$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637643a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637643a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: H+78AH4TYlugOgXjwzDN7rCd3EnIWoVZYuyJbZiEnfs= Subject key identifier: 18:9D:44:4F:9F:34:89:74:CC:BB:2B:24:4C:7E:24:67:24:0B:6C:40 Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 1E293DDAE01D349523E5AC159A4D09D1C0DDCA55 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637643a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 09 Jul 2025 09:38:57 +0000 ROA not before: Wed 09 Jul 2025 09:33:57 +0000 ROA not after: Wed 08 Jul 2026 09:38:57 +0000 asID: 203915 IP address blocks: 2a14:7580:ff7d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 07:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:29:3d:da:e0:1d:34:95:23:e5:ac:15:9a:4d:09:d1:c0:dd:ca:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jul 9 09:33:57 2025 GMT Not After : Jul 8 09:38:57 2026 GMT Subject: CN=189D444F9F348974CCBB2B244C7E2467240B6C40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9a:3d:f8:cf:67:6d:54:a9:99:94:38:be:2c: 87:0d:27:9a:1f:ba:dd:f2:02:81:9d:c1:d0:86:c1: 86:b2:c7:af:34:72:40:fc:e2:f1:a1:62:ad:75:c8: 81:3c:42:e2:3e:33:2f:e1:a7:90:8b:53:0e:36:12: a4:8d:51:ec:07:38:e5:68:f2:d1:19:3e:31:e8:9f: 2f:cf:0a:73:c8:9e:78:85:b8:79:c5:bc:9e:d4:cf: 42:71:02:c5:42:28:99:bf:fa:ac:6e:5f:8b:0c:f3: f1:34:05:7d:42:0d:a6:35:dc:93:5a:3a:d6:aa:af: 23:c2:50:5a:ce:54:a7:49:c6:55:c8:8d:63:bf:25: 4f:79:d6:4a:37:20:06:f2:8c:1c:1f:7d:f4:b2:ae: 79:f8:88:41:69:70:49:68:1a:2d:35:20:e4:bf:6b: 23:32:46:2d:d8:35:39:1a:b3:f5:32:23:cf:ba:57: 67:10:00:82:09:aa:ad:57:1b:ce:4e:5e:2a:f4:a9: 14:7c:ab:cb:b9:61:4b:d4:d7:00:c7:cb:68:dc:89: 95:e0:7b:26:f6:49:14:f8:1b:8f:f5:5c:3e:07:c0: 5b:c5:61:cb:45:1e:8c:80:f1:02:10:2f:a9:70:b8: aa:24:80:e0:39:c6:88:35:8f:0a:5e:06:1c:8f:7a: a7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:9D:44:4F:9F:34:89:74:CC:BB:2B:24:4C:7E:24:67:24:0B:6C:40 X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637643a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff7d::/48 Signature Algorithm: sha256WithRSAEncryption 72:9a:56:65:54:70:db:01:e8:42:6a:fc:2a:72:e6:73:1e:fd: 69:36:87:b1:36:ce:ca:57:09:18:70:21:81:dc:23:02:c6:5d: b0:8f:6a:34:4b:1b:86:8b:c3:f6:2b:a6:46:7d:95:a0:56:f5: fd:b7:16:7e:b3:43:fd:54:39:50:a0:43:cf:28:d3:35:30:26: 2e:22:bd:ca:e9:1d:72:84:09:f3:5a:ec:6e:8c:0c:1d:a7:72: e0:96:e9:d9:a9:6e:5e:63:00:e9:dd:69:d6:09:69:24:1f:2f: 75:bf:8b:5d:bb:2b:1f:e9:45:fc:6c:70:f5:72:de:ec:ee:3e: 33:10:2f:f2:a2:57:9b:cc:b5:1b:83:f5:7b:60:f8:29:f0:eb: a8:8b:c6:4b:04:2e:75:7f:36:c0:fb:7a:23:51:31:33:83:d3: 79:26:0c:89:f1:c4:21:10:66:12:13:79:05:23:f3:68:c2:e6: 40:4a:fb:54:21:4b:ed:15:be:cc:9f:cc:54:62:70:fb:0f:2e: 76:eb:6c:bf:32:e8:18:3b:b2:d9:1b:af:e2:61:b1:fb:c2:6a: f5:ab:ad:6e:3e:97:bf:30:ae:86:6d:9c:6e:7f:65:c0:e2:50: de:92:58:bb:8d:33:f5:a3:7d:b7:b0:30:df:ab:30:b4:b5:28: 94:dd:fd:99 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUHik92uAdNJUj5awVmk0J0cDdylUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNTA3MDkwOTMzNTdaFw0yNjA3MDgwOTM4NTdaMDMxMTAvBgNV BAMTKDE4OUQ0NDRGOUYzNDg5NzRDQ0JCMkIyNDRDN0UyNDY3MjQwQjZDNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8mj34z2dtVKmZlDi+LIcNJ5of ut3yAoGdwdCGwYayx680ckD84vGhYq11yIE8QuI+My/hp5CLUw42EqSNUewHOOVo 8tEZPjHony/PCnPInniFuHnFvJ7Uz0JxAsVCKJm/+qxuX4sM8/E0BX1CDaY13JNa OtaqryPCUFrOVKdJxlXIjWO/JU951ko3IAbyjBwfffSyrnn4iEFpcEloGi01IOS/ ayMyRi3YNTkas/UyI8+6V2cQAIIJqq1XG85OXir0qRR8q8u5YUvU1wDHy2jciZXg eyb2SRT4G4/1XD4HwFvFYctFHoyA8QIQL6lwuKokgOA5xog1jwpeBhyPeqcNAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUGJ1ET580iXTMuyskTH4kZyQLbEAwHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP99MA0GCSqGSIb3DQEBCwUAA4IBAQBy mlZlVHDbAehCavwqcuZzHv1pNoexNs7KVwkYcCGB3CMCxl2wj2o0SxuGi8P2K6ZG fZWgVvX9txZ+s0P9VDlQoEPPKNM1MCYuIr3K6R1yhAnzWuxujAwdp3LglunZqW5e YwDp3WnWCWkkHy91v4tduysf6UX8bHD1ct7s7j4zEC/yolebzLUbg/V7YPgp8Ouo i8ZLBC51fzbA+3ojUTEzg9N5JgyJ8cQhEGYSE3kFI/NowuZASvtUIUvtFb7Mn8xU YnD7Dy5262y/MugYO7LZG6/iYbH7wmr1q61uPpe/MK6GbZxuf2XA4lDekli7jTP1 o323sDDfqzC0tSiU3f2Z -----END CERTIFICATE-----Generated at Sun Jul 20 20:10:57 2025 by rpki-client