$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637383a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637383a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: HnRWSrEpeOmuzTKhKK+Ly8/65pwZBhG8hC56Nip/vA0= Subject key identifier: 4B:6E:3D:43:75:A4:2D:1A:3B:66:DB:AC:4C:18:DA:80:FB:66:4C:6A Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 2784BC3D62C926E4EE40EC7CBA31D8D85EE94C04 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637383a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 09 Jul 2025 09:38:26 +0000 ROA not before: Wed 09 Jul 2025 09:33:26 +0000 ROA not after: Wed 08 Jul 2026 09:38:26 +0000 asID: 203915 IP address blocks: 2a14:7580:ff78::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 07:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:84:bc:3d:62:c9:26:e4:ee:40:ec:7c:ba:31:d8:d8:5e:e9:4c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jul 9 09:33:26 2025 GMT Not After : Jul 8 09:38:26 2026 GMT Subject: CN=4B6E3D4375A42D1A3B66DBAC4C18DA80FB664C6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:b4:97:6f:76:6b:67:e4:0e:71:e2:6e:a8: e5:eb:fe:d7:9f:9a:1a:4f:31:47:f3:31:1e:0c:fe: 0d:f6:d0:a5:43:2e:c7:89:99:de:2f:bb:5b:36:a7: 60:71:74:35:43:7a:07:f5:58:c7:1b:86:4d:7a:e8: 00:3a:06:89:7b:12:67:16:a6:b1:7c:cd:8f:ad:01: b9:a5:e4:2b:57:49:dd:e6:0a:84:4a:a1:09:a1:0c: 87:41:a5:36:6d:d6:ed:11:ed:50:78:5a:5f:91:30: f5:e2:d9:69:0c:7f:41:d0:34:b3:62:c0:19:f0:e6: f1:3c:53:66:3d:21:38:84:50:10:ee:60:49:10:aa: 49:bf:d2:2d:d1:d6:ec:b8:f8:72:ff:09:84:dd:8e: a9:25:29:2b:9d:20:85:59:1e:6e:91:17:9f:40:02: 7f:bd:a0:16:b8:fa:43:1f:ee:39:b8:4f:f8:71:22: a8:15:8f:55:07:91:de:1a:4b:fd:98:2b:6d:1f:58: df:b4:b0:11:a3:92:38:16:83:42:6f:c6:46:eb:81: 74:f1:37:c2:fe:94:4e:91:b7:f6:df:06:80:49:9c: 00:54:63:1c:06:51:2a:b9:87:1b:98:90:1a:43:95: e6:99:4b:7b:ac:7a:76:81:83:dd:e1:81:76:70:ff: d7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6E:3D:43:75:A4:2D:1A:3B:66:DB:AC:4C:18:DA:80:FB:66:4C:6A X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637383a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff78::/48 Signature Algorithm: sha256WithRSAEncryption 54:ef:89:5f:69:8e:4e:6d:a3:07:a1:eb:87:4c:90:10:97:5e: e6:72:79:a5:32:09:d5:20:1a:5f:5b:5a:b3:f6:cd:3b:d9:8c: 93:04:6e:ea:a3:64:b9:90:5f:65:82:eb:69:87:5a:15:7b:6e: 18:19:52:f7:58:e6:8b:5b:b4:e8:92:bc:03:de:49:fe:c6:ff: a8:b3:f7:58:d8:de:e6:b2:be:a1:89:6f:ec:42:43:85:37:ea: ec:0b:40:66:97:18:ab:ff:90:9a:93:90:9c:25:04:10:cc:b7: 9d:3f:1e:d5:a8:44:74:3b:ea:ec:e8:9f:9c:75:62:45:29:c3: 8b:c6:c8:a7:47:69:b0:63:6c:bf:fa:5f:5f:12:10:f5:3e:cc: cf:96:d2:28:06:22:52:c8:06:88:63:44:f9:bf:cb:c6:7c:64: ae:0a:43:4f:41:13:41:73:04:58:ab:62:eb:06:a5:c3:35:03: f3:ad:8d:7a:1f:9d:69:eb:cb:79:8b:80:b2:90:b4:78:7e:95: 6b:58:78:85:4e:65:f1:42:18:5a:71:9a:f9:6e:5e:23:6c:54: 85:12:f7:d6:3b:30:7d:af:ac:a8:c2:5f:27:be:3d:fb:b7:af: db:81:49:7d:2c:0b:45:62:c5:b3:c6:fb:23:af:5d:e8:ec:c0: b9:14:ab:b5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJ4S8PWLJJuTuQOx8ujHY2F7pTAQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNTA3MDkwOTMzMjZaFw0yNjA3MDgwOTM4MjZaMDMxMTAvBgNV BAMTKDRCNkUzRDQzNzVBNDJEMUEzQjY2REJBQzRDMThEQTgwRkI2NjRDNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC67rSXb3ZrZ+QOceJuqOXr/tef mhpPMUfzMR4M/g320KVDLseJmd4vu1s2p2BxdDVDegf1WMcbhk166AA6Bol7EmcW prF8zY+tAbml5CtXSd3mCoRKoQmhDIdBpTZt1u0R7VB4Wl+RMPXi2WkMf0HQNLNi wBnw5vE8U2Y9ITiEUBDuYEkQqkm/0i3R1uy4+HL/CYTdjqklKSudIIVZHm6RF59A An+9oBa4+kMf7jm4T/hxIqgVj1UHkd4aS/2YK20fWN+0sBGjkjgWg0JvxkbrgXTx N8L+lE6Rt/bfBoBJnABUYxwGUSq5hxuYkBpDleaZS3usenaBg93hgXZw/9elAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUS249Q3WkLRo7ZtusTBjagPtmTGowHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP94MA0GCSqGSIb3DQEBCwUAA4IBAQBU 74lfaY5ObaMHoeuHTJAQl17mcnmlMgnVIBpfW1qz9s072YyTBG7qo2S5kF9lgutp h1oVe24YGVL3WOaLW7TokrwD3kn+xv+os/dY2N7msr6hiW/sQkOFN+rsC0Bmlxir /5Cak5CcJQQQzLedPx7VqER0O+rs6J+cdWJFKcOLxsinR2mwY2y/+l9fEhD1PszP ltIoBiJSyAaIY0T5v8vGfGSuCkNPQRNBcwRYq2LrBqXDNQPzrY16H51p68t5i4Cy kLR4fpVrWHiFTmXxQhhacZr5bl4jbFSFEvfWOzB9r6yowl8nvj37t6/bgUl9LAtF YsWzxvsjr13o7MC5FKu1 -----END CERTIFICATE-----Generated at Sun Jul 20 20:12:29 2025 by rpki-client