$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730323a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538333a663730323a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: j1h3rUtpYcXTQ9tg2+zKR1MIHOPPCpnwfhKyK3a6mSc= Subject key identifier: 59:94:F1:51:4F:A8:10:80:47:81:CC:35:BC:75:C2:BB:B8:74:4E:5F Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 5DA455994AEF87D3D70E9E41BE88CD26F6AEA5EE Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730323a3a2f34382d3438203d3e20323134393535.roa Signing time: Sun 07 Sep 2025 14:41:53 +0000 ROA not before: Sun 07 Sep 2025 14:36:53 +0000 ROA not after: Sun 06 Sep 2026 14:41:53 +0000 asID: 214955 IP address blocks: 2a14:7583:f702::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Sep 2025 12:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a4:55:99:4a:ef:87:d3:d7:0e:9e:41:be:88:cd:26:f6:ae:a5:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 7 14:36:53 2025 GMT Not After : Sep 6 14:41:53 2026 GMT Subject: CN=5994F1514FA810804781CC35BC75C2BBB8744E5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:01:b6:87:98:24:75:86:28:dc:13:b6:7f:cd: 37:c0:66:73:94:18:86:94:45:31:7f:2a:b4:88:01: 12:7e:6e:25:30:72:56:b6:ca:56:cc:be:c5:50:7f: c1:36:1d:ad:7e:ab:07:2a:3b:4f:76:ae:69:00:5f: e6:99:7a:87:43:91:1f:e8:2d:b9:f8:59:4f:9f:c9: dc:78:7e:9a:fc:6d:35:91:b1:75:59:25:e2:5e:1e: 1d:ab:d0:87:73:52:70:bf:e8:20:c2:40:50:a8:5c: 15:08:73:50:64:80:49:f1:cb:7d:9f:5a:73:dc:90: b5:5e:ae:33:dc:00:a2:0a:b8:5c:57:5f:99:fa:4d: 46:36:72:d9:d2:61:0e:a3:f4:c7:1b:2b:55:8b:ff: 28:d1:6f:91:a4:8d:b8:a6:75:b2:96:d0:5e:2d:69: b8:fc:83:98:b4:db:d9:86:6d:38:87:95:43:50:8e: e3:b5:f5:ab:13:35:18:b4:b4:1d:70:f7:20:3e:26: d0:b9:a1:72:00:e0:ef:98:28:a8:92:b1:4d:15:43: 40:cf:b5:e4:55:9d:45:fa:f8:d4:2e:84:56:1a:91: 54:e6:7a:12:c8:86:61:95:33:68:8a:6f:89:a5:77: 5f:6d:1b:5c:84:e2:0d:99:14:1f:26:32:39:97:f9: 1f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:94:F1:51:4F:A8:10:80:47:81:CC:35:BC:75:C2:BB:B8:74:4E:5F X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730323a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f702::/48 Signature Algorithm: sha256WithRSAEncryption 3e:7b:c0:de:0c:b2:ac:ab:9f:6a:b3:91:01:cb:09:fd:76:28: 9b:0c:3d:90:49:d9:e4:22:b9:21:37:41:23:8f:85:55:8c:0c: 4e:63:ad:4e:4d:a0:47:b6:7a:67:1c:a2:92:36:ea:ef:5e:91: 08:a7:ec:78:af:69:87:3f:47:ae:25:8f:da:ad:0d:36:d8:09: 14:2f:99:c4:80:06:e5:dc:e3:ad:28:20:08:63:fb:a9:eb:58: 10:a7:06:11:a2:8f:89:a8:9d:51:aa:a4:3b:2a:f8:4d:bc:24: 2c:75:8b:0a:db:43:c6:58:73:e3:cb:21:9b:69:7b:46:fb:1c: b9:b2:9e:82:df:45:59:3f:27:8f:ed:5d:21:04:dc:e7:95:2b: ec:ca:c7:e0:d7:c6:78:a6:44:95:54:1d:6a:21:1b:c0:19:22: 2a:cd:2f:39:32:be:2c:b5:34:0b:6a:19:67:b6:2a:a7:af:06: c2:73:be:f3:68:75:ad:ca:4b:3b:70:d5:f3:75:4e:df:58:e1: be:0e:82:9f:89:7a:39:ef:d6:31:2f:17:6e:74:eb:14:7f:74: 45:62:5e:4e:43:76:b6:74:21:9d:98:1d:63:21:8e:3a:ae:90: af:20:f4:7a:3f:3c:0d:b9:c3:6d:55:d0:73:65:fc:82:53:39: d3:c0:c0:ee -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXaRVmUrvh9PXDp5BvojNJvaupe4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MDcxNDM2NTNaFw0yNjA5MDYxNDQxNTNaMDMxMTAvBgNV BAMTKDU5OTRGMTUxNEZBODEwODA0NzgxQ0MzNUJDNzVDMkJCQjg3NDRFNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4AbaHmCR1hijcE7Z/zTfAZnOU GIaURTF/KrSIARJ+biUwcla2ylbMvsVQf8E2Ha1+qwcqO092rmkAX+aZeodDkR/o Lbn4WU+fydx4fpr8bTWRsXVZJeJeHh2r0IdzUnC/6CDCQFCoXBUIc1BkgEnxy32f WnPckLVerjPcAKIKuFxXX5n6TUY2ctnSYQ6j9McbK1WL/yjRb5GkjbimdbKW0F4t abj8g5i029mGbTiHlUNQjuO19asTNRi0tB1w9yA+JtC5oXIA4O+YKKiSsU0VQ0DP teRVnUX6+NQuhFYakVTmehLIhmGVM2iKb4mld19tG1yE4g2ZFB8mMjmX+R/DAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUWZTxUU+oEIBHgcw1vHXCu7h0Tl8wHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzczMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/cCMA0GCSqGSIb3DQEBCwUAA4IBAQA+ e8DeDLKsq59qs5EBywn9diibDD2QSdnkIrkhN0Ejj4VVjAxOY61OTaBHtnpnHKKS NurvXpEIp+x4r2mHP0euJY/arQ022AkUL5nEgAbl3OOtKCAIY/up61gQpwYRoo+J qJ1RqqQ7KvhNvCQsdYsK20PGWHPjyyGbaXtG+xy5sp6C30VZPyeP7V0hBNznlSvs ysfg18Z4pkSVVB1qIRvAGSIqzS85Mr4stTQLahlntiqnrwbCc77zaHWtyks7cNXz dU7fWOG+DoKfiXo579YxLxdudOsUf3RFYl5OQ3a2dCGdmB1jIY46rpCvIPR6PzwN ucNtVdBzZfyCUznTwMDu -----END CERTIFICATE-----Generated at Mon Sep 8 16:54:49 2025 by rpki-client