$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: edWg8eVKPrPOKjy0IkXAinCPcIVKlmM6kiuxaUVH3dI= Subject key identifier: DB:F0:E9:0C:CB:A7:3B:3F:5C:EE:11:E9:B2:58:F1:EE:77:76:FC:64 Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 6DE91704DFD09536F5AE56D8A71E32B7A8602AB1 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 10 Jun 2026 09:40:34 +0000 ROA not before: Wed 10 Jun 2026 09:35:34 +0000 ROA not after: Wed 09 Jun 2027 09:40:34 +0000 asID: 203915 IP address blocks: 2a14:7580:ff75::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:e9:17:04:df:d0:95:36:f5:ae:56:d8:a7:1e:32:b7:a8:60:2a:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jun 10 09:35:34 2026 GMT Not After : Jun 9 09:40:34 2027 GMT Subject: CN=DBF0E90CCBA73B3F5CEE11E9B258F1EE7776FC64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cc:4b:a4:a3:62:1f:f2:e0:b5:32:58:db:fc: 6e:a1:44:64:19:d4:57:12:1c:96:ab:b5:98:4c:9c: 15:32:19:3f:e9:e7:de:81:a3:3a:31:35:a1:08:ab: 12:38:a4:69:0e:d1:18:21:eb:e8:27:f5:27:9a:fd: 42:dc:15:c0:66:d3:c2:0e:d7:48:34:79:cf:c5:75: 4e:34:b3:ac:4a:ae:52:73:b8:0c:5c:a2:b1:93:92: 82:ad:51:12:49:65:b4:ed:5d:d1:97:95:98:36:2a: a4:ce:9f:e1:b4:10:c8:f0:b9:34:fb:b3:04:ed:7a: 32:68:8c:fc:5a:3c:ec:2f:64:20:1f:19:60:d3:ad: 10:5d:13:a3:34:66:03:1c:fa:2c:7c:61:dc:5f:68: 05:67:21:e8:47:b9:8b:7e:78:62:97:64:4f:79:cc: 5d:9c:cb:1b:3a:e3:a2:9c:16:df:c2:a2:e4:98:4a: 60:a7:b6:c1:4c:6d:ba:7d:8c:49:80:3a:29:60:96: 6f:75:e9:a0:4e:ca:2e:c1:df:25:e9:cf:af:7a:be: 65:a3:37:f1:fa:23:97:82:2c:13:97:0c:f3:e8:af: 87:08:4f:b0:5d:68:0a:d5:d9:e5:97:f3:53:03:4a: 94:59:db:68:26:86:77:90:1f:8b:c5:e9:05:a9:fb: 7a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F0:E9:0C:CB:A7:3B:3F:5C:EE:11:E9:B2:58:F1:EE:77:76:FC:64 X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637353a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff75::/48 Signature Algorithm: sha256WithRSAEncryption a3:27:eb:03:01:60:66:a6:64:35:1b:9c:ae:31:66:0c:d4:cb: 06:e2:12:bb:eb:db:19:5c:99:d0:02:61:65:99:85:68:85:ff: c8:c3:f1:9f:64:9d:d1:54:90:92:e3:e3:61:d6:fd:8d:0a:28: 7c:8f:9a:e5:d1:ab:c4:d4:6c:36:f4:f6:f3:70:30:84:73:c6: 1f:5f:03:3f:83:8d:02:c4:da:fe:0e:00:8a:61:72:9a:4f:dd: 1e:69:7a:0f:4b:34:cb:50:da:24:30:fa:3f:79:0f:63:59:a3: 55:58:eb:b6:2a:87:5e:cd:18:62:4b:66:01:27:aa:3f:63:ae: 4a:32:3e:d9:db:27:17:38:5c:6a:75:12:b4:a9:7c:67:53:1d: 79:e8:a4:85:cc:d9:f1:ad:c3:a8:9c:b4:61:6c:e7:c9:49:77: 03:61:c4:6e:cb:3c:63:bb:52:86:cd:88:b0:8d:af:e4:9a:59: be:da:86:0b:8d:b9:a3:38:11:c5:57:ab:53:2c:83:a7:4a:07: 94:ea:22:ec:25:cc:0e:54:4d:b3:49:96:90:e7:6d:4c:7b:27: a8:09:c0:e6:b0:51:78:82:66:90:91:69:bd:05:68:df:fe:ec: b3:5c:83:27:9e:7e:c1:aa:72:d0:a3:89:4b:a9:f0:35:f4:5d: f6:69:bb:23 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUbekXBN/QlTb1rlbYpx4yt6hgKrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNjA2MTAwOTM1MzRaFw0yNzA2MDkwOTQwMzRaMDMxMTAvBgNV BAMTKERCRjBFOTBDQ0JBNzNCM0Y1Q0VFMTFFOUIyNThGMUVFNzc3NkZDNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCozEuko2If8uC1Mljb/G6hRGQZ 1FcSHJartZhMnBUyGT/p596BozoxNaEIqxI4pGkO0Rgh6+gn9Sea/ULcFcBm08IO 10g0ec/FdU40s6xKrlJzuAxcorGTkoKtURJJZbTtXdGXlZg2KqTOn+G0EMjwuTT7 swTtejJojPxaPOwvZCAfGWDTrRBdE6M0ZgMc+ix8YdxfaAVnIehHuYt+eGKXZE95 zF2cyxs646KcFt/CouSYSmCntsFMbbp9jEmAOilglm916aBOyi7B3yXpz696vmWj N/H6I5eCLBOXDPPor4cIT7BdaArV2eWX81MDSpRZ22gmhneQH4vF6QWp+3q7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU2/DpDMunOz9c7hHpsljx7nd2/GQwHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP91MA0GCSqGSIb3DQEBCwUAA4IBAQCj J+sDAWBmpmQ1G5yuMWYM1MsG4hK769sZXJnQAmFlmYVohf/Iw/GfZJ3RVJCS4+Nh 1v2NCih8j5rl0avE1Gw29PbzcDCEc8YfXwM/g40CxNr+DgCKYXKaT90eaXoPSzTL UNokMPo/eQ9jWaNVWOu2KodezRhiS2YBJ6o/Y65KMj7Z2ycXOFxqdRK0qXxnUx15 6KSFzNnxrcOonLRhbOfJSXcDYcRuyzxju1KGzYiwja/kmlm+2oYLjbmjOBHFV6tT LIOnSgeU6iLsJcwOVE2zSZaQ521MeyeoCcDmsFF4gmaQkWm9BWjf/uyzXIMnnn7B qnLQo4lLqfA19F32absj -----END CERTIFICATE-----Generated at Sun Jun 14 01:43:07 2026 by rpki-client