$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538303a666666613a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538303a666666613a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: h/rRMvyqafFU+yTlCYjO1aoLzPvMYTq8Atefyqn1aw8= Subject key identifier: F6:78:5B:80:B8:C8:73:58:78:1D:F7:62:9A:BE:F6:1B:14:1C:55:FB Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 715B8004FA0E34D3762176A4D929DFEA3E8433C9 Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538303a666666613a3a2f34382d3438203d3e20323134393535.roa Signing time: Thu 04 Sep 2025 13:52:21 +0000 ROA not before: Thu 04 Sep 2025 13:47:21 +0000 ROA not after: Thu 03 Sep 2026 13:52:21 +0000 asID: 214955 IP address blocks: 2a14:7580:fffa::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 12:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:5b:80:04:fa:0e:34:d3:76:21:76:a4:d9:29:df:ea:3e:84:33:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 4 13:47:21 2025 GMT Not After : Sep 3 13:52:21 2026 GMT Subject: CN=F6785B80B8C87358781DF7629ABEF61B141C55FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:63:16:88:11:77:74:61:96:b5:40:08:be:d4: c3:3d:5a:d0:7f:2a:0a:74:76:73:ff:32:09:e6:cd: 51:fb:42:8d:9e:04:a5:60:dc:9a:26:9e:b4:40:00: 3d:a4:10:df:3c:f1:ed:fc:59:73:0f:a4:76:0a:39: c3:38:d6:4e:e4:c4:f7:13:9a:62:c8:42:2b:48:8e: 0a:a3:ba:c4:fe:89:44:45:98:de:bc:52:f4:49:3c: 90:c5:75:0e:c9:c8:9e:f9:d3:75:f9:f9:0f:65:c2: 0c:85:a7:a1:87:0b:6f:4b:cc:96:c5:37:b0:dc:81: 00:a5:ea:9b:a1:a4:5e:50:18:04:0e:94:a0:59:e8: ad:d8:d6:18:b3:61:a8:32:06:50:49:53:f8:7e:6f: d0:69:c3:6c:d1:bf:38:d6:78:94:55:04:c2:45:38: 93:61:79:dd:06:a8:5c:c5:c7:1a:6b:f2:06:f5:e0: c9:5f:0a:88:7f:c7:80:b3:3c:31:55:bc:db:35:b8: 23:04:2c:86:79:81:09:48:95:27:7e:4f:12:cf:14: e2:37:92:aa:b7:49:77:4f:77:b1:69:fc:5c:ba:e8: 8d:3e:d0:2e:7c:ca:e3:4a:a1:4f:63:6e:52:9e:db: 2d:36:da:82:18:58:d5:8e:b5:0b:c5:c8:cc:22:5e: d5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:78:5B:80:B8:C8:73:58:78:1D:F7:62:9A:BE:F6:1B:14:1C:55:FB X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538303a666666613a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:fffa::/48 Signature Algorithm: sha256WithRSAEncryption cf:b5:96:a3:24:20:1f:a4:f7:b3:f4:ae:e7:0b:be:9d:1c:d7: d3:e6:d6:fa:73:9e:a4:39:dd:d1:cb:e8:02:93:50:57:2e:dd: 00:ae:90:25:42:c4:c4:40:40:32:2a:31:81:23:64:86:a9:06: 7e:e8:9e:eb:37:57:06:21:dc:ac:04:97:f4:6d:b4:8c:57:28: 57:a4:2a:37:32:f0:0e:25:f1:b7:5d:c1:74:63:ba:5a:fb:cf: 12:f9:d3:14:ff:08:72:4c:11:12:22:58:12:93:31:c2:01:e8: 46:50:ec:ba:6d:0b:89:cb:f9:cd:81:c0:cf:a0:fd:ce:96:07: 4c:ae:f0:c9:27:e0:15:fe:73:e0:3c:25:58:4b:be:2f:e5:eb: 23:4f:78:61:44:5b:f9:f9:bd:a5:8b:8e:02:92:10:46:b2:56: 28:de:b7:a6:74:66:02:da:33:d4:89:91:c5:b8:c8:bc:9d:ca: 84:b5:8c:20:6a:60:3f:c9:72:fe:55:e6:c4:39:69:74:ed:7e: 62:01:a9:17:48:99:bb:6d:1d:37:ac:59:6c:50:b3:e8:33:7e: bb:b0:9c:8f:6a:f5:fb:c5:b3:66:56:20:8b:a1:7c:92:de:a5: d9:7a:d5:be:8c:b8:e3:01:aa:82:f7:d9:86:cc:64:39:0e:c6: f7:0e:f3:04 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcVuABPoONNN2IXak2Snf6j6EM8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MDQxMzQ3MjFaFw0yNjA5MDMxMzUyMjFaMDMxMTAvBgNV BAMTKEY2Nzg1QjgwQjhDODczNTg3ODFERjc2MjlBQkVGNjFCMTQxQzU1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYxaIEXd0YZa1QAi+1MM9WtB/ Kgp0dnP/MgnmzVH7Qo2eBKVg3JomnrRAAD2kEN888e38WXMPpHYKOcM41k7kxPcT mmLIQitIjgqjusT+iURFmN68UvRJPJDFdQ7JyJ7503X5+Q9lwgyFp6GHC29LzJbF N7DcgQCl6puhpF5QGAQOlKBZ6K3Y1hizYagyBlBJU/h+b9Bpw2zRvzjWeJRVBMJF OJNhed0GqFzFxxpr8gb14MlfCoh/x4CzPDFVvNs1uCMELIZ5gQlIlSd+TxLPFOI3 kqq3SXdPd7Fp/Fy66I0+0C58yuNKoU9jblKe2y022oIYWNWOtQvFyMwiXtXBAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU9nhbgLjIc1h4Hfdimr72GxQcVfswHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjY2NjYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP/6MA0GCSqGSIb3DQEBCwUAA4IBAQDP tZajJCAfpPez9K7nC76dHNfT5tb6c56kOd3Ry+gCk1BXLt0ArpAlQsTEQEAyKjGB I2SGqQZ+6J7rN1cGIdysBJf0bbSMVyhXpCo3MvAOJfG3XcF0Y7pa+88S+dMU/why TBESIlgSkzHCAehGUOy6bQuJy/nNgcDPoP3OlgdMrvDJJ+AV/nPgPCVYS74v5esj T3hhRFv5+b2li44CkhBGslYo3remdGYC2jPUiZHFuMi8ncqEtYwgamA/yXL+VebE OWl07X5iAakXSJm7bR03rFlsULPoM367sJyPavX7xbNmViCLoXyS3qXZetW+jLjj AaqC99mGzGQ5Dsb3DvME -----END CERTIFICATE-----Generated at Mon Sep 8 16:54:47 2025 by rpki-client