$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a3339303a3a2f34382d3438203d3e20313331363330.roa File: 326130663a383563313a3339303a3a2f34382d3438203d3e20313331363330.roa (raw, json) Hash identifier: SDgvWVR9BK4ArLiN2y0FdP04j29HfEBVHHfa70zlSZU= Subject key identifier: 88:4A:AC:4B:B1:17:E2:29:F8:B7:65:29:01:A7:5D:65:07:02:28:62 Certificate issuer: /CN=A4A082EAE8EF48C7B407C40E742479EADD862089 Certificate serial: 7D77BA69250B29959D52E99279B33F6E2AD930EF Authority key identifier: A4:A0:82:EA:E8:EF:48:C7:B4:07:C4:0E:74:24:79:EA:DD:86:20:89 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a3339303a3a2f34382d3438203d3e20313331363330.roa Signing time: Wed 04 Mar 2026 06:15:58 +0000 ROA not before: Wed 04 Mar 2026 06:10:58 +0000 ROA not after: Wed 03 Mar 2027 06:15:58 +0000 asID: 131630 IP address blocks: 2a0f:85c1:390::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Mar 2026 21:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:77:ba:69:25:0b:29:95:9d:52:e9:92:79:b3:3f:6e:2a:d9:30:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A4A082EAE8EF48C7B407C40E742479EADD862089 Validity Not Before: Mar 4 06:10:58 2026 GMT Not After : Mar 3 06:15:58 2027 GMT Subject: CN=884AAC4BB117E229F8B7652901A75D6507022862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:fa:60:d1:f4:34:19:31:06:b0:43:9d:fc:38: 20:f2:55:e5:85:94:85:4a:68:08:79:87:00:9b:0d: c9:fb:ea:7f:a7:ae:88:b2:18:79:d7:61:f9:81:2d: 40:54:a5:30:09:e7:29:b6:f9:06:46:b9:06:91:19: 28:52:6e:22:0f:98:d1:bf:6b:22:a9:44:16:cc:93: 2e:bb:f4:49:50:f2:14:0f:83:eb:31:20:19:81:2d: cb:21:da:7a:e5:f2:35:1a:b8:46:3c:1f:37:4b:e6: ac:92:ca:a5:3a:cf:1e:ea:48:1a:45:92:18:d5:db: bf:21:8a:2b:88:c5:b7:97:ac:10:43:5f:76:9d:67: 4e:c9:50:ab:9d:71:88:41:21:c7:ac:ed:57:1a:50: be:cb:79:7a:25:8e:aa:b8:94:40:c6:f4:49:bd:b6: 4e:99:49:f1:9d:f0:41:61:56:57:64:4f:b9:dc:97: 55:c2:a8:74:83:15:29:91:5c:3a:41:fa:6f:10:ff: cc:08:b7:0c:12:bd:8b:45:d0:a3:76:b8:c2:1b:ca: 6d:46:8c:c2:9a:7f:34:c7:f2:54:cc:59:7e:04:d5: a8:01:cc:88:bc:01:b9:69:ea:ec:3e:5f:0f:bf:8c: 67:56:d4:aa:0b:6f:2c:1c:69:ed:4d:10:6b:1c:6a: 9a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4A:AC:4B:B1:17:E2:29:F8:B7:65:29:01:A7:5D:65:07:02:28:62 X509v3 Authority Key Identifier: keyid:A4:A0:82:EA:E8:EF:48:C7:B4:07:C4:0E:74:24:79:EA:DD:86:20:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/A4A082EAE8EF48C7B407C40E742479EADD862089.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/A4A082EAE8EF48C7B407C40E742479EADD862089.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/1/326130663a383563313a3339303a3a2f34382d3438203d3e20313331363330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:390::/48 Signature Algorithm: sha256WithRSAEncryption 50:5f:98:5e:35:c8:cf:e9:bf:4f:34:0d:07:f4:1c:16:a4:6e: a7:46:c2:11:00:a5:ca:0c:a8:c2:91:a1:1c:4e:d2:44:ad:c9: c4:df:c6:7a:a5:5d:42:45:8c:20:e0:a1:bb:b7:be:3b:ae:2b: 90:54:af:5a:f1:5e:22:a7:62:2e:da:be:19:72:9a:3e:f4:9f: 32:e2:c9:e5:cc:ef:eb:3a:16:65:af:03:de:7d:3c:48:2b:fe: ec:c5:04:82:26:6f:01:2e:83:7a:14:30:ef:82:75:25:02:c2: d3:54:7c:7e:56:55:97:61:61:ef:21:11:df:98:b0:95:af:eb: 85:82:20:01:98:a4:d1:af:70:d2:44:2c:72:8f:9a:36:3a:30: 1c:29:77:85:74:93:af:7d:5e:9b:c7:2d:ce:3a:7b:40:63:47: d2:7a:e6:bf:94:47:fe:58:eb:30:83:11:dc:68:c5:dd:92:42: a7:5c:d1:ba:84:f8:d1:ab:1c:f0:0d:da:c8:d6:e6:25:77:c3: 08:9a:69:2d:a9:c1:68:c7:9b:44:e9:b2:7a:d3:94:a2:08:17: c9:c6:5a:ce:ea:2d:fe:51:3d:3f:92:e0:0e:8a:a8:4c:46:a8: c7:98:c4:37:02:14:5f:af:a4:46:4a:79:09:b4:a4:06:17:80: 9e:96:b5:95 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUfXe6aSULKZWdUumSebM/birZMO8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTRBMDgyRUFFOEVGNDhDN0I0MDdDNDBFNzQyNDc5RUFE RDg2MjA4OTAeFw0yNjAzMDQwNjEwNThaFw0yNzAzMDMwNjE1NThaMDMxMTAvBgNV BAMTKDg4NEFBQzRCQjExN0UyMjlGOEI3NjUyOTAxQTc1RDY1MDcwMjI4NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc+mDR9DQZMQawQ538OCDyVeWF lIVKaAh5hwCbDcn76n+nroiyGHnXYfmBLUBUpTAJ5ym2+QZGuQaRGShSbiIPmNG/ ayKpRBbMky679ElQ8hQPg+sxIBmBLcsh2nrl8jUauEY8HzdL5qySyqU6zx7qSBpF khjV278hiiuIxbeXrBBDX3adZ07JUKudcYhBIces7VcaUL7LeXoljqq4lEDG9Em9 tk6ZSfGd8EFhVldkT7ncl1XCqHSDFSmRXDpB+m8Q/8wItwwSvYtF0KN2uMIbym1G jMKafzTH8lTMWX4E1agBzIi8Ablp6uw+Xw+/jGdW1KoLbywcae1NEGscapoFAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUiEqsS7EX4in4t2UpAaddZQcCKGIwHwYDVR0j BBgwFoAUpKCC6ujvSMe0B8QOdCR56t2GIIkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzEvQTRBMDgyRUFFOEVGNDhDN0I0MDdDNDBFNzQyNDc5RUFERDg2MjA4OS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC9BNEEwODJFQUU4RUY0OEM3QjQwN0M0MEU3 NDI0NzlFQUREODYyMDg5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTMzMzkzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMz MTM2MzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEDkDANBgkqhkiG9w0BAQsFAAOCAQEAUF+Y XjXIz+m/TzQNB/QcFqRup0bCEQClygyowpGhHE7SRK3JxN/GeqVdQkWMIOChu7e+ O64rkFSvWvFeIqdiLtq+GXKaPvSfMuLJ5czv6zoWZa8D3n08SCv+7MUEgiZvAS6D ehQw74J1JQLC01R8flZVl2Fh7yER35iwla/rhYIgAZik0a9w0kQsco+aNjowHCl3 hXSTr31em8ctzjp7QGNH0nrmv5RH/ljrMIMR3GjF3ZJCp1zRuoT40asc8A3ayNbm JXfDCJppLanBaMebROmyetOUoggXycZazuot/lE9P5LgDoqoTEaox5jENwIUX6+k Rkp5CbSkBheAnpa1lQ== -----END CERTIFICATE-----Generated at Sat Mar 7 11:21:13 2026 by rpki-client