$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/326130363a613030323a3a2f33322d3438203d3e20323135373630.roa File: 326130363a613030323a3a2f33322d3438203d3e20323135373630.roa (raw, json) Hash identifier: B2caQKU5/hAAuwc57KOaYg2QivgfXC87ZBxhpnuBwec= Subject key identifier: 61:19:54:73:6D:D5:C0:C8:19:5F:D6:08:54:B5:DC:01:02:D2:01:4F Certificate issuer: /CN=1DB41D8CB909418AA27BBDED06CFB5857401E676 Certificate serial: 2B812CFB317A843A3ACD1F41C1945167A0CCC510 Authority key identifier: 1D:B4:1D:8C:B9:09:41:8A:A2:7B:BD:ED:06:CF:B5:85:74:01:E6:76 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/1DB41D8CB909418AA27BBDED06CFB5857401E676.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/326130363a613030323a3a2f33322d3438203d3e20323135373630.roa Signing time: Fri 06 Mar 2026 21:32:04 +0000 ROA not before: Fri 06 Mar 2026 21:27:04 +0000 ROA not after: Fri 05 Mar 2027 21:32:04 +0000 asID: 215760 IP address blocks: 2a06:a002::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/1DB41D8CB909418AA27BBDED06CFB5857401E676.crl rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/1DB41D8CB909418AA27BBDED06CFB5857401E676.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/1DB41D8CB909418AA27BBDED06CFB5857401E676.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 26 Mar 2026 08:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:81:2c:fb:31:7a:84:3a:3a:cd:1f:41:c1:94:51:67:a0:cc:c5:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DB41D8CB909418AA27BBDED06CFB5857401E676 Validity Not Before: Mar 6 21:27:04 2026 GMT Not After : Mar 5 21:32:04 2027 GMT Subject: CN=611954736DD5C0C8195FD60854B5DC0102D2014F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:b0:ac:e3:2c:2a:a6:55:e1:03:cd:37:4d: af:bc:75:fe:21:10:3a:03:19:fd:bd:7f:d9:ed:62: 0d:d1:9f:64:be:06:e2:a6:7e:3c:7c:81:c3:2a:c0: 53:aa:89:6e:24:70:3e:4e:3e:48:8e:a3:24:40:b3: 48:c5:02:16:ac:33:96:b5:be:e9:ae:23:1a:12:e1: c4:e3:1e:f0:f9:e4:d4:8a:16:1a:aa:08:62:87:e8: 4e:1d:03:fa:64:a7:13:dc:da:5b:5b:6f:4c:e6:df: 5b:95:a9:d4:e7:0e:0d:3f:ec:96:87:97:59:d5:0f: f6:85:97:28:d2:e2:c6:36:b3:42:d5:f2:03:50:c7: 76:5f:d6:69:65:94:61:d1:4c:37:16:c9:e5:70:d5: 36:33:3a:ca:94:05:c9:81:04:13:52:89:1b:ea:1f: f5:1c:fd:c2:8a:2a:a6:35:3a:96:eb:35:30:c9:c4: f6:7e:06:e4:44:c7:34:af:a8:9e:36:4d:12:4b:43: c7:e8:1d:55:b5:34:54:f8:77:c3:e7:0a:a3:ac:35: af:8e:b0:86:08:2a:b3:05:45:b1:7f:21:87:eb:ca: 01:eb:4d:dc:35:68:fe:1e:51:94:f2:2e:2c:a9:49: 89:10:48:ae:01:4a:41:e5:5a:92:74:8a:27:cc:ce: a9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:19:54:73:6D:D5:C0:C8:19:5F:D6:08:54:B5:DC:01:02:D2:01:4F X509v3 Authority Key Identifier: keyid:1D:B4:1D:8C:B9:09:41:8A:A2:7B:BD:ED:06:CF:B5:85:74:01:E6:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/1DB41D8CB909418AA27BBDED06CFB5857401E676.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/1DB41D8CB909418AA27BBDED06CFB5857401E676.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7d92558-258e-4b44-ad16-8c1022c46d03/3/326130363a613030323a3a2f33322d3438203d3e20323135373630.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a002::/32 Signature Algorithm: sha256WithRSAEncryption 0b:70:d8:ff:e9:95:31:10:92:2d:ba:d3:c5:de:11:c9:c2:1b: 11:2f:5e:93:31:fc:b6:f5:fe:c7:ce:03:ef:6f:42:e6:29:b4: 3a:df:de:e1:41:20:96:e1:d6:73:83:64:52:38:53:40:08:8e: f1:a9:e2:e8:bb:7a:ca:e6:d3:56:32:c1:a9:14:72:f4:11:f2: 71:35:8b:e0:b3:87:63:6e:9a:80:37:05:46:3d:ce:9e:00:0f: cc:a6:ff:7e:ef:67:d7:83:f9:5f:51:7b:9d:ec:c1:c8:46:39: 16:a8:ba:31:5a:29:b5:c4:4a:6e:52:db:7b:2f:f6:67:18:de: 78:3a:73:c4:aa:aa:35:99:77:83:a1:40:71:78:93:76:d1:2c: 70:0f:cd:a9:02:29:8d:32:00:f4:12:4e:be:ba:4f:eb:e8:82: 41:0f:9f:a4:52:28:4c:c9:ad:42:50:0c:b1:d0:6b:56:bb:c1: 90:a0:82:c0:01:d0:e6:fb:c8:7a:92:3b:01:08:28:76:92:fb: f0:0b:95:6d:e0:14:32:37:87:36:a1:97:d9:35:63:07:1a:ea: 9e:85:8c:03:96:a5:4d:20:2a:2e:31:49:2c:13:c0:68:35:fb: 32:15:a6:fd:47:b8:73:5c:3b:4a:44:9a:71:0b:d0:1f:66:2b: 9b:72:71:eb -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgIUK4Es+zF6hDo6zR9BwZRRZ6DMxRAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURCNDFEOENCOTA5NDE4QUEyN0JCREVEMDZDRkI1ODU3 NDAxRTY3NjAeFw0yNjAzMDYyMTI3MDRaFw0yNzAzMDUyMTMyMDRaMDMxMTAvBgNV BAMTKDYxMTk1NDczNkRENUMwQzgxOTVGRDYwODU0QjVEQzAxMDJEMjAxNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKq7Cs4ywqplXhA803Ta+8df4h EDoDGf29f9ntYg3Rn2S+BuKmfjx8gcMqwFOqiW4kcD5OPkiOoyRAs0jFAhasM5a1 vumuIxoS4cTjHvD55NSKFhqqCGKH6E4dA/pkpxPc2ltbb0zm31uVqdTnDg0/7JaH l1nVD/aFlyjS4sY2s0LV8gNQx3Zf1mlllGHRTDcWyeVw1TYzOsqUBcmBBBNSiRvq H/Uc/cKKKqY1OpbrNTDJxPZ+BuRExzSvqJ42TRJLQ8foHVW1NFT4d8PnCqOsNa+O sIYIKrMFRbF/IYfrygHrTdw1aP4eUZTyLiypSYkQSK4BSkHlWpJ0iifMzql9AgMB AAGjggJuMIICajAdBgNVHQ4EFgQUYRlUc23VwMgZX9YIVLXcAQLSAU8wHwYDVR0j BBgwFoAUHbQdjLkJQYqie73tBs+1hXQB5nYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgtMjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2 ZDAzLzMvMURCNDFEOENCOTA5NDE4QUEyN0JCREVEMDZDRkI1ODU3NDAxRTY3Ni5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzcvMURCNDFEOENCOTA5NDE4QUEyN0JCREVEMDZDRkI1ODU3NDAx RTY3Ni5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZjdkOTI1NTgt MjU4ZS00YjQ0LWFkMTYtOGMxMDIyYzQ2ZDAzLzMvMzI2MTMwMzYzYTYxMzAzMDMy M2EzYTJmMzMzMjJkMzQzODIwM2QzZTIwMzIzMTM1MzczNjMwLnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUA KgagAjANBgkqhkiG9w0BAQsFAAOCAQEAC3DY/+mVMRCSLbrTxd4RycIbES9ekzH8 tvX+x84D729C5im0Ot/e4UEgluHWc4NkUjhTQAiO8ani6Lt6yubTVjLBqRRy9BHy cTWL4LOHY26agDcFRj3OngAPzKb/fu9n14P5X1F7nezByEY5Fqi6MVoptcRKblLb ey/2ZxjeeDpzxKqqNZl3g6FAcXiTdtEscA/NqQIpjTIA9BJOvrpP6+iCQQ+fpFIo TMmtQlAMsdBrVrvBkKCCwAHQ5vvIepI7AQgodpL78AuVbeAUMjeHNqGX2TVjBxrq noWMA5alTSAqLjFJLBPAaDX7MhWm/Ue4c1w7SkSacQvQH2Yrm3Jx6w== -----END CERTIFICATE-----Generated at Wed Mar 25 23:11:01 2026 by rpki-client