$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a636630303a3a2f34302d3438203d3e20323130343634.roa File: 326131343a373538303a636630303a3a2f34302d3438203d3e20323130343634.roa (raw, json) Hash identifier: SE8E6a3ZD0LK5ZlZINe9eNIZjVQ9JR0AtsvzDG1ugzg= Subject key identifier: 7F:FA:AA:5F:DE:F7:99:E1:35:24:EC:52:80:C1:E1:C9:84:CD:28:FF Certificate issuer: /CN=9B848163C7049122702E8D37941241ED5ADD94D9 Certificate serial: 4AD4270DA8DE70042B825766ABE1D32ED9B0C039 Authority key identifier: 9B:84:81:63:C7:04:91:22:70:2E:8D:37:94:12:41:ED:5A:DD:94:D9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a636630303a3a2f34302d3438203d3e20323130343634.roa Signing time: Tue 03 Mar 2026 05:46:28 +0000 ROA not before: Tue 03 Mar 2026 05:41:28 +0000 ROA not after: Tue 02 Mar 2027 05:46:28 +0000 asID: 210464 IP address blocks: 2a14:7580:cf00::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.crl rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Mar 2026 00:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:d4:27:0d:a8:de:70:04:2b:82:57:66:ab:e1:d3:2e:d9:b0:c0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B848163C7049122702E8D37941241ED5ADD94D9 Validity Not Before: Mar 3 05:41:28 2026 GMT Not After : Mar 2 05:46:28 2027 GMT Subject: CN=7FFAAA5FDEF799E13524EC5280C1E1C984CD28FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:29:7f:62:c2:aa:6d:a6:d2:2e:fa:11:15: 45:bc:06:8a:54:58:a7:1e:f3:7b:7c:62:ca:a1:ef: 6d:67:54:6a:83:64:47:e4:1c:7e:ce:f6:b8:f6:d9: 23:3d:07:27:c7:50:94:4d:90:ba:53:08:35:18:45: 7b:84:ef:90:26:08:97:ba:7c:10:bc:78:fb:3a:26: 6f:f5:98:c2:21:de:8c:98:ee:e9:bc:5c:f0:3b:a4: 0a:93:97:df:89:53:50:19:1f:d5:24:8c:01:03:6b: 9c:c1:f2:6b:7a:da:75:e7:a1:6d:62:de:54:84:19: 5a:c5:32:2d:e4:94:e4:8b:d6:61:bd:db:0f:8e:4c: e5:59:89:6d:13:ad:32:54:c4:fd:48:ad:21:dd:5d: ac:48:85:7a:d6:a8:4d:58:31:4c:4d:53:72:cb:cc: 53:f2:d0:48:a3:d7:b6:67:fb:1e:97:49:32:a2:b1: 09:69:10:a8:76:c7:1a:fd:16:7a:48:30:15:d2:39: 6c:c1:cb:36:9a:57:3f:7b:92:4e:e0:a3:78:a8:2a: c6:96:5b:c7:cd:9b:7b:37:d0:89:62:83:a3:fd:b8: e8:92:7a:a0:1a:22:fb:06:e3:6e:d2:0a:ea:9f:a9: 81:a2:87:72:9c:56:4c:be:72:ef:ae:bb:9f:b6:d2: 8b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FA:AA:5F:DE:F7:99:E1:35:24:EC:52:80:C1:E1:C9:84:CD:28:FF X509v3 Authority Key Identifier: keyid:9B:84:81:63:C7:04:91:22:70:2E:8D:37:94:12:41:ED:5A:DD:94:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/9B848163C7049122702E8D37941241ED5ADD94D9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/9B848163C7049122702E8D37941241ED5ADD94D9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6c43d3a6-7d13-4895-959d-419b9a6eb34b/3/326131343a373538303a636630303a3a2f34302d3438203d3e20323130343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:cf00::/40 Signature Algorithm: sha256WithRSAEncryption 8e:34:36:29:3e:5d:2f:4b:37:4d:66:e7:5e:f2:ae:db:d0:8c: 5c:06:d7:82:eb:1c:e4:87:c3:f3:ac:bc:72:cd:1b:92:a1:e2: a6:c0:dc:48:55:c5:fa:c7:1d:21:cc:c2:e3:df:de:c2:0c:33: c3:a2:2e:e1:8e:45:63:01:1b:b7:93:ce:18:51:57:e0:22:c4: 1d:29:1a:5e:3f:d0:c2:63:f6:4c:76:55:b5:57:5c:fe:5b:ab: c3:25:90:c4:ff:96:92:57:12:47:13:e2:67:c4:c4:0a:dc:64: 18:75:26:e4:6c:1b:d2:4e:e5:84:61:a0:8c:54:ff:7a:e6:2b: 13:75:ff:cc:de:17:a1:22:aa:cb:f5:f7:b9:56:27:e0:b0:2c: b6:52:f3:a1:53:90:9a:e9:b7:fb:b2:fc:29:eb:f4:15:1f:ab: 48:c5:85:a4:f4:82:6a:cd:ef:08:65:3d:e0:cb:e0:b6:0a:87: 5f:0f:27:80:59:6e:e1:6e:63:67:f0:61:04:3e:ed:19:bf:11: 9a:e9:f7:d6:71:b5:73:43:a9:80:58:57:6b:75:ef:8c:3e:f8: 61:67:5f:e2:00:1a:a9:26:85:6d:c0:93:6d:96:9b:13:09:f0: 7d:55:99:03:52:1d:21:b6:78:23:a4:83:f2:8a:e6:32:cc:bc: 43:e8:98:b1 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUStQnDajecAQrgldmq+HTLtmwwDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUI4NDgxNjNDNzA0OTEyMjcwMkU4RDM3OTQxMjQxRUQ1 QUREOTREOTAeFw0yNjAzMDMwNTQxMjhaFw0yNzAzMDIwNTQ2MjhaMDMxMTAvBgNV BAMTKDdGRkFBQTVGREVGNzk5RTEzNTI0RUM1MjgwQzFFMUM5ODRDRDI4RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC33Cl/YsKqbabSLvoRFUW8BopU WKce83t8Ysqh721nVGqDZEfkHH7O9rj22SM9ByfHUJRNkLpTCDUYRXuE75AmCJe6 fBC8ePs6Jm/1mMIh3oyY7um8XPA7pAqTl9+JU1AZH9UkjAEDa5zB8mt62nXnoW1i 3lSEGVrFMi3klOSL1mG92w+OTOVZiW0TrTJUxP1IrSHdXaxIhXrWqE1YMUxNU3LL zFPy0Eij17Zn+x6XSTKisQlpEKh2xxr9FnpIMBXSOWzByzaaVz97kk7go3ioKsaW W8fNm3s30Ilig6P9uOiSeqAaIvsG427SCuqfqYGih3KcVky+cu+uu5+20osfAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUf/qqX973meE1JOxSgMHhyYTNKP8wHwYDVR0j BBgwFoAUm4SBY8cEkSJwLo03lBJB7VrdlNkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNmM0M2QzYTYtN2QxMy00ODk1LTk1OWQtNDE5YjlhNmVi MzRiLzMvOUI4NDgxNjNDNzA0OTEyMjcwMkU4RDM3OTQxMjQxRUQ1QUREOTREOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC85Qjg0ODE2M0M3MDQ5MTIyNzAyRThEMzc5 NDEyNDFFRDVBREQ5NEQ5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82YzQzZDNhNi03ZDEzLTQ4OTUtOTU5ZC00MTliOWE2ZWIzNGIvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTYzNjYzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMwMzQzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gM8wDQYJKoZIhvcNAQELBQADggEBAI40 Nik+XS9LN01m517yrtvQjFwG14LrHOSHw/OsvHLNG5Kh4qbA3EhVxfrHHSHMwuPf 3sIMM8OiLuGORWMBG7eTzhhRV+AixB0pGl4/0MJj9kx2VbVXXP5bq8MlkMT/lpJX EkcT4mfExArcZBh1JuRsG9JO5YRhoIxU/3rmKxN1/8zeF6Eiqsv197lWJ+CwLLZS 86FTkJrpt/uy/Cnr9BUfq0jFhaT0gmrN7whlPeDL4LYKh18PJ4BZbuFuY2fwYQQ+ 7Rm/EZrp99ZxtXNDqYBYV2t174w++GFnX+IAGqkmhW3Ak22WmxMJ8H1VmQNSHSG2 eCOkg/KK5jLMvEPomLE= -----END CERTIFICATE-----Generated at Sat Mar 14 15:49:34 2026 by rpki-client