$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637373a3a2f34382d3438203d3e20323033393135.roa File: 326131343a373538303a666637373a3a2f34382d3438203d3e20323033393135.roa (raw, json) Hash identifier: 6+PbaU8J60OL7OlHqP0ZbtwAw8SVxx8dyJJBJqDbxFc= Subject key identifier: 34:1F:66:35:F7:A2:61:CA:20:00:BF:2F:AD:52:B7:E4:D3:B6:95:45 Certificate issuer: /CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Certificate serial: 6A345C5175550C3C1E88234C00718DDA3EF1E8ED Authority key identifier: CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637373a3a2f34382d3438203d3e20323033393135.roa Signing time: Wed 10 Jun 2026 09:40:34 +0000 ROA not before: Wed 10 Jun 2026 09:35:34 +0000 ROA not after: Wed 09 Jun 2027 09:40:34 +0000 asID: 203915 IP address blocks: 2a14:7580:ff77::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Jun 2026 21:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:34:5c:51:75:55:0c:3c:1e:88:23:4c:00:71:8d:da:3e:f1:e8:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F Validity Not Before: Jun 10 09:35:34 2026 GMT Not After : Jun 9 09:40:34 2027 GMT Subject: CN=341F6635F7A261CA2000BF2FAD52B7E4D3B69545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:6b:40:ba:97:15:0e:84:ca:2c:68:2f:47: 1e:26:3d:83:a6:45:94:a0:da:d4:36:4f:25:85:c7: 51:dc:18:67:1b:2c:8d:65:fb:dc:95:51:c4:ea:2b: 23:76:1d:7b:ca:7a:af:88:ab:76:d2:13:e1:b4:ab: fd:2c:98:9f:8f:4d:6f:11:a8:41:60:a7:84:f9:d1: c9:a9:a6:52:fc:24:f6:00:2b:1c:57:8a:26:98:1e: 29:ec:0c:b4:05:79:3e:e9:8a:4d:48:e8:56:0e:30: bc:ed:8b:31:dc:b2:86:46:08:74:de:55:fa:c0:9e: f1:a6:2d:85:99:6f:b8:39:21:bf:f7:c5:8b:c1:82: e3:22:86:b2:fe:fa:47:4f:c6:05:90:8c:69:f3:58: 2b:c0:6a:06:5a:27:1c:1e:7c:4b:c0:3b:79:ed:f2: ba:9f:b8:45:31:61:fd:2f:10:99:42:2f:fe:b3:f3: bb:ee:2a:10:f0:c4:2f:56:06:8a:03:a8:15:47:40: 70:98:68:8e:90:c4:83:50:4a:d8:c4:71:28:be:d4: eb:ea:13:f7:02:77:d7:45:8e:2f:19:23:b5:8a:21: 96:e7:b1:fd:8b:3c:f0:7a:c2:b6:dc:95:b5:be:49: 52:06:d7:68:e8:77:e5:9b:a8:1a:24:5e:6c:ba:7e: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1F:66:35:F7:A2:61:CA:20:00:BF:2F:AD:52:B7:E4:D3:B6:95:45 X509v3 Authority Key Identifier: keyid:CC:79:1A:1F:5C:B3:BB:2C:AF:7C:28:38:21:12:E2:69:BF:1D:0F:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/CC791A1F5CB3BB2CAF7C28382112E269BF1D0F2F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/b7a0aa56-4a1d-4ba8-ab66-c59fed4c37fc/1/326131343a373538303a666637373a3a2f34382d3438203d3e20323033393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:ff77::/48 Signature Algorithm: sha256WithRSAEncryption b8:f0:e8:b8:2a:89:b9:0a:0e:40:4e:54:f6:f9:b6:62:ac:a7: d6:f7:f5:a3:62:4b:9d:ae:26:73:76:bd:dc:73:ce:0c:f5:a8: 2d:04:12:dc:91:99:cd:8a:a0:d6:4c:02:1d:f5:02:20:e0:6c: ae:f7:8a:be:50:7b:1f:7a:a6:b9:0e:4d:43:54:67:af:dd:e1: 7b:89:8f:9d:da:76:0a:42:90:92:fa:18:bd:9d:78:9a:7e:87: 96:3c:09:7e:2f:3d:c3:98:1f:ab:ca:db:ad:48:e7:53:9b:fa: 7e:0c:b2:f5:fb:dd:a1:e1:ee:d2:7f:58:8a:00:64:a7:20:5c: 23:a7:f5:69:bf:6a:d1:6c:80:01:2c:e6:d0:de:db:8c:52:91: 60:47:1c:8a:43:b5:c6:31:4b:33:40:3c:38:88:c9:c6:e1:97: f4:09:82:8e:8d:8e:96:f5:ab:0b:cb:56:c0:78:32:c5:b6:27: f4:8f:b3:ae:f4:97:52:c0:45:38:39:7c:38:30:70:a1:7e:c3: a1:f2:9a:8c:26:70:e2:99:b8:46:53:81:0d:28:13:39:0d:9d: 0b:44:80:ea:62:5a:d3:58:87:bd:00:79:54:fd:d7:1f:9a:00: 16:c9:83:3b:e1:01:50:54:45:f5:96:ed:28:a6:be:19:e0:d2: 9e:45:bc:fe -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUajRcUXVVDDweiCNMAHGN2j7x6O0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlC RjFEMEYyRjAeFw0yNjA2MTAwOTM1MzRaFw0yNzA2MDkwOTQwMzRaMDMxMTAvBgNV BAMTKDM0MUY2NjM1RjdBMjYxQ0EyMDAwQkYyRkFENTJCN0U0RDNCNjk1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9B2tAupcVDoTKLGgvRx4mPYOm RZSg2tQ2TyWFx1HcGGcbLI1l+9yVUcTqKyN2HXvKeq+Iq3bSE+G0q/0smJ+PTW8R qEFgp4T50cmpplL8JPYAKxxXiiaYHinsDLQFeT7pik1I6FYOMLztizHcsoZGCHTe VfrAnvGmLYWZb7g5Ib/3xYvBguMihrL++kdPxgWQjGnzWCvAagZaJxwefEvAO3nt 8rqfuEUxYf0vEJlCL/6z87vuKhDwxC9WBooDqBVHQHCYaI6QxINQStjEcSi+1Ovq E/cCd9dFji8ZI7WKIZbnsf2LPPB6wrbclbW+SVIG12jod+WbqBokXmy6ftrXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUNB9mNfeiYcogAL8vrVK35NO2lUUwHwYDVR0j BBgwFoAUzHkaH1yzuyyvfCg4IRLiab8dDy8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYjdhMGFhNTYtNGExZC00YmE4LWFiNjYtYzU5ZmVkNGMz N2ZjLzEvQ0M3OTFBMUY1Q0IzQkIyQ0FGN0MyODM4MjExMkUyNjlCRjFEMEYyRi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9DQzc5MUExRjVDQjNCQjJDQUY3QzI4Mzgy MTEyRTI2OUJGMUQwRjJGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iN2EwYWE1Ni00YTFkLTRiYTgtYWI2Ni1jNTlmZWQ0YzM3ZmMvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTY2NjYzNzM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gP93MA0GCSqGSIb3DQEBCwUAA4IBAQC4 8Oi4Kom5Cg5ATlT2+bZirKfW9/WjYkudriZzdr3cc84M9agtBBLckZnNiqDWTAId 9QIg4Gyu94q+UHsfeqa5Dk1DVGev3eF7iY+d2nYKQpCS+hi9nXiafoeWPAl+Lz3D mB+rytutSOdTm/p+DLL1+92h4e7Sf1iKAGSnIFwjp/Vpv2rRbIABLObQ3tuMUpFg RxyKQ7XGMUszQDw4iMnG4Zf0CYKOjY6W9asLy1bAeDLFtif0j7Ou9JdSwEU4OXw4 MHChfsOh8pqMJnDimbhGU4ENKBM5DZ0LRIDqYlrTWIe9AHlU/dcfmgAWyYM74QFQ VEX1lu0opr4Z4NKeRbz+ -----END CERTIFICATE-----Generated at Tue Jun 16 08:04:48 2026 by rpki-client