$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62313a3a2f34382d3438203d3e20323031333938.roa File: 326130623a346530373a62313a3a2f34382d3438203d3e20323031333938.roa (raw, json) Hash identifier: 1RCf60dXQ/oUKmGHAZtweCBKcxHUn9CNbfMBr9zQkkk= Subject key identifier: 1D:25:8D:5C:EF:30:51:C0:93:4C:1B:60:4E:B7:2A:7C:8C:16:16:4B Certificate issuer: /CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Certificate serial: 6ABCC529AF4A217463D254F3447A5C1699FD1395 Authority key identifier: C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62313a3a2f34382d3438203d3e20323031333938.roa Signing time: Mon 23 Feb 2026 08:59:38 +0000 ROA not before: Mon 23 Feb 2026 08:54:38 +0000 ROA not after: Mon 22 Feb 2027 08:59:38 +0000 asID: 201398 IP address blocks: 2a0b:4e07:b1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 05:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:bc:c5:29:af:4a:21:74:63:d2:54:f3:44:7a:5c:16:99:fd:13:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Validity Not Before: Feb 23 08:54:38 2026 GMT Not After : Feb 22 08:59:38 2027 GMT Subject: CN=1D258D5CEF3051C0934C1B604EB72A7C8C16164B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b4:30:f4:75:c7:a2:62:6c:38:23:0c:db:68: 3c:13:ec:e1:e7:85:07:fe:03:f3:b3:82:72:ea:96: ea:5d:bd:5d:80:c7:4c:a3:d1:27:0a:71:08:77:29: 2d:0e:cc:72:8b:54:3a:54:eb:78:13:4a:9b:9c:38: e0:bb:01:a9:50:28:af:bd:46:b2:f7:c5:de:d4:72: 76:b1:0d:73:c5:6d:12:3a:79:00:41:aa:b0:3e:27: ed:e9:be:9e:36:b8:43:43:35:55:eb:3e:af:99:fe: 3d:5a:5f:1b:ab:23:d9:2b:dc:37:a1:ad:99:19:ff: 27:5a:04:25:6b:86:0e:c6:33:42:73:60:f7:c8:3b: 23:5f:f5:50:ce:d3:e7:9d:fc:25:b0:f0:6e:c1:72: 7c:3c:11:14:8d:ef:18:a6:57:db:33:5f:0c:8b:5a: 87:4b:b1:06:2b:f1:17:1a:8c:9d:35:64:b7:72:da: 2d:c2:d9:99:0f:1b:e2:1b:05:f7:97:0c:38:94:71: 30:af:d0:05:5d:62:80:8d:77:46:e2:4b:16:13:84: 26:9e:be:13:ba:15:60:c5:f4:e0:be:4c:f6:3d:5e: ce:48:b7:da:94:c5:b6:09:3a:de:73:2b:1b:36:ff: 31:cb:80:a2:69:02:57:05:21:f9:67:dc:92:91:86: 29:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:25:8D:5C:EF:30:51:C0:93:4C:1B:60:4E:B7:2A:7C:8C:16:16:4B X509v3 Authority Key Identifier: keyid:C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62313a3a2f34382d3438203d3e20323031333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b1::/48 Signature Algorithm: sha256WithRSAEncryption 5e:a5:3c:ca:37:c3:8a:61:c2:e2:2f:d5:cd:26:11:e7:dc:ff: 1b:1c:c5:85:17:a8:63:2b:0e:99:d8:c1:38:6a:5b:9a:3a:d3: 9f:49:7d:c7:b7:2b:93:b1:88:09:9e:cc:f2:69:42:4b:8a:d2: 73:3d:95:fc:b1:91:01:26:95:59:b2:10:5b:9e:af:f1:4c:0e: 3f:75:af:76:25:97:27:3d:d9:20:bb:ec:90:98:21:83:25:aa: 0e:bd:da:2a:b7:7c:c6:b2:3e:db:6d:84:b2:26:68:9c:ef:e3: e9:d5:f7:6d:fa:7c:71:57:97:c7:df:24:76:bc:fe:f5:f5:04: 6a:20:9d:ea:43:0e:84:30:52:84:62:4f:2c:44:90:40:14:06: 58:08:cd:50:44:3c:c9:8b:27:f4:67:c5:c4:a0:5d:58:57:5d: 39:63:70:c5:ea:dd:27:c2:30:38:1c:b3:12:ca:31:47:9d:1a: 8c:9c:e8:a9:12:d1:d7:0e:96:af:21:e3:92:78:5d:e2:0a:69: bb:a1:7c:98:c5:12:65:1d:d7:fd:41:bb:2e:e3:8e:c5:f8:36: d5:bb:f7:10:1e:03:16:ce:7a:9f:5e:e1:fd:3d:d1:b0:9a:a0: 70:4a:a5:7c:bc:ea:aa:11:1a:6e:54:56:42:2e:fa:bc:b7:6a: 10:22:10:75 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUarzFKa9KIXRj0lTzRHpcFpn9E5UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5 NUMwM0VGMDAeFw0yNjAyMjMwODU0MzhaFw0yNzAyMjIwODU5MzhaMDMxMTAvBgNV BAMTKDFEMjU4RDVDRUYzMDUxQzA5MzRDMUI2MDRFQjcyQTdDOEMxNjE2NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6tDD0dceiYmw4IwzbaDwT7OHn hQf+A/OzgnLqlupdvV2Ax0yj0ScKcQh3KS0OzHKLVDpU63gTSpucOOC7AalQKK+9 RrL3xd7UcnaxDXPFbRI6eQBBqrA+J+3pvp42uENDNVXrPq+Z/j1aXxurI9kr3Deh rZkZ/ydaBCVrhg7GM0JzYPfIOyNf9VDO0+ed/CWw8G7Bcnw8ERSN7ximV9szXwyL WodLsQYr8RcajJ01ZLdy2i3C2ZkPG+IbBfeXDDiUcTCv0AVdYoCNd0biSxYThCae vhO6FWDF9OC+TPY9Xs5It9qUxbYJOt5zKxs2/zHLgKJpAlcFIfln3JKRhinvAgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUHSWNXO8wUcCTTBtgTrcqfIwWFkswHwYDVR0j BBgwFoAUxz+3Az8jyVlY/PvlDkxlqpXAPvAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTlmODA4ZDItMWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2 MmZjLzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMwM0VGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMw M0VGMC5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTlmODA4ZDIt MWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2MmZjLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MjMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMxMzMzOTM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKgtOBwCxMA0GCSqGSIb3DQEBCwUAA4IBAQBepTzKN8OKYcLiL9XNJhHn 3P8bHMWFF6hjKw6Z2ME4aluaOtOfSX3HtyuTsYgJnszyaUJLitJzPZX8sZEBJpVZ shBbnq/xTA4/da92JZcnPdkgu+yQmCGDJaoOvdoqt3zGsj7bbYSyJmic7+Pp1fdt +nxxV5fH3yR2vP719QRqIJ3qQw6EMFKEYk8sRJBAFAZYCM1QRDzJiyf0Z8XEoF1Y V105Y3DF6t0nwjA4HLMSyjFHnRqMnOipEtHXDpavIeOSeF3iCmm7oXyYxRJlHdf9 Qbsu447F+DbVu/cQHgMWznqfXuH9PdGwmqBwSqV8vOqqERpuVFZCLvq8t2oQIhB1 -----END CERTIFICATE-----Generated at Sun Mar 1 18:16:47 2026 by rpki-client