$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666132303a3a2f34342d3438203d3e20323134333434.roa File: 326131343a373538303a666132303a3a2f34342d3438203d3e20323134333434.roa (raw, json) Hash identifier: q8V2y9WUGOeaflB9on/TGNr/ZKQwKQK7OMK/V1fxCUE= Subject key identifier: 68:A3:0C:C7:08:20:67:36:EC:29:EB:6B:A2:CC:EB:48:1A:04:3E:64 Certificate issuer: /CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Certificate serial: 769A6A668F1524F86267D767FB974F183F4F715D Authority key identifier: FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666132303a3a2f34342d3438203d3e20323134333434.roa Signing time: Mon 26 Jan 2026 07:08:27 +0000 ROA not before: Mon 26 Jan 2026 07:03:27 +0000 ROA not after: Mon 25 Jan 2027 07:08:27 +0000 asID: 214344 IP address blocks: 2a14:7580:fa20::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 21:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9a:6a:66:8f:15:24:f8:62:67:d7:67:fb:97:4f:18:3f:4f:71:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Validity Not Before: Jan 26 07:03:27 2026 GMT Not After : Jan 25 07:08:27 2027 GMT Subject: CN=68A30CC708206736EC29EB6BA2CCEB481A043E64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:7d:fd:01:82:7a:97:02:38:7c:db:a8:2f:fa: 2f:56:ab:f7:42:7c:15:36:70:4e:a2:aa:66:f4:d8: 29:96:b8:bf:52:a0:1a:c9:3f:5a:59:7b:dc:3d:7d: b7:3e:dd:f3:fa:d9:41:64:8a:6c:69:d3:0e:64:5e: 84:8a:9d:24:cd:ee:68:22:d5:d0:bc:76:79:de:b8: 9c:ca:27:03:13:49:5b:60:af:8a:96:46:13:f0:9c: 31:92:b3:4b:6e:07:18:91:e2:86:c4:d1:bc:fc:82: 79:4e:d6:c2:7d:76:8e:1b:55:5d:d8:9e:19:e9:76: d6:71:c8:e9:41:98:f9:12:a5:4a:54:fd:f4:ae:45: 39:e5:41:8b:9f:04:fb:e7:d3:9c:be:fd:09:e7:54: e4:07:63:43:30:be:19:59:58:88:1b:3e:46:64:4b: f1:cf:40:26:02:ac:ac:77:8f:65:b2:99:9e:62:9a: a2:83:87:b9:62:f1:fb:5b:84:e5:b3:bf:25:1d:57: 4e:c0:30:6e:0b:e9:da:f5:9f:32:a8:05:05:47:62: 88:08:d8:10:a1:99:e2:6f:25:1d:d8:de:44:74:00: 45:73:cd:85:0a:e2:c6:1c:50:37:f7:68:80:3c:13: 9a:55:f6:30:fa:d9:cc:55:36:03:f1:5f:f2:8b:34: 97:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:A3:0C:C7:08:20:67:36:EC:29:EB:6B:A2:CC:EB:48:1A:04:3E:64 X509v3 Authority Key Identifier: keyid:FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666132303a3a2f34342d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa20::/44 Signature Algorithm: sha256WithRSAEncryption 83:50:ed:22:95:21:ff:9a:15:08:fe:a0:3c:61:1f:b6:d3:ff: ae:2c:57:da:95:9b:54:93:98:fb:30:f6:79:73:78:13:24:1f: 95:33:75:e2:14:be:e2:ca:63:3e:56:43:92:e2:3a:4a:19:4c: 3a:7e:46:9c:ad:a0:d0:3d:05:f5:b3:b3:96:d5:55:3a:50:67: b5:f7:3f:8f:35:be:b3:8f:cc:93:c7:04:b2:9b:60:e8:07:f4: ef:ee:db:8e:c1:05:ba:31:cc:b0:e7:c2:84:49:f5:a3:0a:9a: 22:ac:cb:4e:96:2e:19:e4:6c:cb:a2:16:81:4a:7b:b7:0d:ff: c4:58:20:43:76:02:7e:7c:04:26:d2:f2:e5:60:f6:a2:d6:87: e8:e2:76:47:22:e4:9d:02:85:84:91:27:24:30:21:13:ff:ca: 18:2d:d7:40:a4:d6:d0:42:85:c0:52:cf:72:cc:00:c4:43:b5: 17:62:27:50:bf:7c:08:5e:f7:49:f3:72:0a:72:76:01:ca:fa: c4:2f:43:30:60:31:f4:87:3e:a6:44:da:06:17:4b:d4:31:91: ff:c4:a5:1c:4a:80:25:f3:11:2b:0f:75:c6:a5:c3:78:80:0e: ef:49:77:0d:9d:43:93:19:91:fb:fe:6b:b2:ab:d8:5d:94:6b: b2:9b:c1:b6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUdppqZo8VJPhiZ9dn+5dPGD9PcV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVF QzFFQ0U1NDAeFw0yNjAxMjYwNzAzMjdaFw0yNzAxMjUwNzA4MjdaMDMxMTAvBgNV BAMTKDY4QTMwQ0M3MDgyMDY3MzZFQzI5RUI2QkEyQ0NFQjQ4MUEwNDNFNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClff0BgnqXAjh826gv+i9Wq/dC fBU2cE6iqmb02CmWuL9SoBrJP1pZe9w9fbc+3fP62UFkimxp0w5kXoSKnSTN7mgi 1dC8dnneuJzKJwMTSVtgr4qWRhPwnDGSs0tuBxiR4obE0bz8gnlO1sJ9do4bVV3Y nhnpdtZxyOlBmPkSpUpU/fSuRTnlQYufBPvn05y+/QnnVOQHY0MwvhlZWIgbPkZk S/HPQCYCrKx3j2WymZ5imqKDh7li8ftbhOWzvyUdV07AMG4L6dr1nzKoBQVHYogI 2BChmeJvJR3Y3kR0AEVzzYUK4sYcUDf3aIA8E5pV9jD62cxVNgPxX/KLNJeFAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUaKMMxwggZzbsKetroszrSBoEPmQwHwYDVR0j BBgwFoAU/vNPsBh1CV7aVuFVR0bSpewezlQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk3MThmMDgtYmIzOS00YTA5LWE0YzAtMWY0MDI0OGE2 ZDE1LzQvRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVFQzFFQ0U1NC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GRUYzNEZCMDE4NzUwOTVFREE1NkUxNTU0 NzQ2RDJBNUVDMUVDRTU0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTcxOGYwOC1iYjM5LTRhMDktYTRjMC0xZjQwMjQ4YTZkMTUvNC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzMjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPogMA0GCSqGSIb3DQEBCwUAA4IBAQCD UO0ilSH/mhUI/qA8YR+20/+uLFfalZtUk5j7MPZ5c3gTJB+VM3XiFL7iymM+VkOS 4jpKGUw6fkacraDQPQX1s7OW1VU6UGe19z+PNb6zj8yTxwSym2DoB/Tv7tuOwQW6 Mcyw58KESfWjCpoirMtOli4Z5GzLohaBSnu3Df/EWCBDdgJ+fAQm0vLlYPai1ofo 4nZHIuSdAoWEkSckMCET/8oYLddApNbQQoXAUs9yzADEQ7UXYidQv3wIXvdJ83IK cnYByvrEL0MwYDH0hz6mRNoGF0vUMZH/xKUcSoAl8xErD3XGpcN4gA7vSXcNnUOT GZH7/muyq9hdlGuym8G2 -----END CERTIFICATE-----Generated at Mon Feb 23 06:25:06 2026 by rpki-client