$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa File: 326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa (raw, json) Hash identifier: c4XzPukkzKV+FHVuebz0bc6eIqhJ7TnmT9Q2167h39Y= Subject key identifier: 6A:C9:52:5B:6B:F2:9B:C5:AB:A7:99:0B:E3:AB:AC:74:19:E2:52:0D Certificate issuer: /CN=627B387604DE44D6006F0E7567E2D07EE82CF6BD Certificate serial: 0436CF485E4635DC950EBBE9EB678A90A7E01694 Authority key identifier: 62:7B:38:76:04:DE:44:D6:00:6F:0E:75:67:E2:D0:7E:E8:2C:F6:BD Authority info access: rsync://krill.47272.net/repo/HYEHOST/5/627B387604DE44D6006F0E7567E2D07EE82CF6BD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa Signing time: Wed 11 Feb 2026 15:37:29 +0000 ROA not before: Wed 11 Feb 2026 15:32:29 +0000 ROA not after: Wed 10 Feb 2027 15:37:29 +0000 asID: 214510 IP address blocks: 2a0a:6044:7d20::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/627B387604DE44D6006F0E7567E2D07EE82CF6BD.crl rsync://rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/627B387604DE44D6006F0E7567E2D07EE82CF6BD.mft rsync://krill.47272.net/repo/HYEHOST/5/627B387604DE44D6006F0E7567E2D07EE82CF6BD.cer rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.crl rsync://krill.47272.net/repo/HYEHOST/5/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/C3CF41898936CB9C573DB1EAAB94C6E669951FD7.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 19:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:36:cf:48:5e:46:35:dc:95:0e:bb:e9:eb:67:8a:90:a7:e0:16:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627B387604DE44D6006F0E7567E2D07EE82CF6BD Validity Not Before: Feb 11 15:32:29 2026 GMT Not After : Feb 10 15:37:29 2027 GMT Subject: CN=6AC9525B6BF29BC5ABA7990BE3ABAC7419E2520D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:82:6d:a3:ac:4c:82:49:90:d8:ad:50:58:61: d5:f4:34:b6:6c:61:93:3b:fe:57:75:e1:89:b7:dd: 5c:99:79:52:3a:fe:a0:6c:db:63:99:18:9b:e8:5d: 02:49:58:f0:bb:52:c8:50:2b:d1:b6:bf:3b:31:d8: 52:6e:c8:25:0f:5e:96:8e:19:21:ef:f0:ea:d0:61: 41:fd:ec:41:cf:d5:32:ff:d8:67:c8:79:cc:28:19: 89:d6:45:25:89:87:54:7d:fd:e7:1e:31:82:6a:18: 5f:11:c8:ac:5c:5a:1c:91:da:ec:26:82:8f:b2:0f: cc:36:5b:cd:99:38:f1:27:ef:0d:2b:e0:da:37:f8: cf:72:ee:03:1c:74:2e:83:77:b8:95:8b:da:85:09: 6c:9d:5f:09:0e:9e:33:33:33:d3:ed:b5:3c:3e:3a: 26:d8:e5:01:cd:ea:14:18:71:ba:f7:dd:a4:5a:c7: 94:f6:6c:dd:8b:ca:4f:19:c3:e0:be:cd:69:bd:97: d3:64:d8:e7:b3:29:c9:26:5e:45:ad:8d:5e:a5:5c: 34:48:82:f7:f7:76:f7:e7:01:50:26:f1:9f:a1:28: 42:f1:3a:e7:10:15:3f:ac:14:96:31:55:07:aa:06: d5:d5:95:d5:12:62:3e:aa:2b:e6:33:82:79:09:0a: e7:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C9:52:5B:6B:F2:9B:C5:AB:A7:99:0B:E3:AB:AC:74:19:E2:52:0D X509v3 Authority Key Identifier: keyid:62:7B:38:76:04:DE:44:D6:00:6F:0E:75:67:E2:D0:7E:E8:2C:F6:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/627B387604DE44D6006F0E7567E2D07EE82CF6BD.crl Authority Information Access: CA Issuers - URI:rsync://krill.47272.net/repo/HYEHOST/5/627B387604DE44D6006F0E7567E2D07EE82CF6BD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4bfa7a9f-28d3-45b0-a839-a57519ecaeae/2/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7d20::/48 Signature Algorithm: sha256WithRSAEncryption 60:e5:07:9f:f7:c0:f0:ca:0c:43:cb:6c:e8:4b:cd:2b:2a:6a: 66:09:c7:05:a4:29:f2:6d:f1:56:ca:ef:d0:b4:f4:65:f9:45: 1d:f6:5f:d1:3e:ca:b4:15:53:fb:ba:93:6b:c8:07:93:9e:1e: 22:bf:6c:8b:0e:70:bf:b8:8a:b6:65:2e:5a:9f:f7:98:1a:c1: 98:69:28:ca:17:8e:2e:5e:a0:9c:79:7e:8e:d5:31:07:3e:ea: de:b8:d2:d9:54:cc:2a:33:b6:7f:95:1a:29:6d:c3:64:31:8e: 61:f3:a4:37:3e:e0:9f:19:f5:0f:89:ec:9d:5e:e4:56:3f:4e: 0d:e2:13:48:c5:58:11:26:97:c4:90:8b:af:1f:b2:46:c8:9e: 13:1b:13:7a:78:29:ae:32:b8:e3:49:0c:4f:a9:44:c3:17:cf: 3a:82:8a:70:8e:e8:af:ce:fd:19:95:5e:11:fc:01:d6:7d:4b: 3f:43:46:9c:ca:4b:9e:cd:b3:78:d6:bd:c0:f5:15:dc:c1:4a: 1b:2b:58:2e:10:a3:8b:93:39:06:c3:49:03:ca:6e:05:2d:15: 50:af:79:a5:4f:dd:2d:b2:16:ad:d3:7d:0a:06:fc:09:93:fa: dd:2b:6b:8f:4b:6e:cc:a0:9c:16:a0:58:7a:2e:6d:15:42:12: b6:a6:b2:f9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgIUBDbPSF5GNdyVDrvp62eKkKfgFpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI3QjM4NzYwNERFNDRENjAwNkYwRTc1NjdFMkQwN0VF ODJDRjZCRDAeFw0yNjAyMTExNTMyMjlaFw0yNzAyMTAxNTM3MjlaMDMxMTAvBgNV BAMTKDZBQzk1MjVCNkJGMjlCQzVBQkE3OTkwQkUzQUJBQzc0MTlFMjUyMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYgm2jrEyCSZDYrVBYYdX0NLZs YZM7/ld14Ym33VyZeVI6/qBs22OZGJvoXQJJWPC7UshQK9G2vzsx2FJuyCUPXpaO GSHv8OrQYUH97EHP1TL/2GfIecwoGYnWRSWJh1R9/eceMYJqGF8RyKxcWhyR2uwm go+yD8w2W82ZOPEn7w0r4No3+M9y7gMcdC6Dd7iVi9qFCWydXwkOnjMzM9PttTw+ OibY5QHN6hQYcbr33aRax5T2bN2Lyk8Zw+C+zWm9l9Nk2OezKckmXkWtjV6lXDRI gvf3dvfnAVAm8Z+hKELxOucQFT+sFJYxVQeqBtXVldUSYj6qK+YzgnkJCuefAgMB AAGjggJVMIICUTAdBgNVHQ4EFgQUaslSW2vym8Wrp5kL46usdBniUg0wHwYDVR0j BBgwFoAUYns4dgTeRNYAbw51Z+LQfugs9r0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNGJmYTdhOWYtMjhkMy00NWIwLWE4MzktYTU3NTE5ZWNh ZWFlLzIvNjI3QjM4NzYwNERFNDRENjAwNkYwRTc1NjdFMkQwN0VFODJDRjZCRC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL2tyaWxsLjQ3 MjcyLm5ldC9yZXBvL0hZRUhPU1QvNS82MjdCMzg3NjA0REU0NEQ2MDA2RjBFNzU2 N0UyRDA3RUU4MkNGNkJELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80YmZhN2E5Zi0yOGQzLTQ1YjAtYTgzOS1hNTc1MTllY2FlYWUvMi8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjQzMjMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRH0gMA0GCSqGSIb3DQEBCwUAA4IBAQBg 5Qef98DwygxDy2zoS80rKmpmCccFpCnybfFWyu/QtPRl+UUd9l/RPsq0FVP7upNr yAeTnh4iv2yLDnC/uIq2ZS5an/eYGsGYaSjKF44uXqCceX6O1TEHPureuNLZVMwq M7Z/lRopbcNkMY5h86Q3PuCfGfUPieydXuRWP04N4hNIxVgRJpfEkIuvH7JGyJ4T GxN6eCmuMrjjSQxPqUTDF886gopwjuivzv0ZlV4R/AHWfUs/Q0acykuezbN41r3A 9RXcwUobK1guEKOLkzkGw0kDym4FLRVQr3mlT90tshat030KBvwJk/rdK2uPS27M oJwWoFh6Lm0VQhK2prL5 -----END CERTIFICATE-----Generated at Mon Feb 23 08:48:48 2026 by rpki-client