$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666130303a3a2f34342d3438203d3e20323134333434.roa File: 326131343a373538303a666130303a3a2f34342d3438203d3e20323134333434.roa (raw, json) Hash identifier: UqCNzDGtU5aD3Sfhq0hDlqQDB4EqJwXqpH7M/ZgJ89U= Subject key identifier: 11:28:72:C3:A3:B7:BC:84:F9:83:62:84:50:DC:29:BE:0A:B0:B7:39 Certificate issuer: /CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Certificate serial: 63B4FE2A536BD97A13396CF822BCB1FA519C29A1 Authority key identifier: FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666130303a3a2f34342d3438203d3e20323134333434.roa Signing time: Mon 26 Jan 2026 07:07:34 +0000 ROA not before: Mon 26 Jan 2026 07:02:34 +0000 ROA not after: Mon 25 Jan 2027 07:07:34 +0000 asID: 214344 IP address blocks: 2a14:7580:fa00::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 21:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:b4:fe:2a:53:6b:d9:7a:13:39:6c:f8:22:bc:b1:fa:51:9c:29:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Validity Not Before: Jan 26 07:02:34 2026 GMT Not After : Jan 25 07:07:34 2027 GMT Subject: CN=112872C3A3B7BC84F983628450DC29BE0AB0B739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:df:a6:c1:14:a3:38:05:c1:36:95:fc:ad:cd: ae:80:9e:1f:cf:80:b0:4f:c0:94:d9:ef:62:2c:a9: d6:22:e4:5d:4a:b2:e8:4e:53:6d:8f:b7:9a:95:64: 3c:bb:18:61:bf:ef:ec:b8:fe:91:43:7d:c2:8e:66: fa:2d:2f:97:fb:0d:49:b4:31:f2:f1:53:03:5a:2b: a1:6d:5f:dc:68:32:fb:65:ce:86:31:f5:f2:32:0f: 2a:59:d4:35:5e:1f:43:a5:fe:af:21:b3:8c:23:95: 38:b8:eb:8d:b3:23:28:82:10:34:4b:da:44:f4:47: fb:8c:8f:c6:ae:52:6e:ce:4f:f9:02:84:0b:d5:94: 39:d6:bf:e4:7a:b4:ec:fb:58:45:87:de:77:54:e7: 43:5b:c8:93:e3:e9:12:d4:99:6f:ca:75:33:ef:71: 7d:f2:ec:51:4e:68:a3:fd:29:e2:57:e4:36:f6:c3: 35:75:78:1b:71:eb:43:89:4d:49:da:e2:b8:62:4e: 50:c6:e5:85:99:4b:98:32:94:12:d7:51:89:a3:a8: f1:d7:09:2b:41:c0:ba:e4:85:e8:e1:4b:6c:37:7a: fd:aa:f7:77:32:38:fc:c7:bb:1a:22:74:e8:a7:78: bc:92:c2:b6:5c:ca:f6:99:2a:03:7b:62:95:98:87: 0b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:28:72:C3:A3:B7:BC:84:F9:83:62:84:50:DC:29:BE:0A:B0:B7:39 X509v3 Authority Key Identifier: keyid:FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666130303a3a2f34342d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa00::/44 Signature Algorithm: sha256WithRSAEncryption 4a:81:3c:cd:18:c7:4a:a6:d4:94:a5:18:fa:23:d1:9d:a1:2d: 5d:3a:ee:79:26:fe:4f:32:4f:96:60:04:ec:18:0d:32:07:d4: 52:be:40:35:86:c3:1d:19:8e:9c:dc:6b:2c:9f:57:51:b6:70: 61:72:35:41:c4:a5:72:bd:10:09:b0:89:ca:3c:4e:01:07:21: 39:ea:a6:08:6f:a8:fc:7e:c3:59:18:b7:22:75:8c:10:0c:de: 25:25:57:3e:8e:23:e5:08:75:56:25:9e:65:6d:77:d1:87:af: 4d:1c:ee:4e:d5:b6:d4:1a:ce:f6:e9:52:cc:15:39:93:0a:9f: df:cf:e1:43:72:2c:86:3f:84:52:03:ad:c2:2c:b8:22:0c:62: 78:db:83:66:cf:9d:62:9e:1d:5d:6e:cb:94:e2:86:fb:74:31: 09:f8:37:34:a0:2a:29:a1:08:a8:27:b8:d4:b6:77:66:8e:9f: 42:e4:30:93:2d:d1:6d:5b:d7:26:82:7b:76:4f:c1:28:8b:f9: 4d:74:68:c0:2c:ab:86:52:08:df:50:fa:c3:a6:bd:6b:e7:ca: ed:f5:76:0c:d5:9b:82:f4:52:5a:30:39:90:b5:54:23:b4:dc: c5:e6:88:9b:42:6b:39:0c:8d:f8:a7:88:94:39:0c:54:a4:30: ef:82:10:c3 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUY7T+KlNr2XoTOWz4Iryx+lGcKaEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVF QzFFQ0U1NDAeFw0yNjAxMjYwNzAyMzRaFw0yNzAxMjUwNzA3MzRaMDMxMTAvBgNV BAMTKDExMjg3MkMzQTNCN0JDODRGOTgzNjI4NDUwREMyOUJFMEFCMEI3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp36bBFKM4BcE2lfytza6Anh/P gLBPwJTZ72IsqdYi5F1KsuhOU22Pt5qVZDy7GGG/7+y4/pFDfcKOZvotL5f7DUm0 MfLxUwNaK6FtX9xoMvtlzoYx9fIyDypZ1DVeH0Ol/q8hs4wjlTi4642zIyiCEDRL 2kT0R/uMj8auUm7OT/kChAvVlDnWv+R6tOz7WEWH3ndU50NbyJPj6RLUmW/KdTPv cX3y7FFOaKP9KeJX5Db2wzV1eBtx60OJTUna4rhiTlDG5YWZS5gylBLXUYmjqPHX CStBwLrkhejhS2w3ev2q93cyOPzHuxoidOineLySwrZcyvaZKgN7YpWYhwsZAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUEShyw6O3vIT5g2KEUNwpvgqwtzkwHwYDVR0j BBgwFoAU/vNPsBh1CV7aVuFVR0bSpewezlQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk3MThmMDgtYmIzOS00YTA5LWE0YzAtMWY0MDI0OGE2 ZDE1LzQvRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVFQzFFQ0U1NC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GRUYzNEZCMDE4NzUwOTVFREE1NkUxNTU0 NzQ2RDJBNUVDMUVDRTU0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTcxOGYwOC1iYjM5LTRhMDktYTRjMC0xZjQwMjQ4YTZkMTUvNC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzMDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPoAMA0GCSqGSIb3DQEBCwUAA4IBAQBK gTzNGMdKptSUpRj6I9GdoS1dOu55Jv5PMk+WYATsGA0yB9RSvkA1hsMdGY6c3Gss n1dRtnBhcjVBxKVyvRAJsInKPE4BByE56qYIb6j8fsNZGLcidYwQDN4lJVc+jiPl CHVWJZ5lbXfRh69NHO5O1bbUGs726VLMFTmTCp/fz+FDciyGP4RSA63CLLgiDGJ4 24Nmz51inh1dbsuU4ob7dDEJ+Dc0oCopoQioJ7jUtndmjp9C5DCTLdFtW9cmgnt2 T8Eoi/lNdGjALKuGUgjfUPrDpr1r58rt9XYM1ZuC9FJaMDmQtVQjtNzF5oibQms5 DI34p4iUOQxUpDDvghDD -----END CERTIFICATE-----Generated at Mon Feb 23 06:25:04 2026 by rpki-client