$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730313a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538333a663730313a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: RzicPZXer6PLdeFy+vOsancgSNcjrm95+RPOXY7LoDc= Subject key identifier: FA:8C:C4:75:07:01:C4:56:9D:96:DF:75:E5:7B:61:AF:EC:EF:B9:AB Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 0F769DAB523BEA91AF4BD8A0115338A8906078B3 Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730313a3a2f34382d3438203d3e20323134393535.roa Signing time: Fri 05 Sep 2025 01:02:05 +0000 ROA not before: Fri 05 Sep 2025 00:57:05 +0000 ROA not after: Fri 04 Sep 2026 01:02:05 +0000 asID: 214955 IP address blocks: 2a14:7583:f701::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 12:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:76:9d:ab:52:3b:ea:91:af:4b:d8:a0:11:53:38:a8:90:60:78:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 5 00:57:05 2025 GMT Not After : Sep 4 01:02:05 2026 GMT Subject: CN=FA8CC4750701C4569D96DF75E57B61AFECEFB9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fe:a6:3d:2e:26:3f:09:b8:3b:64:8b:d9:48: f8:09:1d:42:1e:7d:06:10:4e:41:80:20:3f:99:21: 02:8c:cc:8b:0b:65:3c:b6:ad:a7:d4:9c:94:77:c3: ab:fd:d7:1f:3b:40:17:ae:d2:1a:3c:79:bf:ef:62: 39:2d:38:1c:c1:a0:9e:f6:b2:61:be:22:73:9a:72: 0b:2f:6e:94:82:2f:f4:67:e5:73:c0:ab:fc:fc:f6: 13:35:1b:b3:21:fe:1a:98:91:81:19:4c:0c:71:10: 1b:86:b2:61:9c:22:40:ef:db:ae:4d:c2:9b:ed:98: fd:44:df:1a:67:35:4c:d0:ed:f3:c8:66:07:32:a9: c1:63:1f:89:28:e3:bf:5f:12:39:94:6c:a1:4e:7e: a8:26:ee:67:8a:87:02:0b:9d:4e:9c:b2:25:0c:b3: 01:ee:50:8f:4c:dc:7e:c5:0a:52:7e:bd:78:59:be: 61:fb:d0:4c:9a:03:8e:3d:91:e6:0a:81:cb:92:f3: f6:93:5c:1c:9a:9e:48:73:8e:04:a9:25:9f:f9:27: 85:84:1d:4c:a9:4a:ad:3e:c8:51:e0:4d:c4:cf:83: bf:a8:d3:56:98:e3:bf:a4:7e:4c:a0:27:f9:c3:c5: 20:b4:2b:b6:43:42:fd:36:14:c4:8f:88:fd:0e:6e: e9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:8C:C4:75:07:01:C4:56:9D:96:DF:75:E5:7B:61:AF:EC:EF:B9:AB X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730313a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f701::/48 Signature Algorithm: sha256WithRSAEncryption 32:2e:ab:0e:e9:cf:95:39:26:b1:ad:36:e2:86:80:5c:64:88: 3e:5f:aa:fa:14:0c:5e:cc:eb:ae:51:27:48:d2:29:1a:08:c6: 05:e0:a5:ac:e7:74:5f:25:78:ec:6c:28:61:c1:cf:91:d4:f8: 50:ce:9f:bd:29:92:b3:0a:dc:e6:87:4e:03:88:45:11:20:69: 9b:f6:45:0a:24:98:30:b8:66:28:2c:ee:5a:16:a6:4e:6d:ee: 31:39:0f:3d:a0:4d:44:69:dc:0d:13:94:4a:c2:80:12:be:cb: db:11:a0:64:8d:3b:30:d3:cf:27:de:3e:35:9f:50:33:8a:6a: e4:b9:3d:51:ce:1d:07:dd:5e:03:9b:94:1c:80:23:93:16:5f: a7:24:46:f2:2d:40:76:07:e1:d5:71:be:60:17:b9:cb:91:b3: a2:3a:82:81:d7:c6:77:26:7f:fd:a0:67:60:9b:6e:5e:16:5d: 64:91:3a:d7:19:ea:bf:5d:7c:cf:d6:14:f8:a8:6a:2a:cb:06: a7:51:be:54:42:94:88:7b:2c:b8:03:53:e4:66:69:7c:a2:db: 3d:74:26:ca:f6:b6:2f:81:87:89:3f:dc:9b:06:22:23:c1:4b: ff:bf:90:6b:13:66:2f:24:ad:41:e3:37:50:72:db:a7:33:5b: 07:86:24:53 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUD3adq1I76pGvS9igEVM4qJBgeLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MDUwMDU3MDVaFw0yNjA5MDQwMTAyMDVaMDMxMTAvBgNV BAMTKEZBOENDNDc1MDcwMUM0NTY5RDk2REY3NUU1N0I2MUFGRUNFRkI5QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCT/qY9LiY/Cbg7ZIvZSPgJHUIe fQYQTkGAID+ZIQKMzIsLZTy2rafUnJR3w6v91x87QBeu0ho8eb/vYjktOBzBoJ72 smG+InOacgsvbpSCL/Rn5XPAq/z89hM1G7Mh/hqYkYEZTAxxEBuGsmGcIkDv265N wpvtmP1E3xpnNUzQ7fPIZgcyqcFjH4ko479fEjmUbKFOfqgm7meKhwILnU6csiUM swHuUI9M3H7FClJ+vXhZvmH70EyaA449keYKgcuS8/aTXByankhzjgSpJZ/5J4WE HUypSq0+yFHgTcTPg7+o01aY47+kfkygJ/nDxSC0K7ZDQv02FMSPiP0ObumpAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU+ozEdQcBxFadlt915Xthr+zvuaswHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzczMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/cBMA0GCSqGSIb3DQEBCwUAA4IBAQAy LqsO6c+VOSaxrTbihoBcZIg+X6r6FAxezOuuUSdI0ikaCMYF4KWs53RfJXjsbChh wc+R1PhQzp+9KZKzCtzmh04DiEURIGmb9kUKJJgwuGYoLO5aFqZObe4xOQ89oE1E adwNE5RKwoASvsvbEaBkjTsw088n3j41n1AzimrkuT1Rzh0H3V4Dm5QcgCOTFl+n JEbyLUB2B+HVcb5gF7nLkbOiOoKB18Z3Jn/9oGdgm25eFl1kkTrXGeq/XXzP1hT4 qGoqywanUb5UQpSIeyy4A1PkZml8ots9dCbK9rYvgYeJP9ybBiIjwUv/v5BrE2Yv JK1B4zdQctunM1sHhiRT -----END CERTIFICATE-----Generated at Mon Sep 8 16:54:51 2025 by rpki-client