$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730613a3a2f34382d3438203d3e20323134393535.roa File: 326131343a373538333a663730613a3a2f34382d3438203d3e20323134393535.roa (raw, json) Hash identifier: KrncfgwV2JNmUMMX9XTAiUcGcVNG82mQHu5/P0lF/YQ= Subject key identifier: 9B:3A:04:8F:D5:44:6A:F8:C2:56:4B:FF:F2:6F:F7:FD:AE:A9:4B:93 Certificate issuer: /CN=702B79B445330AC21D237308277A4472598CE771 Certificate serial: 79A08FB813F70886BE03756D9609400423AC8784 Authority key identifier: 70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730613a3a2f34382d3438203d3e20323134393535.roa Signing time: Tue 23 Sep 2025 17:02:04 +0000 ROA not before: Tue 23 Sep 2025 16:57:04 +0000 ROA not after: Tue 22 Sep 2026 17:02:04 +0000 asID: 214955 IP address blocks: 2a14:7583:f70a::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 Oct 2025 09:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a0:8f:b8:13:f7:08:86:be:03:75:6d:96:09:40:04:23:ac:87:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=702B79B445330AC21D237308277A4472598CE771 Validity Not Before: Sep 23 16:57:04 2025 GMT Not After : Sep 22 17:02:04 2026 GMT Subject: CN=9B3A048FD5446AF8C2564BFFF26FF7FDAEA94B93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:61:39:cc:6e:ee:57:7e:56:6b:53:06:0a: 54:4f:d4:11:95:a3:6d:7a:22:3e:af:be:c0:52:00: 4c:7f:07:1a:7a:95:62:f8:1d:ed:82:83:8a:85:d3: 96:76:ee:74:36:7d:07:16:6a:0c:d6:61:7a:8b:10: 96:7a:c5:f4:62:fc:fd:aa:79:33:44:ac:18:f1:3c: 3f:69:78:94:37:e7:c3:f8:78:98:b1:3d:f5:46:c7: 58:72:46:bd:f7:f8:01:63:6b:85:f7:cc:36:f0:6d: 36:8c:3e:b2:69:90:b3:89:1b:a9:cd:95:fb:b3:ad: 0d:c1:7f:a3:e8:19:c6:59:13:06:08:5d:23:ea:ac: 59:04:6d:5a:54:2c:37:e6:64:d5:bd:38:62:5b:68: 98:0e:6a:76:b0:85:25:87:0c:da:db:c6:79:6b:ea: bd:19:87:12:00:bd:0e:6d:54:98:e9:d0:4e:f1:f1: 55:a4:02:2f:f6:98:be:6d:23:d1:62:c9:58:4c:94: f4:97:fe:b8:56:6a:a2:8f:c9:07:19:d7:bb:79:14: 47:90:a0:f5:a0:6e:f3:9d:51:7d:9d:d6:73:0d:28: 6e:3d:34:1f:15:04:34:1f:dd:1f:e7:08:ab:8a:55: 48:ea:a3:b4:60:69:07:d8:04:c7:d3:20:e3:6d:6a: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3A:04:8F:D5:44:6A:F8:C2:56:4B:FF:F2:6F:F7:FD:AE:A9:4B:93 X509v3 Authority Key Identifier: keyid:70:2B:79:B4:45:33:0A:C2:1D:23:73:08:27:7A:44:72:59:8C:E7:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/702B79B445330AC21D237308277A4472598CE771.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/702B79B445330AC21D237308277A4472598CE771.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3f99e66d-4c7b-4130-91d5-4fbd84357792/1/326131343a373538333a663730613a3a2f34382d3438203d3e20323134393535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7583:f70a::/48 Signature Algorithm: sha256WithRSAEncryption 10:2a:f2:2f:2a:21:88:71:9d:b3:c0:78:d0:67:5a:fd:d8:ee: 1b:54:a0:1c:db:5e:49:8d:43:63:25:e6:ef:29:50:cf:cf:74: 14:53:ba:75:4c:99:f9:58:7f:5d:d7:02:d0:7d:08:d6:a6:01: d9:ae:ae:9f:d8:a7:88:ce:84:11:7e:04:a6:42:a3:86:aa:ab: 7f:d0:16:f9:4c:f9:6a:1e:42:54:5e:6e:7e:74:0d:47:19:ee: e6:56:a0:5d:3f:ef:0e:dc:61:61:f5:be:89:24:e3:93:d3:09: 75:51:89:43:97:68:c4:63:0c:d1:23:a2:dd:ed:31:8a:14:87: cf:25:36:e1:49:a0:ed:65:9f:33:0e:18:b5:be:92:09:0d:6b: 40:12:a8:5f:fd:79:68:f6:6a:5d:2d:f7:b4:fc:05:34:71:df: c4:17:9d:50:ae:53:35:84:b4:9b:2a:3f:5c:28:02:59:25:06: 72:2f:b8:a3:60:2c:0b:af:a0:f3:ae:3f:de:f9:99:bd:a8:11: 98:df:40:ac:78:14:f9:27:2f:0b:9f:41:cf:85:16:9f:7c:9c: 99:8a:d1:49:c0:06:68:5c:71:83:d3:26:52:82:28:03:46:0d: 36:0f:fa:51:a2:41:0e:ad:ed:5b:ee:31:bf:a1:cf:30:48:58: b9:a9:b4:37 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUeaCPuBP3CIa+A3VtlglABCOsh4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1 OThDRTc3MTAeFw0yNTA5MjMxNjU3MDRaFw0yNjA5MjIxNzAyMDRaMDMxMTAvBgNV BAMTKDlCM0EwNDhGRDU0NDZBRjhDMjU2NEJGRkYyNkZGN0ZEQUVBOTRCOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFlmE5zG7uV35Wa1MGClRP1BGV o216Ij6vvsBSAEx/Bxp6lWL4He2Cg4qF05Z27nQ2fQcWagzWYXqLEJZ6xfRi/P2q eTNErBjxPD9peJQ358P4eJixPfVGx1hyRr33+AFja4X3zDbwbTaMPrJpkLOJG6nN lfuzrQ3Bf6PoGcZZEwYIXSPqrFkEbVpULDfmZNW9OGJbaJgOanawhSWHDNrbxnlr 6r0ZhxIAvQ5tVJjp0E7x8VWkAi/2mL5tI9FiyVhMlPSX/rhWaqKPyQcZ17t5FEeQ oPWgbvOdUX2d1nMNKG49NB8VBDQf3R/nCKuKVUjqo7RgaQfYBMfTIONtalltAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUmzoEj9VEavjCVkv/8m/3/a6pS5MwHwYDVR0j BBgwFoAUcCt5tEUzCsIdI3MIJ3pEclmM53EwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvM2Y5OWU2NmQtNGM3Yi00MTMwLTkxZDUtNGZiZDg0MzU3 NzkyLzEvNzAyQjc5QjQ0NTMzMEFDMjFEMjM3MzA4Mjc3QTQ0NzI1OThDRTc3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC83MDJCNzlCNDQ1MzMwQUMyMUQyMzczMDgy NzdBNDQ3MjU5OENFNzcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zZjk5ZTY2ZC00YzdiLTQxMzAtOTFkNS00ZmJkODQzNTc3OTIvMS8zMjYxMzEz NDNhMzczNTM4MzMzYTY2MzczMDYxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzkzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1g/cKMA0GCSqGSIb3DQEBCwUAA4IBAQAQ KvIvKiGIcZ2zwHjQZ1r92O4bVKAc215JjUNjJebvKVDPz3QUU7p1TJn5WH9d1wLQ fQjWpgHZrq6f2KeIzoQRfgSmQqOGqqt/0Bb5TPlqHkJUXm5+dA1HGe7mVqBdP+8O 3GFh9b6JJOOT0wl1UYlDl2jEYwzRI6Ld7TGKFIfPJTbhSaDtZZ8zDhi1vpIJDWtA Eqhf/Xlo9mpdLfe0/AU0cd/EF51QrlM1hLSbKj9cKAJZJQZyL7ijYCwLr6Dzrj/e +Zm9qBGY30CseBT5Jy8Ln0HPhRaffJyZitFJwAZoXHGD0yZSgigDRg02D/pRokEO re1b7jG/oc8wSFi5qbQ3 -----END CERTIFICATE-----Generated at Mon Oct 20 22:16:53 2025 by rpki-client