$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313730303a3a2f34302d3430203d3e20323139353233.roa File: 326131343a316563313a313730303a3a2f34302d3430203d3e20323139353233.roa (raw, json) Hash identifier: A8bwWH9/ybdeySNN01RK//BZzg4rKSE3B00g1VeCR5M= Subject key identifier: 8D:55:4B:0A:D9:70:F2:61:49:FF:F2:14:0A:9F:97:86:7F:1C:CD:40 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 55AE1FA5E05A5E08531051BDCDA05BFF5F718EA2 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313730303a3a2f34302d3430203d3e20323139353233.roa Signing time: Thu 04 Jun 2026 18:42:56 +0000 ROA not before: Thu 04 Jun 2026 18:37:56 +0000 ROA not after: Thu 03 Jun 2027 18:42:56 +0000 asID: 219523 IP address blocks: 2a14:1ec1:1700::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ae:1f:a5:e0:5a:5e:08:53:10:51:bd:cd:a0:5b:ff:5f:71:8e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Jun 4 18:37:56 2026 GMT Not After : Jun 3 18:42:56 2027 GMT Subject: CN=8D554B0AD970F26149FFF2140A9F97867F1CCD40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:f8:aa:14:f7:32:57:8e:38:7d:ee:56:f3: f0:4f:61:32:10:c1:56:35:c0:28:7f:ca:65:77:4f: 6b:32:74:15:86:77:04:ae:50:52:cd:dc:fe:60:6f: 7c:d5:5c:d3:88:d7:6f:48:ef:52:b4:13:33:1a:a5: ad:34:23:07:35:81:af:4c:83:be:96:dc:33:55:b0: d2:68:a8:1c:97:47:a6:ef:c0:7b:ea:d7:6c:b4:ba: b4:94:f1:94:1c:94:c8:08:84:74:b9:69:d4:7e:04: d1:ff:16:e1:18:0f:be:6e:42:6e:8d:fe:f6:aa:f7: 9f:43:63:7e:05:a5:72:37:45:48:e6:f9:a4:1f:d2: b3:6d:39:8b:42:60:93:4c:8f:24:f0:43:f5:8a:8e: 3c:cd:b9:fe:3b:66:34:38:70:76:c9:b1:c8:03:89: 9a:64:15:47:0c:8c:65:97:6f:59:19:57:64:33:f5: 0d:75:f7:a2:37:7d:22:c7:e2:37:53:ec:0c:ab:93: 8f:f2:9d:fa:25:73:a0:8a:ca:b4:fc:81:b1:be:de: 85:ae:96:c9:81:d6:66:75:dc:df:36:cf:22:5f:26: ca:70:a3:80:ed:f6:e9:48:68:69:38:46:9e:86:4c: b5:fe:66:81:0c:df:da:88:36:1f:3f:5d:6c:99:4e: 8e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:55:4B:0A:D9:70:F2:61:49:FF:F2:14:0A:9F:97:86:7F:1C:CD:40 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a313730303a3a2f34302d3430203d3e20323139353233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1:1700::/40 Signature Algorithm: sha256WithRSAEncryption 51:ba:82:37:98:33:be:cd:8f:2e:95:db:02:6d:b8:bf:87:73: de:19:ad:29:16:35:29:6f:d9:27:0b:3f:5d:07:21:06:07:50: 9d:16:9e:f2:d6:78:28:33:2b:3c:a6:03:a4:df:a9:86:8c:db: 8d:d0:c5:f0:26:96:cc:5f:6d:3f:3c:1e:55:5b:43:36:24:e2: 78:8c:4d:7b:6e:7c:64:76:8c:11:03:13:71:a9:e4:43:4e:29: c1:c5:bf:57:11:07:66:7c:6f:c4:38:57:5d:46:de:ae:c5:0f: e8:ce:a2:07:1e:4e:61:2e:fd:72:6f:d2:e2:61:38:88:38:f8: ce:36:7e:ee:7f:b4:cf:77:33:a5:3c:66:97:77:d0:4f:7c:ea: d7:f1:95:01:ab:3b:7a:64:77:ec:6a:77:58:d8:e7:fe:6b:f3: 36:3a:01:a9:7e:68:dd:6c:37:f5:00:d3:31:4e:59:59:b4:98: 4f:b9:9b:9f:68:aa:61:03:b1:ac:64:8f:af:70:3c:6a:69:04: 58:dc:5f:8a:9a:23:0f:28:40:ca:00:76:13:f6:a2:78:b4:9e: 7d:e8:80:25:b7:32:73:57:69:86:db:89:af:d5:19:e6:7d:60: a7:66:36:e3:30:39:3c:30:f9:6a:83:d7:ac:c6:e5:fd:5a:ac: d9:7b:76:be -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUVa4fpeBaXghTEFG9zaBb/19xjqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA2MDQxODM3NTZaFw0yNzA2MDMxODQyNTZaMDMxMTAvBgNV BAMTKDhENTU0QjBBRDk3MEYyNjE0OUZGRjIxNDBBOUY5Nzg2N0YxQ0NENDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4JPiqFPcyV444fe5W8/BPYTIQ wVY1wCh/ymV3T2sydBWGdwSuUFLN3P5gb3zVXNOI129I71K0EzMapa00Iwc1ga9M g76W3DNVsNJoqByXR6bvwHvq12y0urSU8ZQclMgIhHS5adR+BNH/FuEYD75uQm6N /vaq959DY34FpXI3RUjm+aQf0rNtOYtCYJNMjyTwQ/WKjjzNuf47ZjQ4cHbJscgD iZpkFUcMjGWXb1kZV2Qz9Q1196I3fSLH4jdT7Ayrk4/ynfolc6CKyrT8gbG+3oWu lsmB1mZ13N82zyJfJspwo4Dt9ulIaGk4Rp6GTLX+ZoEM39qINh8/XWyZTo7NAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUjVVLCtlw8mFJ//IUCp+Xhn8czUAwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTMxMzczMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIz MTM5MzUzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhQewRcwDQYJKoZIhvcNAQELBQADggEBAFG6 gjeYM77Njy6V2wJtuL+Hc94ZrSkWNSlv2ScLP10HIQYHUJ0WnvLWeCgzKzymA6Tf qYaM243QxfAmlsxfbT88HlVbQzYk4niMTXtufGR2jBEDE3Gp5ENOKcHFv1cRB2Z8 b8Q4V11G3q7FD+jOogceTmEu/XJv0uJhOIg4+M42fu5/tM93M6U8Zpd30E986tfx lQGrO3pkd+xqd1jY5/5r8zY6Aal+aN1sN/UA0zFOWVm0mE+5m59oqmEDsaxkj69w PGppBFjcX4qaIw8oQMoAdhP2oni0nn3ogCW3MnNXaYbbia/VGeZ9YKdmNuMwOTww +WqD16zG5f1arNl7dr4= -----END CERTIFICATE-----Generated at Sun Jun 14 02:46:41 2026 by rpki-client