$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376230303a3a2f34342d3438203d3e20323037313936.roa File: 326131343a316563313a376230303a3a2f34342d3438203d3e20323037313936.roa (raw, json) Hash identifier: 8VhdvV/ADl1dQyHcZOJm0iqoZEaI9FAWV7wRLCn1Kkc= Subject key identifier: E0:50:EA:F6:0E:40:59:57:3A:17:73:E6:1F:CA:AF:59:BB:B5:F0:A8 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 363FB75B551EBCC72646CE526C480B41F873CD71 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376230303a3a2f34342d3438203d3e20323037313936.roa Signing time: Fri 08 May 2026 12:34:57 +0000 ROA not before: Fri 08 May 2026 12:29:57 +0000 ROA not after: Fri 07 May 2027 12:34:57 +0000 asID: 207196 IP address blocks: 2a14:1ec1:7b00::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 13 May 2026 11:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:3f:b7:5b:55:1e:bc:c7:26:46:ce:52:6c:48:0b:41:f8:73:cd:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: May 8 12:29:57 2026 GMT Not After : May 7 12:34:57 2027 GMT Subject: CN=E050EAF60E4059573A1773E61FCAAF59BBB5F0A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d0:fd:fe:6b:5e:22:51:16:bf:a3:05:da:af: 48:09:c7:ca:51:c5:da:98:c6:bd:91:3f:a0:bc:98: 3f:5e:2c:92:80:90:4e:f9:ca:9e:fd:c1:7d:b8:10: 9e:5d:56:7d:e6:2f:45:11:38:5e:0b:30:a7:b0:b0: aa:94:c6:80:1d:57:c2:27:e4:e5:a1:64:ef:1a:18: c7:58:bf:98:81:ad:ec:6d:97:25:5f:2e:30:2c:03: 7b:80:e4:7e:81:68:99:a9:47:75:f4:59:1e:05:c0: 24:52:ff:90:c4:b4:9d:60:4d:8d:f4:49:bd:32:dc: c9:b0:77:b8:40:64:74:79:d7:d8:eb:c1:3d:0c:d2: 2d:76:e6:a0:78:6f:00:30:25:1a:d9:9e:17:9e:fa: 14:04:70:7d:84:e1:9f:39:ab:d1:9e:33:8b:d7:5f: 45:72:4f:71:46:37:5e:85:f9:d1:1f:10:51:d5:7c: 18:de:73:bd:30:d7:ae:19:25:7d:67:37:93:63:9a: 21:6e:cb:b6:3c:da:10:cb:1d:ec:5e:1d:b3:33:ff: 57:4e:5a:f5:eb:95:13:e0:1e:9f:b9:e3:99:74:62: ef:33:95:43:1c:90:ea:a5:b3:3b:89:5c:9f:28:ad: 23:a3:38:0b:c1:b6:d9:08:7c:b5:43:cc:d1:53:09: 7a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:50:EA:F6:0E:40:59:57:3A:17:73:E6:1F:CA:AF:59:BB:B5:F0:A8 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376230303a3a2f34342d3438203d3e20323037313936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1:7b00::/44 Signature Algorithm: sha256WithRSAEncryption 01:e5:2d:1c:48:8b:b6:e5:85:96:1a:68:02:40:a5:b5:36:0b: 75:a5:80:a7:ec:f1:42:1d:e7:81:33:7b:ae:a9:a4:6a:0b:6c: ce:4e:82:4e:19:08:f9:d4:78:ec:f2:b2:82:64:a0:9e:28:a1: c5:57:a6:20:82:9e:e8:60:69:2e:c4:29:cf:28:04:39:cf:c1: d1:82:a1:f7:6a:4f:0d:49:ed:be:30:5a:7e:01:7d:a9:1d:0c: e2:cd:4d:7c:d0:5f:ec:9a:fa:55:62:65:de:4a:41:da:d6:5b: 67:e1:ca:d3:07:57:d4:6a:30:02:a2:4d:35:df:9e:b0:2a:3e: 79:c5:bd:da:bc:33:d1:74:67:30:20:34:65:f2:39:3e:b8:9c: f0:f0:af:18:cd:75:70:91:3e:f9:6a:ea:f3:b0:1b:36:34:7b: 84:53:5f:a1:98:87:c4:1b:96:c9:6f:94:72:c3:23:8e:f6:f5: 3e:1f:a9:c5:9f:34:29:66:be:72:d4:de:f9:6f:12:f5:df:de: a2:6c:89:30:46:67:d7:6d:7d:33:b5:de:82:09:06:9c:06:d4: 56:95:27:54:32:81:8a:69:43:6c:16:ac:85:b2:48:c0:96:4b: 07:6b:f6:28:51:cb:5a:80:09:b4:0c:8a:c8:14:34:33:3e:fc: c0:b0:ac:19 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUNj+3W1UevMcmRs5SbEgLQfhzzXEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA1MDgxMjI5NTdaFw0yNzA1MDcxMjM0NTdaMDMxMTAvBgNV BAMTKEUwNTBFQUY2MEU0MDU5NTczQTE3NzNFNjFGQ0FBRjU5QkJCNUYwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr0P3+a14iURa/owXar0gJx8pR xdqYxr2RP6C8mD9eLJKAkE75yp79wX24EJ5dVn3mL0UROF4LMKewsKqUxoAdV8In 5OWhZO8aGMdYv5iBrextlyVfLjAsA3uA5H6BaJmpR3X0WR4FwCRS/5DEtJ1gTY30 Sb0y3Mmwd7hAZHR519jrwT0M0i125qB4bwAwJRrZnhee+hQEcH2E4Z85q9GeM4vX X0VyT3FGN16F+dEfEFHVfBjec70w164ZJX1nN5NjmiFuy7Y82hDLHexeHbMz/1dO WvXrlRPgHp+545l0Yu8zlUMckOqlszuJXJ8orSOjOAvBttkIfLVDzNFTCXrPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU4FDq9g5AWVc6F3PmH8qvWbu18KgwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTM3NjIzMDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MDM3MzEzOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhQewXsAMA0GCSqGSIb3DQEBCwUAA4IBAQAB 5S0cSIu25YWWGmgCQKW1Ngt1pYCn7PFCHeeBM3uuqaRqC2zOToJOGQj51Hjs8rKC ZKCeKKHFV6Yggp7oYGkuxCnPKAQ5z8HRgqH3ak8NSe2+MFp+AX2pHQzizU180F/s mvpVYmXeSkHa1ltn4crTB1fUajACok01356wKj55xb3avDPRdGcwIDRl8jk+uJzw 8K8YzXVwkT75aurzsBs2NHuEU1+hmIfEG5bJb5RywyOO9vU+H6nFnzQpZr5y1N75 bxL1396ibIkwRmfXbX0ztd6CCQacBtRWlSdUMoGKaUNsFqyFskjAlksHa/YoUcta gAm0DIrIFDQzPvzAsKwZ -----END CERTIFICATE-----Generated at Tue May 12 21:34:04 2026 by rpki-client