$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376235303a3a2f34342d3438203d3e20323135363835.roa File: 326131343a316563313a376235303a3a2f34342d3438203d3e20323135363835.roa (raw, json) Hash identifier: IzwkS06+TU6xlgmjKohwCnvrPjgEE+53/+TvwhGB5Kg= Subject key identifier: A3:E0:0F:16:78:D0:1C:FD:66:D9:BC:B4:54:EA:3E:98:4C:DD:52:66 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 61F8A2BA53F986EBAB2012405D7D832F4077F0AB Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376235303a3a2f34342d3438203d3e20323135363835.roa Signing time: Wed 10 Jun 2026 08:58:29 +0000 ROA not before: Wed 10 Jun 2026 08:53:29 +0000 ROA not after: Wed 09 Jun 2027 08:58:29 +0000 asID: 215685 IP address blocks: 2a14:1ec1:7b50::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 17:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f8:a2:ba:53:f9:86:eb:ab:20:12:40:5d:7d:83:2f:40:77:f0:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Jun 10 08:53:29 2026 GMT Not After : Jun 9 08:58:29 2027 GMT Subject: CN=A3E00F1678D01CFD66D9BCB454EA3E984CDD5266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:78:87:a0:93:05:0b:8e:9a:fb:9f:8f:ee:30: f6:59:d5:13:4a:ee:6a:74:6c:fc:47:5b:84:ea:0d: f1:df:4c:f5:c3:df:88:d7:0e:68:f5:e2:64:a1:dd: 99:8d:7d:c3:5c:be:bb:dc:23:2e:76:41:0c:32:8c: 02:f8:b3:f2:f0:fe:b5:18:ee:5a:ae:64:b8:47:8b: 7a:22:a0:cc:08:e9:30:24:4c:f5:da:e8:db:5e:75: 02:45:fa:38:0e:6a:d1:7c:68:07:72:31:e7:9a:df: d1:c4:97:7d:10:cf:b9:7f:4a:9f:45:20:38:4b:d7: cc:78:ea:ff:b2:18:a0:5c:ab:44:1b:1d:bf:81:46: 66:d0:7b:7e:9b:22:d4:6a:76:74:49:0a:d4:8a:cd: 93:5a:51:c1:66:8d:d9:fe:d4:91:5a:31:2e:87:04: 19:c5:40:29:39:e2:83:8f:55:01:f0:50:16:d3:91: 92:5b:95:f3:b2:03:1c:4b:b4:11:f6:2c:1f:4a:21: 8c:84:16:e7:bd:f1:9c:aa:1a:18:eb:6a:09:fd:01: 25:ad:a3:22:14:1e:7c:a4:27:4a:ad:6e:39:39:e5: 39:12:a4:19:9b:37:62:5c:89:c2:4a:0b:7b:10:b1: 5e:65:6b:43:28:5a:44:49:c1:2d:23:93:96:d9:f6: 25:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E0:0F:16:78:D0:1C:FD:66:D9:BC:B4:54:EA:3E:98:4C:DD:52:66 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a376235303a3a2f34342d3438203d3e20323135363835.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1:7b50::/44 Signature Algorithm: sha256WithRSAEncryption 6b:ae:fd:8e:8e:4e:a8:09:35:79:22:71:f8:48:49:e7:3f:03: e0:31:6e:a4:37:e9:bf:0a:a5:c2:a6:38:72:c6:34:ae:71:69: 53:e6:5d:5e:a5:b8:3c:b1:fa:b2:38:2d:1c:3a:b8:a4:6e:02: df:a8:3e:cf:6c:56:fd:a2:fe:b3:c5:71:d2:46:a1:4a:9e:40: 68:a0:97:0a:10:9f:ed:67:8f:80:2b:12:7e:cf:af:bf:17:89: 2c:9e:19:a6:5d:7b:f0:88:80:70:58:42:09:0f:f4:b4:3d:c8: a4:a2:4f:36:7c:5c:97:8f:66:ff:ed:7c:02:0d:49:73:f9:f6: 9a:8b:77:69:ce:2a:2d:6f:64:24:aa:04:b2:0c:32:81:44:d3: 04:2f:78:bd:52:a4:b7:e5:5d:20:1d:1e:4a:90:03:a1:82:3c: f2:5d:5e:4e:fc:23:73:37:8a:07:7b:9d:06:ff:10:6b:d5:6d: de:8a:15:5c:d5:72:f7:ae:5a:5e:8f:e5:5d:bc:12:13:df:76: ff:c7:54:c5:13:85:62:ef:0f:d7:42:ad:3a:17:c1:9f:47:20: 0f:6e:98:18:a6:a2:ee:ea:19:a5:b9:e8:f4:00:71:a3:8f:09: 1d:91:d0:cb:52:b7:d4:5b:7c:6b:d9:8e:65:fe:45:d2:0a:d0: a9:0a:4d:8b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYfiiulP5huurIBJAXX2DL0B38KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA2MTAwODUzMjlaFw0yNzA2MDkwODU4MjlaMDMxMTAvBgNV BAMTKEEzRTAwRjE2NzhEMDFDRkQ2NkQ5QkNCNDU0RUEzRTk4NENERDUyNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCieIegkwULjpr7n4/uMPZZ1RNK 7mp0bPxHW4TqDfHfTPXD34jXDmj14mSh3ZmNfcNcvrvcIy52QQwyjAL4s/Lw/rUY 7lquZLhHi3oioMwI6TAkTPXa6NtedQJF+jgOatF8aAdyMeea39HEl30Qz7l/Sp9F IDhL18x46v+yGKBcq0QbHb+BRmbQe36bItRqdnRJCtSKzZNaUcFmjdn+1JFaMS6H BBnFQCk54oOPVQHwUBbTkZJblfOyAxxLtBH2LB9KIYyEFue98ZyqGhjragn9ASWt oyIUHnykJ0qtbjk55TkSpBmbN2JcicJKC3sQsV5la0MoWkRJwS0jk5bZ9iUTAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUo+APFnjQHP1m2by0VOo+mEzdUmYwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTM3NjIzNTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM1MzYzODM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhQewXtQMA0GCSqGSIb3DQEBCwUAA4IBAQBr rv2Ojk6oCTV5InH4SEnnPwPgMW6kN+m/CqXCpjhyxjSucWlT5l1epbg8sfqyOC0c OrikbgLfqD7PbFb9ov6zxXHSRqFKnkBooJcKEJ/tZ4+AKxJ+z6+/F4ksnhmmXXvw iIBwWEIJD/S0Pcikok82fFyXj2b/7XwCDUlz+faai3dpziotb2QkqgSyDDKBRNME L3i9UqS35V0gHR5KkAOhgjzyXV5O/CNzN4oHe50G/xBr1W3eihVc1XL3rlpej+Vd vBIT33b/x1TFE4Vi7w/XQq06F8GfRyAPbpgYpqLu6hmluej0AHGjjwkdkdDLUrfU W3xr2Y5l/kXSCtCpCk2L -----END CERTIFICATE-----Generated at Sun Jun 14 00:10:51 2026 by rpki-client