$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/326130363a313238323a35303a3a2f34342d313238203d3e20323035383438.roa File: 326130363a313238323a35303a3a2f34342d313238203d3e20323035383438.roa (raw, json) Hash identifier: OC/TIgS3EUwSF1HOLVrigQUtFIT/Fgbjxz6kNvqUJ94= Subject key identifier: 7F:51:3E:27:F7:2A:74:F6:6B:7C:72:8B:A3:99:39:06:45:A5:11:9B Certificate issuer: /CN=3537F961668E4765578095AB33A4351BB72C9A63 Certificate serial: 279CD32B453FD2CEF3E0DFB7D8CEC156C9F0FBF6 Authority key identifier: 35:37:F9:61:66:8E:47:65:57:80:95:AB:33:A4:35:1B:B7:2C:9A:63 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/326130363a313238323a35303a3a2f34342d313238203d3e20323035383438.roa Signing time: Mon 09 Feb 2026 12:52:48 +0000 ROA not before: Mon 09 Feb 2026 12:47:48 +0000 ROA not after: Mon 08 Feb 2027 12:52:48 +0000 asID: 205848 IP address blocks: 2a06:1282:50::/44 maxlen: 128 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.crl rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 09:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:9c:d3:2b:45:3f:d2:ce:f3:e0:df:b7:d8:ce:c1:56:c9:f0:fb:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3537F961668E4765578095AB33A4351BB72C9A63 Validity Not Before: Feb 9 12:47:48 2026 GMT Not After : Feb 8 12:52:48 2027 GMT Subject: CN=7F513E27F72A74F66B7C728BA399390645A5119B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2d:1e:3f:f2:e7:1d:6d:92:2d:1f:94:99:b0: 06:9d:1d:7e:45:a9:20:a9:05:3a:6c:ac:13:8c:3a: c3:d6:fa:65:a8:c6:96:3d:69:f2:2b:85:e6:b9:62: b7:91:35:29:1f:84:99:11:29:8f:0b:c3:11:82:ea: 03:73:c3:74:1c:37:9e:3e:95:43:2e:c6:c2:0a:bf: 61:ea:e2:01:97:90:fd:81:65:02:f5:3f:c9:0c:bc: cf:b1:22:3a:a8:6e:8c:c8:80:1e:eb:31:5d:98:c3: 96:da:8f:b0:ad:75:f0:4d:77:64:86:38:fc:d3:6d: 3f:fc:66:30:db:29:2d:05:79:5f:ab:86:00:71:22: 6a:2b:69:90:b2:70:e0:86:3a:2c:a8:2e:45:58:a5: ad:f7:f0:1d:3f:84:60:64:7f:51:83:a9:ad:25:4e: 95:91:5e:6d:bb:79:a2:23:00:0a:cc:36:b0:a0:93: 65:1d:99:de:ef:42:9a:59:4d:15:cf:a8:c1:9e:ea: f3:1a:50:ba:c2:3c:c6:4f:06:31:d6:f7:4d:36:c3: b3:4f:17:80:06:e4:19:dd:54:f0:9d:ed:97:63:31: 7a:fc:8a:29:10:dd:bd:21:fd:d6:ec:72:8a:d7:94: 14:00:e2:7f:f5:22:6c:d9:c8:37:59:11:4c:5e:1a: b1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:51:3E:27:F7:2A:74:F6:6B:7C:72:8B:A3:99:39:06:45:A5:11:9B X509v3 Authority Key Identifier: keyid:35:37:F9:61:66:8E:47:65:57:80:95:AB:33:A4:35:1B:B7:2C:9A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/3537F961668E4765578095AB33A4351BB72C9A63.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/3537F961668E4765578095AB33A4351BB72C9A63.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a59e8c2f-e590-4a4f-8463-8317c2a1c048/1/326130363a313238323a35303a3a2f34342d313238203d3e20323035383438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1282:50::/44 Signature Algorithm: sha256WithRSAEncryption 52:c4:fe:e1:c1:06:3d:63:ae:b9:40:6d:2e:60:41:e9:06:c3: 6d:c4:57:47:e1:a5:ff:2e:b2:d7:f8:60:df:f9:9a:d8:2f:d6: 5b:31:9b:4e:31:d9:37:a1:b0:e3:ee:04:92:29:95:d5:95:c8: 12:a6:4a:98:d5:08:14:c6:70:b6:02:34:ef:ac:37:e9:1c:7a: 0d:79:0b:88:38:0d:de:d3:86:8c:8c:b0:97:b2:ec:47:77:51: 97:2c:9f:08:89:b1:3a:32:0d:05:23:e1:3e:ff:13:c4:ce:c7: 00:56:ee:a5:67:3a:eb:9e:9c:f5:a7:3c:6e:b0:2d:d5:82:fb: 53:87:dc:a0:6c:fc:8e:47:90:f1:16:3a:e9:c3:74:c5:82:5c: 01:aa:f9:b3:17:e4:39:f0:5d:1c:1a:e2:12:0b:dc:1a:2c:49: ea:b4:d9:76:b5:2c:98:f6:50:9c:53:ae:e1:ff:a8:ad:7f:cd: 45:1f:4f:46:04:68:9f:4e:1f:4b:58:b7:95:68:3c:f6:a3:43: e2:34:0d:bc:fd:c6:90:1a:c9:f4:e8:57:ff:f4:40:75:dd:ad: be:4c:8f:97:6d:3e:64:7d:43:98:53:3b:b9:a4:1d:3b:6e:06: 82:aa:e3:55:3f:6c:3b:95:49:46:79:da:d7:98:21:8f:b4:b8: 81:7b:30:be -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUJ5zTK0U/0s7z4N+32M7BVsnw+/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJC NzJDOUE2MzAeFw0yNjAyMDkxMjQ3NDhaFw0yNzAyMDgxMjUyNDhaMDMxMTAvBgNV BAMTKDdGNTEzRTI3RjcyQTc0RjY2QjdDNzI4QkEzOTkzOTA2NDVBNTExOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2LR4/8ucdbZItH5SZsAadHX5F qSCpBTpsrBOMOsPW+mWoxpY9afIrhea5YreRNSkfhJkRKY8LwxGC6gNzw3QcN54+ lUMuxsIKv2Hq4gGXkP2BZQL1P8kMvM+xIjqobozIgB7rMV2Yw5baj7CtdfBNd2SG OPzTbT/8ZjDbKS0FeV+rhgBxImoraZCycOCGOiyoLkVYpa338B0/hGBkf1GDqa0l TpWRXm27eaIjAArMNrCgk2Udmd7vQppZTRXPqMGe6vMaULrCPMZPBjHW9002w7NP F4AG5BndVPCd7ZdjMXr8iikQ3b0h/dbscorXlBQA4n/1ImzZyDdZEUxeGrHfAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUf1E+J/cqdPZrfHKLo5k5BkWlEZswHwYDVR0j BBgwFoAUNTf5YWaOR2VXgJWrM6Q1G7csmmMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTU5ZThjMmYtZTU5MC00YTRmLTg0NjMtODMxN2MyYTFj MDQ4LzEvMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJCNzJDOUE2My5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMzUzN0Y5NjE2NjhFNDc2NTU3ODA5NUFCMzNBNDM1MUJCNzJD OUE2My5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYTU5ZThjMmYt ZTU5MC00YTRmLTg0NjMtODMxN2MyYTFjMDQ4LzEvMzI2MTMwMzYzYTMxMzIzODMy M2EzNTMwM2EzYTJmMzQzNDJkMzEzMjM4MjAzZDNlMjAzMjMwMzUzODM0Mzgucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwQqBhKCAFAwDQYJKoZIhvcNAQELBQADggEBAFLE/uHBBj1jrrlAbS5g QekGw23EV0fhpf8ustf4YN/5mtgv1lsxm04x2TehsOPuBJIpldWVyBKmSpjVCBTG cLYCNO+sN+kceg15C4g4Dd7ThoyMsJey7Ed3UZcsnwiJsToyDQUj4T7/E8TOxwBW 7qVnOuuenPWnPG6wLdWC+1OH3KBs/I5HkPEWOunDdMWCXAGq+bMX5DnwXRwa4hIL 3BosSeq02Xa1LJj2UJxTruH/qK1/zUUfT0YEaJ9OH0tYt5VoPPajQ+I0Dbz9xpAa yfToV//0QHXdrb5Mj5dtPmR9Q5hTO7mkHTtuBoKq41U/bDuVSUZ52teYIY+0uIF7 ML4= -----END CERTIFICATE-----Generated at Sun Mar 1 18:10:19 2026 by rpki-client