQjk4 MkYyNEUxMUQ5QkFENjNDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTA5OGMyMy1hOTc3LTRmOWEtOTdjOS1jZDRlNzU5ZGVhMDkvMi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyMzM2MzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzQz NDM3MzMzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoKYESzwDANBgkqhkiG9w0BAQsFAAOCAQEAhkoV sn7r0J65tRsWGXMgnLlY+6BzUolZ2g1521QdcPzOKgOEq0vYSQPlEvmIhaDNVJIL lBwMK72RRhwacbgRkg23ctHWtKj0YCjH0tshCXIy5ehd9eeZnBmMuLqrcU4ZRG/i Ta4hIByRv4Nh7eSu5GIZgZGttnefWL4x9qvRbO/qHkBLzWpEvuBzmmpksb2qs6a5 LRMZJWIqAjlJ/BX93bEWJNloK1s69QIo4eLqAIViLjRlCyR+nhwKCf1GXFhfr3eH ZgzB2BxKDc8qi1xwQnlAutqNJHjkwFLamdpiYGv4MzoSB0zRKfBmGXBMppCJU2XA q70G6mjJglxjYFU8wA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:08:31 2026 by rpki-client