$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730363a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538333a663730363a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: HF0IXoiIoV1vsEb3Y7UE6hceXgn4rnvPt86H7Wi7oFU= Subject key identifier: 17:FE:92:39:18:B8:7D:97:D2:F7:20:35:B8:E5:24:AF:BB:5D:D7:36 Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 73B37A3C8B81D5089C5437BFB2B320E4FF86B060 Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730363a3a2f34382d3438203d3e20323134393535.roa Signing time: Mon 22 Sep 2025 23:36:45 +0000 ROA not before: Mon 22 Sep 2025 23:31:45 +0000 ROA not after: Mon 21 Sep 2026 23:36:45 +0000 asID: 214955 IP address blocks: 2a14:7583:f706::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 09:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:b3:7a:3c:8b:81:d5:08:9c:54:37:bf:b2:b3:20:e4:ff:86:b0:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 22 23:31:45 2025 GMT Not After : Sep 21 23:36:45 2026 GMT Subject: CN=17FE923918B87D97D2F72035B8E524AFBB5DD736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:09:92:f7:41:c8:20:3c:43:ce:09:a8:eb: 31:56:a7:08:d3:40:aa:b5:f6:65:ec:68:2d:37:e4: 93:f5:08:9f:45:32:cb:4b:01:4a:26:4e:3e:90:4c: 94:a0:1b:1c:31:f2:ef:37:39:08:e0:86:3d:e4:89: 48:64:1b:49:d4:ee:cd:72:4d:fe:d4:1e:07:fa:3f: 18:81:86:73:1c:54:68:99:53:ac:7b:76:38:dd:da: 74:89:c9:d5:9a:8b:77:19:db:8d:04:ef:7e:db:3f: de:f4:92:09:f0:35:42:bd:b7:15:12:1f:36:b0:ae: 99:91:39:50:a9:ea:95:a0:6d:a6:9a:7f:a1:6c:d2: f2:f9:1a:41:c6:32:fc:2e:47:90:be:e7:94:17:5f: 43:3b:d9:9a:70:28:77:e7:a5:64:76:84:c6:8b:60: 7d:29:96:47:01:05:45:a0:3d:d6:f7:dd:ec:1e:54: 5e:3a:ba:2c:86:cc:35:ba:f3:32:82:23:d0:6c:61: 95:65:13:bf:46:88:72:3d:91:ec:f4:e5:ca:29:d9: 2d:5c:07:85:5b:8e:b7:d9:08:88:fb:e3:33:f5:0e: d4:cc:0e:de:96:5f:1c:d2:6c:a1:c3:4b:5f:62:fe: 45:df:36:ec:35:c5:32:10:ea:56:f8:eb:68:c2:58: 50:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FE:92:39:18:B8:7D:97:D2:F7:20:35:B8:E5:24:AF:BB:5D:D7:36 X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730363a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f706::/48 Signature Algorithm: sha256WithRSAEncryption 8e:e8:e2:09:d2:b6:0e:05:0f:30:84:46:90:ae:4a:be:ef:d4: 16:8a:c1:ab:e7:91:5e:f6:1a:37:4f:4d:8d:e7:49:72:a6:78: fc:26:e1:99:f8:92:d7:1a:6f:b1:35:e9:75:85:a5:20:46:9c: 53:f7:d5:b2:80:1d:ad:5d:07:52:06:5f:52:94:2b:11:42:19: 65:b5:fd:45:4c:0a:8f:eb:31:74:6b:72:0c:ac:82:bc:d0:e9: a1:50:0d:4d:71:85:8d:0a:a7:b5:ac:5a:80:46:0d:73:11:4a: 56:9e:2f:29:b8:e4:59:79:9d:aa:d3:2c:65:a2:00:f0:f0:10: 66:c4:22:5a:77:6e:6c:68:04:2e:cf:8e:d5:7a:3c:b1:40:46: b4:64:80:c4:ed:66:54:4c:75:61:bc:12:cb:38:91:bb:2d:5a: 77:d0:ab:da:ef:73:6c:48:fd:f9:4d:91:8a:8f:f2:f2:0b:6a: 33:47:ab:d0:21:d6:46:9c:1b:29:d5:89:c1:a4:54:f0:8a:9d: a8:4c:b8:4e:32:c4:8e:66:1f:26:8a:33:76:aa:f7:aa:df:d0: a7:6d:bb:52:99:ca:66:58:ac:6a:85:b9:86:40:1e:1b:c4:11: 24:6e:12:e3:95:b5:66:5d:f0:97:70:a1:42:a7:75:db:75:2b: 7f:55:31:46 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUc7N6PIuB1QicVDe/srMg5P+GsGAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MjIyMzMxNDVaFw0yNjA5MjEyMzM2NDVaMDMxMTAvBgNV BAMTKDE3RkU5MjM5MThCODdEOTdEMkY3MjAzNUI4RTUyNEFGQkI1REQ3MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDGgmS90HIIDxDzgmo6zFWpwjT QKq19mXsaC035JP1CJ9FMstLAUomTj6QTJSgGxwx8u83OQjghj3kiUhkG0nU7s1y Tf7UHgf6PxiBhnMcVGiZU6x7djjd2nSJydWai3cZ240E737bP970kgnwNUK9txUS HzawrpmROVCp6pWgbaaaf6Fs0vL5GkHGMvwuR5C+55QXX0M72ZpwKHfnpWR2hMaL YH0plkcBBUWgPdb33eweVF46uiyGzDW68zKCI9BsYZVlE79GiHI9kez05cop2S1c B4VbjrfZCIj74zP1DtTMDt6WXxzSbKHDS19i/kXfNuw1xTIQ6lb462jCWFDRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUF/6SORi4fZfS9yA1uOUkr7td1zYwHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzczMDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/cGMA0GCSqGSIb3DQEBCwUAA4IBAQCO 6OIJ0rYOBQ8whEaQrkq+79QWisGr55Fe9ho3T02N50lypnj8JuGZ+JLXGm+xNel1 haUgRpxT99WygB2tXQdSBl9SlCsRQhlltf1FTAqP6zF0a3IMrIK80OmhUA1NcYWN Cqe1rFqARg1zEUpWni8puORZeZ2q0yxlogDw8BBmxCJad25saAQuz47VejyxQEa0 ZIDE7WZUTHVhvBLLOJG7LVp30Kva73NsSP35TZGKj/LyC2ozR6vQIdZGnBsp1YnB pFTwip2oTLhOMsSOZh8mijN2qveq39CnbbtSmcpmWKxqhbmGQB4bxBEkbhLjlbVm XfCXcKFCp3XbdSt/VTFG -----END CERTIFICATE-----Generated at Mon Oct 20 22:16:44 2025 by rpki-client