$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20313337393038.roa File: 326130663a316363353a6330303a3a2f34342d3434203d3e20313337393038.roa (raw, json) Hash identifier: 4dmGplxsB4MdWDNWjWF0Dx41BrwXk8ckrpCB2PWeI6E= Subject key identifier: 91:62:81:46:9F:8C:66:EB:44:72:27:52:BD:98:91:ED:1E:59:AA:F6 Certificate issuer: /CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Certificate serial: 053621BDC21182AE5C7BC3D674F6D191C19563D2 Authority key identifier: 47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20313337393038.roa Signing time: Sun 22 Feb 2026 08:56:24 +0000 ROA not before: Sun 22 Feb 2026 08:51:24 +0000 ROA not after: Sun 21 Feb 2027 08:56:24 +0000 asID: 137908 IP address blocks: 2a0f:1cc5:c00::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Mar 2026 18:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:36:21:bd:c2:11:82:ae:5c:7b:c3:d6:74:f6:d1:91:c1:95:63:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Validity Not Before: Feb 22 08:51:24 2026 GMT Not After : Feb 21 08:56:24 2027 GMT Subject: CN=916281469F8C66EB44722752BD9891ED1E59AAF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bf:3d:2f:eb:7e:e7:55:3f:f8:f9:60:e2:af: ff:97:f6:1f:77:fb:fc:b1:94:dc:dd:e2:59:3b:98: f1:64:46:03:be:1e:12:f0:4d:34:99:19:be:c8:39: 0b:de:2c:d1:1f:e2:21:f4:e7:96:ff:41:33:d9:09: eb:d5:c2:aa:8c:a2:86:fa:80:43:ba:28:dd:db:6e: dc:b6:08:a8:5c:97:bb:81:9b:8b:24:e7:cc:4b:a3: 8e:5d:ce:e0:c4:2c:14:79:64:6f:b8:c8:b8:d8:f7: 4b:b2:0c:fe:ef:83:7b:78:56:8f:14:93:3a:3e:04: 31:c1:01:71:ff:fa:89:22:9a:0a:b6:14:3f:92:41: 04:d8:85:1f:bf:57:fd:82:0c:a3:a1:70:4b:72:d7: 2c:e9:62:3c:97:b1:5f:dc:11:ed:af:d0:7c:7f:03: 17:72:96:69:6d:a1:82:88:89:9e:72:6d:79:6e:73: 7d:f7:25:2d:d1:96:5c:f8:d7:3f:f4:ac:74:f0:9b: a6:99:31:44:e1:76:85:c8:04:ca:0e:8c:34:5a:33: 00:ae:2c:ba:75:db:6a:10:0b:05:3f:48:32:47:7f: dc:9f:39:86:29:09:a5:b5:f3:eb:78:72:eb:d8:0c: e2:9a:cc:c5:0c:52:48:c9:70:1d:02:31:23:af:d5: a9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:62:81:46:9F:8C:66:EB:44:72:27:52:BD:98:91:ED:1E:59:AA:F6 X509v3 Authority Key Identifier: keyid:47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20313337393038.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:c00::/44 Signature Algorithm: sha256WithRSAEncryption 7f:82:12:43:bf:d7:92:69:71:4e:a0:d4:b5:15:6f:7b:7b:84: 7e:38:26:0c:91:63:b5:6a:3e:f1:fd:6e:1a:2f:83:8e:85:b7: 9b:a1:5e:3b:45:12:97:3c:d6:b8:14:85:10:7f:bf:32:27:01: 68:9e:1b:d3:38:7c:12:19:b4:a2:77:68:4e:0e:1b:9a:b7:48: 56:64:61:f1:4e:53:33:82:ef:75:61:67:bf:87:17:46:01:42: 68:77:6d:2a:d6:10:ee:52:ac:92:1b:12:91:57:d5:75:b2:7f: 64:9f:67:13:f4:83:f5:f8:ad:73:e2:9d:87:e8:c2:7f:81:c5: 6f:ba:89:b1:17:83:30:02:f6:56:9e:b5:9f:db:10:d3:08:86: 4c:9d:05:e5:4d:09:98:a0:4a:c0:33:50:69:33:2a:35:9d:71: 93:8b:5c:7b:53:04:92:2d:d6:5b:c8:45:1c:dd:9f:23:58:96: 7b:44:8d:2b:41:db:e5:fe:ab:c9:0b:f4:de:74:5a:9e:b0:ea: 74:89:c6:18:84:c0:5c:65:40:d8:a9:64:1c:15:cf:c8:7f:1a: ed:38:93:6b:7d:d1:67:1e:27:ff:b9:5f:76:4d:55:4a:3a:d0: 6f:f7:c7:d9:bf:5c:f0:da:fd:8a:3a:af:d5:31:16:0b:4b:32: 80:0a:25:f7 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUBTYhvcIRgq5ce8PWdPbRkcGVY9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2 NDg0MkM5MDAeFw0yNjAyMjIwODUxMjRaFw0yNzAyMjEwODU2MjRaMDMxMTAvBgNV BAMTKDkxNjI4MTQ2OUY4QzY2RUI0NDcyMjc1MkJEOTg5MUVEMUU1OUFBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2vz0v637nVT/4+WDir/+X9h93 +/yxlNzd4lk7mPFkRgO+HhLwTTSZGb7IOQveLNEf4iH055b/QTPZCevVwqqMoob6 gEO6KN3bbty2CKhcl7uBm4sk58xLo45dzuDELBR5ZG+4yLjY90uyDP7vg3t4Vo8U kzo+BDHBAXH/+okimgq2FD+SQQTYhR+/V/2CDKOhcEty1yzpYjyXsV/cEe2v0Hx/ AxdylmltoYKIiZ5ybXluc333JS3Rllz41z/0rHTwm6aZMUThdoXIBMoOjDRaMwCu LLp122oQCwU/SDJHf9yfOYYpCaW18+t4cuvYDOKazMUMUkjJcB0CMSOv1alLAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUkWKBRp+MZutEcidSvZiR7R5ZqvYwHwYDVR0j BBgwFoAURz8ghbve4lh1vaeP5EaavWSELJAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjgxMmQzZWYtYzVmYy00NWIwLTk1NGEtOGE1MjIxMGMy ZTkwLzIvNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2NDg0MkM5MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC80NzNGMjA4NUJCREVFMjU4NzVCREE3OEZF NDQ2OUFCRDY0ODQyQzkwLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mODEyZDNlZi1jNWZjLTQ1YjAtOTU0YS04YTUyMjEwYzJlOTAvMi8zMjYxMzA2 NjNhMzE2MzYzMzUzYTYzMzAzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMxMzMz NzM5MzAzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoPHMUMADANBgkqhkiG9w0BAQsFAAOCAQEAf4IS Q7/XkmlxTqDUtRVve3uEfjgmDJFjtWo+8f1uGi+DjoW3m6FeO0USlzzWuBSFEH+/ MicBaJ4b0zh8Ehm0ondoTg4bmrdIVmRh8U5TM4LvdWFnv4cXRgFCaHdtKtYQ7lKs khsSkVfVdbJ/ZJ9nE/SD9fitc+Kdh+jCf4HFb7qJsReDMAL2Vp61n9sQ0wiGTJ0F 5U0JmKBKwDNQaTMqNZ1xk4tce1MEki3WW8hFHN2fI1iWe0SNK0Hb5f6ryQv03nRa nrDqdInGGITAXGVA2KlkHBXPyH8a7TiTa33RZx4n/7lfdk1VSjrQb/fH2b9c8Nr9 ijqv1TEWC0sygAol9w== -----END CERTIFICATE-----Generated at Mon Mar 2 08:42:01 2026 by rpki-client