$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa File: 326131343a316563313a3a2f33322d3438203d3e203438373030.roa (raw, json) Hash identifier: rD1drMlhgCHEm0vlVi8DONqmz75yH/sypTpIzdkNP6c= Subject key identifier: 28:20:25:56:48:33:A7:98:DA:86:C9:70:B4:E4:B7:EE:F2:8D:9C:43 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 12E1F64DF8BCCF0784A7BF00F79A946406CBE2B4 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa Signing time: Sat 20 Sep 2025 08:32:19 +0000 ROA not before: Sat 20 Sep 2025 08:27:19 +0000 ROA not after: Sat 19 Sep 2026 08:32:19 +0000 asID: 48700 IP address blocks: 2a14:1ec1::/32 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 29 Oct 2025 16:03:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e1:f6:4d:f8:bc:cf:07:84:a7:bf:00:f7:9a:94:64:06:cb:e2:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Sep 20 08:27:19 2025 GMT Not After : Sep 19 08:32:19 2026 GMT Subject: CN=282025564833A798DA86C970B4E4B7EEF28D9C43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:67:ee:cb:43:06:19:c4:4a:fa:57:48:d1:93: 02:ff:cd:8e:cc:32:ea:d4:b7:20:1c:76:2f:85:b4: 09:7a:f0:5b:82:44:e9:57:45:f9:da:4b:0f:1b:90: 3f:9a:6e:53:16:33:50:d9:b4:b6:0c:7a:9a:a2:bb: fc:a2:82:19:fc:ab:58:a9:8e:ca:30:62:e5:31:d8: 05:b0:3e:d3:43:16:4b:f7:eb:14:b4:1d:c4:45:ce: ad:ab:df:26:2c:c6:49:9c:7f:90:fd:b5:33:10:19: b3:58:2f:f4:44:d9:8d:68:b3:82:05:02:57:f4:bc: fe:2b:95:bd:61:23:0a:25:f9:4a:19:d1:ef:5d:63: 74:c9:1b:18:eb:3a:9c:2a:3a:eb:cb:16:49:be:6b: cf:cb:79:d9:8c:84:6b:f1:91:34:43:62:e9:89:7e: f4:1b:b1:b3:14:a9:a4:ba:17:30:02:ca:58:bb:63: 40:9c:2f:a7:3b:65:4e:e5:aa:d8:c4:e9:9b:3b:a8: 74:9a:d5:d5:2a:67:41:d0:56:07:b3:7c:e4:32:22: 11:17:4d:26:fa:bc:3d:e1:b2:e1:1a:94:7e:28:43: 99:40:9a:33:56:08:70:11:06:59:a2:51:44:9f:f8: d9:ea:75:09:cd:4b:17:9b:fb:6f:de:86:56:e6:3d: 2b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:20:25:56:48:33:A7:98:DA:86:C9:70:B4:E4:B7:EE:F2:8D:9C:43 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3438203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1::/32 Signature Algorithm: sha256WithRSAEncryption 7e:ac:c1:70:cb:2b:f0:7b:67:17:a7:39:0f:f8:ad:2c:b9:e7: f9:9f:87:5b:ee:81:27:36:6e:4f:87:a0:ea:f1:a1:fa:42:1b: 9b:2c:3f:f6:cb:1e:14:1d:1c:ad:37:80:08:9f:ba:4d:87:47: 7b:5d:a5:6b:c1:94:ee:1b:68:b7:ec:85:2c:f1:61:57:d5:93: be:dd:f9:00:de:70:11:98:69:af:52:ac:e8:20:f9:3c:4f:f4: 88:b9:f3:88:98:7b:8d:9f:4c:e0:ad:ce:81:bb:a9:f8:a4:4b: e7:d7:86:45:29:68:cc:17:ac:09:da:52:8f:53:ae:f3:4a:85: 38:37:04:ac:8d:4b:fe:f1:ba:03:d7:ae:19:79:5e:67:06:2a: c1:8c:e3:75:94:8f:f0:6e:1c:37:c1:40:9a:7f:7d:1f:7b:3b: e9:c0:75:45:c7:5b:42:dc:6f:71:0b:0c:b3:52:df:f3:f3:91: c3:5b:ef:85:59:e6:c4:f6:d8:75:1c:e2:9d:24:f8:ad:63:76: 66:82:55:a1:30:5b:12:2b:b1:de:19:b2:d7:b8:a5:46:65:f2: 18:74:84:3b:4e:7e:9f:d9:f2:f6:e8:0b:ad:2f:92:fe:84:4b: 50:04:38:1b:bd:9c:8a:bc:80:92:32:7a:ef:f2:04:d8:be:58: f9:3f:67:09 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUEuH2Tfi8zweEp78A95qUZAbL4rQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNTA5MjAwODI3MTlaFw0yNjA5MTkwODMyMTlaMDMxMTAvBgNV BAMTKDI4MjAyNTU2NDgzM0E3OThEQTg2Qzk3MEI0RTRCN0VFRjI4RDlDNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEZ+7LQwYZxEr6V0jRkwL/zY7M MurUtyAcdi+FtAl68FuCROlXRfnaSw8bkD+ablMWM1DZtLYMepqiu/yighn8q1ip jsowYuUx2AWwPtNDFkv36xS0HcRFzq2r3yYsxkmcf5D9tTMQGbNYL/RE2Y1os4IF Alf0vP4rlb1hIwol+UoZ0e9dY3TJGxjrOpwqOuvLFkm+a8/LedmMhGvxkTRDYumJ fvQbsbMUqaS6FzACyli7Y0CcL6c7ZU7lqtjE6Zs7qHSa1dUqZ0HQVgezfOQyIhEX TSb6vD3hsuEalH4oQ5lAmjNWCHARBlmiUUSf+NnqdQnNSxeb+2/ehlbmPSvBAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUKCAlVkgzp5jahslwtOS37vKNnEMwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzNDM4MjAzZDNlMjAzNDM4MzczMDMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAKhQewTANBgkqhkiG9w0BAQsFAAOCAQEAfqzBcMsr8HtnF6c5D/it LLnn+Z+HW+6BJzZuT4eg6vGh+kIbmyw/9sseFB0crTeACJ+6TYdHe12la8GU7hto t+yFLPFhV9WTvt35AN5wEZhpr1Ks6CD5PE/0iLnziJh7jZ9M4K3Ogbup+KRL59eG RSlozBesCdpSj1Ou80qFODcErI1L/vG6A9euGXleZwYqwYzjdZSP8G4cN8FAmn99 H3s76cB1RcdbQtxvcQsMs1Lf8/ORw1vvhVnmxPbYdRzinST4rWN2ZoJVoTBbEiux 3hmy17ilRmXyGHSEO05+n9ny9ugLrS+S/oRLUAQ4G72ciryAkjJ67/IE2L5Y+T9n CQ== -----END CERTIFICATE-----Generated at Wed Oct 29 02:56:07 2025 by rpki-client