$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: 9QAAhr1wwrheqUnrWa4FkevZ/+WKuCODK+T1ZZmcwl8= Subject key identifier: CD:FE:AA:69:9D:E0:E9:94:FF:DF:09:8E:8A:DD:EA:D5:63:09:45:8D Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 482830121213AD12F04DB44BC89C31A1740F07EC Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 09 Jul 2025 09:38:06 +0000 ROA not before: Wed 09 Jul 2025 09:33:06 +0000 ROA not after: Wed 08 Jul 2026 09:38:06 +0000 asID: 203915 IP address blocks: 2a14:7580:ff75::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 07:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:28:30:12:12:13:ad:12:f0:4d:b4:4b:c8:9c:31:a1:74:0f:07:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jul 9 09:33:06 2025 GMT Not After : Jul 8 09:38:06 2026 GMT Subject: CN=CDFEAA699DE0E994FFDF098E8ADDEAD56309458D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9a:1f:dc:11:7c:3f:f9:c9:63:e3:b5:11:8b: 78:28:bf:43:18:98:9a:84:83:33:aa:5c:e3:aa:f8: aa:7b:e2:58:c3:b5:a4:30:f7:aa:c9:5f:87:d8:12: 09:d0:0b:5b:05:67:7f:85:76:9a:88:a5:d4:9d:8f: fe:36:1a:38:07:21:4f:48:f6:e5:64:2c:c1:6c:e6: 3d:d4:36:82:a4:d7:b6:da:4d:a3:15:21:a0:53:8d: 97:30:0e:b8:4a:e7:55:9b:5e:51:0c:38:32:af:55: 7a:8e:22:da:eb:67:d4:89:5f:b8:48:b2:ee:ad:e1: 8a:c5:9b:7a:d4:ff:a4:f5:b2:7b:e3:a4:98:57:0e: b3:78:c7:26:a5:ed:38:06:be:bd:84:7b:c8:ad:89: 0c:1b:da:39:ea:23:7f:d8:f0:f7:bc:8f:1a:85:6f: 08:57:d1:b2:e6:31:bd:ad:c3:46:ff:4a:26:c2:02: a0:e0:bb:98:54:49:05:54:7a:6a:f2:ac:d3:33:44: 38:22:74:d8:a6:e6:b0:85:9c:42:db:2e:8b:be:f7: 53:08:65:fa:3e:23:45:e6:27:46:d7:a9:48:19:03: fb:01:55:5e:fd:51:07:07:28:c7:68:e1:c6:3b:32: 49:c8:af:92:84:2e:a4:e8:4a:8f:64:46:c2:0d:3b: 49:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FE:AA:69:9D:E0:E9:94:FF:DF:09:8E:8A:DD:EA:D5:63:09:45:8D X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff75::/48 Signature Algorithm: sha256WithRSAEncryption 8c:29:30:18:3c:dc:7a:88:4d:69:25:12:ee:9c:4e:98:bf:1d: 79:08:a9:41:00:af:bf:33:d7:7f:6e:49:e4:32:c4:4e:f4:53: 0e:e9:94:4a:2b:8a:22:35:17:d1:b7:c5:0c:47:59:d4:45:df: 6d:ab:2e:f6:bc:0b:e0:2e:d1:74:e0:04:04:2a:2c:14:01:e2: 3b:af:ca:6d:62:26:90:67:61:d4:d4:08:72:71:e2:41:b3:c4: 45:5f:d3:87:23:6d:16:7e:82:68:0b:ba:4a:5f:95:68:8e:7e: 09:76:26:88:1d:c8:80:4f:bc:09:4c:69:c7:d8:b2:40:76:14: 13:86:71:c5:cf:a7:79:f2:91:87:a0:e2:ba:03:34:eb:2b:f0: 76:64:f1:46:f5:77:de:73:8e:15:7c:0a:f0:62:06:e2:2a:77: 07:46:28:81:78:f6:85:7e:e0:22:92:9e:19:8a:f9:f6:84:ce: a8:2f:7f:da:b5:e3:ee:18:36:ae:9a:74:a2:67:2d:03:27:0c: 83:8f:51:96:22:1f:91:88:e0:95:da:3c:8d:2a:78:04:fb:e2: cc:14:3f:40:82:b9:a4:4b:dd:c0:b1:d3:c7:5d:f0:ed:32:cf: 73:be:c3:b0:ab:19:f0:2b:f8:e8:a5:48:d2:c0:c0:2e:2d:8d: 44:9f:53:54 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSCgwEhITrRLwTbRLyJwxoXQPB+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNTA3MDkwOTMzMDZaFw0yNjA3MDgwOTM4MDZaMDMxMTAvBgNV BAMTKENERkVBQTY5OURFMEU5OTRGRkRGMDk4RThBRERFQUQ1NjMwOTQ1OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmmh/cEXw/+clj47URi3gov0MY mJqEgzOqXOOq+Kp74ljDtaQw96rJX4fYEgnQC1sFZ3+FdpqIpdSdj/42GjgHIU9I 9uVkLMFs5j3UNoKk17baTaMVIaBTjZcwDrhK51WbXlEMODKvVXqOItrrZ9SJX7hI su6t4YrFm3rU/6T1snvjpJhXDrN4xyal7TgGvr2Ee8itiQwb2jnqI3/Y8Pe8jxqF bwhX0bLmMb2tw0b/SibCAqDgu5hUSQVUemryrNMzRDgidNim5rCFnELbLou+91MI Zfo+I0XmJ0bXqUgZA/sBVV79UQcHKMdo4cY7MknIr5KELqToSo9kRsINO0mFAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUzf6qaZ3g6ZT/3wmOit3q1WMJRY0wHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP91MA0GCSqGSIb3DQEBCwUAA4IBAQCM KTAYPNx6iE1pJRLunE6Yvx15CKlBAK+/M9d/bknkMsRO9FMO6ZRKK4oiNRfRt8UM R1nURd9tqy72vAvgLtF04AQEKiwUAeI7r8ptYiaQZ2HU1AhyceJBs8RFX9OHI20W foJoC7pKX5Vojn4JdiaIHciAT7wJTGnH2LJAdhQThnHFz6d58pGHoOK6AzTrK/B2 ZPFG9Xfec44VfArwYgbiKncHRiiBePaFfuAikp4Zivn2hM6oL3/atePuGDaumnSi Zy0DJwyDj1GWIh+RiOCV2jyNKngE++LMFD9AgrmkS93AsdPHXfDtMs9zvsOwqxnw K/jopUjSwMAuLY1En1NU -----END CERTIFICATE-----Generated at Sun Jul 20 20:12:31 2025 by rpki-client