$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa File: 326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa (raw, json) Hash identifier: 3/JDrgPcwa3QkItCqhf73S0kH72VYqnJSSE72cvYDCQ= Subject key identifier: 2B:D4:A6:FF:8D:DA:84:B1:0E:A7:18:6C:9D:0F:56:6D:00:81:8F:1E Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 6680B24E24AC1159F5A5877F6672830AC3BC5FD2 Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa Signing time: Sat 06 Jun 2026 12:35:06 +0000 ROA not before: Sat 06 Jun 2026 12:30:06 +0000 ROA not after: Sat 05 Jun 2027 12:35:06 +0000 asID: 0 IP address blocks: 2a14:1ec7:c010::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 08:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:80:b2:4e:24:ac:11:59:f5:a5:87:7f:66:72:83:0a:c3:bc:5f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Jun 6 12:30:06 2026 GMT Not After : Jun 5 12:35:06 2027 GMT Subject: CN=2BD4A6FF8DDA84B10EA7186C9D0F566D00818F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:1e:7a:18:f4:7a:ce:ba:36:37:a2:ab:ce: 05:06:f0:b8:a1:47:37:9d:a8:08:77:a1:04:db:cd: f5:d2:65:8e:09:7f:a4:e0:60:50:e8:76:a1:05:c2: dd:a5:fc:05:ea:80:97:0a:3b:49:d9:ec:9f:13:59: f1:a7:97:43:ad:61:e2:5a:7c:6c:87:24:31:74:33: 70:e4:f9:c8:50:61:08:6a:1f:bf:14:d5:ed:0e:f9: bd:61:1c:b6:cf:02:20:85:61:1f:ea:46:82:61:d2: 9d:e6:e3:96:06:3e:e3:d1:aa:aa:3c:53:d3:57:54: 28:18:d4:75:f4:d1:95:71:f1:77:bf:63:b6:c9:05: 22:ee:13:2c:a6:62:c3:5a:f7:04:9f:84:84:87:de: 2e:2f:d1:19:50:c6:73:96:64:0b:96:05:b5:78:ec: 8e:88:29:7b:c6:ad:81:a5:a6:55:88:88:2e:4e:0d: 15:58:70:6b:bd:28:d2:31:d3:ec:3b:c6:62:bc:47: f7:12:c2:fd:5b:7f:c9:b8:08:d9:af:ca:bd:58:6c: f8:18:d7:47:57:b3:e3:a5:bf:a9:45:d6:46:de:f3: ff:da:03:ca:f5:7d:1f:93:a1:c1:ae:81:e4:9b:63: ea:fc:ab:03:13:fe:b8:0e:be:63:32:7d:ec:63:a6: 51:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D4:A6:FF:8D:DA:84:B1:0E:A7:18:6C:9D:0F:56:6D:00:81:8F:1E X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563373a633031303a3a2f34342d3434203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:c010::/44 Signature Algorithm: sha256WithRSAEncryption 39:45:9d:9f:ba:00:cf:22:9c:ba:a8:d7:43:d0:a8:d2:f2:e9: 35:03:7d:e1:6b:66:cc:84:b8:67:1d:bf:76:91:c0:0e:ef:81: 12:55:d2:87:be:d6:ec:d8:52:d1:5f:dc:1b:23:09:b2:8e:bc: e3:69:ee:dd:89:45:09:c4:28:3e:22:a5:55:9a:91:b6:5b:e7: 06:0b:53:f1:38:df:7b:0d:f1:d4:ab:38:a4:56:80:6c:11:38: 91:eb:b0:4d:ac:67:bb:42:16:39:ed:5f:62:9c:7a:46:5c:d2: bb:c6:c7:2c:fd:3d:63:6e:d0:b1:89:1d:5d:f2:5d:26:09:53: 4a:98:b0:67:32:01:4f:34:46:77:3d:c1:ee:8f:00:3a:b6:89: 12:47:27:f5:67:58:1c:5c:c6:82:73:46:d9:f0:b0:60:ff:a2: 27:ff:43:26:81:48:ac:8a:db:fe:10:ad:60:07:ad:96:b4:e7: ef:e3:82:72:cd:b3:e6:a1:82:09:2d:a6:73:87:fa:65:c1:d0: dc:66:ae:39:cf:a7:a7:72:1c:61:8c:b8:35:1c:bd:be:7b:33: 0b:c7:08:3c:cc:41:95:0a:35:d5:a6:c1:4c:d3:8e:55:5f:fa: eb:90:62:0f:a4:7c:ae:8d:f6:46:f6:e9:f2:b1:83:be:17:21: 92:d7:bd:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUZoCyTiSsEVn1pYd/ZnKDCsO8X9IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNjA2MDYxMjMwMDZaFw0yNzA2MDUxMjM1MDZaMDMxMTAvBgNV BAMTKDJCRDRBNkZGOEREQTg0QjEwRUE3MTg2QzlEMEY1NjZEMDA4MThGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ9R56GPR6zro2N6KrzgUG8Lih RzedqAh3oQTbzfXSZY4Jf6TgYFDodqEFwt2l/AXqgJcKO0nZ7J8TWfGnl0OtYeJa fGyHJDF0M3Dk+chQYQhqH78U1e0O+b1hHLbPAiCFYR/qRoJh0p3m45YGPuPRqqo8 U9NXVCgY1HX00ZVx8Xe/Y7bJBSLuEyymYsNa9wSfhISH3i4v0RlQxnOWZAuWBbV4 7I6IKXvGrYGlplWIiC5ODRVYcGu9KNIx0+w7xmK8R/cSwv1bf8m4CNmvyr1YbPgY 10dXs+Olv6lF1kbe8//aA8r1fR+TocGugeSbY+r8qwMT/rgOvmMyfexjplG/AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUK9Sm/43ahLEOpxhsnQ9WbQCBjx4wHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUF BzALhoGNcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzczYTYzMzAzMTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzAu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqFB7HwBAwDQYJKoZIhvcNAQELBQADggEBADlFnZ+6AM8inLqo 10PQqNLy6TUDfeFrZsyEuGcdv3aRwA7vgRJV0oe+1uzYUtFf3BsjCbKOvONp7t2J RQnEKD4ipVWakbZb5wYLU/E433sN8dSrOKRWgGwROJHrsE2sZ7tCFjntX2KcekZc 0rvGxyz9PWNu0LGJHV3yXSYJU0qYsGcyAU80Rnc9we6PADq2iRJHJ/VnWBxcxoJz RtnwsGD/oif/QyaBSKyK2/4QrWAHrZa05+/jgnLNs+ahggktpnOH+mXB0NxmrjnP p6dyHGGMuDUcvb57MwvHCDzMQZUKNdWmwUzTjlVf+uuQYg+kfK6N9kb26fKxg74X IZLXvWA= -----END CERTIFICATE-----Generated at Sat Jun 13 18:38:44 2026 by rpki-client