$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/326131343a373538313a393930303a3a2f34382d3438203d3e20323134333434.roa File: 326131343a373538313a393930303a3a2f34382d3438203d3e20323134333434.roa (raw, json) Hash identifier: kGAxqipewjTBEOV3BSA8JRTiGthe14AWzEgdY5VhMKs= Subject key identifier: F1:F8:A3:13:E4:44:AF:A8:81:80:B5:E4:47:95:3E:C4:DB:3B:95:F2 Certificate issuer: /CN=B52300C5AE6278B608E231E431C3DD0EAF6A6BC2 Certificate serial: 555822770409E25D130202CD776C1459AFCB2304 Authority key identifier: B5:23:00:C5:AE:62:78:B6:08:E2:31:E4:31:C3:DD:0E:AF:6A:6B:C2 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/326131343a373538313a393930303a3a2f34382d3438203d3e20323134333434.roa Signing time: Mon 23 Feb 2026 01:05:12 +0000 ROA not before: Mon 23 Feb 2026 01:00:12 +0000 ROA not after: Mon 22 Feb 2027 01:05:12 +0000 asID: 214344 IP address blocks: 2a14:7581:9900::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.crl rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 21:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:58:22:77:04:09:e2:5d:13:02:02:cd:77:6c:14:59:af:cb:23:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B52300C5AE6278B608E231E431C3DD0EAF6A6BC2 Validity Not Before: Feb 23 01:00:12 2026 GMT Not After : Feb 22 01:05:12 2027 GMT Subject: CN=F1F8A313E444AFA88180B5E447953EC4DB3B95F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ce:4f:7e:bc:10:0d:32:bc:ad:c9:4e:91:08: 8f:e8:b1:8d:cb:3c:8d:73:b3:40:87:c6:48:4a:62: 26:76:ec:5d:90:ce:f1:c6:0b:17:66:83:37:a6:09: 09:3e:aa:53:4c:cb:a7:05:9b:bf:6a:15:e6:24:74: 7a:fb:d3:93:39:1a:fe:c6:13:18:80:38:ba:05:bd: ed:af:40:b3:6c:08:b0:c0:b0:0a:5d:6f:88:d1:25: a4:b4:7e:7b:c5:58:46:f8:1b:41:49:29:ce:52:be: bb:04:6f:b3:e5:0b:6c:2e:38:3f:d4:82:20:4b:27: 50:79:65:10:a8:c1:91:b0:de:db:c6:4c:99:ee:bd: e7:06:8e:c1:7e:66:61:5d:a4:7f:c2:16:17:d5:f4: 67:9b:44:2d:05:07:ad:73:4a:c0:88:7c:15:e9:86: c9:11:5a:f9:2a:91:c7:d0:46:7b:a3:b0:11:5c:8a: f6:82:d4:e5:d4:aa:9d:5d:e3:16:25:22:f3:e6:3f: ec:d7:14:02:eb:8f:41:f5:f8:34:a2:94:2d:00:e6: f4:22:9e:5f:cf:e7:3e:2f:1f:5d:23:a0:e0:bb:d4: d8:81:e4:f1:ac:a4:22:67:d4:f2:2e:37:a8:1b:c2: e2:66:ba:4f:c7:9a:41:87:ce:d8:99:7d:1e:a3:4f: c9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F8:A3:13:E4:44:AF:A8:81:80:B5:E4:47:95:3E:C4:DB:3B:95:F2 X509v3 Authority Key Identifier: keyid:B5:23:00:C5:AE:62:78:B6:08:E2:31:E4:31:C3:DD:0E:AF:6A:6B:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/B52300C5AE6278B608E231E431C3DD0EAF6A6BC2.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/3/326131343a373538313a393930303a3a2f34382d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9900::/48 Signature Algorithm: sha256WithRSAEncryption 3f:e0:61:72:1a:41:4c:79:4f:e1:9a:c5:98:64:ef:5b:58:3c: 68:38:61:29:28:9c:2c:b5:bd:d2:68:06:c5:6f:dc:2d:e9:90: 10:c2:64:5e:1e:b8:28:99:62:df:d3:a5:20:45:4d:83:34:82: 04:c7:5c:d1:8c:33:6c:13:32:6d:c0:42:03:55:59:bd:7d:7c: 1f:fc:60:b9:79:fe:f3:5b:3a:f7:08:db:35:c2:11:fe:1c:32: 19:82:62:75:23:ad:1f:70:9e:4b:5a:65:c2:b8:57:a7:ea:be: 54:f9:23:1e:f2:9d:a3:cc:df:51:ea:e9:14:55:8d:75:d9:15: a0:d8:70:bb:11:9b:98:8a:a3:88:53:95:e9:80:12:04:e3:de: 7d:c9:c4:db:63:e8:b6:62:82:62:29:42:e2:99:9e:4d:a7:b3: 01:d3:ec:0c:f3:c2:ca:5a:1f:0f:2c:bc:f6:35:9a:fa:5c:3a: b6:36:08:08:88:49:ef:c8:e4:98:4a:8c:68:b3:c2:d4:c2:dc: 7f:a1:89:50:26:02:30:69:24:8a:bb:15:ac:22:d4:20:8c:f5: eb:91:de:05:8f:d6:76:fe:4a:41:d2:46:d5:a5:47:a2:94:4e: 10:39:b2:07:18:e4:5d:2c:36:42:04:74:51:ad:15:69:2e:ee: fd:b2:1e:52 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVVgidwQJ4l0TAgLNd2wUWa/LIwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjUyMzAwQzVBRTYyNzhCNjA4RTIzMUU0MzFDM0REMEVB RjZBNkJDMjAeFw0yNjAyMjMwMTAwMTJaFw0yNzAyMjIwMTA1MTJaMDMxMTAvBgNV BAMTKEYxRjhBMzEzRTQ0NEFGQTg4MTgwQjVFNDQ3OTUzRUM0REIzQjk1RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrzk9+vBANMrytyU6RCI/osY3L PI1zs0CHxkhKYiZ27F2QzvHGCxdmgzemCQk+qlNMy6cFm79qFeYkdHr705M5Gv7G ExiAOLoFve2vQLNsCLDAsApdb4jRJaS0fnvFWEb4G0FJKc5SvrsEb7PlC2wuOD/U giBLJ1B5ZRCowZGw3tvGTJnuvecGjsF+ZmFdpH/CFhfV9GebRC0FB61zSsCIfBXp hskRWvkqkcfQRnujsBFcivaC1OXUqp1d4xYlIvPmP+zXFALrj0H1+DSilC0A5vQi nl/P5z4vH10joOC71NiB5PGspCJn1PIuN6gbwuJmuk/HmkGHztiZfR6jT8lpAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU8fijE+REr6iBgLXkR5U+xNs7lfIwHwYDVR0j BBgwFoAUtSMAxa5ieLYI4jHkMcPdDq9qa8IwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk3MThmMDgtYmIzOS00YTA5LWE0YzAtMWY0MDI0OGE2 ZDE1LzMvQjUyMzAwQzVBRTYyNzhCNjA4RTIzMUU0MzFDM0REMEVBRjZBNkJDMi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9CNTIzMDBDNUFFNjI3OEI2MDhFMjMxRTQz MUMzREQwRUFGNkE2QkMyLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTcxOGYwOC1iYjM5LTRhMDktYTRjMC0xZjQwMjQ4YTZkMTUvMy8zMjYxMzEz NDNhMzczNTM4MzEzYTM5MzkzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gZkAMA0GCSqGSIb3DQEBCwUAA4IBAQA/ 4GFyGkFMeU/hmsWYZO9bWDxoOGEpKJwstb3SaAbFb9wt6ZAQwmReHrgomWLf06Ug RU2DNIIEx1zRjDNsEzJtwEIDVVm9fXwf/GC5ef7zWzr3CNs1whH+HDIZgmJ1I60f cJ5LWmXCuFen6r5U+SMe8p2jzN9R6ukUVY112RWg2HC7EZuYiqOIU5XpgBIE4959 ycTbY+i2YoJiKULimZ5Np7MB0+wM88LKWh8PLLz2NZr6XDq2NggIiEnvyOSYSoxo s8LUwtx/oYlQJgIwaSSKuxWsItQgjPXrkd4Fj9Z2/kpB0kbVpUeilE4QObIHGORd LDZCBHRRrRVpLu79sh5S -----END CERTIFICATE-----Generated at Mon Feb 23 06:25:03 2026 by rpki-client