$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203136353039.roa File: 326131343a316563303a3a2f33312d3438203d3e203136353039.roa (raw, json) Hash identifier: EOUQ1JZ1oz2xZOU8+mEukp9ybbKV7scsmw0lQsJAxX4= Subject key identifier: 9B:69:E6:D7:1F:AA:B2:96:5F:4A:A1:33:84:D7:F9:E0:79:D1:DF:9B Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 465DE282BF8F8A7B18F245A6E48BFFDEB2B7462B Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203136353039.roa Signing time: Fri 10 Apr 2026 16:34:57 +0000 ROA not before: Fri 10 Apr 2026 16:29:57 +0000 ROA not after: Fri 09 Apr 2027 16:34:57 +0000 asID: 16509 IP address blocks: 2a14:1ec0::/31 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 07:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:5d:e2:82:bf:8f:8a:7b:18:f2:45:a6:e4:8b:ff:de:b2:b7:46:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Apr 10 16:29:57 2026 GMT Not After : Apr 9 16:34:57 2027 GMT Subject: CN=9B69E6D71FAAB2965F4AA13384D7F9E079D1DF9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ff:77:48:07:12:e3:e2:fb:79:50:90:6c:b2: dc:67:73:41:56:c4:1e:f2:39:65:d7:86:75:6d:02: a9:e6:2c:2f:e0:fe:8f:27:46:a4:68:eb:3b:22:23: 3e:36:8d:60:b9:d4:e1:28:26:0e:19:7c:c6:dd:89: 57:b5:2f:e5:fb:3a:50:b1:4e:3f:eb:cf:d4:d9:58: a1:b8:17:95:0d:83:f0:d5:55:50:d7:49:88:3c:80: ca:d2:92:52:b5:9d:d7:74:e9:9b:04:d9:65:23:e0: cb:4e:3f:70:ce:ce:21:28:1f:04:57:7d:17:ae:d1: fb:4b:c4:e2:bd:f0:34:6f:3f:61:83:e5:83:1c:e7: 91:cb:f4:6d:77:6c:39:78:a3:10:d5:7b:f2:bb:a8: 5a:2c:1b:3c:74:97:27:ae:c8:01:65:07:68:a4:7d: 5b:34:f3:ff:7c:c2:82:48:16:35:bb:b2:49:ec:71: 26:06:57:af:b5:fe:93:10:f0:28:04:82:28:94:21: b9:ec:f0:df:a7:a6:8e:0e:06:49:1c:36:d3:99:88: 1c:a4:b8:80:47:dc:33:47:c0:7d:86:42:ac:e6:d4: 55:b8:5a:94:00:42:62:04:9d:4f:47:bd:5c:d2:1c: 9b:06:31:d9:cf:16:61:a7:21:e4:ad:37:65:5e:48: b3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:69:E6:D7:1F:AA:B2:96:5F:4A:A1:33:84:D7:F9:E0:79:D1:DF:9B X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203136353039.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec0::/31 Signature Algorithm: sha256WithRSAEncryption 34:87:50:19:b3:14:56:65:17:5b:8d:86:18:b4:22:78:6d:f0: ff:88:62:28:b4:cc:a6:9c:d9:52:1d:0d:4a:95:12:0e:4e:d1: 7d:54:b8:ed:25:d7:eb:14:13:bb:c4:aa:87:26:6b:40:ba:9f: 4d:5b:e2:5a:95:cc:d7:e2:04:d6:6a:c4:7a:2a:17:9d:bc:07: 11:67:f9:50:a3:08:b5:e4:c2:d4:03:bc:42:0d:76:4e:11:91: ad:72:93:8f:9d:93:5a:4b:80:3f:5f:51:d6:f4:2d:44:b8:eb: c0:a3:ae:e3:21:bf:c7:7e:31:a0:02:54:6a:4a:59:b1:a4:a2: 83:87:64:35:25:56:84:df:fb:72:83:15:cf:fa:e5:13:a4:21: 6b:89:b8:e3:d6:e7:17:df:02:b7:1e:6c:88:8a:f5:a3:f7:22: 0c:74:46:7f:66:be:c6:94:09:27:c1:29:b7:47:6d:1a:de:9d: 3f:93:01:b8:c9:2f:e9:1b:fb:c1:a8:a7:61:ed:ae:3a:0c:ac: 47:c0:8a:bd:cb:6b:fc:99:79:ed:41:dd:2d:95:7d:5d:69:40: 91:69:c6:b6:6c:36:f5:cd:de:ee:81:1f:11:3e:58:d5:1d:7f: 16:27:be:14:32:46:19:98:12:09:4e:94:1f:b0:4f:e6:e6:bc: 84:0f:6a:8b -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIURl3igr+PinsY8kWm5Iv/3rK3RiswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA0MTAxNjI5NTdaFw0yNzA0MDkxNjM0NTdaMDMxMTAvBgNV BAMTKDlCNjlFNkQ3MUZBQUIyOTY1RjRBQTEzMzg0RDdGOUUwNzlEMURGOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy/3dIBxLj4vt5UJBsstxnc0FW xB7yOWXXhnVtAqnmLC/g/o8nRqRo6zsiIz42jWC51OEoJg4ZfMbdiVe1L+X7OlCx Tj/rz9TZWKG4F5UNg/DVVVDXSYg8gMrSklK1ndd06ZsE2WUj4MtOP3DOziEoHwRX fReu0ftLxOK98DRvP2GD5YMc55HL9G13bDl4oxDVe/K7qFosGzx0lyeuyAFlB2ik fVs08/98woJIFjW7sknscSYGV6+1/pMQ8CgEgiiUIbns8N+npo4OBkkcNtOZiByk uIBH3DNHwH2GQqzm1FW4WpQAQmIEnU9HvVzSHJsGMdnPFmGnIeStN2VeSLPNAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUm2nm1x+qspZfSqEzhNf54HnR35swHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzAzYTNhMmYzMzMxMmQzNDM4MjAzZDNlMjAzMTM2MzUzMDM5LnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUBKhQewDANBgkqhkiG9w0BAQsFAAOCAQEANIdQGbMUVmUXW42GGLQi eG3w/4hiKLTMppzZUh0NSpUSDk7RfVS47SXX6xQTu8SqhyZrQLqfTVviWpXM1+IE 1mrEeioXnbwHEWf5UKMIteTC1AO8Qg12ThGRrXKTj52TWkuAP19R1vQtRLjrwKOu 4yG/x34xoAJUakpZsaSig4dkNSVWhN/7coMVz/rlE6Qha4m449bnF98Ctx5siIr1 o/ciDHRGf2a+xpQJJ8Ept0dtGt6dP5MBuMkv6Rv7wainYe2uOgysR8CKvctr/Jl5 7UHdLZV9XWlAkWnGtmw29c3e7oEfET5Y1R1/Fie+FDJGGZgSCU6UH7BP5ua8hA9q iw== -----END CERTIFICATE-----Generated at Fri Apr 17 16:27:23 2026 by rpki-client