$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637363a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637363a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: cLUSerzV/UxTz2t/TpAz/cwOxeJF4/5nsCmTzKx4J7I= Subject key identifier: 92:A0:61:BB:FD:B1:4D:3E:7E:6D:39:5D:DD:21:FD:45:9B:0A:44:C2 Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 4F204F254556652D251FD3232AB8C56F81E90204 Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637363a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 10 Jun 2026 09:40:35 +0000 ROA not before: Wed 10 Jun 2026 09:35:35 +0000 ROA not after: Wed 09 Jun 2027 09:40:35 +0000 asID: 203915 IP address blocks: 2a14:7580:ff76::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 15:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:20:4f:25:45:56:65:2d:25:1f:d3:23:2a:b8:c5:6f:81:e9:02:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jun 10 09:35:35 2026 GMT Not After : Jun 9 09:40:35 2027 GMT Subject: CN=92A061BBFDB14D3E7E6D395DDD21FD459B0A44C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9f:71:3e:2d:99:50:3c:5a:74:c1:29:6c:b7: 5d:62:67:48:e0:2f:ba:de:ab:79:a0:92:de:57:ba: 5e:45:df:56:d2:52:52:ec:5f:cc:95:43:98:87:60: 68:fe:93:b7:48:fb:d8:cf:15:9b:2d:86:84:7a:ac: 23:9f:45:df:36:c0:8b:2e:05:34:b8:88:45:f6:36: 87:b0:66:27:21:d3:33:6e:d8:db:6c:bb:76:e3:4d: a9:1d:a3:ff:83:29:1a:56:ab:ef:83:e3:37:36:99: 84:1a:6b:0a:da:3f:5b:a8:e9:f0:e7:37:13:7b:13: 83:b3:15:60:81:ac:aa:8d:08:02:be:a5:c7:1f:df: a2:a4:38:9d:7c:58:fb:ec:99:6a:ca:e7:2c:d0:27: a4:5e:88:f1:35:82:38:f9:06:19:c7:1c:55:8a:b6: c0:47:b2:02:af:ba:60:77:db:d5:0d:3a:8d:db:91: db:2a:16:04:5c:02:2c:fe:71:21:51:e4:59:56:55: b7:61:cd:6b:7f:59:fe:e1:60:9a:94:0d:40:5f:1f: 78:bd:2f:fe:f8:08:49:58:a3:93:bf:dc:fa:97:e8: 97:bf:ed:f3:70:73:bd:15:12:20:35:86:a4:f3:56: 26:9c:8c:ad:e6:61:b4:bf:ee:65:5b:be:4a:67:4d: a1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A0:61:BB:FD:B1:4D:3E:7E:6D:39:5D:DD:21:FD:45:9B:0A:44:C2 X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637363a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff76::/48 Signature Algorithm: sha256WithRSAEncryption a0:bf:6f:b6:85:3e:50:8a:e4:7a:f8:8a:04:75:0c:6b:3b:fb: 6f:20:56:5a:ed:e7:4a:6a:fb:eb:90:f4:dc:25:4d:00:00:8f: 00:d8:26:70:9e:cf:84:99:c3:4b:32:80:b6:2c:bd:79:10:01: 27:b1:d4:03:0c:4e:a7:9c:52:93:aa:0c:18:00:9b:bf:00:a0: 8a:0c:85:38:a5:a7:12:32:60:43:13:8e:5c:1b:43:7d:1d:d9: 59:2b:95:55:d4:bc:82:1c:75:b3:5d:16:44:18:d9:54:1a:db: 4b:8a:aa:b8:cb:93:07:08:cf:04:e9:0e:15:c1:e1:83:57:77: 45:7e:f2:bb:1f:65:3c:7d:2e:35:59:e6:ea:c6:6f:0f:72:d0: 4b:a3:78:95:bb:96:93:5e:4a:08:6c:f3:53:99:ef:79:4d:2c: 2a:1e:0f:de:69:67:07:5b:3a:92:c8:86:fe:8d:a8:2b:59:55: 3f:4d:82:ef:a8:fd:06:91:01:f0:0f:0e:48:3a:4e:f7:68:8f: 22:fa:fc:c1:c7:bd:37:74:5d:1b:5c:25:7c:39:e2:f4:d0:88: 80:84:3c:c5:91:6e:87:e6:8c:3e:f7:29:99:51:df:d7:5a:19: 36:80:d8:59:73:88:b0:6b:53:9a:3f:3d:48:77:49:d7:af:c0: 9f:91:0a:4c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTyBPJUVWZS0lH9MjKrjFb4HpAgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNjA2MTAwOTM1MzVaFw0yNzA2MDkwOTQwMzVaMDMxMTAvBgNV BAMTKDkyQTA2MUJCRkRCMTREM0U3RTZEMzk1REREMjFGRDQ1OUIwQTQ0QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAn3E+LZlQPFp0wSlst11iZ0jg L7req3mgkt5Xul5F31bSUlLsX8yVQ5iHYGj+k7dI+9jPFZsthoR6rCOfRd82wIsu BTS4iEX2NoewZich0zNu2Ntsu3bjTakdo/+DKRpWq++D4zc2mYQaawraP1uo6fDn NxN7E4OzFWCBrKqNCAK+pccf36KkOJ18WPvsmWrK5yzQJ6ReiPE1gjj5BhnHHFWK tsBHsgKvumB329UNOo3bkdsqFgRcAiz+cSFR5FlWVbdhzWt/Wf7hYJqUDUBfH3i9 L/74CElYo5O/3PqX6Je/7fNwc70VEiA1hqTzViacjK3mYbS/7mVbvkpnTaF9AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUkqBhu/2xTT5+bTld3SH9RZsKRMIwHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP92MA0GCSqGSIb3DQEBCwUAA4IBAQCg v2+2hT5QiuR6+IoEdQxrO/tvIFZa7edKavvrkPTcJU0AAI8A2CZwns+EmcNLMoC2 LL15EAEnsdQDDE6nnFKTqgwYAJu/AKCKDIU4pacSMmBDE45cG0N9HdlZK5VV1LyC HHWzXRZEGNlUGttLiqq4y5MHCM8E6Q4VweGDV3dFfvK7H2U8fS41Webqxm8PctBL o3iVu5aTXkoIbPNTme95TSwqHg/eaWcHWzqSyIb+jagrWVU/TYLvqP0GkQHwDw5I Ok73aI8i+vzBx703dF0bXCV8OeL00IiAhDzFkW6H5ow+9ymZUd/XWhk2gNhZc4iw a1OaPz1Id0nXr8CfkQpM -----END CERTIFICATE-----Generated at Sun Jun 14 05:25:04 2026 by rpki-client