$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3337203d3e20323031333938.roa File: 326130623a346530373a323030303a3a2f33372d3337203d3e20323031333938.roa (raw, json) Hash identifier: YaxPcCxHWXHEcz9z+CQU+GZfaoDKa2sEqx89Of12/vc= Subject key identifier: 90:2A:5D:C2:2B:DF:CA:45:25:E3:3A:D7:E6:3B:37:37:D9:C6:91:F4 Certificate issuer: /CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Certificate serial: 71650DD545CD2DF11D99E3F9CD9E8DB2EBB65F15 Authority key identifier: C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3337203d3e20323031333938.roa Signing time: Mon 23 Feb 2026 08:57:53 +0000 ROA not before: Mon 23 Feb 2026 08:52:53 +0000 ROA not after: Mon 22 Feb 2027 08:57:53 +0000 asID: 201398 IP address blocks: 2a0b:4e07:2000::/37 maxlen: 37 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 23:15:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:65:0d:d5:45:cd:2d:f1:1d:99:e3:f9:cd:9e:8d:b2:eb:b6:5f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Validity Not Before: Feb 23 08:52:53 2026 GMT Not After : Feb 22 08:57:53 2027 GMT Subject: CN=902A5DC22BDFCA4525E33AD7E63B3737D9C691F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a7:b8:72:53:4a:8b:aa:4a:7f:a9:cb:4e:ad: 46:f1:ac:3d:6a:a7:d9:5c:4a:1b:1c:db:4f:ab:98: e3:0b:2e:ce:a9:16:c0:49:bd:96:8a:28:90:9c:2a: 73:c6:61:3b:b8:00:52:bc:42:20:01:c7:68:61:03: 1a:8c:0b:9b:94:3a:32:d0:13:80:cc:94:14:86:37: 47:c9:3c:b5:bb:4a:e9:af:5f:99:9f:97:20:4d:5b: c6:f7:87:14:c4:f0:a5:5d:f6:6b:1e:80:c9:e4:eb: d6:61:2c:a2:01:38:60:2b:b4:78:8b:27:15:b3:6f: ff:06:66:84:b9:4c:61:ae:0a:90:78:88:de:fc:cc: f2:a4:63:4c:05:c7:87:3e:d6:7f:9d:29:40:58:c9: 3a:1e:16:5f:e3:e4:4e:6d:73:83:45:e8:f2:a3:d1: 0f:ad:33:32:70:3f:d4:83:e7:13:25:18:c6:09:97: 94:77:d9:63:40:6b:cb:27:6e:0b:d1:a1:f2:9c:a0: c0:d4:ab:51:f1:f3:08:f0:29:55:da:96:6e:cf:b9: f5:4a:d5:89:c7:04:db:4a:ed:6e:5e:09:5e:70:35: 42:f9:ad:52:16:0c:3c:57:36:d3:7f:c8:00:18:58: cf:09:61:d2:76:4e:51:fa:0c:84:07:ac:f9:39:99: ba:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2A:5D:C2:2B:DF:CA:45:25:E3:3A:D7:E6:3B:37:37:D9:C6:91:F4 X509v3 Authority Key Identifier: keyid:C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3337203d3e20323031333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2000::/37 Signature Algorithm: sha256WithRSAEncryption 9d:62:f5:39:57:88:fd:13:22:72:5c:64:76:75:f6:db:93:fc: 1a:bb:92:2e:a9:f9:3c:12:eb:35:13:7d:06:b8:9e:5c:e0:a2: 4d:31:33:ce:e8:c4:b3:f6:35:9c:e2:8c:b5:98:0b:a6:63:dc: 8c:19:37:aa:a3:87:bb:36:36:b5:31:0a:f8:0b:ff:55:10:2f: fc:75:44:d8:5f:ea:7c:a2:6e:26:e2:6a:8e:7e:45:33:fe:8c: a3:8c:86:4e:74:e1:3f:fb:29:04:c3:09:1e:96:0c:be:28:d4: 73:a7:ca:90:d8:03:8b:27:46:d1:7e:a1:58:c0:95:f2:f7:c1: 20:ec:b4:d5:47:d0:99:35:c1:29:9c:00:c1:b6:84:43:68:c3: 3b:2c:d0:5d:df:22:52:5f:7c:54:93:e9:fe:97:16:54:36:33: ec:97:0c:a1:8f:f2:bd:7f:27:1a:4a:c3:04:c9:76:69:04:17: 88:be:17:18:81:d3:d4:65:c7:4c:e7:ca:b6:26:24:fb:ca:52: 42:32:e6:cb:91:21:e8:93:cc:d8:11:8e:c7:d9:27:99:f8:d0: 16:e3:2c:87:53:06:e0:79:e3:04:29:b0:26:0d:29:52:fd:49: 47:02:2f:fb:ee:32:35:86:59:52:ae:c3:c6:a0:b3:61:ba:d0: 63:80:5b:8c -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUcWUN1UXNLfEdmeP5zZ6Nsuu2XxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5 NUMwM0VGMDAeFw0yNjAyMjMwODUyNTNaFw0yNzAyMjIwODU3NTNaMDMxMTAvBgNV BAMTKDkwMkE1REMyMkJERkNBNDUyNUUzM0FEN0U2M0IzNzM3RDlDNjkxRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRp7hyU0qLqkp/qctOrUbxrD1q p9lcShsc20+rmOMLLs6pFsBJvZaKKJCcKnPGYTu4AFK8QiABx2hhAxqMC5uUOjLQ E4DMlBSGN0fJPLW7SumvX5mflyBNW8b3hxTE8KVd9msegMnk69ZhLKIBOGArtHiL JxWzb/8GZoS5TGGuCpB4iN78zPKkY0wFx4c+1n+dKUBYyToeFl/j5E5tc4NF6PKj 0Q+tMzJwP9SD5xMlGMYJl5R32WNAa8snbgvRofKcoMDUq1Hx8wjwKVXalm7PufVK 1YnHBNtK7W5eCV5wNUL5rVIWDDxXNtN/yAAYWM8JYdJ2TlH6DIQHrPk5mbq9AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUkCpdwivfykUl4zrX5js3N9nGkfQwHwYDVR0j BBgwFoAUxz+3Az8jyVlY/PvlDkxlqpXAPvAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTlmODA4ZDItMWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2 MmZjLzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMwM0VGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMw M0VGMC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTlmODA4ZDIt MWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2MmZjLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMjMwMzAzMDNhM2EyZjMzMzcyZDMzMzcyMDNkM2UyMDMyMzAzMTMzMzkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAyoLTgcgMA0GCSqGSIb3DQEBCwUAA4IBAQCdYvU5V4j9EyJyXGR2 dfbbk/wau5Iuqfk8Eus1E30GuJ5c4KJNMTPO6MSz9jWc4oy1mAumY9yMGTeqo4e7 Nja1MQr4C/9VEC/8dUTYX+p8om4m4mqOfkUz/oyjjIZOdOE/+ykEwwkelgy+KNRz p8qQ2AOLJ0bRfqFYwJXy98Eg7LTVR9CZNcEpnADBtoRDaMM7LNBd3yJSX3xUk+n+ lxZUNjPslwyhj/K9fycaSsMEyXZpBBeIvhcYgdPUZcdM58q2JiT7ylJCMubLkSHo k8zYEY7H2SeZ+NAW4yyHUwbgeeMEKbAmDSlS/UlHAi/77jI1hllSrsPGoLNhutBj gFuM -----END CERTIFICATE-----Generated at Mon Mar 2 08:36:55 2026 by rpki-client