$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/326131313a323963303a396562303a3a2f34342d3434203d3e20323033303639.roa File: 326131313a323963303a396562303a3a2f34342d3434203d3e20323033303639.roa (raw, json) Hash identifier: WInhbGmfRQKynls9luzccWHyMXhJsk9s09agweZa4us= Subject key identifier: 21:13:54:BA:34:26:BF:62:44:DA:02:2C:04:87:B0:C9:BE:24:33:A3 Certificate issuer: /CN=CDC014669D381152AFB94B76936268BFF73E7D50 Certificate serial: 78F4E48EFE27C300D767E3CB8BAEF6BA148DE2F9 Authority key identifier: CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/326131313a323963303a396562303a3a2f34342d3434203d3e20323033303639.roa Signing time: Sun 26 Nov 2023 11:08:45 +0000 ROA not before: Sun 26 Nov 2023 11:03:45 +0000 ROA not after: Sun 24 Nov 2024 11:08:45 +0000 asID: 203069 IP address blocks: 2a11:29c0:9eb0::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 02 Jun 2024 11:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f4:e4:8e:fe:27:c3:00:d7:67:e3:cb:8b:ae:f6:ba:14:8d:e2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CDC014669D381152AFB94B76936268BFF73E7D50 Validity Not Before: Nov 26 11:03:45 2023 GMT Not After : Nov 24 11:08:45 2024 GMT Subject: CN=211354BA3426BF6244DA022C0487B0C9BE2433A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ff:19:3f:e0:79:f9:4b:d0:a0:63:0e:a8:09: c5:15:05:ac:0b:d2:d6:80:e7:f9:08:2a:0e:4b:28: 61:64:c6:d6:c3:d7:59:f9:d3:7c:3d:22:0a:24:90: 5a:17:c2:10:61:00:b8:3a:6f:05:68:97:dd:47:c8: 68:ba:37:4f:51:e4:4f:11:f7:97:73:0c:74:06:da: 45:d2:43:b7:89:d7:57:d7:bd:ff:d4:ca:70:70:87: 29:f5:ee:76:cf:ca:8b:8c:35:63:16:73:72:ea:25: 4b:6c:e3:ff:90:36:e0:f7:7a:35:cf:a1:b4:b2:b1: 9a:bb:c9:24:82:05:72:1c:66:08:f4:9f:6e:e5:7e: d0:92:3f:5e:69:2b:bd:54:17:e1:0e:85:98:bb:a7: a8:0d:1c:84:fd:34:dd:65:c9:96:8a:ee:35:b6:c7: 95:a8:be:9f:6f:b5:56:14:aa:83:02:09:23:f5:ff: b6:96:70:8b:ae:dd:07:06:8a:0c:08:05:d1:d8:08: 0d:32:50:34:48:be:64:7d:07:fb:7c:bd:24:6f:c4: 2e:38:89:9d:db:ea:fd:1e:c3:8d:27:7e:bd:08:1f: 20:41:9c:bb:6c:bc:0a:f0:84:d7:a9:7c:95:17:03: 5a:e8:68:17:2d:82:7c:59:22:92:98:1d:fd:9c:9e: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:13:54:BA:34:26:BF:62:44:DA:02:2C:04:87:B0:C9:BE:24:33:A3 X509v3 Authority Key Identifier: keyid:CD:C0:14:66:9D:38:11:52:AF:B9:4B:76:93:62:68:BF:F7:3E:7D:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/326131313a323963303a396562303a3a2f34342d3434203d3e20323033303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:9eb0::/44 Signature Algorithm: sha256WithRSAEncryption 09:00:fd:33:ca:68:4a:86:60:f3:8b:63:e4:ac:a9:59:b4:03: 0c:f6:bb:d4:e1:32:c1:a7:af:e4:b1:49:30:f2:2d:af:2a:9a: d9:b8:1f:54:9b:31:e8:11:4f:14:38:07:c9:f2:12:25:e0:68: 4d:81:99:37:91:1a:f3:b6:e5:13:70:23:17:14:bc:ef:41:db: ca:24:2e:67:66:91:1c:48:14:cd:e1:8d:c7:7d:47:d5:e5:df: 42:05:f1:6f:8a:0a:47:ae:92:76:d1:e2:0d:ea:ea:9a:a4:e6: ae:ab:7b:a5:3d:eb:15:f4:32:8c:eb:93:ee:f3:90:bd:ff:40: f0:09:b7:d0:c6:10:dc:48:cd:7f:d9:b6:39:75:b0:ad:65:6e: 2f:61:2f:9e:a2:be:1d:ab:04:b6:31:43:b6:a7:d0:fb:77:1f: c2:b5:e6:51:60:28:36:71:46:b4:00:5e:d2:f1:81:3a:67:5d: 52:95:3d:98:fd:17:46:b4:15:77:3f:79:75:3b:31:1f:97:a2: 32:23:8b:c7:5e:ec:e6:6a:08:d3:6b:30:c2:66:38:a4:bc:a7: d3:b7:a7:0d:36:78:53:f0:a7:7a:ae:21:75:ce:7d:ec:ef:2d: 10:59:22:0c:74:75:0d:e2:ed:b7:c2:0f:ce:d5:bf:58:c3:08: 61:61:8d:6d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUePTkjv4nwwDXZ+PLi672uhSN4vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0RDMDE0NjY5RDM4MTE1MkFGQjk0Qjc2OTM2MjY4QkZG NzNFN0Q1MDAeFw0yMzExMjYxMTAzNDVaFw0yNDExMjQxMTA4NDVaMDMxMTAvBgNV BAMTKDIxMTM1NEJBMzQyNkJGNjI0NERBMDIyQzA0ODdCMEM5QkUyNDMzQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc/xk/4Hn5S9CgYw6oCcUVBawL 0taA5/kIKg5LKGFkxtbD11n503w9IgokkFoXwhBhALg6bwVol91HyGi6N09R5E8R 95dzDHQG2kXSQ7eJ11fXvf/UynBwhyn17nbPyouMNWMWc3LqJUts4/+QNuD3ejXP obSysZq7ySSCBXIcZgj0n27lftCSP15pK71UF+EOhZi7p6gNHIT9NN1lyZaK7jW2 x5Wovp9vtVYUqoMCCSP1/7aWcIuu3QcGigwIBdHYCA0yUDRIvmR9B/t8vSRvxC44 iZ3b6v0ew40nfr0IHyBBnLtsvArwhNepfJUXA1roaBctgnxZIpKYHf2cnrGfAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIRNUujQmv2JE2gIsBIewyb4kM6MwHwYDVR0j BBgwFoAUzcAUZp04EVKvuUt2k2Jov/c+fVAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1 YzdkLzIvQ0RDMDE0NjY5RDM4MTE1MkFGQjk0Qjc2OTM2MjY4QkZGNzNFN0Q1MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84MTExNWJjNi0xMGY2LTRh ZjMtYmEwOS04YjY4N2E1NmZiZjUvMC9DREMwMTQ2NjlEMzgxMTUyQUZCOTRCNzY5 MzYyNjhCRkY3M0U3RDUwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMjUzZDk3My1kNWJmLTQ1NDEtYmNjMS0yNzY1NDNhMjVjN2QvMi8zMjYxMzEz MTNhMzIzOTYzMzAzYTM5NjU2MjMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MDMzMzAzNjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhEpwJ6wMA0GCSqGSIb3DQEBCwUAA4IBAQAJ AP0zymhKhmDzi2PkrKlZtAMM9rvU4TLBp6/ksUkw8i2vKprZuB9UmzHoEU8UOAfJ 8hIl4GhNgZk3kRrztuUTcCMXFLzvQdvKJC5nZpEcSBTN4Y3HfUfV5d9CBfFvigpH rpJ20eIN6uqapOauq3ulPesV9DKM65Pu85C9/0DwCbfQxhDcSM1/2bY5dbCtZW4v YS+eor4dqwS2MUO2p9D7dx/CteZRYCg2cUa0AF7S8YE6Z11SlT2Y/RdGtBV3P3l1 OzEfl6IyI4vHXuzmagjTazDCZjikvKfTt6cNNnhT8Kd6riF1zn3s7y0QWSIMdHUN 4u23wg/O1b9YwwhhYY1t -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:30 2024 by rpki-client on console-fra.rpki-client.org