$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa File: 326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa (raw, json) Hash identifier: GgsS8q8v92ftDtmAINXb+jZxiQcNlTc0d1SR73H0Jss= Subject key identifier: 25:9D:E2:5D:0A:CB:ED:89:4F:92:71:F3:76:47:48:E1:DB:4C:89:4F Certificate issuer: /CN=37AAEE584452DDAB0250921C4B2D8474F61FF74D Certificate serial: 6F281D018A40882FEE8D7DC307ACE0529D377FE7 Authority key identifier: 37:AA:EE:58:44:52:DD:AB:02:50:92:1C:4B:2D:84:74:F6:1F:F7:4D Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/37AAEE584452DDAB0250921C4B2D8474F61FF74D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa Signing time: Sun 08 Mar 2026 15:04:51 +0000 ROA not before: Sun 08 Mar 2026 14:59:51 +0000 ROA not after: Sun 07 Mar 2027 15:04:51 +0000 asID: 206069 IP address blocks: 2a0f:1cc5:2411::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/37AAEE584452DDAB0250921C4B2D8474F61FF74D.crl rsync://rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/37AAEE584452DDAB0250921C4B2D8474F61FF74D.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/37AAEE584452DDAB0250921C4B2D8474F61FF74D.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Mar 2026 04:46:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:28:1d:01:8a:40:88:2f:ee:8d:7d:c3:07:ac:e0:52:9d:37:7f:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37AAEE584452DDAB0250921C4B2D8474F61FF74D Validity Not Before: Mar 8 14:59:51 2026 GMT Not After : Mar 7 15:04:51 2027 GMT Subject: CN=259DE25D0ACBED894F9271F3764748E1DB4C894F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a0:30:e6:f6:d7:79:8c:47:dc:3c:c6:a0:0d: 9b:96:b0:95:91:5a:3c:40:61:5d:9f:3f:07:56:d3: 79:11:fb:b6:36:56:be:8a:86:9a:d4:ae:0c:e1:2c: da:75:9f:24:37:d4:59:60:0f:a4:93:fb:7e:e1:1e: 67:42:30:03:ea:0f:d3:f8:84:18:2b:5b:b6:5d:63: 7d:69:07:1c:c2:95:b2:f4:82:fd:0b:33:aa:58:c0: af:16:a0:fd:35:30:65:50:79:7b:b5:7b:b6:f8:c6: b0:e3:2a:6f:a6:c9:50:27:f7:82:ed:ba:43:d7:66: cf:7b:c3:e4:ee:0a:08:50:f2:67:86:dc:79:29:dc: 73:b6:9b:b2:18:34:16:c5:b3:e1:d8:f8:9c:65:8c: 73:9b:4b:72:b9:fe:6c:ce:5c:84:4d:be:39:11:09: ec:0c:b6:1f:7f:71:7d:f0:96:2b:5f:22:3a:24:a6: da:60:c7:3d:23:6a:d0:d6:15:58:73:f5:34:70:d3: f7:03:c1:cc:fd:ca:28:ad:85:48:9f:3e:b1:28:6c: 78:eb:8a:73:c5:0e:8f:8c:7b:21:6d:4b:79:5c:55: 2a:f7:e8:9a:30:59:8c:cd:43:1d:cc:7c:5c:79:ea: bd:21:7d:98:ee:a9:99:f5:01:fd:78:2a:4b:03:3a: 3f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:9D:E2:5D:0A:CB:ED:89:4F:92:71:F3:76:47:48:E1:DB:4C:89:4F X509v3 Authority Key Identifier: keyid:37:AA:EE:58:44:52:DD:AB:02:50:92:1C:4B:2D:84:74:F6:1F:F7:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/37AAEE584452DDAB0250921C4B2D8474F61FF74D.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/37AAEE584452DDAB0250921C4B2D8474F61FF74D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/90821899-77a6-43a7-9a82-0a38ff3b4ad0/4/326130663a316363353a323431313a3a2f34382d3438203d3e20323036303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:1cc5:2411::/48 Signature Algorithm: sha256WithRSAEncryption 74:9c:6f:4a:07:63:b4:cf:8b:9e:9d:e5:94:60:7d:d6:1a:fd: b2:d4:cf:6e:8a:27:db:8d:53:15:34:8d:b9:3e:04:ee:52:63: e2:16:e0:89:79:14:5c:83:a4:01:0e:80:3b:ca:9c:20:37:5e: f7:6c:b2:2e:63:b2:d1:75:a1:ba:59:d2:64:dd:f8:82:6e:af: ac:10:4a:50:5c:e4:52:19:03:46:21:cb:f1:e9:f9:e2:c4:67: d2:b6:83:69:63:35:03:f6:d1:61:f5:3e:8a:d4:c8:96:95:bc: 39:73:94:0b:15:82:41:35:e3:23:7c:25:42:58:e0:c8:53:42: 0f:de:25:04:5e:9d:34:ed:4d:f2:5c:2e:e4:42:7e:61:e3:b2: cc:e5:79:65:65:f7:27:78:60:62:1c:a5:0f:36:71:04:1e:a5: a4:fd:91:2f:99:ea:79:f3:ec:02:0a:39:bc:ea:0d:e5:d5:16: 92:15:ca:a1:43:13:e0:58:7d:b3:f0:b8:87:b4:af:9d:09:9c: 49:2a:b1:54:aa:46:7c:2a:e3:98:89:bd:0c:58:a9:38:c0:b2: a4:a4:7e:98:eb:57:ba:4a:29:63:b3:4c:04:2b:a3:1d:20:e9: 18:b9:15:14:f8:88:28:5c:7d:41:d2:e2:ee:19:22:1c:00:4a: 84:08:45:e9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUbygdAYpAiC/ujX3DB6zgUp03f+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzdBQUVFNTg0NDUyRERBQjAyNTA5MjFDNEIyRDg0NzRG NjFGRjc0RDAeFw0yNjAzMDgxNDU5NTFaFw0yNzAzMDcxNTA0NTFaMDMxMTAvBgNV BAMTKDI1OURFMjVEMEFDQkVEODk0RjkyNzFGMzc2NDc0OEUxREI0Qzg5NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2oDDm9td5jEfcPMagDZuWsJWR WjxAYV2fPwdW03kR+7Y2Vr6KhprUrgzhLNp1nyQ31FlgD6ST+37hHmdCMAPqD9P4 hBgrW7ZdY31pBxzClbL0gv0LM6pYwK8WoP01MGVQeXu1e7b4xrDjKm+myVAn94Lt ukPXZs97w+TuCghQ8meG3Hkp3HO2m7IYNBbFs+HY+JxljHObS3K5/mzOXIRNvjkR CewMth9/cX3wlitfIjokptpgxz0jatDWFVhz9TRw0/cDwcz9yiithUifPrEobHjr inPFDo+MeyFtS3lcVSr36JowWYzNQx3MfFx56r0hfZjuqZn1Af14KksDOj9VAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUJZ3iXQrL7YlPknHzdkdI4dtMiU8wHwYDVR0j BBgwFoAUN6ruWERS3asCUJIcSy2EdPYf900wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTA4MjE4OTktNzdhNi00M2E3LTlhODItMGEzOGZmM2I0 YWQwLzQvMzdBQUVFNTg0NDUyRERBQjAyNTA5MjFDNEIyRDg0NzRGNjFGRjc0RC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC8zN0FBRUU1ODQ0NTJEREFCMDI1MDkyMUM0 QjJEODQ3NEY2MUZGNzRELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85MDgyMTg5OS03N2E2LTQzYTctOWE4Mi0wYTM4ZmYzYjRhZDAvNC8zMjYxMzA2 NjNhMzE2MzYzMzUzYTMyMzQzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM2MzAzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKg8cxSQRMA0GCSqGSIb3DQEBCwUAA4IBAQB0 nG9KB2O0z4ueneWUYH3WGv2y1M9uiifbjVMVNI25PgTuUmPiFuCJeRRcg6QBDoA7 ypwgN173bLIuY7LRdaG6WdJk3fiCbq+sEEpQXORSGQNGIcvx6fnixGfStoNpYzUD 9tFh9T6K1MiWlbw5c5QLFYJBNeMjfCVCWODIU0IP3iUEXp007U3yXC7kQn5h47LM 5XllZfcneGBiHKUPNnEEHqWk/ZEvmep58+wCCjm86g3l1RaSFcqhQxPgWH2z8LiH tK+dCZxJKrFUqkZ8KuOYib0MWKk4wLKkpH6Y61e6Siljs0wEK6MdIOkYuRUU+Igo XH1B0uLuGSIcAEqECEXp -----END CERTIFICATE-----Generated at Thu Mar 26 16:41:30 2026 by rpki-client