$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/326131343a373538303a393030303a3a2f34302d3438203d3e20323134343230.roa File: 326131343a373538303a393030303a3a2f34302d3438203d3e20323134343230.roa (raw, json) Hash identifier: 1nc15sBmXGLcJ+vZKUEIDElcwAMIwyX0sJw3OiBW5oM= Subject key identifier: 64:DD:74:D7:9D:78:B6:30:FD:6F:F5:9B:EF:DE:5F:25:2A:93:59:F6 Certificate issuer: /CN=75F554161E3D1197F4F9B22E7171E99E87BEB830 Certificate serial: 782A3F4EC830CB5533932B17A3D13AB6A8979917 Authority key identifier: 75:F5:54:16:1E:3D:11:97:F4:F9:B2:2E:71:71:E9:9E:87:BE:B8:30 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/75F554161E3D1197F4F9B22E7171E99E87BEB830.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/326131343a373538303a393030303a3a2f34302d3438203d3e20323134343230.roa Signing time: Mon 09 Feb 2026 17:42:40 +0000 ROA not before: Mon 09 Feb 2026 17:37:40 +0000 ROA not after: Mon 08 Feb 2027 17:42:40 +0000 asID: 214420 IP address blocks: 2a14:7580:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/75F554161E3D1197F4F9B22E7171E99E87BEB830.crl rsync://rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/75F554161E3D1197F4F9B22E7171E99E87BEB830.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/75F554161E3D1197F4F9B22E7171E99E87BEB830.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 02:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:2a:3f:4e:c8:30:cb:55:33:93:2b:17:a3:d1:3a:b6:a8:97:99:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75F554161E3D1197F4F9B22E7171E99E87BEB830 Validity Not Before: Feb 9 17:37:40 2026 GMT Not After : Feb 8 17:42:40 2027 GMT Subject: CN=64DD74D79D78B630FD6FF59BEFDE5F252A9359F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:96:a6:fa:35:f7:5a:e2:78:44:dd:ee:93:b3: 5f:ab:a1:f0:ee:4c:1c:e5:8f:4d:56:50:21:72:f4: 15:9e:f8:8c:69:a7:8f:b3:24:23:d4:81:31:48:b6: 75:4b:a5:16:6e:35:79:32:5a:23:77:d8:7b:2c:02: f4:e7:a2:19:54:c2:3f:22:d1:94:77:d7:6c:b1:c9: db:54:6c:60:a1:92:94:38:2b:92:97:59:d5:2a:6c: b5:88:d2:3e:63:ad:58:8f:82:fc:a3:61:27:8b:38: 99:0c:90:56:67:e7:81:28:ae:b1:d8:ff:bf:b4:81: 6d:ce:be:ed:82:7b:27:b8:ab:bf:56:e8:d7:0c:d0: 16:6c:24:e0:a8:17:07:74:55:0b:b6:ea:5f:9e:9b: 84:4c:6c:8b:3b:f8:96:0e:9e:d1:37:c7:45:5b:56: 6b:0a:6f:9f:c1:d9:30:dd:aa:85:a2:ae:b7:52:d3: 7d:01:e6:91:43:0b:12:00:66:e8:ea:25:56:1d:37: 78:58:50:eb:13:fd:c6:8c:c0:82:ec:16:0c:5a:d8: f4:26:a2:7b:37:e9:4c:da:2d:b4:33:27:0c:c1:1b: 74:f6:45:7e:05:e0:6a:b2:d0:62:5a:c5:9c:d0:c1: 03:69:1c:92:18:6f:19:9e:e9:2d:2b:c3:87:65:5e: 70:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:DD:74:D7:9D:78:B6:30:FD:6F:F5:9B:EF:DE:5F:25:2A:93:59:F6 X509v3 Authority Key Identifier: keyid:75:F5:54:16:1E:3D:11:97:F4:F9:B2:2E:71:71:E9:9E:87:BE:B8:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/75F554161E3D1197F4F9B22E7171E99E87BEB830.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/75F554161E3D1197F4F9B22E7171E99E87BEB830.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/727b5ef7-d121-4ae2-bab6-410d205349b8/1/326131343a373538303a393030303a3a2f34302d3438203d3e20323134343230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:9000::/40 Signature Algorithm: sha256WithRSAEncryption 6b:29:e0:7b:8a:15:04:df:7b:ee:48:4c:e7:72:da:5b:35:cd: 45:a6:ba:72:60:56:50:a6:68:9f:10:e5:3b:77:66:56:7c:3c: b7:06:82:a6:09:ab:74:9f:9b:73:86:84:6c:fe:82:5b:22:dd: e5:93:9e:ab:1f:19:2e:7a:5c:31:67:d3:3e:ba:fd:03:8e:77: bd:30:7a:77:85:3a:66:1a:7e:fe:8f:19:9c:d3:2f:68:b6:5c: 29:49:30:8c:dc:f3:22:fe:60:56:ac:9f:91:63:94:7e:4a:e4: 7c:84:cf:1f:f7:c6:ac:78:11:57:ee:65:35:b6:24:ba:85:8b: 4c:f4:f4:97:70:70:de:d4:d3:f9:80:05:b1:bc:d5:49:86:e5: 09:1c:17:bf:fd:29:cb:27:ce:57:85:af:95:d4:7e:b0:34:d3: 38:36:32:8e:a9:a2:95:4d:a4:a4:83:8c:5a:ac:38:28:9c:58: 9a:6f:29:6b:a5:fe:f4:76:35:ed:d5:f9:ad:63:3c:82:e6:08: 17:3c:8a:8d:c4:1a:62:8b:f6:27:98:c7:4d:d8:0f:08:63:45: ed:5e:5c:a3:2c:9f:66:cb:e6:e0:3c:c0:a0:eb:d9:76:d8:38: 0b:31:c5:64:f2:3b:85:04:f0:a8:cc:4f:e1:e2:91:7e:41:c5: d5:52:4f:95 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUeCo/Tsgwy1UzkysXo9E6tqiXmRcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzVGNTU0MTYxRTNEMTE5N0Y0RjlCMjJFNzE3MUU5OUU4 N0JFQjgzMDAeFw0yNjAyMDkxNzM3NDBaFw0yNzAyMDgxNzQyNDBaMDMxMTAvBgNV BAMTKDY0REQ3NEQ3OUQ3OEI2MzBGRDZGRjU5QkVGREU1RjI1MkE5MzU5RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCelqb6Nfda4nhE3e6Ts1+rofDu TBzlj01WUCFy9BWe+Ixpp4+zJCPUgTFItnVLpRZuNXkyWiN32HssAvTnohlUwj8i 0ZR312yxydtUbGChkpQ4K5KXWdUqbLWI0j5jrViPgvyjYSeLOJkMkFZn54EorrHY /7+0gW3Ovu2Ceye4q79W6NcM0BZsJOCoFwd0VQu26l+em4RMbIs7+JYOntE3x0Vb VmsKb5/B2TDdqoWirrdS030B5pFDCxIAZujqJVYdN3hYUOsT/caMwILsFgxa2PQm ons36UzaLbQzJwzBG3T2RX4F4Gqy0GJaxZzQwQNpHJIYbxme6S0rw4dlXnAHAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUZN101514tjD9b/Wb795fJSqTWfYwHwYDVR0j BBgwFoAUdfVUFh49EZf0+bIucXHpnoe+uDAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzI3YjVlZjctZDEyMS00YWUyLWJhYjYtNDEwZDIwNTM0 OWI4LzEvNzVGNTU0MTYxRTNEMTE5N0Y0RjlCMjJFNzE3MUU5OUU4N0JFQjgzMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83NUY1NTQxNjFFM0QxMTk3RjRGOUIyMkU3 MTcxRTk5RTg3QkVCODMwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MjdiNWVmNy1kMTIxLTRhZTItYmFiNi00MTBkMjA1MzQ5YjgvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM0MzQzMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gJAwDQYJKoZIhvcNAQELBQADggEBAGsp 4HuKFQTfe+5ITOdy2ls1zUWmunJgVlCmaJ8Q5Tt3ZlZ8PLcGgqYJq3Sfm3OGhGz+ glsi3eWTnqsfGS56XDFn0z66/QOOd70weneFOmYafv6PGZzTL2i2XClJMIzc8yL+ YFasn5FjlH5K5HyEzx/3xqx4EVfuZTW2JLqFi0z09JdwcN7U0/mABbG81UmG5Qkc F7/9KcsnzleFr5XUfrA00zg2Mo6popVNpKSDjFqsOCicWJpvKWul/vR2Ne3V+a1j PILmCBc8io3EGmKL9ieYx03YDwhjRe1eXKMsn2bL5uA8wKDr2XbYOAsxxWTyO4UE 8KjMT+HikX5BxdVST5U= -----END CERTIFICATE-----Generated at Sun Mar 1 16:26:09 2026 by rpki-client