$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666133303a3a2f34342d3438203d3e20323134333434.roa File: 326131343a373538303a666133303a3a2f34342d3438203d3e20323134333434.roa (raw, json) Hash identifier: lZi2rz69yJ2BC+doYbaqrHrJGm4sWCLa8BxeQ92G0Hs= Subject key identifier: 2D:60:3A:A8:24:12:A9:2B:AD:EF:0D:36:99:39:FF:3C:F8:70:27:CC Certificate issuer: /CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Certificate serial: 1FF4F1280E26EB32782881C2259AF2456DB1BE3A Authority key identifier: FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666133303a3a2f34342d3438203d3e20323134333434.roa Signing time: Mon 26 Jan 2026 07:08:39 +0000 ROA not before: Mon 26 Jan 2026 07:03:39 +0000 ROA not after: Mon 25 Jan 2027 07:08:39 +0000 asID: 214344 IP address blocks: 2a14:7580:fa30::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 21:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:f4:f1:28:0e:26:eb:32:78:28:81:c2:25:9a:f2:45:6d:b1:be:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FEF34FB01875095EDA56E1554746D2A5EC1ECE54 Validity Not Before: Jan 26 07:03:39 2026 GMT Not After : Jan 25 07:08:39 2027 GMT Subject: CN=2D603AA82412A92BADEF0D369939FF3CF87027CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c4:1f:98:92:b5:5a:d2:6a:be:01:b0:67:43: 65:52:4e:02:c7:65:63:a3:9d:e7:22:b2:72:8a:c4: 5d:ce:2a:95:19:f9:81:8f:20:29:c3:92:7c:28:1e: 6c:52:64:5b:dc:77:bb:24:b8:f4:39:88:49:a6:9f: 47:c3:84:27:0e:27:b6:70:3f:bc:5b:bf:ad:61:7e: b0:0a:93:e1:63:35:1c:e2:97:36:09:89:ac:a6:59: f3:4d:3b:23:8a:08:a7:23:8e:83:6f:1b:c5:ed:09: a4:f8:3e:44:50:a0:0a:cf:f8:58:d0:d7:28:71:10: 5b:51:9c:ae:a4:15:7a:97:eb:48:9b:52:6c:04:2b: 5e:bc:13:47:1d:44:9c:f7:83:d0:71:2b:94:d2:2a: 94:64:a0:02:c0:01:c8:50:93:6e:fe:2a:6f:1b:bd: fb:d9:02:41:23:e9:27:1a:05:6e:8c:61:b3:9a:1b: ff:22:4c:df:c7:f8:fe:b2:8c:f6:cb:b8:3e:08:a6: 3a:11:0c:74:4c:f8:b2:9d:ae:05:01:e1:62:e4:29: 14:76:63:f1:2a:78:94:d1:16:d6:a1:7c:c7:91:b2: 28:c1:1c:a4:06:e8:42:10:97:b5:5c:57:93:08:20: 02:ea:c8:a8:97:1a:5a:cb:6a:3c:3c:8d:87:48:ea: ca:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:60:3A:A8:24:12:A9:2B:AD:EF:0D:36:99:39:FF:3C:F8:70:27:CC X509v3 Authority Key Identifier: keyid:FE:F3:4F:B0:18:75:09:5E:DA:56:E1:55:47:46:D2:A5:EC:1E:CE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FEF34FB01875095EDA56E1554746D2A5EC1ECE54.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09718f08-bb39-4a09-a4c0-1f40248a6d15/4/326131343a373538303a666133303a3a2f34342d3438203d3e20323134333434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fa30::/44 Signature Algorithm: sha256WithRSAEncryption 0d:68:9a:97:60:05:07:a0:19:0f:16:d3:c6:60:a6:23:96:43: 52:04:27:de:b1:7f:f1:0f:58:4c:f9:a5:e7:5d:86:ab:01:5c: bf:e1:cd:6c:84:33:1b:0f:99:e0:e0:a7:b1:92:d0:0b:34:48: ca:eb:48:b1:56:e0:cc:d9:5d:3b:b5:e0:4c:29:dd:33:1b:dc: 33:90:ff:3d:f9:23:86:3c:3a:7f:57:dc:cc:3b:eb:01:6f:b6: 23:76:28:53:dd:ef:41:6e:52:39:6d:b9:e9:f3:d8:48:4e:91: 5f:6b:36:fc:27:22:f4:53:27:b8:22:f8:e9:72:a4:ca:5a:10: fb:fb:17:f5:25:23:9b:ce:8d:ca:4e:96:9a:ad:b5:e9:04:63: 3e:37:c6:e7:0d:b2:f0:cc:33:97:34:33:b7:0b:52:43:60:5e: 54:34:6c:89:0f:bf:8b:b4:de:dd:a2:b1:14:c2:18:18:5f:02: f0:c4:2e:32:ab:93:5f:39:db:7c:70:0f:f4:2b:7a:8a:b1:e2: 23:16:98:35:86:93:4a:a8:25:d2:26:89:29:af:b9:03:29:6d: b6:2f:72:42:48:81:e3:01:9d:b2:03:e2:31:25:05:b1:e6:2d: 81:e7:d9:c6:cb:27:a4:90:f7:8c:aa:ca:f6:ce:ec:7d:f2:51: 2d:d0:21:25 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUH/TxKA4m6zJ4KIHCJZryRW2xvjowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVF QzFFQ0U1NDAeFw0yNjAxMjYwNzAzMzlaFw0yNzAxMjUwNzA4MzlaMDMxMTAvBgNV BAMTKDJENjAzQUE4MjQxMkE5MkJBREVGMEQzNjk5MzlGRjNDRjg3MDI3Q0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcxB+YkrVa0mq+AbBnQ2VSTgLH ZWOjnecisnKKxF3OKpUZ+YGPICnDknwoHmxSZFvcd7skuPQ5iEmmn0fDhCcOJ7Zw P7xbv61hfrAKk+FjNRzilzYJiaymWfNNOyOKCKcjjoNvG8XtCaT4PkRQoArP+FjQ 1yhxEFtRnK6kFXqX60ibUmwEK168E0cdRJz3g9BxK5TSKpRkoALAAchQk27+Km8b vfvZAkEj6ScaBW6MYbOaG/8iTN/H+P6yjPbLuD4IpjoRDHRM+LKdrgUB4WLkKRR2 Y/EqeJTRFtahfMeRsijBHKQG6EIQl7VcV5MIIALqyKiXGlrLajw8jYdI6sofAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQULWA6qCQSqSut7w02mTn/PPhwJ8wwHwYDVR0j BBgwFoAU/vNPsBh1CV7aVuFVR0bSpewezlQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDk3MThmMDgtYmIzOS00YTA5LWE0YzAtMWY0MDI0OGE2 ZDE1LzQvRkVGMzRGQjAxODc1MDk1RURBNTZFMTU1NDc0NkQyQTVFQzFFQ0U1NC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GRUYzNEZCMDE4NzUwOTVFREE1NkUxNTU0 NzQ2RDJBNUVDMUVDRTU0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOTcxOGYwOC1iYjM5LTRhMDktYTRjMC0xZjQwMjQ4YTZkMTUvNC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjEzMzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzMzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gPowMA0GCSqGSIb3DQEBCwUAA4IBAQAN aJqXYAUHoBkPFtPGYKYjlkNSBCfesX/xD1hM+aXnXYarAVy/4c1shDMbD5ng4Kex ktALNEjK60ixVuDM2V07teBMKd0zG9wzkP89+SOGPDp/V9zMO+sBb7YjdihT3e9B blI5bbnp89hITpFfazb8JyL0Uye4IvjpcqTKWhD7+xf1JSObzo3KTpaarbXpBGM+ N8bnDbLwzDOXNDO3C1JDYF5UNGyJD7+LtN7dorEUwhgYXwLwxC4yq5NfOdt8cA/0 K3qKseIjFpg1hpNKqCXSJokpr7kDKW22L3JCSIHjAZ2yA+IxJQWx5i2B59nGyyek kPeMqsr2zux98lEt0CEl -----END CERTIFICATE-----Generated at Mon Feb 23 06:25:02 2026 by rpki-client