$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623133303a3a2f34342d3438203d3e20323031373730.roa File: 326130663a316363363a623133303a3a2f34342d3438203d3e20323031373730.roa (raw, json) Hash identifier: Efws7PM/OQeywU7TXDwbueQNU1D1OoCjFxiKYnz5zVA= Subject key identifier: 5B:B0:D1:01:5E:04:50:29:9E:11:02:57:4E:B2:5C:09:F6:62:8F:31 Certificate issuer: /CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Certificate serial: 5421A3B3CC60764975E8F8FC5347E4FC6B0D815B Authority key identifier: 52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623133303a3a2f34342d3438203d3e20323031373730.roa Signing time: Mon 02 Feb 2026 21:36:00 +0000 ROA not before: Mon 02 Feb 2026 21:31:00 +0000 ROA not after: Mon 01 Feb 2027 21:36:00 +0000 asID: 201770 IP address blocks: 2a0f:1cc6:b130::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 15:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:21:a3:b3:cc:60:76:49:75:e8:f8:fc:53:47:e4:fc:6b:0d:81:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529BFC6DD306B2C49629AA6CEB313194CAA5D33F Validity Not Before: Feb 2 21:31:00 2026 GMT Not After : Feb 1 21:36:00 2027 GMT Subject: CN=5BB0D1015E0450299E1102574EB25C09F6628F31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6e:85:40:8d:3b:b2:ce:49:89:0c:9d:4c:f4: 4e:f9:bc:94:00:81:bd:f5:3c:04:05:3b:02:4c:0b: 8b:3a:66:5c:16:c6:59:0a:05:02:3c:26:c3:4b:5e: d5:8b:c6:83:e1:84:7c:15:3e:55:cc:9a:07:4a:8f: d3:58:c0:93:2e:57:3e:8e:6d:22:fe:69:a6:c9:ed: a8:4d:ba:cb:00:bc:4e:81:d4:e5:0d:d5:e7:da:a3: bf:5e:8e:a7:24:a0:d2:e3:54:3c:28:85:e1:d1:48: 7b:49:64:9f:0a:52:72:ac:b5:6b:fc:1a:6d:ff:2e: e1:a6:c4:59:ee:0a:6b:35:56:ee:06:e6:f6:b7:96: d2:21:ee:1d:fd:f6:24:24:83:1c:8b:38:23:00:c6: 0d:48:f2:ef:f7:31:1f:9d:46:ce:73:fc:02:f6:4e: 40:2e:6a:83:91:4b:73:b5:fe:91:44:f9:b2:fc:23: 46:3c:e4:62:ce:d4:8b:88:80:17:51:62:26:e7:39: b6:92:2c:f8:e7:eb:f2:4e:8c:37:ac:eb:de:52:14: de:ab:69:ff:ce:4c:02:cd:08:2e:ea:dd:f9:cc:f6: a6:d7:03:f7:67:e8:c2:4f:4e:a9:a5:5f:24:28:1a: 31:de:98:e4:51:5f:68:b1:91:ce:36:17:4a:9d:f6: d5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B0:D1:01:5E:04:50:29:9E:11:02:57:4E:B2:5C:09:F6:62:8F:31 X509v3 Authority Key Identifier: keyid:52:9B:FC:6D:D3:06:B2:C4:96:29:AA:6C:EB:31:31:94:CA:A5:D3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/529BFC6DD306B2C49629AA6CEB313194CAA5D33F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/092d16f2-9b46-4a11-ac59-42b3ddee1106/2/326130663a316363363a623133303a3a2f34342d3438203d3e20323031373730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc6:b130::/44 Signature Algorithm: sha256WithRSAEncryption 7b:4f:bd:22:39:c6:4b:e5:a8:30:3d:10:d3:ee:90:2d:6c:3f: 9f:9e:b3:b2:72:cb:9c:97:bb:8b:ca:45:18:16:85:fb:22:7e: 8c:8a:3e:ab:03:6c:4c:a2:8a:f2:0f:ad:8b:e9:5c:0d:62:ea: d0:36:b2:64:d2:82:93:c3:c9:83:33:71:89:43:f2:c3:04:28: b6:18:ff:be:3a:51:32:a1:8a:5d:1a:d6:0b:d3:3b:f4:76:ee: 14:8f:a3:0a:b0:3d:cd:27:8c:18:99:54:dc:f2:35:dd:54:46: 14:ea:63:f6:1e:6e:c0:1d:66:3d:c7:9e:ad:48:98:88:1f:4a: 84:86:c7:58:4e:43:1b:b1:f1:14:66:1b:a9:28:20:b4:8a:2c: 50:e0:5e:0e:70:19:4a:10:79:bf:93:50:2c:28:39:b6:70:4d: e1:77:48:77:77:ee:be:95:24:49:e4:15:5a:66:ad:a3:49:51: a9:41:0a:6b:7e:9e:2d:04:fc:6d:de:1d:9d:c5:39:48:b3:f8: d5:9d:a6:2b:81:24:72:bd:73:ea:62:be:ba:b4:ef:e2:fb:0c: 12:23:1a:31:f5:94:98:27:f8:e8:b4:72:9e:11:6b:81:ef:e5: b6:60:da:32:cb:94:f3:17:7c:ce:f6:de:2f:df:b4:d0:5e:f2: 2a:1c:4b:a1 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVCGjs8xgdkl16Pj8U0fk/GsNgVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRD QUE1RDMzRjAeFw0yNjAyMDIyMTMxMDBaFw0yNzAyMDEyMTM2MDBaMDMxMTAvBgNV BAMTKDVCQjBEMTAxNUUwNDUwMjk5RTExMDI1NzRFQjI1QzA5RjY2MjhGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4boVAjTuyzkmJDJ1M9E75vJQA gb31PAQFOwJMC4s6ZlwWxlkKBQI8JsNLXtWLxoPhhHwVPlXMmgdKj9NYwJMuVz6O bSL+aabJ7ahNussAvE6B1OUN1efao79ejqckoNLjVDwoheHRSHtJZJ8KUnKstWv8 Gm3/LuGmxFnuCms1Vu4G5va3ltIh7h399iQkgxyLOCMAxg1I8u/3MR+dRs5z/AL2 TkAuaoORS3O1/pFE+bL8I0Y85GLO1IuIgBdRYibnObaSLPjn6/JOjDes695SFN6r af/OTALNCC7q3fnM9qbXA/dn6MJPTqmlXyQoGjHemORRX2ixkc42F0qd9tXTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUW7DRAV4EUCmeEQJXTrJcCfZijzEwHwYDVR0j BBgwFoAUUpv8bdMGssSWKaps6zExlMql0z8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDkyZDE2ZjItOWI0Ni00YTExLWFjNTktNDJiM2RkZWUx MTA2LzIvNTI5QkZDNkREMzA2QjJDNDk2MjlBQTZDRUIzMTMxOTRDQUE1RDMzRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC81MjlCRkM2REQzMDZCMkM0OTYyOUFBNkNF QjMxMzE5NENBQTVEMzNGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTJkMTZmMi05YjQ2LTRhMTEtYWM1OS00MmIzZGRlZTExMDYvMi8zMjYxMzA2 NjNhMzE2MzYzMzYzYTYyMzEzMzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MDMxMzczNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKg8cxrEwMA0GCSqGSIb3DQEBCwUAA4IBAQB7 T70iOcZL5agwPRDT7pAtbD+fnrOycsucl7uLykUYFoX7In6Mij6rA2xMooryD62L 6VwNYurQNrJk0oKTw8mDM3GJQ/LDBCi2GP++OlEyoYpdGtYL0zv0du4Uj6MKsD3N J4wYmVTc8jXdVEYU6mP2Hm7AHWY9x56tSJiIH0qEhsdYTkMbsfEUZhupKCC0iixQ 4F4OcBlKEHm/k1AsKDm2cE3hd0h3d+6+lSRJ5BVaZq2jSVGpQQprfp4tBPxt3h2d xTlIs/jVnaYrgSRyvXPqYr66tO/i+wwSIxox9ZSYJ/jotHKeEWuB7+W2YNoyy5Tz F3zO9t4v37TQXvIqHEuh -----END CERTIFICATE-----Generated at Mon Feb 23 06:39:33 2026 by rpki-client