$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa File: 326131343a316563303a3a2f33322d3332203d3e20323034343634.roa (raw, json) Hash identifier: +9BU61jgxicm6M71dmLWHkhrmqblm/ztVsZuC3f3iXg= Subject key identifier: 05:4E:7A:09:62:30:FD:B5:17:63:E8:53:7C:3E:9B:C5:B1:67:7B:56 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 70817C3D065FBF877C383DD99108B6715A64811C Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa Signing time: Sun 19 Apr 2026 08:45:13 +0000 ROA not before: Sun 19 Apr 2026 08:40:13 +0000 ROA not after: Sun 18 Apr 2027 08:45:13 +0000 asID: 204464 IP address blocks: 2a14:1ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 14 May 2026 03:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:81:7c:3d:06:5f:bf:87:7c:38:3d:d9:91:08:b6:71:5a:64:81:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Apr 19 08:40:13 2026 GMT Not After : Apr 18 08:45:13 2027 GMT Subject: CN=054E7A096230FDB51763E8537C3E9BC5B1677B56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dd:b8:2a:e1:ae:6d:b6:0e:87:ab:76:9a:de: a3:2d:1d:37:1e:1c:84:b7:6e:a7:43:44:c8:13:27: 30:8c:82:90:e2:01:ad:38:95:50:69:44:e2:64:e7: e4:c9:6c:55:fc:bd:a5:f9:6c:44:e4:8d:81:aa:c9: 9a:9e:3d:2d:15:fc:fc:78:61:67:3c:4c:a6:37:39: b6:23:da:7c:b0:53:b1:5f:d9:9a:93:bb:61:03:63: 03:9b:7d:0b:c1:a2:c1:5b:96:fb:ad:6b:3d:ce:88: db:85:ee:87:6c:76:0a:94:14:86:42:2d:65:61:8a: 4f:9e:8f:c3:c9:43:e0:96:2f:d9:f0:33:5c:91:39: 80:6d:d9:14:f8:68:47:3d:c2:ef:36:31:a0:1c:22: 1a:29:46:2d:0c:53:63:fa:76:77:ab:f6:80:03:00: 5f:cd:72:29:3f:ee:61:37:81:c3:2d:7f:dc:74:6f: 8c:80:eb:54:97:93:92:f7:14:e8:16:92:6f:14:c0: ac:7e:0e:34:76:72:a1:54:46:48:56:14:69:a5:3c: e0:5d:a6:82:4a:25:65:46:71:36:5b:e1:ff:a3:08: c1:a0:a3:23:cb:20:5d:f1:8b:e2:46:46:11:cd:2e: 14:fd:76:3f:66:de:d9:75:97:20:d2:22:09:35:46: 26:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4E:7A:09:62:30:FD:B5:17:63:E8:53:7C:3E:9B:C5:B1:67:7B:56 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33322d3332203d3e20323034343634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 64:20:a2:9f:fd:66:cc:f7:1e:b1:0a:bc:70:4d:78:51:2b:4e: 66:36:80:3c:62:25:eb:a0:1c:c9:99:19:88:b8:24:0d:c4:ad: e2:48:c9:3e:69:cc:5e:25:70:73:64:e0:65:06:77:6d:a3:2a: 1e:19:ed:88:1f:b5:80:8b:f6:15:c7:70:55:b1:42:5a:5a:fe: ba:a7:11:29:df:66:26:6c:34:05:e8:ec:54:ac:b6:10:68:3e: d6:67:49:7a:c7:86:96:ff:e8:6b:36:32:f4:fb:f3:72:b2:ee: 91:41:aa:c7:a1:3d:e4:36:4d:e8:af:30:4b:7e:28:06:2b:88: 5e:05:bd:61:75:f8:62:7e:63:68:da:d3:17:37:1f:3e:5d:64: 83:17:c3:6c:a0:a2:d7:82:62:18:52:d2:cf:14:9c:29:5e:b4: 10:c5:31:61:20:20:3d:20:8b:dc:2c:d6:91:c4:93:59:1d:36: 3a:5d:63:16:b5:01:28:53:65:05:e6:d0:a8:00:69:40:cd:94: 75:bc:ea:e9:61:0f:0e:29:d1:5b:32:fe:05:2d:fb:da:94:e3: 61:69:c7:d2:a3:e1:10:36:13:d4:c1:f9:d4:1f:85:8d:2a:33: b2:88:51:ed:28:5f:08:e6:47:8a:60:00:94:f2:70:e4:5b:d9: ef:bb:ed:01 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUcIF8PQZfv4d8OD3ZkQi2cVpkgRwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA0MTkwODQwMTNaFw0yNzA0MTgwODQ1MTNaMDMxMTAvBgNV BAMTKDA1NEU3QTA5NjIzMEZEQjUxNzYzRTg1MzdDM0U5QkM1QjE2NzdCNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk3bgq4a5ttg6Hq3aa3qMtHTce HIS3bqdDRMgTJzCMgpDiAa04lVBpROJk5+TJbFX8vaX5bETkjYGqyZqePS0V/Px4 YWc8TKY3ObYj2nywU7Ff2ZqTu2EDYwObfQvBosFblvutaz3OiNuF7odsdgqUFIZC LWVhik+ej8PJQ+CWL9nwM1yROYBt2RT4aEc9wu82MaAcIhopRi0MU2P6dner9oAD AF/Ncik/7mE3gcMtf9x0b4yA61SXk5L3FOgWkm8UwKx+DjR2cqFURkhWFGmlPOBd poJKJWVGcTZb4f+jCMGgoyPLIF3xi+JGRhHNLhT9dj9m3tl1lyDSIgk1RiadAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUBU56CWIw/bUXY+hTfD6bxbFne1YwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzAzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMjMwMzQzNDM2MzQu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAqFB7AMA0GCSqGSIb3DQEBCwUAA4IBAQBkIKKf/WbM9x6xCrxw TXhRK05mNoA8YiXroBzJmRmIuCQNxK3iSMk+acxeJXBzZOBlBndtoyoeGe2IH7WA i/YVx3BVsUJaWv66pxEp32YmbDQF6OxUrLYQaD7WZ0l6x4aW/+hrNjL0+/Nysu6R QarHoT3kNk3orzBLfigGK4heBb1hdfhifmNo2tMXNx8+XWSDF8NsoKLXgmIYUtLP FJwpXrQQxTFhICA9IIvcLNaRxJNZHTY6XWMWtQEoU2UF5tCoAGlAzZR1vOrpYQ8O KdFbMv4FLfvalONhacfSo+EQNhPUwfnUH4WNKjOyiFHtKF8I5keKYACU8nDkW9nv u+0B -----END CERTIFICATE-----Generated at Wed May 13 16:14:42 2026 by rpki-client