$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653130303a3a2f34302d3438203d3e20323135373630.roa File: 326131343a373538333a653130303a3a2f34302d3438203d3e20323135373630.roa (raw, json) Hash identifier: r5SF/IAqPnaNOGhyHYvdkt7SQYVpGblYVakiPdSBcUI= Subject key identifier: 6B:1F:A2:12:5D:80:E9:DB:E5:BB:2D:B1:85:09:70:2A:CE:33:0A:C8 Certificate issuer: /CN=FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5 Certificate serial: 3372EDF4E70A93519EF56FE1A794BEEA4972838A Authority key identifier: FF:FD:2C:A3:C4:6B:64:07:94:6F:63:A1:A0:13:F7:DF:D6:CF:B5:D5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653130303a3a2f34302d3438203d3e20323135373630.roa Signing time: Sun 01 Feb 2026 16:27:20 +0000 ROA not before: Sun 01 Feb 2026 16:22:20 +0000 ROA not after: Sun 31 Jan 2027 16:27:20 +0000 asID: 215760 IP address blocks: 2a14:7583:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.crl rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 20:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:72:ed:f4:e7:0a:93:51:9e:f5:6f:e1:a7:94:be:ea:49:72:83:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5 Validity Not Before: Feb 1 16:22:20 2026 GMT Not After : Jan 31 16:27:20 2027 GMT Subject: CN=6B1FA2125D80E9DBE5BB2DB18509702ACE330AC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:26:18:e1:1e:21:21:98:a2:85:f4:d0:f6:e3: c8:bb:57:3f:8b:7f:a6:b4:fd:3b:03:cd:3b:74:cf: aa:e8:4e:46:b3:ae:25:30:c3:62:8d:5b:2b:4d:ab: e7:7f:2a:e7:07:85:83:c6:9d:69:4e:7c:3e:64:b0: 5e:d2:24:3c:01:9d:fe:13:67:9c:b1:2c:ab:24:17: 57:81:12:d6:e1:29:0e:5b:f3:8e:ca:9c:81:b0:cb: 33:08:50:76:93:48:f0:0d:b2:b2:78:97:4a:0c:22: 52:16:66:e7:8b:62:09:b1:90:4b:bc:2e:82:2e:ff: 61:d5:37:03:57:8b:2a:8e:13:c8:63:63:ad:ee:7b: 40:1b:b6:fd:b2:84:2c:e0:07:88:b0:d7:da:c3:23: 14:bb:ae:2f:a0:86:86:8e:15:00:1b:79:96:df:67: 9c:3e:54:b4:2a:03:c5:78:ff:7a:05:67:52:f6:9b: 77:d3:15:3f:83:80:55:b2:14:c4:a9:e8:cc:d3:b6: 88:2a:7c:84:a6:86:33:7a:3c:38:4f:40:65:77:8d: 0d:88:e1:eb:c4:fb:6a:ee:c1:6d:6b:7f:9f:3f:9c: da:50:15:db:0c:28:91:36:b2:3e:35:7a:cd:cf:7b: b8:7d:24:21:7f:be:ee:a9:9d:c0:e0:f7:09:e6:01: b5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1F:A2:12:5D:80:E9:DB:E5:BB:2D:B1:85:09:70:2A:CE:33:0A:C8 X509v3 Authority Key Identifier: keyid:FF:FD:2C:A3:C4:6B:64:07:94:6F:63:A1:A0:13:F7:DF:D6:CF:B5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653130303a3a2f34302d3438203d3e20323135373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:e100::/40 Signature Algorithm: sha256WithRSAEncryption 1f:b7:6f:96:be:be:bd:1e:36:09:94:a4:fb:33:d0:52:e9:00: c0:60:52:09:91:4f:74:7c:74:b9:1d:69:3b:03:aa:6b:3e:80: f1:0a:59:be:43:60:a1:69:ab:80:96:eb:3b:6c:f1:c6:18:be: 91:e6:d0:ec:d3:cb:85:94:5b:03:54:d5:46:7b:1f:1e:e5:6b: e5:44:46:7b:5f:b7:eb:ed:c2:74:22:b1:52:14:5b:46:06:77: a3:9a:7e:bf:da:c2:5e:a6:73:b3:59:18:50:ef:6a:13:27:9e: 98:a2:c5:cd:b6:bb:87:b2:a1:a2:42:23:30:e5:ff:3b:45:b5: c1:e2:96:2d:51:23:31:4b:69:8f:de:79:4d:fa:65:68:d1:b0: 43:80:e4:9c:58:b2:61:0f:36:22:6d:fa:18:6a:be:5b:65:53: f2:15:45:c4:fa:5a:30:59:25:ea:77:37:0c:9c:0f:41:46:dc: 76:08:3a:26:9a:7c:b5:1f:d2:60:3e:dd:bb:58:bb:74:e6:cc: c3:62:7c:15:a1:8b:64:60:2c:76:63:5c:6b:98:f5:82:6c:f3: 7f:08:81:9c:79:53:c6:49:67:76:5b:b7:19:ca:43:83:bf:d4: 8b:df:c6:e3:88:4d:51:54:9d:a5:f6:c8:f9:a2:fe:22:74:b0: 21:72:e8:7f -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUM3Lt9OcKk1Ge9W/hp5S+6klyg4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZGRDJDQTNDNDZCNjQwNzk0NkY2M0ExQTAxM0Y3REZE NkNGQjVENTAeFw0yNjAyMDExNjIyMjBaFw0yNzAxMzExNjI3MjBaMDMxMTAvBgNV BAMTKDZCMUZBMjEyNUQ4MEU5REJFNUJCMkRCMTg1MDk3MDJBQ0UzMzBBQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyJhjhHiEhmKKF9ND248i7Vz+L f6a0/TsDzTt0z6roTkazriUww2KNWytNq+d/KucHhYPGnWlOfD5ksF7SJDwBnf4T Z5yxLKskF1eBEtbhKQ5b847KnIGwyzMIUHaTSPANsrJ4l0oMIlIWZueLYgmxkEu8 LoIu/2HVNwNXiyqOE8hjY63ue0Abtv2yhCzgB4iw19rDIxS7ri+ghoaOFQAbeZbf Z5w+VLQqA8V4/3oFZ1L2m3fTFT+DgFWyFMSp6MzTtogqfISmhjN6PDhPQGV3jQ2I 4evE+2ruwW1rf58/nNpQFdsMKJE2sj41es3Pe7h9JCF/vu6pncDg9wnmAbWDAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUax+iEl2A6dvluy2xhQlwKs4zCsgwHwYDVR0j BBgwFoAU//0so8RrZAeUb2OhoBP339bPtdUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgtMjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2 ZDAzLzIvRkZGRDJDQTNDNDZCNjQwNzk0NkY2M0ExQTAxM0Y3REZENkNGQjVENS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GRkZEMkNBM0M0NkI2NDA3OTQ2RjYzQTFB MDEzRjdERkQ2Q0ZCNUQ1LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mN2Q5MjU1OC0yNThlLTRiNDQtYWQxNi04YzEwMjJjNDZkMDMvMi8zMjYxMzEz NDNhMzczNTM4MzMzYTY1MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzczNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1g+EwDQYJKoZIhvcNAQELBQADggEBAB+3 b5a+vr0eNgmUpPsz0FLpAMBgUgmRT3R8dLkdaTsDqms+gPEKWb5DYKFpq4CW6zts 8cYYvpHm0OzTy4WUWwNU1UZ7Hx7la+VERntft+vtwnQisVIUW0YGd6Oafr/awl6m c7NZGFDvahMnnpiixc22u4eyoaJCIzDl/ztFtcHili1RIzFLaY/eeU36ZWjRsEOA 5JxYsmEPNiJt+hhqvltlU/IVRcT6WjBZJep3NwycD0FG3HYIOiaafLUf0mA+3btY u3TmzMNifBWhi2RgLHZjXGuY9YJs838IgZx5U8ZJZ3ZbtxnKQ4O/1IvfxuOITVFU naX2yPmi/iJ0sCFy6H8= -----END CERTIFICATE-----Generated at Mon Feb 23 08:49:08 2026 by rpki-client