$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20323038373534.roa File: 326130663a316363353a6330303a3a2f34342d3434203d3e20323038373534.roa (raw, json) Hash identifier: CeuYfTbMRgfjzuFv0VeMFMIF0V2bsX3gw5vHgqx/z/I= Subject key identifier: 36:E2:A8:E4:3A:E7:DF:26:F4:8C:B3:DA:13:35:07:C4:64:66:83:9E Certificate issuer: /CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Certificate serial: 70B5696AA2F774F6389E26EA5195D965EE02FC2B Authority key identifier: 47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20323038373534.roa Signing time: Sun 22 Feb 2026 08:56:24 +0000 ROA not before: Sun 22 Feb 2026 08:51:24 +0000 ROA not after: Sun 21 Feb 2027 08:56:24 +0000 asID: 208754 IP address blocks: 2a0f:1cc5:c00::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 01 Mar 2026 23:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b5:69:6a:a2:f7:74:f6:38:9e:26:ea:51:95:d9:65:ee:02:fc:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473F2085BBDEE25875BDA78FE4469ABD64842C90 Validity Not Before: Feb 22 08:51:24 2026 GMT Not After : Feb 21 08:56:24 2027 GMT Subject: CN=36E2A8E43AE7DF26F48CB3DA133507C46466839E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:41:c6:8d:49:ae:2d:28:50:4d:58:36:67:82: 9f:a4:56:53:08:e8:03:41:b6:cf:c9:34:f2:ab:50: 7b:2b:58:ac:13:52:6e:53:66:5b:d9:cb:97:ea:13: bb:8f:4b:a0:21:68:74:39:22:95:db:f6:9c:64:5a: 93:91:e6:9c:37:06:a7:a0:7c:af:5d:18:fe:02:9f: 1c:14:d5:c1:2a:a4:4a:1b:3a:2d:f4:3a:8a:ee:4d: 14:ee:c0:c1:7b:95:f9:f8:57:c3:d2:01:07:4b:89: a0:14:6f:5c:88:6f:98:9e:24:09:1e:3e:3b:f6:53: 5a:9a:13:3e:29:c1:17:5a:ea:b0:46:30:d0:21:64: 33:68:58:16:64:36:73:28:c2:7d:42:66:62:d5:1f: 4f:cc:1f:0a:8a:ec:03:a9:42:4f:47:7e:6d:3b:7c: 2e:43:94:c6:f5:c1:1b:c1:2c:b7:48:d3:55:38:f3: 58:3a:f9:70:42:07:7c:5a:fa:84:e6:9d:bf:14:63: b6:b4:a7:92:5a:8d:b9:b8:ad:2d:81:54:59:46:5a: a6:b5:cf:9f:0d:a9:8b:be:a2:96:a9:b9:68:8c:e1: 65:c5:4a:9a:d6:4e:36:3f:ea:c4:a7:39:13:ac:00: 87:80:27:ec:3b:0a:cb:c0:b2:84:40:fb:6e:ad:79: c9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E2:A8:E4:3A:E7:DF:26:F4:8C:B3:DA:13:35:07:C4:64:66:83:9E X509v3 Authority Key Identifier: keyid:47:3F:20:85:BB:DE:E2:58:75:BD:A7:8F:E4:46:9A:BD:64:84:2C:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/473F2085BBDEE25875BDA78FE4469ABD64842C90.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/473F2085BBDEE25875BDA78FE4469ABD64842C90.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f812d3ef-c5fc-45b0-954a-8a52210c2e90/2/326130663a316363353a6330303a3a2f34342d3434203d3e20323038373534.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:c00::/44 Signature Algorithm: sha256WithRSAEncryption b0:f5:3b:9d:d0:e9:f5:a3:28:87:17:0c:6a:f7:77:fe:f5:2e: 18:41:8f:4d:c3:41:5c:5d:54:fa:23:15:26:47:15:49:e9:21: f8:d9:34:4b:f6:44:a9:40:a3:10:a2:9d:35:b8:d2:6b:a0:fe: e5:7f:e0:f7:2e:3a:f8:2d:db:25:53:3b:45:8c:4a:99:78:57: 9a:01:c6:d0:2d:c2:05:48:ef:43:75:10:3d:1b:11:a9:69:67: 65:17:7e:3e:98:71:d2:00:fa:12:d8:05:2a:50:8b:89:da:ab: 91:93:e0:c2:53:bb:84:cc:b1:0b:10:0d:84:10:01:a2:6d:b0: 32:dd:b2:a1:69:e1:d6:07:2e:7f:0c:52:77:cc:09:47:d0:39: f5:58:aa:9d:0f:bf:e5:39:f7:2d:19:44:a7:36:20:11:cd:d4: b3:11:de:e8:b4:0d:98:00:27:a2:b8:e4:6c:d2:9f:bd:a3:d1: dc:ed:a9:24:1e:31:5a:d7:06:61:13:16:f8:43:12:c0:ef:91: f4:de:4a:c9:1e:a7:8c:02:28:64:4c:a7:a4:d7:e7:9f:43:fc: 02:4f:c8:37:ec:0d:0e:72:cf:36:32:68:db:19:1b:86:aa:ce: ff:2c:64:3a:3d:f3:90:fe:a8:e0:90:a8:89:40:80:5f:f0:0b: 78:a4:1e:1f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUcLVpaqL3dPY4nibqUZXZZe4C/CswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2 NDg0MkM5MDAeFw0yNjAyMjIwODUxMjRaFw0yNzAyMjEwODU2MjRaMDMxMTAvBgNV BAMTKDM2RTJBOEU0M0FFN0RGMjZGNDhDQjNEQTEzMzUwN0M0NjQ2NjgzOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRQcaNSa4tKFBNWDZngp+kVlMI 6ANBts/JNPKrUHsrWKwTUm5TZlvZy5fqE7uPS6AhaHQ5IpXb9pxkWpOR5pw3Bqeg fK9dGP4CnxwU1cEqpEobOi30OoruTRTuwMF7lfn4V8PSAQdLiaAUb1yIb5ieJAke Pjv2U1qaEz4pwRda6rBGMNAhZDNoWBZkNnMown1CZmLVH0/MHwqK7AOpQk9Hfm07 fC5DlMb1wRvBLLdI01U481g6+XBCB3xa+oTmnb8UY7a0p5Jajbm4rS2BVFlGWqa1 z58NqYu+opapuWiM4WXFSprWTjY/6sSnOROsAIeAJ+w7CsvAsoRA+26teckzAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUNuKo5Drn3yb0jLPaEzUHxGRmg54wHwYDVR0j BBgwFoAURz8ghbve4lh1vaeP5EaavWSELJAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjgxMmQzZWYtYzVmYy00NWIwLTk1NGEtOGE1MjIxMGMy ZTkwLzIvNDczRjIwODVCQkRFRTI1ODc1QkRBNzhGRTQ0NjlBQkQ2NDg0MkM5MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC80NzNGMjA4NUJCREVFMjU4NzVCREE3OEZF NDQ2OUFCRDY0ODQyQzkwLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mODEyZDNlZi1jNWZjLTQ1YjAtOTU0YS04YTUyMjEwYzJlOTAvMi8zMjYxMzA2 NjNhMzE2MzYzMzUzYTYzMzAzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzAz ODM3MzUzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoPHMUMADANBgkqhkiG9w0BAQsFAAOCAQEAsPU7 ndDp9aMohxcMavd3/vUuGEGPTcNBXF1U+iMVJkcVSekh+Nk0S/ZEqUCjEKKdNbjS a6D+5X/g9y46+C3bJVM7RYxKmXhXmgHG0C3CBUjvQ3UQPRsRqWlnZRd+Pphx0gD6 EtgFKlCLidqrkZPgwlO7hMyxCxANhBABom2wMt2yoWnh1gcufwxSd8wJR9A59Viq nQ+/5Tn3LRlEpzYgEc3UsxHe6LQNmAAnorjkbNKfvaPR3O2pJB4xWtcGYRMW+EMS wO+R9N5KyR6njAIoZEynpNfnn0P8Ak/IN+wNDnLPNjJo2xkbhqrO/yxkOj3zkP6o 4JCoiUCAX/ALeKQeHw== -----END CERTIFICATE-----Generated at Sun Mar 1 16:23:19 2026 by rpki-client