$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f34382d3438203d3e20323031333938.roa File: 326130623a346530373a323030303a3a2f34382d3438203d3e20323031333938.roa (raw, json) Hash identifier: pNk3stE2biT30Fr/pVyzBAKYs6S5o79kFdYQqd+736w= Subject key identifier: 2F:7F:5C:60:35:C8:BB:C7:67:F9:DA:07:44:BA:40:F0:F1:9E:E4:CB Certificate issuer: /CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Certificate serial: 3BCA8458F13D7D921E2A8834FCC03BB32A2449FC Authority key identifier: C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 Authority info access: rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f34382d3438203d3e20323031333938.roa Signing time: Wed 25 Mar 2026 02:42:26 +0000 ROA not before: Wed 25 Mar 2026 02:37:26 +0000 ROA not after: Wed 24 Mar 2027 02:42:26 +0000 asID: 201398 IP address blocks: 2a0b:4e07:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.mft rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.crl rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 13:53:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ca:84:58:f1:3d:7d:92:1e:2a:88:34:fc:c0:3b:b3:2a:24:49:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C73FB7033F23C95958FCFBE50E4C65AA95C03EF0 Validity Not Before: Mar 25 02:37:26 2026 GMT Not After : Mar 24 02:42:26 2027 GMT Subject: CN=2F7F5C6035C8BBC767F9DA0744BA40F0F19EE4CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:f9:6f:7d:f9:a2:95:44:7c:c4:ed:1f:6b:47: e5:4b:ae:64:8d:41:d3:18:c5:92:52:24:e6:e9:f9: 25:96:a3:16:58:db:ed:66:6b:5a:ba:5c:e7:b2:5d: c5:9c:ed:f5:97:c0:6b:15:71:bc:d3:b3:85:32:8e: b1:50:75:b6:4b:90:a6:45:6f:7c:91:11:b4:e6:32: 1c:f6:a7:99:bb:ba:f3:ab:cf:c1:25:68:0c:c3:3c: 68:92:58:06:ea:7e:a3:9f:55:7e:6a:73:97:09:78: 47:b9:21:5e:8a:6d:28:ca:25:4b:8a:72:9b:a4:55: 9a:0a:58:47:72:e2:62:fc:04:3e:8f:a3:97:47:72: da:c0:b9:05:39:f5:6e:70:b9:84:72:2b:35:a7:cb: 43:50:d0:52:1c:ff:f8:3e:8d:db:e1:e1:fe:60:73: 2d:f0:d4:d2:c2:7c:b5:10:20:13:7f:80:10:e4:23: 12:cc:e3:7b:32:d8:4b:e1:59:f3:44:f1:41:4b:8f: 3c:f3:3b:24:d5:fc:0c:7d:40:db:3e:21:2b:d8:9b: 06:e1:ae:0f:cd:5f:cb:ce:20:a3:da:f0:3c:29:00: a9:c5:7f:57:0f:02:a9:53:19:d8:18:e3:c9:87:aa: 4d:18:ef:41:5a:d2:8a:aa:6d:e0:75:70:20:db:3c: 87:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7F:5C:60:35:C8:BB:C7:67:F9:DA:07:44:BA:40:F0:F1:9E:E4:CB X509v3 Authority Key Identifier: keyid:C7:3F:B7:03:3F:23:C9:59:58:FC:FB:E5:0E:4C:65:AA:95:C0:3E:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/81a44566458e4578b67eed3053f820f5/1/C73FB7033F23C95958FCFBE50E4C65AA95C03EF0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/99f808d2-1f15-4df3-b51e-d55c523b62fc/1/326130623a346530373a323030303a3a2f34382d3438203d3e20323031333938.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2000::/48 Signature Algorithm: sha256WithRSAEncryption bd:32:eb:9b:e0:58:95:0f:ba:56:70:f5:2e:0a:44:7d:83:bc: e5:af:a2:4d:20:d6:04:a9:87:38:f2:d6:d9:de:66:4f:e0:2e: bd:9b:24:a7:ea:66:21:ee:10:fb:b6:91:b0:d4:ab:da:43:fa: fc:10:50:cf:60:65:fe:3f:df:77:94:b7:e1:f3:c5:81:4e:42: c5:3a:5c:92:bb:38:00:59:a8:ab:46:10:4c:20:db:4b:ff:3c: aa:ca:75:0b:5a:98:af:c1:03:39:ad:f4:9f:a9:01:98:6a:71: f0:4f:52:a8:8d:01:95:fc:0e:29:47:74:3e:39:3c:f9:07:20: b3:0f:a9:71:d1:e3:3e:7f:e2:3a:73:64:97:2b:b0:20:a0:4f: e6:da:ca:a8:ee:96:56:13:86:23:37:02:2b:6f:74:0d:bc:1c: ee:3f:c6:49:70:48:81:e2:3a:05:5f:1b:8c:ad:1f:23:3c:bd: fc:87:48:9c:0d:43:5e:5e:d6:20:47:97:cb:d8:e0:cd:a3:4f: 4a:4f:b0:3f:2a:95:f1:23:4c:35:e9:1f:09:ff:75:28:ab:42: ec:c1:99:d7:2f:3d:05:dd:76:02:19:69:aa:29:98:5f:40:ba: ed:15:09:22:c7:e2:64:71:78:52:af:b6:3b:36:72:d4:44:76: 44:32:2d:05 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIUO8qEWPE9fZIeKog0/MA7syokSfwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5 NUMwM0VGMDAeFw0yNjAzMjUwMjM3MjZaFw0yNzAzMjQwMjQyMjZaMDMxMTAvBgNV BAMTKDJGN0Y1QzYwMzVDOEJCQzc2N0Y5REEwNzQ0QkE0MEYwRjE5RUU0Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJ+W99+aKVRHzE7R9rR+VLrmSN QdMYxZJSJObp+SWWoxZY2+1ma1q6XOeyXcWc7fWXwGsVcbzTs4UyjrFQdbZLkKZF b3yREbTmMhz2p5m7uvOrz8ElaAzDPGiSWAbqfqOfVX5qc5cJeEe5IV6KbSjKJUuK cpukVZoKWEdy4mL8BD6Po5dHctrAuQU59W5wuYRyKzWny0NQ0FIc//g+jdvh4f5g cy3w1NLCfLUQIBN/gBDkIxLM43sy2EvhWfNE8UFLjzzzOyTV/Ax9QNs+ISvYmwbh rg/NX8vOIKPa8DwpAKnFf1cPAqlTGdgY48mHqk0Y70Fa0oqqbeB1cCDbPIdLAgMB AAGjggJ6MIICdjAdBgNVHQ4EFgQUL39cYDXIu8dn+doHRLpA8PGe5MswHwYDVR0j BBgwFoAUxz+3Az8jyVlY/PvlDkxlqpXAPvAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTlmODA4ZDItMWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2 MmZjLzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMwM0VGMC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzgxYTQ0NTY2NDU4ZTQ1NzhiNjdlZWQz MDUzZjgyMGY1LzEvQzczRkI3MDMzRjIzQzk1OTU4RkNGQkU1MEU0QzY1QUE5NUMw M0VGMC5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOTlmODA4ZDIt MWYxNS00ZGYzLWI1MWUtZDU1YzUyM2I2MmZjLzEvMzI2MTMwNjIzYTM0NjUzMDM3 M2EzMjMwMzAzMDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzAzMTMzMzkzOC5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACoLTgcgADANBgkqhkiG9w0BAQsFAAOCAQEAvTLrm+BYlQ+6VnD1 LgpEfYO85a+iTSDWBKmHOPLW2d5mT+AuvZskp+pmIe4Q+7aRsNSr2kP6/BBQz2Bl /j/fd5S34fPFgU5CxTpckrs4AFmoq0YQTCDbS/88qsp1C1qYr8EDOa30n6kBmGpx 8E9SqI0BlfwOKUd0Pjk8+Qcgsw+pcdHjPn/iOnNklyuwIKBP5trKqO6WVhOGIzcC K290Dbwc7j/GSXBIgeI6BV8bjK0fIzy9/IdInA1DXl7WIEeXy9jgzaNPSk+wPyqV 8SNMNekfCf91KKtC7MGZ1y89Bd12AhlpqimYX0C67RUJIsfiZHF4Uq+2OzZy1ER2 RDItBQ== -----END CERTIFICATE-----Generated at Thu Mar 26 00:49:01 2026 by rpki-client