$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637653a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637653a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: U6uqpQVMvicANeE1+RdGwfiUHzScjnhV12wDyDdzXu8= Subject key identifier: D9:3C:FC:A4:50:A8:1D:94:84:53:B5:66:AE:A4:FC:C1:C4:5F:1A:4F Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 55D75811B94761A03CF74B7222376BE191D9DEA0 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637653a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 09 Jul 2025 09:39:02 +0000 ROA not before: Wed 09 Jul 2025 09:34:02 +0000 ROA not after: Wed 08 Jul 2026 09:39:02 +0000 asID: 203915 IP address blocks: 2a14:7580:ff7e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 21 Jul 2025 07:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d7:58:11:b9:47:61:a0:3c:f7:4b:72:22:37:6b:e1:91:d9:de:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jul 9 09:34:02 2025 GMT Not After : Jul 8 09:39:02 2026 GMT Subject: CN=D93CFCA450A81D948453B566AEA4FCC1C45F1A4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a9:34:6c:d8:79:7b:b7:04:b8:eb:3d:c5:ae: 8d:67:1f:ec:be:e0:f2:4c:75:73:9c:33:83:da:78: a5:4c:ed:29:f1:1f:b9:0e:aa:eb:dc:65:0e:81:13: 2f:aa:59:9d:89:a8:04:9b:a6:ff:bd:56:e7:1b:e6: 7e:ee:96:61:84:69:2f:0e:8f:76:71:40:5f:78:2e: 74:24:8b:ca:ff:cf:15:2f:f1:ae:7c:a6:5f:0b:5c: b4:c7:5c:56:cd:cb:78:02:ce:66:0e:82:30:3c:88: f3:2d:82:d2:7f:65:52:a1:cd:43:ad:6c:6d:5e:43: 99:09:b4:9f:6d:9d:09:3f:24:40:95:c1:1f:e5:22: b5:67:b1:20:99:81:8c:10:c0:3a:27:eb:7e:6f:18: e3:a2:de:9c:78:a7:3a:bc:90:55:b8:da:7f:63:8f: db:6d:76:1a:19:df:7c:ea:69:f1:fa:aa:f4:f5:37: 82:94:27:a9:14:41:2b:84:d2:15:c8:3b:4e:f6:ec: a5:39:dc:23:1f:86:37:f1:d6:25:cd:26:a4:aa:da: 5b:7d:eb:50:4e:df:d4:1b:fa:cf:54:f7:e3:58:6f: 3e:bd:0a:04:b6:4d:a2:27:1d:9b:62:bf:54:02:49: f0:6f:e4:54:d1:cf:90:75:b7:66:69:b7:88:27:93: c4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:3C:FC:A4:50:A8:1D:94:84:53:B5:66:AE:A4:FC:C1:C4:5F:1A:4F X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637653a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff7e::/48 Signature Algorithm: sha256WithRSAEncryption 68:36:58:e7:16:64:b7:a8:d6:72:38:e2:d2:d5:92:3a:1b:dc: 16:72:c0:de:1d:81:87:9a:26:26:90:be:b8:4d:08:86:f0:02: 6e:90:03:4b:78:24:3d:79:8b:3f:3d:b2:f6:05:93:66:3a:da: 22:6c:d5:5d:f1:ef:d2:31:ec:eb:d8:4b:41:2e:1a:58:a4:38: f0:2f:cb:cc:a6:ec:f9:08:80:9e:37:eb:26:67:94:44:b4:e7: 60:ef:1a:6f:7f:b5:8f:9e:fa:8e:0a:2b:5b:99:0a:81:a9:17: bc:3b:cf:f0:b8:23:bd:96:3b:c6:3d:52:01:62:3e:1e:98:2e: b4:1a:e0:26:88:cc:f7:cc:e7:83:57:0c:91:1d:53:86:91:93: c6:c8:7b:13:d0:53:e9:b1:79:50:1f:1a:0f:de:6d:6f:10:02: 81:89:0b:b2:69:32:aa:02:cd:f2:a8:29:63:2c:7c:10:ab:31: bd:1b:d5:f6:0c:f3:ce:02:2b:11:bf:5c:ce:75:1b:74:4e:7a: 6b:fe:5c:22:2f:05:b5:30:58:a5:27:87:bc:14:fb:e3:b6:cb: 20:a6:0c:d9:57:b4:df:29:8e:cf:ea:43:0f:89:45:ae:80:08: 54:9d:2d:31:b7:5d:2a:80:79:86:34:5b:e2:8e:ae:1d:38:a0: 60:56:a8:83 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVddYEblHYaA890tyIjdr4ZHZ3qAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNTA3MDkwOTM0MDJaFw0yNjA3MDgwOTM5MDJaMDMxMTAvBgNV BAMTKEQ5M0NGQ0E0NTBBODFEOTQ4NDUzQjU2NkFFQTRGQ0MxQzQ1RjFBNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMqTRs2Hl7twS46z3Fro1nH+y+ 4PJMdXOcM4PaeKVM7SnxH7kOquvcZQ6BEy+qWZ2JqASbpv+9Vucb5n7ulmGEaS8O j3ZxQF94LnQki8r/zxUv8a58pl8LXLTHXFbNy3gCzmYOgjA8iPMtgtJ/ZVKhzUOt bG1eQ5kJtJ9tnQk/JECVwR/lIrVnsSCZgYwQwDon635vGOOi3px4pzq8kFW42n9j j9ttdhoZ33zqafH6qvT1N4KUJ6kUQSuE0hXIO0727KU53CMfhjfx1iXNJqSq2lt9 61BO39Qb+s9U9+NYbz69CgS2TaInHZtiv1QCSfBv5FTRz5B1t2Zpt4gnk8Q9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU2Tz8pFCoHZSEU7VmrqT8wcRfGk8wHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9+MA0GCSqGSIb3DQEBCwUAA4IBAQBo NljnFmS3qNZyOOLS1ZI6G9wWcsDeHYGHmiYmkL64TQiG8AJukANLeCQ9eYs/PbL2 BZNmOtoibNVd8e/SMezr2EtBLhpYpDjwL8vMpuz5CICeN+smZ5REtOdg7xpvf7WP nvqOCitbmQqBqRe8O8/wuCO9ljvGPVIBYj4emC60GuAmiMz3zOeDVwyRHVOGkZPG yHsT0FPpsXlQHxoP3m1vEAKBiQuyaTKqAs3yqCljLHwQqzG9G9X2DPPOAisRv1zO dRt0Tnpr/lwiLwW1MFilJ4e8FPvjtssgpgzZV7TfKY7P6kMPiUWugAhUnS0xt10q gHmGNFvijq4dOKBgVqiD -----END CERTIFICATE-----Generated at Sun Jul 20 20:12:36 2025 by rpki-client