$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330323a3a2f34382d3438203d3e20313331363330.roa File: 326131343a373538303a663330323a3a2f34382d3438203d3e20313331363330.roa (raw, json) Hash identifier: MeCayOpSasZJW9KPaNccLrcTIqzUFwb3fqzs952iS/s= Subject key identifier: 35:B7:06:10:BE:77:A5:28:E9:C5:FC:45:39:D4:85:99:8D:15:8D:0F Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 40E51B67CA64716ADEE263E6C5DB470A0E71A239 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330323a3a2f34382d3438203d3e20313331363330.roa Signing time: Fri 06 Mar 2026 18:33:16 +0000 ROA not before: Fri 06 Mar 2026 18:28:16 +0000 ROA not after: Fri 05 Mar 2027 18:33:16 +0000 asID: 131630 IP address blocks: 2a14:7580:f302::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Mar 2026 20:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e5:1b:67:ca:64:71:6a:de:e2:63:e6:c5:db:47:0a:0e:71:a2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Mar 6 18:28:16 2026 GMT Not After : Mar 5 18:33:16 2027 GMT Subject: CN=35B70610BE77A528E9C5FC4539D485998D158D0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:dc:f2:80:65:a3:8e:a8:4c:03:85:56:57:a1: 7f:ca:ee:2a:a5:ad:12:51:22:cd:9f:55:1e:a8:55: 75:83:ef:59:55:9b:81:18:35:b4:e8:22:4f:97:e6: 6f:cf:6b:6b:90:18:61:64:cd:96:d1:ac:e3:ca:f4: ca:2f:14:da:e8:22:b7:58:15:f5:02:48:8e:20:44: 3e:5a:6e:1a:0e:9e:76:1e:ea:6d:de:f9:9e:c9:e9: 09:0a:c5:3e:5e:11:09:ac:ec:3c:05:30:ac:5f:f9: 0a:e7:83:d5:f3:11:94:30:18:05:1c:45:22:7e:fd: d0:14:62:e9:a6:80:19:a3:58:48:dd:d6:21:6e:2d: ea:10:87:61:13:b0:d1:14:0b:39:7f:0c:e2:84:57: d5:78:b8:77:76:6e:6d:40:7b:12:2e:20:36:c8:3a: 8e:70:20:95:6f:48:ef:53:a1:af:d4:10:06:3c:ec: 28:be:d1:ef:ce:59:e6:fc:47:93:74:25:b9:fd:ee: db:c3:e7:11:da:26:69:ab:be:08:43:53:60:3e:15: 0b:ca:bd:78:19:de:a1:d3:75:70:88:7b:af:00:14: e8:c3:d1:ce:51:53:c3:61:09:ce:3d:c2:82:4d:3e: 37:58:6c:5f:81:0d:9b:9b:51:c6:ea:d9:5e:8e:77: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B7:06:10:BE:77:A5:28:E9:C5:FC:45:39:D4:85:99:8D:15:8D:0F X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330323a3a2f34382d3438203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:f302::/48 Signature Algorithm: sha256WithRSAEncryption 10:19:4d:c3:45:4c:0f:46:c1:72:64:31:b2:0b:4b:db:ad:23: 2c:9b:30:d7:e2:d2:00:07:05:4a:c5:27:d1:0a:e0:af:69:f2: cd:d4:d4:f2:c0:93:0b:92:ca:f2:e1:6d:ec:94:a9:15:1d:c1: c5:21:ce:11:1c:df:88:2f:8e:6f:02:cc:07:b9:5d:b0:18:df: 63:04:a3:af:12:59:b4:0a:8f:d7:8c:20:7e:74:5b:95:ad:cd: 35:b2:2e:2a:a5:66:94:e7:31:5a:20:6a:6a:21:a5:be:0a:d7: d2:32:85:fa:9b:a3:9a:55:db:ad:33:c9:cb:9a:d1:29:6b:ec: d9:96:34:24:ed:19:70:3d:a2:e5:5f:f7:bb:28:b7:19:fe:56: 3e:8f:2e:2b:fa:46:5a:84:a1:e4:0c:e6:c6:07:ec:8b:e9:ea: cd:6b:41:05:e3:c7:c4:44:84:a9:58:0d:ea:60:a3:1e:0b:dd: cf:46:c7:cd:88:c7:ba:3c:9a:d3:0b:53:75:68:54:b1:57:a9: 94:d3:a7:e9:7d:6c:45:bc:8c:e2:10:77:f7:a9:05:c0:65:39: 9c:89:82:71:c5:53:fc:c0:a6:8b:5f:a7:18:2a:bf:e3:31:83: 8e:8a:6e:06:14:fc:8c:5c:9a:1d:5b:d7:23:b0:3d:50:46:08: 94:06:98:8e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQOUbZ8pkcWre4mPmxdtHCg5xojkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNjAzMDYxODI4MTZaFw0yNzAzMDUxODMzMTZaMDMxMTAvBgNV BAMTKDM1QjcwNjEwQkU3N0E1MjhFOUM1RkM0NTM5RDQ4NTk5OEQxNThEMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx3PKAZaOOqEwDhVZXoX/K7iql rRJRIs2fVR6oVXWD71lVm4EYNbToIk+X5m/Pa2uQGGFkzZbRrOPK9MovFNroIrdY FfUCSI4gRD5abhoOnnYe6m3e+Z7J6QkKxT5eEQms7DwFMKxf+Qrng9XzEZQwGAUc RSJ+/dAUYummgBmjWEjd1iFuLeoQh2ETsNEUCzl/DOKEV9V4uHd2bm1AexIuIDbI Oo5wIJVvSO9Toa/UEAY87Ci+0e/OWeb8R5N0Jbn97tvD5xHaJmmrvghDU2A+FQvK vXgZ3qHTdXCIe68AFOjD0c5RU8NhCc49woJNPjdYbF+BDZubUcbq2V6Od5QTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUNbcGEL53pSjpxfxFOdSFmY0VjQ8wHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2MzMzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz MzMxMzYzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gPMCMA0GCSqGSIb3DQEBCwUAA4IBAQAQ GU3DRUwPRsFyZDGyC0vbrSMsmzDX4tIABwVKxSfRCuCvafLN1NTywJMLksry4W3s lKkVHcHFIc4RHN+IL45vAswHuV2wGN9jBKOvElm0Co/XjCB+dFuVrc01si4qpWaU 5zFaIGpqIaW+CtfSMoX6m6OaVdutM8nLmtEpa+zZljQk7RlwPaLlX/e7KLcZ/lY+ jy4r+kZahKHkDObGB+yL6erNa0EF48fERISpWA3qYKMeC93PRsfNiMe6PJrTC1N1 aFSxV6mU06fpfWxFvIziEHf3qQXAZTmciYJxxVP8wKaLX6cYKr/jMYOOim4GFPyM XJodW9cjsD1QRgiUBpiO -----END CERTIFICATE-----Generated at Sat Mar 7 11:14:52 2026 by rpki-client