$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3438203d3e20323031333938.roa File: 326130623a346530373a323030303a3a2f33372d3438203d3e20323031333938.roa (raw, json) Hash identifier: v7UO4M6SMwywlzOBSeY802VXKxb7Hc4PkISYovezxNY= Subject key identifier: C5:E4:9F:E8:A0:9C:42:2B:98:63:F0:30:20:DC:E8:B6:99:A6:6B:5E Certificate issuer: /CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Certificate serial: 7E74345AD39484A35A3DB9400243A7931F44B362 Authority key identifier: C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3438203d3e20323031333938.roa Signing time: Wed 25 Mar 2026 02:43:16 +0000 ROA not before: Wed 25 Mar 2026 02:38:16 +0000 ROA not after: Wed 24 Mar 2027 02:43:16 +0000 asID: 201398 IP address blocks: 2a0b:4e07:2000::/37 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 13:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:74:34:5a:d3:94:84:a3:5a:3d:b9:40:02:43:a7:93:1f:44:b3:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Validity Not Before: Mar 25 02:38:16 2026 GMT Not After : Mar 24 02:43:16 2027 GMT Subject: CN=C5E49FE8A09C422B9863F03020DCE8B699A66B5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fb:7a:a8:d6:b1:df:b5:d4:ce:1d:22:1c:fe: 8d:9a:5e:a6:e9:7e:e8:71:b0:84:41:72:cc:16:cf: 10:2a:e2:0f:2e:d8:0e:26:44:b6:9d:fe:63:8b:3b: 19:63:7d:04:ac:36:1a:3a:9b:a1:7e:c8:b7:84:3e: 99:2e:97:d8:18:e0:b4:db:04:a2:10:ce:1c:d8:5a: 07:d2:63:cc:60:ee:79:e4:77:18:57:1f:9d:66:06: c6:67:6b:ec:08:df:3d:81:27:dc:27:76:64:37:bf: a5:5d:c7:11:b2:4c:e6:73:4d:52:81:50:5d:eb:5f: 07:fc:ec:70:c3:2e:ec:3f:e7:0d:06:39:4e:f9:5f: e9:b1:0a:15:a9:58:2b:f4:a7:7f:a4:b6:34:b4:b0: 11:28:b5:7c:6c:32:bf:04:f6:ed:35:c3:97:55:3b: a8:85:8e:19:57:52:20:80:ee:24:73:c0:74:5f:a0: 61:87:a9:c7:2b:67:2a:bc:eb:17:f2:0f:40:44:fa: 0e:05:91:d8:c3:2e:19:52:4f:4d:1e:5c:60:56:f6: c0:82:8e:d7:89:0a:da:d1:4b:14:5b:a1:c1:c4:58: 84:53:ed:a0:e4:39:ec:07:cc:fc:0f:fc:1e:12:51: 63:a0:52:30:51:99:b9:f3:92:ef:71:e3:ee:de:86: f7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E4:9F:E8:A0:9C:42:2B:98:63:F0:30:20:DC:E8:B6:99:A6:6B:5E X509v3 Authority Key Identifier: keyid:C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f33372d3438203d3e20323031333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2000::/37 Signature Algorithm: sha256WithRSAEncryption 10:9b:af:e0:d0:89:35:53:fb:ac:c2:35:ea:7f:02:90:5e:75: bf:0b:79:09:37:ea:1d:f4:81:d9:9b:c4:74:1b:0b:db:48:26: 48:e7:db:c1:6e:73:ae:57:28:59:ed:92:51:9f:bf:28:c0:30: d4:ff:67:40:2c:fc:ca:d8:0c:14:b2:d3:58:b8:f4:b8:97:c3: f8:32:ed:af:95:38:c5:76:fd:b9:63:83:91:9e:45:72:d5:38: 8f:e1:06:b4:bb:7d:6a:93:1c:f7:12:fb:7e:a7:9c:a3:bb:cf: 72:64:dc:c6:c2:18:0f:3c:6d:82:e3:58:2c:19:8f:af:b2:9d: 49:2e:c6:7b:9a:7b:5a:ee:bb:ee:52:90:5f:19:12:0b:a8:38: ae:e5:81:0b:b2:4a:94:6b:77:5e:d5:47:38:4f:8b:b1:9a:02: 7d:8d:b0:87:f1:eb:f9:5f:df:d3:0d:a7:e1:19:cd:cc:6f:0f: 21:6d:f5:8c:2d:13:00:9c:b4:d5:dc:a5:73:b0:24:e9:52:60: 3c:2c:20:22:81:82:3a:e7:4e:9c:02:f4:50:5e:e6:1b:fd:49: 84:80:06:57:5b:6e:a5:83:4c:37:6b:d4:a1:38:15:63:78:91: 2c:d4:05:c7:e9:ed:1e:db:57:80:a8:8e:d9:a0:3f:af:b5:da: e3:1b:9d:b6 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUfnQ0WtOUhKNaPblAAkOnkx9Es2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5 NUMwM0VGMDAeFw0yNjAzMjUwMjM4MTZaFw0yNzAzMjQwMjQzMTZaMDMxMTAvBgNV BAMTKEM1RTQ5RkU4QTA5QzQyMkI5ODYzRjAzMDIwRENFOEI2OTlBNjZCNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk+3qo1rHftdTOHSIc/o2aXqbp fuhxsIRBcswWzxAq4g8u2A4mRLad/mOLOxljfQSsNho6m6F+yLeEPpkul9gY4LTb BKIQzhzYWgfSY8xg7nnkdxhXH51mBsZna+wI3z2BJ9wndmQ3v6VdxxGyTOZzTVKB UF3rXwf87HDDLuw/5w0GOU75X+mxChWpWCv0p3+ktjS0sBEotXxsMr8E9u01w5dV O6iFjhlXUiCA7iRzwHRfoGGHqccrZyq86xfyD0BE+g4FkdjDLhlST00eXGBW9sCC jteJCtrRSxRbocHEWIRT7aDkOewHzPwP/B4SUWOgUjBRmbnzku9x4+7ehvd/AgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUxeSf6KCcQiuYY/AwINzotpmma14wHwYDVR0j BBgwFoAUxz+3Az8jyVlY/PvlDkxlqpXAPvAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTlmODA4ZDItMWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2 MmZjLzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMwM0VGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMw M0VGMC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTlmODA4ZDIt MWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2MmZjLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMjMwMzAzMDNhM2EyZjMzMzcyZDM0MzgyMDNkM2UyMDMyMzAzMTMzMzkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw DgQCAAIwCAMGAyoLTgcgMA0GCSqGSIb3DQEBCwUAA4IBAQAQm6/g0Ik1U/uswjXq fwKQXnW/C3kJN+od9IHZm8R0GwvbSCZI59vBbnOuVyhZ7ZJRn78owDDU/2dALPzK 2AwUstNYuPS4l8P4Mu2vlTjFdv25Y4ORnkVy1TiP4Qa0u31qkxz3Evt+p5yju89y ZNzGwhgPPG2C41gsGY+vsp1JLsZ7mnta7rvuUpBfGRILqDiu5YELskqUa3de1Uc4 T4uxmgJ9jbCH8ev5X9/TDafhGc3Mbw8hbfWMLRMAnLTV3KVzsCTpUmA8LCAigYI6 506cAvRQXuYb/UmEgAZXW26lg0w3a9ShOBVjeJEs1AXH6e0e21eAqI7ZoD+vtdrj G522 -----END CERTIFICATE-----Generated at Thu Mar 26 00:49:26 2026 by rpki-client