$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653161303a3a2f34382d3438203d3e2038303735.roa File: 326131343a373538333a653161303a3a2f34382d3438203d3e2038303735.roa (raw, json) Hash identifier: DtH6ggeM+QpcLTSnypx16kTF/whmDCaM1D1kKsa6LfQ= Subject key identifier: FA:F9:D0:26:9A:48:7B:F0:2C:6C:4A:4F:61:BE:8A:A4:4B:E5:68:97 Certificate issuer: /CN=FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5 Certificate serial: 3E60AFDE9336F7FAB2C9C169865CC65A3555BD43 Authority key identifier: FF:FD:2C:A3:C4:6B:64:07:94:6F:63:A1:A0:13:F7:DF:D6:CF:B5:D5 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653161303a3a2f34382d3438203d3e2038303735.roa Signing time: Thu 05 Feb 2026 22:38:44 +0000 ROA not before: Thu 05 Feb 2026 22:33:44 +0000 ROA not after: Thu 04 Feb 2027 22:38:44 +0000 asID: 8075 IP address blocks: 2a14:7583:e1a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.crl rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 23 Feb 2026 20:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:60:af:de:93:36:f7:fa:b2:c9:c1:69:86:5c:c6:5a:35:55:bd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5 Validity Not Before: Feb 5 22:33:44 2026 GMT Not After : Feb 4 22:38:44 2027 GMT Subject: CN=FAF9D0269A487BF02C6C4A4F61BE8AA44BE56897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2d:d3:d2:39:6b:45:f6:05:c5:07:ae:4a:5b: bb:79:95:67:fc:08:e7:28:17:ab:c5:46:d6:b1:44: 99:48:e3:e6:00:5d:18:a6:c9:83:ef:ca:dd:3c:3a: dd:ee:41:11:e2:eb:87:31:ce:1c:7e:34:f4:e9:99: 31:97:ab:14:ca:78:af:21:1d:78:6d:ff:a7:29:1f: 1c:1c:88:bc:69:5e:f4:6f:f3:0f:62:3d:6a:aa:c3: 61:d5:b3:3e:4a:0f:6d:69:5c:cf:0b:ed:91:0c:49: eb:41:c7:56:57:75:50:03:1b:e5:a9:8f:9a:89:20: 19:ad:fb:e1:61:f3:20:14:1e:2b:97:14:35:2b:9d: 9b:6c:43:b3:b6:e3:01:70:c0:52:b4:51:6a:2d:82: ff:65:6d:c8:b3:15:b2:e5:eb:b3:b1:5a:86:17:bf: 65:e4:0a:d8:09:61:3c:6d:74:37:58:85:c9:50:c9: 2a:0c:ef:b8:a8:a9:c3:78:c5:b0:ee:6d:34:8a:3f: da:27:21:46:c6:ab:41:21:5b:57:07:34:17:f3:60: 0a:9d:ff:a8:8e:91:1a:9e:95:f5:d7:17:3c:fa:a3: 59:4f:97:28:3b:3f:95:47:2b:73:99:83:a1:5d:b9: f3:c9:ab:a8:1c:1f:d4:c0:9e:ee:6a:07:67:9e:56: 01:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F9:D0:26:9A:48:7B:F0:2C:6C:4A:4F:61:BE:8A:A4:4B:E5:68:97 X509v3 Authority Key Identifier: keyid:FF:FD:2C:A3:C4:6B:64:07:94:6F:63:A1:A0:13:F7:DF:D6:CF:B5:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/FFFD2CA3C46B6407946F63A1A013F7DFD6CFB5D5.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/2/326131343a373538333a653161303a3a2f34382d3438203d3e2038303735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:e1a0::/48 Signature Algorithm: sha256WithRSAEncryption 2b:1d:db:6f:44:0f:86:28:2f:e6:b1:62:85:8f:56:f6:b9:de: 8e:ec:24:9f:48:d0:c5:8f:30:33:25:fb:03:66:6b:c0:25:d7: c1:db:89:1e:5a:ef:32:84:9f:69:82:1d:6b:c8:08:b3:97:08: d6:32:9e:e8:1a:bd:33:dd:ae:67:8d:f3:a3:72:32:e9:a7:dc: 6c:78:c2:5c:13:a9:e5:4f:e9:2e:54:44:21:18:c6:c0:3d:b9: 1a:fb:f1:b8:db:3c:1a:8c:71:fa:ef:4d:7b:fb:77:ff:47:84: c5:e3:97:8a:18:6e:ec:ba:77:ce:d4:4a:00:df:eb:3a:f1:26: e0:18:ec:ac:ef:79:54:d8:ba:26:af:19:8f:5e:c5:29:c3:29: 57:7b:8b:ae:c7:81:6f:3c:71:9a:f9:76:32:03:bd:22:14:f5: 1e:81:be:ea:02:0d:a2:f1:e2:57:9e:3c:03:23:34:a7:16:b6: de:66:53:13:79:a7:55:34:6a:4a:41:79:68:7a:65:19:0e:c2: 9c:1c:ca:3f:87:5f:c9:12:6f:4c:c3:15:ef:f9:d3:3b:5c:ac: 8a:b4:07:7d:93:79:b1:5b:ec:fa:fa:32:ce:89:98:27:f8:9a: 06:98:95:4d:84:8f:bc:30:9e:67:0c:65:c4:8d:51:e1:df:03: dd:33:06:3c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUPmCv3pM29/qyycFphlzGWjVVvUMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkZGRDJDQTNDNDZCNjQwNzk0NkY2M0ExQTAxM0Y3REZE NkNGQjVENTAeFw0yNjAyMDUyMjMzNDRaFw0yNzAyMDQyMjM4NDRaMDMxMTAvBgNV BAMTKEZBRjlEMDI2OUE0ODdCRjAyQzZDNEE0RjYxQkU4QUE0NEJFNTY4OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRLdPSOWtF9gXFB65KW7t5lWf8 COcoF6vFRtaxRJlI4+YAXRimyYPvyt08Ot3uQRHi64cxzhx+NPTpmTGXqxTKeK8h HXht/6cpHxwciLxpXvRv8w9iPWqqw2HVsz5KD21pXM8L7ZEMSetBx1ZXdVADG+Wp j5qJIBmt++Fh8yAUHiuXFDUrnZtsQ7O24wFwwFK0UWotgv9lbcizFbLl67OxWoYX v2XkCtgJYTxtdDdYhclQySoM77ioqcN4xbDubTSKP9onIUbGq0EhW1cHNBfzYAqd /6iOkRqelfXXFzz6o1lPlyg7P5VHK3OZg6FdufPJq6gcH9TAnu5qB2eeVgGtAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQU+vnQJppIe/AsbEpPYb6KpEvlaJcwHwYDVR0j BBgwFoAU//0so8RrZAeUb2OhoBP339bPtdUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgtMjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2 ZDAzLzIvRkZGRDJDQTNDNDZCNjQwNzk0NkY2M0ExQTAxM0Y3REZENkNGQjVENS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GRkZEMkNBM0M0NkI2NDA3OTQ2RjYzQTFB MDEzRjdERkQ2Q0ZCNUQ1LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mN2Q5MjU1OC0yNThlLTRiNDQtYWQxNi04YzEwMjJjNDZkMDMvMi8zMjYxMzEz NDNhMzczNTM4MzMzYTY1MzE2MTMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzgz MDM3MzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWD4aAwDQYJKoZIhvcNAQELBQADggEBACsd229E D4YoL+axYoWPVva53o7sJJ9I0MWPMDMl+wNma8Al18HbiR5a7zKEn2mCHWvICLOX CNYynugavTPdrmeN86NyMumn3Gx4wlwTqeVP6S5URCEYxsA9uRr78bjbPBqMcfrv TXv7d/9HhMXjl4oYbuy6d87USgDf6zrxJuAY7KzveVTYuiavGY9exSnDKVd7i67H gW88cZr5djIDvSIU9R6BvuoCDaLx4leePAMjNKcWtt5mUxN5p1U0akpBeWh6ZRkO wpwcyj+HX8kSb0zDFe/50ztcrIq0B32TebFb7Pr6Ms6JmCf4mgaYlU2Ej7wwnmcM ZcSNUeHfA90zBjw= -----END CERTIFICATE-----Generated at Mon Feb 23 11:37:23 2026 by rpki-client