$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313630303a3a2f34302d3430203d3e20323139353233.roa File: 326131343a316563313a313630303a3a2f34302d3430203d3e20323139353233.roa (raw, json) Hash identifier: 9E1PsTjd11hXDLZSZeoJaNnT7ONzxHIoAoZBFV00R+U= Subject key identifier: 3E:E9:6F:4C:4B:C4:27:3A:BC:22:B7:A2:2E:E4:6A:F8:48:1E:EA:F6 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 73986D4AFAA7FD1BF55157BB723665BC54784C6D Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313630303a3a2f34302d3430203d3e20323139353233.roa Signing time: Thu 04 Jun 2026 18:42:45 +0000 ROA not before: Thu 04 Jun 2026 18:37:45 +0000 ROA not after: Thu 03 Jun 2027 18:42:45 +0000 asID: 219523 IP address blocks: 2a14:1ec1:1600::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:98:6d:4a:fa:a7:fd:1b:f5:51:57:bb:72:36:65:bc:54:78:4c:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Jun 4 18:37:45 2026 GMT Not After : Jun 3 18:42:45 2027 GMT Subject: CN=3EE96F4C4BC4273ABC22B7A22EE46AF8481EEAF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:5e:dc:6c:bb:46:3b:f6:a7:f9:a8:f7:19: 7f:df:bc:4e:0f:09:1b:28:82:25:f8:12:cd:8a:19: 98:7a:aa:b4:a4:cd:3e:0d:f2:10:18:56:55:72:6d: 58:a4:d5:68:c2:19:95:48:86:86:6f:40:25:7b:82: d7:b7:60:65:35:1c:74:d2:a7:d3:1f:28:71:87:45: 51:b9:dd:88:68:d2:95:72:8c:68:43:3c:58:ff:37: b5:13:c5:a6:2d:98:01:25:24:0a:5d:65:65:b9:5e: bc:13:c3:8e:1c:b4:0e:78:4a:9b:05:bc:d8:b5:83: 75:e4:37:83:28:64:ed:5f:63:ec:cd:9e:98:f0:e8: 5c:6a:97:d9:0e:be:27:e4:78:2d:f3:89:52:b7:d6: 57:f6:54:ab:99:6e:89:46:85:d5:aa:6d:e2:7d:07: e9:e7:25:d5:8e:64:48:87:c8:5d:73:c4:23:08:7e: bf:e1:bb:84:75:84:01:e2:e3:56:d8:dc:a9:e2:e3: 59:e8:c7:ec:24:01:26:f6:fb:29:90:a5:f5:1c:2a: 62:e8:3a:5a:45:7c:55:2f:80:2a:6a:42:e1:03:d7: 10:f9:5e:e4:a9:15:b2:0e:5e:e4:51:51:78:73:64: 8b:29:8f:df:4d:02:04:02:21:f1:ab:ac:88:08:35: 94:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E9:6F:4C:4B:C4:27:3A:BC:22:B7:A2:2E:E4:6A:F8:48:1E:EA:F6 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313630303a3a2f34302d3430203d3e20323139353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1:1600::/40 Signature Algorithm: sha256WithRSAEncryption 37:9d:9c:9a:79:f9:dc:c4:a1:00:42:a9:50:c7:df:0c:4f:d1: 27:eb:b7:86:d4:38:7e:13:ed:11:ba:89:08:ac:1e:cf:02:3f: 43:19:8a:db:bd:ee:04:f7:37:ae:1d:dd:64:a2:1d:ea:a5:09: 88:ff:88:7d:0e:41:20:91:ba:6a:2b:da:7d:d2:1f:d5:2e:1f: b7:85:69:a5:ef:bb:6e:9a:bc:34:9e:9c:a7:5d:e6:ca:e6:0d: c9:12:30:08:89:40:5a:a7:22:4f:01:13:bb:16:d5:92:89:79: 7b:89:de:8e:53:e0:66:b8:de:14:80:d3:06:95:3a:7e:a8:61: 1b:ec:8b:32:7d:2a:75:2b:7e:6c:a6:ad:d2:c5:c7:b4:dc:cd: be:e4:24:ae:f8:06:de:3d:ba:4c:ae:70:6f:b9:af:19:ae:9a: 31:26:8e:1c:97:fc:e6:97:e6:8f:5b:f1:f2:2c:57:f1:bf:b3: 74:01:d5:70:b7:6e:4f:eb:cf:ee:01:b4:b8:7a:b9:9f:85:00: 0e:b9:18:0f:fc:de:39:f6:8c:53:7e:c8:3b:c5:0b:39:3a:ae: 19:fc:f4:7d:f9:f7:8b:6b:1e:c0:a5:f1:6f:7b:bb:6c:fb:83: 72:54:e5:9e:96:2a:3a:38:1f:cf:d3:12:c5:cd:6c:6a:5f:19: f1:d2:e5:99 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUc5htSvqn/Rv1UVe7cjZlvFR4TG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA2MDQxODM3NDVaFw0yNzA2MDMxODQyNDVaMDMxMTAvBgNV BAMTKDNFRTk2RjRDNEJDNDI3M0FCQzIyQjdBMjJFRTQ2QUY4NDgxRUVBRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzlF7cbLtGO/an+aj3GX/fvE4P CRsogiX4Es2KGZh6qrSkzT4N8hAYVlVybVik1WjCGZVIhoZvQCV7gte3YGU1HHTS p9MfKHGHRVG53Yho0pVyjGhDPFj/N7UTxaYtmAElJApdZWW5XrwTw44ctA54SpsF vNi1g3XkN4MoZO1fY+zNnpjw6Fxql9kOvifkeC3ziVK31lf2VKuZbolGhdWqbeJ9 B+nnJdWOZEiHyF1zxCMIfr/hu4R1hAHi41bY3Kni41nox+wkASb2+ymQpfUcKmLo OlpFfFUvgCpqQuED1xD5XuSpFbIOXuRRUXhzZIspj99NAgQCIfGrrIgINZSHAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUPulvTEvEJzq8IreiLuRq+Ege6vYwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTMxMzYzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM5MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhQewRYwDQYJKoZIhvcNAQELBQADggEBADed nJp5+dzEoQBCqVDH3wxP0Sfrt4bUOH4T7RG6iQisHs8CP0MZitu97gT3N64d3WSi HeqlCYj/iH0OQSCRumor2n3SH9UuH7eFaaXvu26avDSenKdd5srmDckSMAiJQFqn Ik8BE7sW1ZKJeXuJ3o5T4Ga43hSA0waVOn6oYRvsizJ9KnUrfmymrdLFx7Tczb7k JK74Bt49ukyucG+5rxmumjEmjhyX/OaX5o9b8fIsV/G/s3QB1XC3bk/rz+4BtLh6 uZ+FAA65GA/83jn2jFN+yDvFCzk6rhn89H3594trHsCl8W97u2z7g3JU5Z6WKjo4 H8/TEsXNbGpfGfHS5Zk= -----END CERTIFICATE-----Generated at Sat Jun 13 23:38:42 2026 by rpki-client