$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730393a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538333a663730393a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: ody+MZu+p9r7722qUv+nib+WdzL08bt7JIhdIl0nBOM= Subject key identifier: 46:F8:92:78:B3:08:77:D7:41:D9:C8:4C:DE:D4:0D:17:31:37:54:13 Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 4708DF48AAD3D3DC2444F11B816033BCEFA8C88E Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730393a3a2f34382d3438203d3e20323134393535.roa Signing time: Tue 23 Sep 2025 03:44:02 +0000 ROA not before: Tue 23 Sep 2025 03:39:02 +0000 ROA not after: Tue 22 Sep 2026 03:44:02 +0000 asID: 214955 IP address blocks: 2a14:7583:f709::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 09:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:08:df:48:aa:d3:d3:dc:24:44:f1:1b:81:60:33:bc:ef:a8:c8:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 23 03:39:02 2025 GMT Not After : Sep 22 03:44:02 2026 GMT Subject: CN=46F89278B30877D741D9C84CDED40D1731375413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:03:81:78:b6:be:6f:f2:c0:f3:7d:f5:e9:80: b3:7a:3c:0b:c2:23:e7:95:71:aa:1c:39:ed:4f:4e: 9d:fc:25:3e:f6:97:5f:00:09:60:58:d7:06:d1:82: b1:92:62:fc:92:5d:2e:87:a9:5b:96:db:a2:f2:70: 1c:2a:bd:3c:bb:f6:37:58:1e:fa:bd:c7:2f:54:1f: 73:ee:c5:34:84:61:9d:41:2e:1b:08:eb:9a:22:03: 8a:56:2e:3d:64:85:eb:91:93:31:7c:77:37:17:45: 08:97:19:17:7b:c9:3b:86:cf:2f:77:1c:ac:d5:f2: a2:4e:20:4c:b0:8d:c0:5c:85:5e:71:52:de:56:ce: 27:9b:24:b9:36:80:67:3b:6a:5f:e5:ba:17:d7:f9: 40:4f:cb:0f:0a:6d:b9:00:a9:35:2f:d9:3e:9b:76: f2:e3:32:f2:7c:b8:8e:61:1e:a3:2a:3b:92:dd:c9: 43:b4:94:b0:e2:45:5d:d9:70:c3:5d:bb:1b:66:18: 79:be:27:e9:e1:25:67:1f:54:41:a7:5e:71:9a:c3: 94:24:f3:cf:b3:68:37:3f:d0:b0:00:04:c5:36:2c: 22:53:73:71:8f:cd:6c:a5:3d:7f:ab:0b:62:62:75: d0:69:8e:d4:a7:b4:4b:7f:67:1f:fb:33:23:8d:a3: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F8:92:78:B3:08:77:D7:41:D9:C8:4C:DE:D4:0D:17:31:37:54:13 X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730393a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f709::/48 Signature Algorithm: sha256WithRSAEncryption 10:03:a9:25:79:90:d5:a6:e0:a4:33:35:c4:86:a4:a3:a1:df: c8:ca:44:91:58:17:78:ca:aa:85:0f:ae:fb:2d:ad:14:c6:d5: 61:13:e2:cf:fb:56:49:d8:6d:b8:fe:74:b4:ea:c8:f8:bf:65: e9:51:5a:23:7d:80:8d:7b:48:b7:ff:27:bf:be:90:a9:16:87: 71:6b:b2:bf:ba:f4:51:f7:57:fd:22:32:37:e5:b7:86:a6:4c: d0:85:c0:bc:67:f5:63:5a:a3:8d:ec:1c:f8:1d:d1:66:97:78: a9:5a:ce:6c:8b:2a:88:d5:8f:4e:c6:01:b8:48:c3:99:a0:33: 13:78:c5:2c:10:f3:ec:cd:fe:d2:df:1b:2e:2b:a7:10:62:aa: 8b:2d:a4:77:07:bc:af:bd:22:6f:3f:e4:b3:94:28:48:bf:13: 0c:7e:d6:29:75:12:2d:b4:1b:13:26:31:a4:e0:19:11:a1:ca: fc:d0:2b:4b:89:e5:22:9d:3d:64:1f:2f:7f:ca:bb:2f:b2:84: 24:06:08:c2:54:2d:53:5f:1c:57:82:fc:5d:fa:95:57:69:7a: c1:39:10:c2:22:0e:58:09:d9:a8:eb:8e:2a:6e:3a:b0:50:19: a2:ae:72:3b:67:56:56:3d:5d:11:89:e5:c8:b0:12:55:87:ca: 85:5b:9c:7c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIURwjfSKrT09wkRPEbgWAzvO+oyI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MjMwMzM5MDJaFw0yNjA5MjIwMzQ0MDJaMDMxMTAvBgNV BAMTKDQ2Rjg5Mjc4QjMwODc3RDc0MUQ5Qzg0Q0RFRDQwRDE3MzEzNzU0MTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRA4F4tr5v8sDzffXpgLN6PAvC I+eVcaocOe1PTp38JT72l18ACWBY1wbRgrGSYvySXS6HqVuW26LycBwqvTy79jdY Hvq9xy9UH3PuxTSEYZ1BLhsI65oiA4pWLj1kheuRkzF8dzcXRQiXGRd7yTuGzy93 HKzV8qJOIEywjcBchV5xUt5WziebJLk2gGc7al/luhfX+UBPyw8KbbkAqTUv2T6b dvLjMvJ8uI5hHqMqO5LdyUO0lLDiRV3ZcMNduxtmGHm+J+nhJWcfVEGnXnGaw5Qk 88+zaDc/0LAABMU2LCJTc3GPzWylPX+rC2JiddBpjtSntEt/Zx/7MyONo3mvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURviSeLMId9dB2chM3tQNFzE3VBMwHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzczMDM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/cJMA0GCSqGSIb3DQEBCwUAA4IBAQAQ A6kleZDVpuCkMzXEhqSjod/IykSRWBd4yqqFD677La0UxtVhE+LP+1ZJ2G24/nS0 6sj4v2XpUVojfYCNe0i3/ye/vpCpFodxa7K/uvRR91f9IjI35beGpkzQhcC8Z/Vj WqON7Bz4HdFml3ipWs5siyqI1Y9OxgG4SMOZoDMTeMUsEPPszf7S3xsuK6cQYqqL LaR3B7yvvSJvP+SzlChIvxMMftYpdRIttBsTJjGk4BkRocr80CtLieUinT1kHy9/ yrsvsoQkBgjCVC1TXxxXgvxd+pVXaXrBORDCIg5YCdmo644qbjqwUBmirnI7Z1ZW PV0RieXIsBJVh8qFW5x8 -----END CERTIFICATE-----Generated at Mon Oct 20 22:16:43 2025 by rpki-client