$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930323a3a2f34382d3438203d3e20323033383433.roa File: 326131343a373538303a3930323a3a2f34382d3438203d3e20323033383433.roa (raw, json) Hash identifier: DyehTUsfk21Hj5Xq64+F+F4A1oaphKt7e4+bcF+X09M= Subject key identifier: 44:76:EB:2E:BB:F3:47:C3:14:F9:94:D6:8E:95:4D:97:61:75:6D:88 Certificate issuer: /CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Certificate serial: 4B22C288B829E5A00419A9F5826A4868D20A97AF Authority key identifier: D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930323a3a2f34382d3438203d3e20323033383433.roa Signing time: Sun 15 Mar 2026 17:33:42 +0000 ROA not before: Sun 15 Mar 2026 17:28:42 +0000 ROA not after: Sun 14 Mar 2027 17:33:42 +0000 asID: 203843 IP address blocks: 2a14:7580:902::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 14:57:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:22:c2:88:b8:29:e5:a0:04:19:a9:f5:82:6a:48:68:d2:0a:97:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A Validity Not Before: Mar 15 17:28:42 2026 GMT Not After : Mar 14 17:33:42 2027 GMT Subject: CN=4476EB2EBBF347C314F994D68E954D9761756D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:72:5b:f5:c1:f7:3f:34:af:2f:62:3a:89:99: 08:52:b5:8b:a8:e1:a1:36:96:78:49:4a:13:ec:a4: 94:a3:d4:b7:82:3e:2e:1c:2e:16:c9:5e:d4:8e:10: 91:80:fe:71:20:1f:69:77:7d:1e:5e:9d:4f:54:e6: 32:72:42:5a:af:a6:94:15:c1:b1:6a:47:b8:99:6f: 1c:58:51:1d:90:92:77:a6:71:07:54:a4:09:34:27: 0a:6a:db:34:da:7f:a5:fc:b3:eb:53:24:71:47:d6: 8c:ca:d3:cf:5d:d9:ed:69:f9:16:4b:f5:94:be:7f: ef:52:a0:97:a3:0f:26:90:11:fe:2d:f8:e4:5d:95: 66:12:08:8c:6f:41:9e:cc:9d:87:3e:b1:5a:12:8c: 5f:ee:b7:fb:3e:c1:87:36:db:8f:b7:8f:29:17:66: 3d:c1:b9:16:77:c3:50:94:b6:55:49:23:c9:38:90: f8:01:ba:61:6c:50:31:a3:13:30:60:85:2c:ce:76: 3b:8e:41:63:0c:27:de:10:f9:a1:8a:9e:02:d2:33: 5a:5e:09:5c:2a:8a:df:fd:aa:34:76:a8:e4:e7:f0: 3f:35:80:74:80:ff:56:22:a0:49:f7:6c:f2:83:52: 61:23:67:a5:e6:88:58:a1:d3:06:61:ee:94:ce:ff: d9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:76:EB:2E:BB:F3:47:C3:14:F9:94:D6:8E:95:4D:97:61:75:6D:88 X509v3 Authority Key Identifier: keyid:D6:15:AB:CB:A5:01:55:64:AD:E9:B4:73:D6:4F:1E:34:A0:BA:8D:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/D615ABCBA5015564ADE9B473D64F1E34A0BA8D4A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/13f68561-0a74-4cca-bf8f-12faaafc8eb8/3/326131343a373538303a3930323a3a2f34382d3438203d3e20323033383433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:902::/48 Signature Algorithm: sha256WithRSAEncryption 36:7a:0c:7e:61:4a:2d:a5:7e:3f:19:53:fb:f4:76:74:64:5d: 86:b2:e7:40:72:4b:38:1c:80:7b:41:44:8b:2d:37:52:35:5d: 31:30:39:15:28:4c:1f:fe:c7:f7:4d:72:74:61:f7:da:f0:f1: a9:30:5e:9a:f1:01:2d:78:48:ac:bf:8e:0d:88:50:b8:11:18: 5e:4f:c8:a3:f7:93:eb:fe:e4:7b:f9:87:f9:00:80:80:51:8f: 67:5f:26:34:c6:da:70:f2:9f:2d:22:da:20:bb:d2:64:9d:42: 21:e6:67:f8:9d:b6:36:e7:39:09:51:6f:86:23:be:ca:ed:df: 24:cd:cb:c1:89:5a:a8:61:2d:1d:a9:a7:e0:b5:48:1f:a1:70: 7c:54:8d:8d:d1:56:e0:e7:3f:37:42:0f:a6:27:7b:b3:d7:54: c0:3c:9a:7f:6d:60:df:d1:9e:c0:84:51:0d:67:af:cf:8c:03: 44:3c:2a:96:02:1d:0c:8a:d5:93:bf:fc:6e:f6:5d:17:d4:54: fa:b5:4b:25:0e:b6:5c:be:ad:62:43:35:65:78:14:bd:64:d2: 4f:25:0a:de:2b:f5:ee:48:45:f2:db:5f:cb:79:0c:d8:93:c9: c6:0c:0b:34:79:37:33:1e:48:bd:4d:c8:10:a1:7d:9f:7c:78: 86:ad:73:e1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUSyLCiLgp5aAEGan1gmpIaNIKl68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRB MEJBOEQ0QTAeFw0yNjAzMTUxNzI4NDJaFw0yNzAzMTQxNzMzNDJaMDMxMTAvBgNV BAMTKDQ0NzZFQjJFQkJGMzQ3QzMxNEY5OTRENjhFOTU0RDk3NjE3NTZEODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkclv1wfc/NK8vYjqJmQhStYuo 4aE2lnhJShPspJSj1LeCPi4cLhbJXtSOEJGA/nEgH2l3fR5enU9U5jJyQlqvppQV wbFqR7iZbxxYUR2QknemcQdUpAk0Jwpq2zTaf6X8s+tTJHFH1ozK089d2e1p+RZL 9ZS+f+9SoJejDyaQEf4t+ORdlWYSCIxvQZ7MnYc+sVoSjF/ut/s+wYc224+3jykX Zj3BuRZ3w1CUtlVJI8k4kPgBumFsUDGjEzBghSzOdjuOQWMMJ94Q+aGKngLSM1pe CVwqit/9qjR2qOTn8D81gHSA/1YioEn3bPKDUmEjZ6XmiFih0wZh7pTO/9n3AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQURHbrLrvzR8MU+ZTWjpVNl2F1bYgwHwYDVR0j BBgwFoAU1hWry6UBVWSt6bRz1k8eNKC6jUowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTNmNjg1NjEtMGE3NC00Y2NhLWJmOGYtMTJmYWFhZmM4 ZWI4LzMvRDYxNUFCQ0JBNTAxNTU2NEFERTlCNDczRDY0RjFFMzRBMEJBOEQ0QS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9ENjE1QUJDQkE1MDE1NTY0QURFOUI0NzNE NjRGMUUzNEEwQkE4RDRBLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xM2Y2ODU2MS0wYTc0LTRjY2EtYmY4Zi0xMmZhYWFmYzhlYjgvMy8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzAzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAz MzM4MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYAJAjANBgkqhkiG9w0BAQsFAAOCAQEANnoM fmFKLaV+PxlT+/R2dGRdhrLnQHJLOByAe0FEiy03UjVdMTA5FShMH/7H901ydGH3 2vDxqTBemvEBLXhIrL+ODYhQuBEYXk/Io/eT6/7ke/mH+QCAgFGPZ18mNMbacPKf LSLaILvSZJ1CIeZn+J22Nuc5CVFvhiO+yu3fJM3LwYlaqGEtHamn4LVIH6FwfFSN jdFW4Oc/N0IPpid7s9dUwDyaf21g39GewIRRDWevz4wDRDwqlgIdDIrVk7/8bvZd F9RU+rVLJQ62XL6tYkM1ZXgUvWTSTyUK3iv17khF8ttfy3kM2JPJxgwLNHk3Mx5I vU3IEKF9n3x4hq1z4Q== -----END CERTIFICATE-----Generated at Wed Mar 25 23:22:41 2026 by rpki-client