$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637343a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637343a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: 7OcMgtiJjOUp4vbH335wtUn8wWl9Q5s9aOGp4rOAn9U= Subject key identifier: 47:83:F6:8E:59:58:8C:EA:8C:20:31:D1:05:FD:6A:33:79:52:D8:7F Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 62492F80B41F237914ED925B7E92092908FFE5C0 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637343a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 10 Jun 2026 09:40:34 +0000 ROA not before: Wed 10 Jun 2026 09:35:34 +0000 ROA not after: Wed 09 Jun 2027 09:40:34 +0000 asID: 203915 IP address blocks: 2a14:7580:ff74::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:49:2f:80:b4:1f:23:79:14:ed:92:5b:7e:92:09:29:08:ff:e5:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jun 10 09:35:34 2026 GMT Not After : Jun 9 09:40:34 2027 GMT Subject: CN=4783F68E59588CEA8C2031D105FD6A337952D87F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:70:eb:34:75:fe:bd:21:96:87:a6:79:fe:28: e7:87:dc:96:d6:7a:03:cc:a9:5a:f9:5e:57:68:47: 6e:da:10:39:98:e2:28:73:7d:77:74:f5:12:fd:18: 46:e1:54:7d:db:40:a3:b9:28:2a:5c:c9:ba:0c:9f: a8:3a:0c:a3:ec:d5:d8:33:8b:2e:1e:28:9a:2e:71: 2e:34:54:73:a8:e6:f7:70:d9:9d:c8:25:45:e5:67: b6:b7:ec:64:82:9d:b1:0b:62:2b:74:2a:9b:10:84: bf:5f:cf:7a:a3:3e:57:ae:58:e9:90:fc:f3:a3:2e: 3d:91:dd:4c:91:4f:40:99:78:0e:53:a6:3d:77:90: e8:da:ab:2b:9d:d8:65:5f:98:72:40:44:fd:32:b8: ca:77:9c:3b:2e:70:02:c9:b8:60:41:93:cc:91:76: 17:a6:87:5a:32:fd:44:50:f5:e5:9f:b1:b5:3e:99: aa:1f:2e:6f:d6:58:06:59:02:06:8a:af:03:44:16: af:fd:60:2b:ff:3d:9c:ec:8b:81:f8:06:88:c7:c8: 91:c3:fe:e8:0b:82:6c:25:ea:3b:f4:18:d1:9a:54: b5:a8:c9:ab:26:14:6c:5e:fb:40:8b:46:7d:67:7b: a9:69:0b:4f:4a:c6:ed:0c:a0:12:be:8d:51:14:b5: d2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:83:F6:8E:59:58:8C:EA:8C:20:31:D1:05:FD:6A:33:79:52:D8:7F X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637343a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff74::/48 Signature Algorithm: sha256WithRSAEncryption 25:a5:e1:f0:63:c4:d8:37:dc:12:47:6a:9d:8b:96:1a:61:bc: 1b:27:b3:5a:67:c9:14:15:4f:69:77:ac:2c:65:90:f1:35:71: b9:39:c1:cb:da:37:d0:1d:bd:e7:f4:5a:f2:2d:93:06:f6:74: 4a:4b:7d:6b:1f:2e:df:e5:c4:78:6d:5b:a0:d9:88:6c:be:fb: 81:70:97:86:f0:1d:6b:f2:bb:43:7c:71:e6:6d:ed:81:aa:a3: 91:86:b9:00:53:d8:4d:ac:7a:81:58:75:20:7d:17:26:30:43: 3d:68:b7:1b:f1:bb:4f:7d:a5:75:f7:3b:b7:36:b0:a8:9d:19: 33:38:bd:a2:64:44:e5:b8:36:a2:e2:87:ad:68:6b:04:50:25: 4d:9c:b8:bd:44:88:7e:8b:50:ef:18:0d:44:d8:30:61:e0:8a: 32:fc:50:e4:48:79:e8:a5:fb:71:10:c2:8e:eb:6a:32:1f:57: 0e:bd:0d:3e:fb:94:cf:bd:eb:3f:09:53:f2:ed:02:e3:bc:3a: a9:14:3d:6d:9a:ed:b8:40:d6:33:c7:3e:db:2f:97:75:26:9b: d3:48:c2:58:15:9c:2d:71:ac:9d:34:18:46:03:3c:e3:d7:14: fc:95:54:38:c9:de:f0:82:58:39:84:ee:ba:3b:a6:12:cf:6f: 1a:3f:e4:4c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYkkvgLQfI3kU7ZJbfpIJKQj/5cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNjA2MTAwOTM1MzRaFw0yNzA2MDkwOTQwMzRaMDMxMTAvBgNV BAMTKDQ3ODNGNjhFNTk1ODhDRUE4QzIwMzFEMTA1RkQ2QTMzNzk1MkQ4N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQcOs0df69IZaHpnn+KOeH3JbW egPMqVr5XldoR27aEDmY4ihzfXd09RL9GEbhVH3bQKO5KCpcyboMn6g6DKPs1dgz iy4eKJoucS40VHOo5vdw2Z3IJUXlZ7a37GSCnbELYit0KpsQhL9fz3qjPleuWOmQ /POjLj2R3UyRT0CZeA5Tpj13kOjaqyud2GVfmHJARP0yuMp3nDsucALJuGBBk8yR dhemh1oy/URQ9eWfsbU+maofLm/WWAZZAgaKrwNEFq/9YCv/PZzsi4H4BojHyJHD /ugLgmwl6jv0GNGaVLWoyasmFGxe+0CLRn1ne6lpC09Kxu0MoBK+jVEUtdJ9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUR4P2jllYjOqMIDHRBf1qM3lS2H8wHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP90MA0GCSqGSIb3DQEBCwUAA4IBAQAl peHwY8TYN9wSR2qdi5YaYbwbJ7NaZ8kUFU9pd6wsZZDxNXG5OcHL2jfQHb3n9Fry LZMG9nRKS31rHy7f5cR4bVug2YhsvvuBcJeG8B1r8rtDfHHmbe2BqqORhrkAU9hN rHqBWHUgfRcmMEM9aLcb8btPfaV19zu3NrConRkzOL2iZETluDai4oetaGsEUCVN nLi9RIh+i1DvGA1E2DBh4Ioy/FDkSHnopftxEMKO62oyH1cOvQ0++5TPves/CVPy 7QLjvDqpFD1tmu24QNYzxz7bL5d1JpvTSMJYFZwtcaydNBhGAzzj1xT8lVQ4yd7w glg5hO66O6YSz28aP+RM -----END CERTIFICATE-----Generated at Sun Jun 14 00:09:49 2026 by rpki-client