$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa File: 326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa (raw, json) Hash identifier: Ou/BuV6DNjxZqmppmI1GfTQOuzQIj3w4635LcGfFjnQ= Subject key identifier: 44:7A:AE:52:3A:6A:1B:58:01:03:EC:D7:2F:21:B2:B4:58:2D:79:4B Certificate issuer: /CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Certificate serial: 3DBB9A1F9E6162681EF795A5D5080F07B27883C9 Authority key identifier: D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa Signing time: Fri 13 Mar 2026 07:33:42 +0000 ROA not before: Fri 13 Mar 2026 07:28:42 +0000 ROA not after: Fri 12 Mar 2027 07:33:42 +0000 asID: 203843 IP address blocks: 2a14:7580:901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 14:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:bb:9a:1f:9e:61:62:68:1e:f7:95:a5:d5:08:0f:07:b2:78:83:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Validity Not Before: Mar 13 07:28:42 2026 GMT Not After : Mar 12 07:33:42 2027 GMT Subject: CN=447AAE523A6A1B580103ECD72F21B2B4582D794B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9b:03:0d:17:cf:6a:9c:cc:b4:5c:02:63:9d: 87:bd:4f:9b:ee:47:1b:ce:a4:86:98:a4:6f:ba:a4: 56:46:d3:84:ef:82:9c:1a:54:da:49:ed:25:96:a0: 5b:b4:dd:a1:4e:2a:0e:30:fe:00:47:86:56:6f:ef: e8:01:f6:0a:9d:72:4f:37:1e:61:78:af:34:fd:1b: 03:01:1e:ee:ce:d2:4b:53:12:c5:20:ce:9b:8a:e9: 8e:3a:a5:1a:7b:87:e6:5e:08:da:1f:9c:bf:b0:05: e9:da:0e:00:65:93:67:a6:7a:64:19:a6:4f:8a:13: c6:37:b5:93:8b:fb:8c:c5:1a:77:64:c5:77:20:8a: ca:a6:84:40:a9:03:79:9f:4d:f2:a6:df:9b:54:21: c5:52:1d:61:4b:4b:30:a0:0d:f7:03:35:af:e1:10: 8c:11:ae:a0:31:c4:ce:be:72:a9:f2:2d:87:5a:de: 55:f0:27:13:8f:4d:81:2b:80:62:f7:52:c1:bc:63: 90:cf:e7:4f:58:fc:37:25:d5:60:a2:c8:2b:e1:f1: fe:47:20:f6:77:9f:b8:1d:e4:2b:98:de:be:52:3f: e4:36:8a:f2:06:38:bc:02:c4:1a:95:8a:13:c2:d4: 4a:b7:77:43:6f:f1:94:8e:30:99:3c:90:d8:08:b3: bd:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:7A:AE:52:3A:6A:1B:58:01:03:EC:D7:2F:21:B2:B4:58:2D:79:4B X509v3 Authority Key Identifier: keyid:D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930313a3a2f34382d3438203d3e20323033383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:901::/48 Signature Algorithm: sha256WithRSAEncryption 7f:0c:06:8c:fe:8e:43:8a:a4:18:fb:4c:c5:6b:e0:a1:3a:22: 37:59:19:1a:8c:92:91:02:ac:b6:7b:38:74:49:da:d5:01:01: 80:dc:58:77:45:46:c8:e4:ce:5b:ac:fe:06:34:d3:b6:78:6e: 4e:91:d2:b4:9f:f8:cb:c0:6c:99:c8:09:19:44:90:a3:a3:f2: 2a:25:88:e4:d4:57:5e:45:60:f4:69:5a:75:00:11:e8:b7:80: 96:de:75:38:5f:c2:3f:89:c4:38:ae:28:59:eb:8d:e5:78:e8: e1:25:21:ba:05:72:66:4f:39:b8:ea:ab:0b:57:1f:e3:78:8c: f3:e9:9d:f4:c9:7d:6b:78:6c:d2:f1:ac:e6:7e:d9:73:08:7c: 3e:02:24:ef:00:11:b6:72:78:08:ca:db:94:cd:49:9d:41:07: f0:6b:4b:2e:44:a0:e3:f3:f1:fb:64:9d:3a:27:33:e9:ed:24: 61:a2:1c:93:92:90:e0:dd:55:04:e6:fc:7e:04:e9:04:1d:d1: 6c:54:d9:26:25:92:34:77:8d:e2:0f:5b:49:e6:5d:2f:10:48: 5a:17:42:25:9e:b6:7a:24:bd:13:dd:91:4c:ab:f9:cd:83:24: c3:ec:45:c0:49:b7:01:f3:a4:51:98:f3:8c:ab:5d:21:2c:76: 76:21:1a:75 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPbuaH55hYmge95Wl1QgPB7J4g8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRB MEJBOEQ0QTAeFw0yNjAzMTMwNzI4NDJaFw0yNzAzMTIwNzMzNDJaMDMxMTAvBgNV BAMTKDQ0N0FBRTUyM0E2QTFCNTgwMTAzRUNENzJGMjFCMkI0NTgyRDc5NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCimwMNF89qnMy0XAJjnYe9T5vu RxvOpIaYpG+6pFZG04TvgpwaVNpJ7SWWoFu03aFOKg4w/gBHhlZv7+gB9gqdck83 HmF4rzT9GwMBHu7O0ktTEsUgzpuK6Y46pRp7h+ZeCNofnL+wBenaDgBlk2ememQZ pk+KE8Y3tZOL+4zFGndkxXcgisqmhECpA3mfTfKm35tUIcVSHWFLSzCgDfcDNa/h EIwRrqAxxM6+cqnyLYda3lXwJxOPTYErgGL3UsG8Y5DP509Y/Dcl1WCiyCvh8f5H IPZ3n7gd5CuY3r5SP+Q2ivIGOLwCxBqVihPC1Eq3d0Nv8ZSOMJk8kNgIs705AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQURHquUjpqG1gBA+zXLyGytFgteUswHwYDVR0j BBgwFoAU1hWry6UBVWSt6bRz1k8eNKC6jUowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTNmNjg1NjEtMGE3NC00Y2NhLWJmOGYtMTJmYWFhZmM4 ZWI4LzMvRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRBMEJBOEQ0QS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9ENjE1QUJDQkE1MDE1NTY0QURFOUI0NzNE NjRGMUUzNEEwQkE4RDRBLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xM2Y2ODU2MS0wYTc0LTRjY2EtYmY4Zi0xMmZhYWFmYzhlYjgvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz MzM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYAJATANBgkqhkiG9w0BAQsFAAOCAQEAfwwG jP6OQ4qkGPtMxWvgoToiN1kZGoySkQKstns4dEna1QEBgNxYd0VGyOTOW6z+BjTT tnhuTpHStJ/4y8BsmcgJGUSQo6PyKiWI5NRXXkVg9GladQAR6LeAlt51OF/CP4nE OK4oWeuN5Xjo4SUhugVyZk85uOqrC1cf43iM8+md9Ml9a3hs0vGs5n7Zcwh8PgIk 7wARtnJ4CMrblM1JnUEH8GtLLkSg4/Px+2SdOicz6e0kYaIck5KQ4N1VBOb8fgTp BB3RbFTZJiWSNHeN4g9bSeZdLxBIWhdCJZ62eiS9E92RTKv5zYMkw+xFwEm3AfOk UZjzjKtdISx2diEadQ== -----END CERTIFICATE-----Generated at Wed Mar 25 23:22:23 2026 by rpki-client