$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa File: 326131343a316563313a3a2f33322d3332203d3e20323037323532.roa (raw, json) Hash identifier: wCpGpHKdqFN1DO1NvTXNItL3x3NUD8VGRqAFwBrJITc= Subject key identifier: 48:22:CB:39:E2:50:84:44:D2:8A:9A:5F:B5:43:1E:72:43:F5:1F:31 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 75B30E3536A8A12F6E837761CEE2D90AAB65FBB6 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa Signing time: Tue 07 Apr 2026 15:34:57 +0000 ROA not before: Tue 07 Apr 2026 15:29:57 +0000 ROA not after: Tue 06 Apr 2027 15:34:57 +0000 asID: 207252 IP address blocks: 2a14:1ec1::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 Apr 2026 08:56:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b3:0e:35:36:a8:a1:2f:6e:83:77:61:ce:e2:d9:0a:ab:65:fb:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Apr 7 15:29:57 2026 GMT Not After : Apr 6 15:34:57 2027 GMT Subject: CN=4822CB39E2508444D28A9A5FB5431E7243F51F31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e2:5b:6b:54:e5:15:d0:0f:85:f1:85:f3:bd: a9:60:55:62:7d:6e:2e:e0:d8:b2:b8:e0:6f:3c:1c: 05:13:58:18:28:f5:e6:12:cc:53:8d:12:a7:14:4f: 09:ab:3c:b2:b2:cd:17:14:7b:95:89:62:f6:f5:2f: 3c:1f:da:d1:49:17:bd:c7:da:91:a3:63:02:38:88: c9:7c:82:d7:3f:7a:30:2a:04:2c:fa:cb:a4:88:90: c9:73:99:21:2f:29:6e:eb:02:6f:b8:4a:22:cb:ec: e9:ae:e6:39:81:a7:ea:0d:aa:ac:c7:e7:b8:ff:52: 22:52:16:1f:11:68:b3:42:ee:27:98:57:2b:b6:4f: 0d:3b:bd:2a:7c:09:75:f8:f4:b5:13:60:1a:fa:78: 23:52:98:bf:69:ef:29:68:89:04:9e:23:4b:8a:52: ff:39:8f:0f:82:f5:5a:71:7a:9d:06:90:ff:68:b7: c9:fe:e8:13:62:f7:d8:1b:b0:ec:35:63:98:a4:a3: 1a:b8:98:66:63:f1:d3:51:9d:87:38:64:0e:f0:af: b6:fc:61:f8:30:40:3e:f5:be:b8:f3:9c:c8:cd:db: 7b:df:15:68:95:16:f4:66:56:2f:96:71:65:3a:e9: 46:8d:8b:32:20:e4:b9:6e:b4:e1:51:1c:dd:c1:31: 09:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:22:CB:39:E2:50:84:44:D2:8A:9A:5F:B5:43:1E:72:43:F5:1F:31 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e20323037323532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1::/32 Signature Algorithm: sha256WithRSAEncryption 07:10:6e:a1:87:ac:da:ec:59:97:80:42:2d:23:28:88:cf:d4: e5:f3:37:e2:fc:2b:5e:f0:4b:8d:62:82:57:1b:75:34:0c:e5: 59:29:3b:f9:14:1e:7d:8b:a0:92:e0:ec:e5:c4:94:c7:5a:94: 58:6d:0c:27:df:32:23:52:be:98:93:94:b0:ca:f5:79:99:c5: c8:b2:94:95:6d:33:76:54:26:cb:85:3c:f3:d7:bd:09:75:e0: e5:af:e7:bc:26:f4:8b:9c:24:b5:4b:e3:b0:c4:ec:d6:71:a2: 7b:fd:5d:74:54:30:6b:42:90:2c:6d:09:90:3a:0d:59:6e:6a: e6:3d:71:da:1d:9b:50:20:77:c7:66:a3:a7:5e:78:09:c9:a2: 6e:2e:04:a8:75:0a:dd:3e:29:a2:17:dc:ea:eb:56:33:17:ef: 8d:0a:df:77:ef:ae:bd:0a:c6:d9:87:54:d0:fb:ba:0e:f3:37: 53:af:9d:04:af:17:d9:52:04:61:64:e3:f0:df:d2:1f:85:9b: d0:9b:6b:ac:24:49:cd:f7:0d:b8:eb:5f:be:8a:4e:64:40:9c: 4b:80:63:22:f5:f8:9e:e6:48:a0:4d:e2:8f:ca:f7:d5:55:4d: 23:e5:f4:d5:6a:4d:f6:0a:35:00:d4:58:dd:46:ab:3d:93:62: f8:f1:e1:9d -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIUdbMONTaooS9ug3dhzuLZCqtl+7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA0MDcxNTI5NTdaFw0yNzA0MDYxNTM0NTdaMDMxMTAvBgNV BAMTKDQ4MjJDQjM5RTI1MDg0NDREMjhBOUE1RkI1NDMxRTcyNDNGNTFGMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC4ltrVOUV0A+F8YXzvalgVWJ9 bi7g2LK44G88HAUTWBgo9eYSzFONEqcUTwmrPLKyzRcUe5WJYvb1Lzwf2tFJF73H 2pGjYwI4iMl8gtc/ejAqBCz6y6SIkMlzmSEvKW7rAm+4SiLL7Omu5jmBp+oNqqzH 57j/UiJSFh8RaLNC7ieYVyu2Tw07vSp8CXX49LUTYBr6eCNSmL9p7yloiQSeI0uK Uv85jw+C9Vpxep0GkP9ot8n+6BNi99gbsOw1Y5ikoxq4mGZj8dNRnYc4ZA7wr7b8 YfgwQD71vrjznMjN23vfFWiVFvRmVi+WcWU66UaNizIg5LlutOFRHN3BMQnpAgMB AAGjggJ5MIICdTAdBgNVHQ4EFgQUSCLLOeJQhETSippftUMeckP1HzEwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzMjMwMzczMjM1MzIu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAP MA0EAgACMAcDBQAqFB7BMA0GCSqGSIb3DQEBCwUAA4IBAQAHEG6hh6za7FmXgEIt IyiIz9Tl8zfi/Cte8EuNYoJXG3U0DOVZKTv5FB59i6CS4OzlxJTHWpRYbQwn3zIj Ur6Yk5SwyvV5mcXIspSVbTN2VCbLhTzz170JdeDlr+e8JvSLnCS1S+OwxOzWcaJ7 /V10VDBrQpAsbQmQOg1ZbmrmPXHaHZtQIHfHZqOnXngJyaJuLgSodQrdPimiF9zq 61YzF++NCt937669CsbZh1TQ+7oO8zdTr50ErxfZUgRhZOPw39IfhZvQm2usJEnN 9w2461++ik5kQJxLgGMi9fie5kigTeKPyvfVVU0j5fTVak32CjUA1FjdRqs9k2L4 8eGd -----END CERTIFICATE-----Generated at Fri Apr 17 18:45:50 2026 by rpki-client