$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766313a3a2f34382d3438203d3e20323135313234.roa File: 326130663a383563313a3766313a3a2f34382d3438203d3e20323135313234.roa (raw, json) Hash identifier: PkDDbwNzmD9S4zWIDBatVOk8IeTi2WfPIclFqFKlzas= Subject key identifier: 8E:E5:19:61:19:31:9D:03:41:4E:E7:34:17:C6:84:AD:B9:7E:02:B4 Certificate issuer: /CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Certificate serial: 5213E10653B897D70280DB4795695A3365E938ED Authority key identifier: 1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766313a3a2f34382d3438203d3e20323135313234.roa Signing time: Sat 14 Feb 2026 23:51:00 +0000 ROA not before: Sat 14 Feb 2026 23:46:00 +0000 ROA not after: Sat 13 Feb 2027 23:51:00 +0000 asID: 215124 IP address blocks: 2a0f:85c1:7f1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 14:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:13:e1:06:53:b8:97:d7:02:80:db:47:95:69:5a:33:65:e9:38:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A90A6AE1542A353CCA74977EB2BFE2A49C18377 Validity Not Before: Feb 14 23:46:00 2026 GMT Not After : Feb 13 23:51:00 2027 GMT Subject: CN=8EE5196119319D03414EE73417C684ADB97E02B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:71:61:78:3d:52:59:24:2a:66:ff:e4:5b:ad: 2c:f4:4b:51:25:76:fb:ee:78:f2:ac:cd:d4:a4:dd: 14:e1:82:dc:4a:50:a1:aa:29:ec:f5:80:d4:ac:49: 12:36:45:47:8c:bc:f0:d3:92:40:d4:a3:9b:94:3d: 16:08:11:8e:13:c5:3e:16:2f:60:7b:b1:29:20:b8: b6:60:46:bd:ac:36:3a:b6:bb:f8:33:12:0d:67:56: 9a:1f:6a:3b:22:2d:63:e9:b6:43:91:b1:ff:aa:be: b7:c0:36:1e:bb:81:d8:6b:a2:58:98:01:8f:ac:ce: 0b:b7:82:10:66:f9:4e:8c:e9:56:ce:6e:e2:ea:00: 2a:1b:96:2e:06:3a:ae:b9:d4:4f:6a:64:69:ea:26: 45:4c:eb:6f:63:ed:6b:58:a6:cd:32:80:81:a2:21: 12:6c:f0:d9:e1:d7:26:fb:dd:f5:58:d5:39:6b:37: b3:b0:2c:86:7a:6c:26:a5:10:f0:83:6e:f4:8b:45: 87:59:15:b8:15:08:77:96:7e:57:53:15:fd:c1:7f: 85:86:35:0e:44:63:e0:30:ca:e5:cf:48:fb:43:46: 20:3a:1c:60:a5:91:a7:16:56:d2:7e:7b:0d:8a:9c: 56:b3:6a:22:d9:92:eb:3f:a4:11:92:ca:ca:d3:65: cb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E5:19:61:19:31:9D:03:41:4E:E7:34:17:C6:84:AD:B9:7E:02:B4 X509v3 Authority Key Identifier: keyid:1A:90:A6:AE:15:42:A3:53:CC:A7:49:77:EB:2B:FE:2A:49:C1:83:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/1A90A6AE1542A353CCA74977EB2BFE2A49C18377.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d06333c6-946d-4b0b-95ef-daba262a42e1/1/326130663a383563313a3766313a3a2f34382d3438203d3e20323135313234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:7f1::/48 Signature Algorithm: sha256WithRSAEncryption a6:49:b0:8a:3e:dc:56:c9:98:f3:b7:3f:db:48:2e:e0:e5:03: fc:5b:0f:f9:50:3f:a1:bf:1c:d5:23:9d:d0:4c:8b:13:af:7a: c5:15:f9:da:0d:5f:49:35:b9:bf:a1:dd:00:23:d7:b2:9d:24: b1:16:5d:0d:01:1f:e3:12:05:77:2f:08:3c:37:8c:ae:e1:52: 32:f8:c9:0d:a4:8b:61:d2:c9:22:b3:40:1b:2f:2f:b1:84:72: 33:c0:74:c5:1c:e8:a5:bf:57:e3:dc:79:7a:bc:66:09:fb:c6: d4:ca:a1:8e:e3:9d:85:fb:5d:cb:5b:80:1c:bd:90:e8:e6:5c: 02:12:bf:ef:05:9d:6b:be:8c:7e:6d:5f:ef:97:23:46:02:43: c4:ca:4e:77:3a:55:5d:1b:16:ba:1e:82:2c:52:33:f7:75:ba: 33:f1:3a:ac:d2:64:fe:ee:33:66:11:b1:6c:71:fc:0e:f1:40: b5:d5:e6:96:07:fb:17:86:ee:c3:9b:5b:b2:1e:62:13:07:f2: a5:a1:bd:19:05:6e:00:64:ce:6d:ad:81:16:25:cc:71:95:2f: 34:60:df:b1:61:25:79:03:e4:6f:e0:ea:b9:b3:1a:7e:af:df: 33:1c:7b:d4:2f:3d:63:e7:c8:58:d5:af:2d:e0:00:57:1f:c4: 39:0e:bb:ce -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUUhPhBlO4l9cCgNtHlWlaM2XpOO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0 OUMxODM3NzAeFw0yNjAyMTQyMzQ2MDBaFw0yNzAyMTMyMzUxMDBaMDMxMTAvBgNV BAMTKDhFRTUxOTYxMTkzMTlEMDM0MTRFRTczNDE3QzY4NEFEQjk3RTAyQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMcWF4PVJZJCpm/+RbrSz0S1El dvvuePKszdSk3RThgtxKUKGqKez1gNSsSRI2RUeMvPDTkkDUo5uUPRYIEY4TxT4W L2B7sSkguLZgRr2sNjq2u/gzEg1nVpofajsiLWPptkORsf+qvrfANh67gdhroliY AY+szgu3ghBm+U6M6VbObuLqACobli4GOq651E9qZGnqJkVM629j7WtYps0ygIGi IRJs8Nnh1yb73fVY1TlrN7OwLIZ6bCalEPCDbvSLRYdZFbgVCHeWfldTFf3Bf4WG NQ5EY+AwyuXPSPtDRiA6HGClkacWVtJ+ew2KnFazaiLZkus/pBGSysrTZcu3AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUjuUZYRkxnQNBTuc0F8aErbl+ArQwHwYDVR0j BBgwFoAUGpCmrhVCo1PMp0l36yv+KknBg3cwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDA2MzMzYzYtOTQ2ZC00YjBiLTk1ZWYtZGFiYTI2MmE0 MmUxLzEvMUE5MEE2QUUxNTQyQTM1M0NDQTc0OTc3RUIyQkZFMkE0OUMxODM3Ny5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC8xQTkwQTZBRTE1NDJBMzUzQ0NBNzQ5NzdF QjJCRkUyQTQ5QzE4Mzc3LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kMDYzMzNjNi05NDZkLTRiMGItOTVlZi1kYWJhMjYyYTQyZTEvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTM3NjYzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NTMxMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEH8TANBgkqhkiG9w0BAQsFAAOCAQEApkmw ij7cVsmY87c/20gu4OUD/FsP+VA/ob8c1SOd0EyLE696xRX52g1fSTW5v6HdACPX sp0ksRZdDQEf4xIFdy8IPDeMruFSMvjJDaSLYdLJIrNAGy8vsYRyM8B0xRzopb9X 49x5erxmCfvG1MqhjuOdhftdy1uAHL2Q6OZcAhK/7wWda76Mfm1f75cjRgJDxMpO dzpVXRsWuh6CLFIz93W6M/E6rNJk/u4zZhGxbHH8DvFAtdXmlgf7F4buw5tbsh5i EwfypaG9GQVuAGTOba2BFiXMcZUvNGDfsWEleQPkb+DqubMafq/fMxx71C89Y+fI WNWvLeAAVx/EOQ67zg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:27:46 2026 by rpki-client