$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436653a3a2f34382d3438203d3e20323131353735.roa File: 326131343a373538333a663436653a3a2f34382d3438203d3e20323131353735.roa (raw, json) Hash identifier: 4zMeFak+3ClZhwivG2q5oRcVFKqGYFgGU+fXsaRbNAY= Subject key identifier: 35:AD:53:85:1A:37:B7:45:35:65:6C:0D:D6:DC:4B:3F:2E:20:01:5E Certificate issuer: /CN=B149F23A3E99C4760297DD7104B400C835D86D19 Certificate serial: 22D30076E02B22AD8BFB527090300DAEE41D08F1 Authority key identifier: B1:49:F2:3A:3E:99:C4:76:02:97:DD:71:04:B4:00:C8:35:D8:6D:19 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436653a3a2f34382d3438203d3e20323131353735.roa Signing time: Tue 03 Feb 2026 13:10:02 +0000 ROA not before: Tue 03 Feb 2026 13:05:02 +0000 ROA not after: Tue 02 Feb 2027 13:10:02 +0000 asID: 211575 IP address blocks: 2a14:7583:f46e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.crl rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 06:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:d3:00:76:e0:2b:22:ad:8b:fb:52:70:90:30:0d:ae:e4:1d:08:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B149F23A3E99C4760297DD7104B400C835D86D19 Validity Not Before: Feb 3 13:05:02 2026 GMT Not After : Feb 2 13:10:02 2027 GMT Subject: CN=35AD53851A37B74535656C0DD6DC4B3F2E20015E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:66:36:00:21:7c:54:84:f0:b6:a9:c9:90:f6: f7:52:14:d4:2a:97:a3:05:8e:ca:a5:fc:11:f0:0a: 88:8a:31:72:1b:9a:d8:02:3a:22:7d:a9:2c:68:c1: 55:2a:e8:39:c8:9b:c7:1c:39:13:88:3d:7c:26:d0: 4e:7b:8f:7b:00:78:33:b9:33:82:bd:9b:ce:12:27: 19:a1:92:ba:26:ef:f5:c1:7c:a7:d9:3a:09:cb:be: c1:3e:3d:c4:3d:b0:f1:1e:f2:41:38:33:bc:34:f9: ab:ba:9c:1d:54:3e:a3:7b:32:50:82:bd:a1:d3:ea: 56:9b:5d:4a:a7:4b:a8:01:fd:d7:82:bb:31:e8:a3: d4:4d:e6:98:d2:cf:0f:e0:1c:6f:29:bc:16:d2:7d: 16:42:90:1d:a3:5c:0b:5e:97:6a:4b:4f:7e:ce:2e: 19:c2:e8:72:ec:d1:5f:1b:64:0c:cf:58:e0:33:f1: 8e:bb:2f:2d:53:4a:7b:87:f4:d6:5f:22:0e:22:f2: a4:ae:66:d2:7f:32:6a:39:31:9b:21:9d:3e:e3:46: 9c:82:bb:11:43:e9:ee:3b:77:2c:92:ba:d4:ed:bf: 34:31:02:01:d7:17:86:89:c6:e3:cb:90:1f:7b:4b: 37:c4:f3:a9:23:27:f4:37:88:f5:47:ea:d3:5e:55: 1f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:AD:53:85:1A:37:B7:45:35:65:6C:0D:D6:DC:4B:3F:2E:20:01:5E X509v3 Authority Key Identifier: keyid:B1:49:F2:3A:3E:99:C4:76:02:97:DD:71:04:B4:00:C8:35:D8:6D:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/B149F23A3E99C4760297DD7104B400C835D86D19.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B149F23A3E99C4760297DD7104B400C835D86D19.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/981f9782-898e-4b83-95e6-4ff4ab75c9dc/2/326131343a373538333a663436653a3a2f34382d3438203d3e20323131353735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f46e::/48 Signature Algorithm: sha256WithRSAEncryption 34:b1:32:a2:c1:4a:3c:18:30:7a:28:13:2e:43:7a:31:ac:ed: a1:33:9e:4a:70:0a:fb:ce:33:ea:83:d2:4f:90:9c:7f:18:33: b7:95:bc:34:1c:c8:82:ab:53:9b:53:05:0d:54:ed:65:75:4e: e1:ee:d7:30:e1:95:bc:d0:64:f3:20:4b:99:5e:84:a2:7f:28: 4d:5f:fc:9f:86:71:a4:7a:ec:a7:a4:c9:6c:09:46:e4:44:91: 53:e3:a5:d7:1d:6e:d4:57:28:0c:1d:dd:a3:dc:53:b2:c4:f2: 23:57:ec:10:34:75:a8:c8:7d:d3:b8:e3:2e:f2:ba:f7:cc:a2: 28:cf:76:98:bc:eb:43:ac:48:20:d0:5f:ed:0d:11:7e:81:62: 2f:c4:ba:cd:37:52:0e:52:95:ac:5c:e8:54:9d:bf:1e:6e:86: 8f:a4:e8:ff:54:51:6c:44:47:d2:91:da:b7:16:3b:b1:89:c7: 1c:db:b9:10:7a:9b:18:05:c9:41:52:77:77:c1:ef:cf:af:f5: 15:ec:f1:38:bb:48:f4:75:3f:c4:3e:f5:97:3c:2d:db:c4:ae: 5c:5a:81:f9:5b:c3:58:7d:5a:d9:f6:24:d6:39:bd:4d:2e:39: 95:82:8f:9f:62:60:b1:17:2b:8d:f2:88:f3:fc:88:b8:e4:88: 09:4c:c2:36 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUItMAduArIq2L+1JwkDANruQdCPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE0OUYyM0EzRTk5QzQ3NjAyOTdERDcxMDRCNDAwQzgz NUQ4NkQxOTAeFw0yNjAyMDMxMzA1MDJaFw0yNzAyMDIxMzEwMDJaMDMxMTAvBgNV BAMTKDM1QUQ1Mzg1MUEzN0I3NDUzNTY1NkMwREQ2REM0QjNGMkUyMDAxNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaZjYAIXxUhPC2qcmQ9vdSFNQq l6MFjsql/BHwCoiKMXIbmtgCOiJ9qSxowVUq6DnIm8ccOROIPXwm0E57j3sAeDO5 M4K9m84SJxmhkrom7/XBfKfZOgnLvsE+PcQ9sPEe8kE4M7w0+au6nB1UPqN7MlCC vaHT6labXUqnS6gB/deCuzHoo9RN5pjSzw/gHG8pvBbSfRZCkB2jXAtel2pLT37O LhnC6HLs0V8bZAzPWOAz8Y67Ly1TSnuH9NZfIg4i8qSuZtJ/Mmo5MZshnT7jRpyC uxFD6e47dyySutTtvzQxAgHXF4aJxuPLkB97SzfE86kjJ/Q3iPVH6tNeVR8bAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUNa1ThRo3t0U1ZWwN1txLPy4gAV4wHwYDVR0j BBgwFoAUsUnyOj6ZxHYCl91xBLQAyDXYbRkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTgxZjk3ODItODk4ZS00YjgzLTk1ZTYtNGZmNGFiNzVj OWRjLzIvQjE0OUYyM0EzRTk5QzQ3NjAyOTdERDcxMDRCNDAwQzgzNUQ4NkQxOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9CMTQ5RjIzQTNFOTlDNDc2MDI5N0RENzEw NEI0MDBDODM1RDg2RDE5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85ODFmOTc4Mi04OThlLTRiODMtOTVlNi00ZmY0YWI3NWM5ZGMvMi8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzQzNjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTMxMzUzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/RuMA0GCSqGSIb3DQEBCwUAA4IBAQA0 sTKiwUo8GDB6KBMuQ3oxrO2hM55KcAr7zjPqg9JPkJx/GDO3lbw0HMiCq1ObUwUN VO1ldU7h7tcw4ZW80GTzIEuZXoSifyhNX/yfhnGkeuynpMlsCUbkRJFT46XXHW7U VygMHd2j3FOyxPIjV+wQNHWoyH3TuOMu8rr3zKIoz3aYvOtDrEgg0F/tDRF+gWIv xLrNN1IOUpWsXOhUnb8eboaPpOj/VFFsREfSkdq3Fjuxiccc27kQepsYBclBUnd3 we/Pr/UV7PE4u0j0dT/EPvWXPC3bxK5cWoH5W8NYfVrZ9iTWOb1NLjmVgo+fYmCx FyuN8ojz/Ii45IgJTMI2 -----END CERTIFICATE-----Generated at Sun Mar 1 16:24:28 2026 by rpki-client