$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203438373030.roa File: 326131343a316563303a3a2f33312d3438203d3e203438373030.roa (raw, json) Hash identifier: 5zFC0aBKrn16Glyaue2oFptFutD2x5iVGxip/IIewrc= Subject key identifier: 17:25:F2:51:60:EB:9A:AD:40:D4:FD:95:D2:DF:9A:0F:CA:72:46:16 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 0A8BFE333E59B8B5DD37BAD214459103735B1834 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203438373030.roa Signing time: Fri 10 Apr 2026 16:34:57 +0000 ROA not before: Fri 10 Apr 2026 16:29:57 +0000 ROA not after: Fri 09 Apr 2027 16:34:57 +0000 asID: 48700 IP address blocks: 2a14:1ec0::/31 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 08:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:8b:fe:33:3e:59:b8:b5:dd:37:ba:d2:14:45:91:03:73:5b:18:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Apr 10 16:29:57 2026 GMT Not After : Apr 9 16:34:57 2027 GMT Subject: CN=1725F25160EB9AAD40D4FD95D2DF9A0FCA724616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:24:79:3a:4b:ae:6c:86:f1:f2:f2:27:ef:76: be:e7:bc:0f:c6:df:31:1b:93:84:f2:64:f9:5d:f7: 80:bd:82:08:c6:2c:f0:16:e2:03:8f:8b:c3:54:bd: 56:2a:9b:85:4b:3a:9a:18:0f:31:6c:e4:53:03:a6: b9:b8:d1:20:40:71:af:40:79:8d:d1:d3:60:97:79: 6b:9c:a0:4c:1b:a3:7d:d1:36:9c:4e:20:c9:9b:43: a9:ca:70:40:e6:f1:1d:9c:ba:29:b3:95:e1:17:a9: 56:50:63:75:c8:35:54:bf:29:68:47:7f:fc:9f:21: f3:be:da:c6:3e:02:44:7d:06:1d:ab:46:35:ca:f8: ce:54:48:66:ee:26:0f:19:68:5b:1a:69:3b:c7:99: e5:d2:62:11:26:4b:7b:62:f9:80:55:e4:18:a7:6b: d8:b5:c8:dd:24:7d:d0:90:cf:49:df:4a:86:0d:8f: 95:a8:11:1b:7c:2e:6d:5f:72:2c:ad:1b:a2:e7:d2: 30:1a:42:aa:83:84:36:92:df:5d:73:31:6e:a4:67: 55:3c:86:c6:6d:8a:82:65:06:17:a1:7e:21:b8:e9: bc:91:b8:38:de:ba:e0:01:fc:a9:1c:3a:ec:e2:f3: 97:89:d2:f2:1b:d8:10:2c:1f:53:cd:9d:81:f7:e9: 78:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:25:F2:51:60:EB:9A:AD:40:D4:FD:95:D2:DF:9A:0F:CA:72:46:16 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563303a3a2f33312d3438203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec0::/31 Signature Algorithm: sha256WithRSAEncryption 3f:32:56:4e:c9:23:b2:41:cc:9a:8f:db:bf:69:12:92:91:3a: a9:dc:aa:24:4f:8a:c3:9b:a3:18:86:44:85:b3:dc:ac:98:9c: e6:66:3a:da:05:d3:01:00:33:b3:d8:85:6c:6c:72:09:dd:4b: 3d:2c:09:49:18:d8:1a:7a:eb:18:8d:7c:71:c8:f8:84:67:a2: ea:4b:e8:16:59:0f:10:cb:70:bf:95:7f:d3:7c:95:e2:73:c3: 87:75:2e:ce:1b:9a:97:7f:7f:a5:ca:0d:d8:d0:7b:4c:74:b1: c2:60:b4:eb:ed:fc:ff:5d:ef:c2:f9:41:40:c3:cc:9a:a6:3c: b7:77:48:7c:1e:57:a6:d0:65:f3:95:0c:32:86:51:80:8e:14: df:35:fe:44:8a:99:df:83:88:ce:2d:98:5c:50:18:09:26:e5: 33:e6:92:4f:eb:bd:94:af:1f:e7:a6:51:d8:cb:a0:f7:91:a3: 30:47:4d:f5:cb:99:25:6f:c1:c0:8f:54:23:61:3e:8b:38:db: 49:01:5c:d4:ea:d2:61:eb:99:65:a5:a8:35:8c:3d:db:c8:25: 30:41:ce:ac:31:d9:25:22:d9:7f:b5:8d:8a:d2:39:de:33:36: 21:47:90:75:f7:ca:3a:21:a7:c5:96:a5:21:db:ba:19:21:30: c9:ee:80:f8 -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUCov+Mz5ZuLXdN7rSFEWRA3NbGDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA0MTAxNjI5NTdaFw0yNzA0MDkxNjM0NTdaMDMxMTAvBgNV BAMTKDE3MjVGMjUxNjBFQjlBQUQ0MEQ0RkQ5NUQyREY5QTBGQ0E3MjQ2MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1JHk6S65shvHy8ifvdr7nvA/G 3zEbk4TyZPld94C9ggjGLPAW4gOPi8NUvVYqm4VLOpoYDzFs5FMDprm40SBAca9A eY3R02CXeWucoEwbo33RNpxOIMmbQ6nKcEDm8R2cuimzleEXqVZQY3XINVS/KWhH f/yfIfO+2sY+AkR9Bh2rRjXK+M5USGbuJg8ZaFsaaTvHmeXSYhEmS3ti+YBV5Bin a9i1yN0kfdCQz0nfSoYNj5WoERt8Lm1fciytG6Ln0jAaQqqDhDaS311zMW6kZ1U8 hsZtioJlBhehfiG46byRuDjeuuAB/KkcOuzi85eJ0vIb2BAsH1PNnYH36XjLAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUFyXyUWDrmq1A1P2V0t+aD8pyRhYwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzAzYTNhMmYzMzMxMmQzNDM4MjAzZDNlMjAzNDM4MzczMDMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUBKhQewDANBgkqhkiG9w0BAQsFAAOCAQEAPzJWTskjskHMmo/bv2kS kpE6qdyqJE+Kw5ujGIZEhbPcrJic5mY62gXTAQAzs9iFbGxyCd1LPSwJSRjYGnrr GI18ccj4hGei6kvoFlkPEMtwv5V/03yV4nPDh3Uuzhual39/pcoN2NB7THSxwmC0 6+38/13vwvlBQMPMmqY8t3dIfB5XptBl85UMMoZRgI4U3zX+RIqZ34OIzi2YXFAY CSblM+aST+u9lK8f56ZR2Mug95GjMEdN9cuZJW/BwI9UI2E+izjbSQFc1OrSYeuZ ZaWoNYw928glMEHOrDHZJSLZf7WNitI53jM2IUeQdffKOiGnxZalIdu6GSEwye6A +A== -----END CERTIFICATE-----Generated at Fri Apr 17 19:43:32 2026 by rpki-client