$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62333a3a2f34382d3438203d3e20323031333938.roa File: 326130623a346530373a62333a3a2f34382d3438203d3e20323031333938.roa (raw, json) Hash identifier: qsLlFxGXc9WfPWNVKXZeaayMCuoiW6Y+K24Q7W63kCI= Subject key identifier: 1D:20:9F:64:E6:B8:DA:D6:99:35:79:E2:69:81:C7:03:48:7A:C1:8B Certificate issuer: /CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Certificate serial: 3C15D473E4EC72CCEFDB5BB928C82211C8A729AC Authority key identifier: C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62333a3a2f34382d3438203d3e20323031333938.roa Signing time: Mon 23 Feb 2026 09:00:04 +0000 ROA not before: Mon 23 Feb 2026 08:55:04 +0000 ROA not after: Mon 22 Feb 2027 09:00:04 +0000 asID: 201398 IP address blocks: 2a0b:4e07:b3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 05:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:15:d4:73:e4:ec:72:cc:ef:db:5b:b9:28:c8:22:11:c8:a7:29:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Validity Not Before: Feb 23 08:55:04 2026 GMT Not After : Feb 22 09:00:04 2027 GMT Subject: CN=1D209F64E6B8DAD6993579E26981C703487AC18B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:24:da:8e:b3:1c:c2:a7:e0:c7:bb:dc:53:19: 7e:a9:c2:54:a9:28:8e:c2:a9:29:07:8d:9b:89:3e: a1:81:2e:e5:5c:f3:9c:02:3a:91:c2:97:98:0e:ef: c4:aa:c8:a9:8f:c3:d8:aa:86:38:72:5d:a2:33:2c: ac:58:2d:ba:95:3d:32:1f:76:50:17:9a:1e:e4:85: 10:2e:30:c3:20:96:93:2a:94:e8:9f:f2:e8:2d:16: 63:16:86:57:d2:14:4b:e7:8f:e4:27:83:73:13:35: 83:48:90:c6:3d:cc:fd:15:c3:1a:69:7c:44:44:e7: 9a:c6:0b:fe:9a:00:ae:5b:4c:e4:bf:06:82:0e:94: 19:40:7a:ce:b0:b7:85:67:53:b8:f2:76:8b:8d:bb: 80:cc:1c:e8:d1:5a:5a:29:d5:20:ed:cd:9f:b1:e6: 6c:54:11:c7:64:c1:70:94:e2:05:1a:fc:e5:75:15: 5f:05:88:0a:24:1b:ca:1b:19:73:11:3b:44:3e:29: 33:f2:34:b1:8b:91:d5:b3:7d:67:ec:df:ba:3a:b1: 50:a0:8b:64:aa:13:9a:e2:c7:31:c8:dc:c2:72:04: 3a:da:c8:d3:9b:b2:bc:b4:5b:3a:e5:f8:40:e3:11: 4f:ba:c5:44:f1:11:07:f5:4d:8c:31:5e:4d:be:9c: c8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:20:9F:64:E6:B8:DA:D6:99:35:79:E2:69:81:C7:03:48:7A:C1:8B X509v3 Authority Key Identifier: keyid:C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a62333a3a2f34382d3438203d3e20323031333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b3::/48 Signature Algorithm: sha256WithRSAEncryption a3:e2:37:c2:e1:70:8b:47:b9:c2:f4:11:d8:19:69:e1:a2:6a: 01:ec:46:c2:79:76:6b:83:36:7d:24:28:53:e6:c1:06:ad:b9: c7:f5:06:6c:cd:6f:4a:de:f1:e5:e0:48:72:e4:a9:e8:3e:6f: 36:f7:58:d7:c2:28:76:72:4b:fb:08:52:64:5f:17:56:b9:4b: 67:f6:ff:60:24:d5:c3:00:ba:97:b6:64:eb:d5:f2:ee:47:c1: 73:9d:eb:64:1d:2e:0d:0f:8a:6e:d0:ac:a8:ad:47:e1:43:67: 99:1c:b4:6d:5f:33:14:85:da:3c:ce:91:cf:bf:15:0b:63:fa: 9b:16:0f:32:79:c2:9a:e2:e9:d5:90:c5:25:7a:f8:14:1d:8b: 9d:c9:37:6d:7a:6c:97:52:04:3c:a3:b6:d0:11:f1:0b:a9:4b: 31:df:8c:54:c0:4d:56:a9:21:35:c9:d7:35:45:03:01:8a:cb: a6:7c:ac:8c:cf:5c:12:7e:f6:81:5d:d5:e5:a4:a4:a3:e7:0a: 5b:32:37:c2:23:bd:13:53:1c:4d:2a:f0:2b:48:74:1b:a8:37: 26:f0:61:22:43:0c:59:1b:82:32:99:58:88:22:ce:79:3e:78: 55:6e:bb:67:27:47:21:e4:af:84:3c:e0:70:74:da:f5:c7:9a: cb:a4:fa:41 -----BEGIN CERTIFICATE----- MIIFbDCCBFSgAwIBAgIUPBXUc+Tscszv21u5KMgiEcinKawwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5 NUMwM0VGMDAeFw0yNjAyMjMwODU1MDRaFw0yNzAyMjIwOTAwMDRaMDMxMTAvBgNV BAMTKDFEMjA5RjY0RTZCOERBRDY5OTM1NzlFMjY5ODFDNzAzNDg3QUMxOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcJNqOsxzCp+DHu9xTGX6pwlSp KI7CqSkHjZuJPqGBLuVc85wCOpHCl5gO78SqyKmPw9iqhjhyXaIzLKxYLbqVPTIf dlAXmh7khRAuMMMglpMqlOif8ugtFmMWhlfSFEvnj+Qng3MTNYNIkMY9zP0Vwxpp fERE55rGC/6aAK5bTOS/BoIOlBlAes6wt4VnU7jydouNu4DMHOjRWlop1SDtzZ+x 5mxUEcdkwXCU4gUa/OV1FV8FiAokG8obGXMRO0Q+KTPyNLGLkdWzfWfs37o6sVCg i2SqE5rixzHI3MJyBDrayNObsry0Wzrl+EDjEU+6xUTxEQf1TYwxXk2+nMj1AgMB AAGjggJ2MIICcjAdBgNVHQ4EFgQUHSCfZOa42taZNXniaYHHA0h6wYswHwYDVR0j BBgwFoAUxz+3Az8jyVlY/PvlDkxlqpXAPvAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTlmODA4ZDItMWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2 MmZjLzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMwM0VGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMw M0VGMC5jZXIwgbMGCCsGAQUFBwELBIGmMIGjMIGgBggrBgEFBQcwC4aBk3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTlmODA4ZDIt MWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2MmZjLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2E2MjMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMxMzMzOTM4LnJvYTAY BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIA AjAJAwcAKgtOBwCzMA0GCSqGSIb3DQEBCwUAA4IBAQCj4jfC4XCLR7nC9BHYGWnh omoB7EbCeXZrgzZ9JChT5sEGrbnH9QZszW9K3vHl4Ehy5KnoPm8291jXwih2ckv7 CFJkXxdWuUtn9v9gJNXDALqXtmTr1fLuR8FznetkHS4ND4pu0KyorUfhQ2eZHLRt XzMUhdo8zpHPvxULY/qbFg8yecKa4unVkMUlevgUHYudyTdtemyXUgQ8o7bQEfEL qUsx34xUwE1WqSE1ydc1RQMBisumfKyMz1wSfvaBXdXlpKSj5wpbMjfCI70TUxxN KvArSHQbqDcm8GEiQwxZG4IymViIIs55PnhVbrtnJ0ch5K+EPOBwdNr1x5rLpPpB -----END CERTIFICATE-----Generated at Sun Mar 1 14:42:16 2026 by rpki-client