$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637333a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637333a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: +raeShoeu82SK61p+CeGEiQBGb2nYgWjmH84XKpFNFY= Subject key identifier: 21:E5:55:72:DE:E3:66:1C:2E:1E:D5:42:A6:66:B0:92:AB:45:57:6F Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 7BD9EF60C7EF4B79378827A216C929FF0862DF6C Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637333a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 10 Jun 2026 09:40:34 +0000 ROA not before: Wed 10 Jun 2026 09:35:34 +0000 ROA not after: Wed 09 Jun 2027 09:40:34 +0000 asID: 203915 IP address blocks: 2a14:7580:ff73::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d9:ef:60:c7:ef:4b:79:37:88:27:a2:16:c9:29:ff:08:62:df:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jun 10 09:35:34 2026 GMT Not After : Jun 9 09:40:34 2027 GMT Subject: CN=21E55572DEE3661C2E1ED542A666B092AB45576F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d6:43:41:f8:ba:cf:da:2c:6e:98:f4:18:db: f9:b0:f5:cb:f5:4b:c1:bf:50:8c:dd:7d:3e:29:cb: 12:08:fb:6e:18:32:9b:18:f0:23:22:98:b7:e8:ac: e8:f4:60:4a:8a:73:ff:a7:e7:50:2f:b0:4a:35:45: a5:38:34:6a:68:6e:25:66:b4:05:65:db:52:52:39: b6:55:1e:ed:c3:4e:6b:a1:38:51:aa:ca:07:5f:4b: d3:05:59:04:98:7c:5b:38:42:ce:df:43:7a:67:9c: 02:31:2f:2b:d9:0f:c6:c4:8d:90:f1:92:16:94:44: 83:6e:46:71:d9:27:8c:37:db:43:d1:00:50:92:27: 27:f8:43:03:1a:b0:a3:84:c8:e0:b1:64:94:23:aa: eb:f2:16:1c:d4:9f:73:1a:2e:28:1e:71:6e:36:79: f1:4d:39:20:0f:90:91:98:71:77:31:a5:b3:e7:7b: 30:42:40:60:a0:b8:69:77:47:75:ce:fe:37:c5:75: 79:ee:4f:ae:81:e2:4c:be:0b:75:47:3a:f0:35:fa: c3:53:43:1f:2a:60:aa:98:d1:44:55:11:82:a4:0c: 96:fb:7a:56:0f:b4:1f:63:b0:e6:f9:69:e1:bf:c4: a0:a8:14:f5:15:7b:35:67:9d:90:39:36:3f:84:f7: 65:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E5:55:72:DE:E3:66:1C:2E:1E:D5:42:A6:66:B0:92:AB:45:57:6F X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637333a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff73::/48 Signature Algorithm: sha256WithRSAEncryption 8f:92:54:fe:ef:94:0d:de:e3:c4:5e:c4:a2:e4:cc:25:87:b4: f8:1e:f5:3d:0d:09:cf:e5:6f:5e:01:fa:9d:90:9c:77:6e:19: 01:a0:39:2f:d6:6c:37:ff:b7:37:c4:9b:5c:71:20:06:aa:ae: 12:49:0d:1e:a9:3c:cb:84:50:f9:71:16:99:e9:7e:56:90:fc: 7c:99:19:29:5f:ed:b4:8f:f7:b0:71:26:8a:74:70:e4:18:df: 8c:4b:b7:9a:f9:88:43:36:32:84:77:d9:78:9e:f1:ff:aa:15: f0:86:ba:9b:0a:bf:07:47:dc:f8:96:e4:a2:4d:2e:28:de:e3: ac:85:f1:54:55:16:ae:e1:83:ad:e8:b9:9c:6f:13:52:ac:17: 36:92:4c:b8:61:7a:d9:d5:8d:f2:d3:52:30:f9:0b:46:29:8c: 52:7f:7c:85:0c:d6:72:49:f8:4c:5d:20:4e:22:25:de:52:0c: a3:e3:4b:84:8f:03:a1:e6:f9:7e:d7:a7:04:c4:0b:70:b4:0b: 2d:f0:fd:52:c2:51:69:9d:ad:38:f3:5d:e4:09:fa:7d:64:ae: 28:8d:52:5b:fe:26:2a:3b:65:3a:49:cb:4e:f7:36:09:fe:b7: 7a:a0:6f:14:4c:3b:3e:10:67:bf:c0:bc:4c:15:c0:df:fe:a0: 77:0a:e1:a6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUe9nvYMfvS3k3iCeiFskp/whi32wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNjA2MTAwOTM1MzRaFw0yNzA2MDkwOTQwMzRaMDMxMTAvBgNV BAMTKDIxRTU1NTcyREVFMzY2MUMyRTFFRDU0MkE2NjZCMDkyQUI0NTU3NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC31kNB+LrP2ixumPQY2/mw9cv1 S8G/UIzdfT4pyxII+24YMpsY8CMimLforOj0YEqKc/+n51AvsEo1RaU4NGpobiVm tAVl21JSObZVHu3DTmuhOFGqygdfS9MFWQSYfFs4Qs7fQ3pnnAIxLyvZD8bEjZDx khaURINuRnHZJ4w320PRAFCSJyf4QwMasKOEyOCxZJQjquvyFhzUn3MaLigecW42 efFNOSAPkJGYcXcxpbPnezBCQGCguGl3R3XO/jfFdXnuT66B4ky+C3VHOvA1+sNT Qx8qYKqY0URVEYKkDJb7elYPtB9jsOb5aeG/xKCoFPUVezVnnZA5Nj+E92WrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIeVVct7jZhwuHtVCpmawkqtFV28wHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP9zMA0GCSqGSIb3DQEBCwUAA4IBAQCP klT+75QN3uPEXsSi5Mwlh7T4HvU9DQnP5W9eAfqdkJx3bhkBoDkv1mw3/7c3xJtc cSAGqq4SSQ0eqTzLhFD5cRaZ6X5WkPx8mRkpX+20j/ewcSaKdHDkGN+MS7ea+YhD NjKEd9l4nvH/qhXwhrqbCr8HR9z4luSiTS4o3uOshfFUVRau4YOt6LmcbxNSrBc2 kky4YXrZ1Y3y01Iw+QtGKYxSf3yFDNZySfhMXSBOIiXeUgyj40uEjwOh5vl+16cE xAtwtAst8P1SwlFpna04813kCfp9ZK4ojVJb/iYqO2U6SctO9zYJ/rd6oG8UTDs+ EGe/wLxMFcDf/qB3CuGm -----END CERTIFICATE-----Generated at Sun Jun 14 00:29:54 2026 by rpki-client