$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/326131343a316563373a666530303a3a2f34302d3430203d3e203438373030.roa File: 326131343a316563373a666530303a3a2f34302d3430203d3e203438373030.roa (raw, json) Hash identifier: 0vzU+HYku+PmILnY1khyu0EQMsoMpVXJCqYvIjyzR+Q= Subject key identifier: B7:33:57:F3:F9:E2:5C:C1:5C:8F:69:2F:50:AB:80:9A:F3:7F:58:14 Certificate issuer: /CN=7B8B788E11038E988A479693F5D7C2EA216BCD76 Certificate serial: 7BC6E8F5B8D78CF3F686F7EEBD00BDC14B55BD06 Authority key identifier: 7B:8B:78:8E:11:03:8E:98:8A:47:96:93:F5:D7:C2:EA:21:6B:CD:76 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/326131343a316563373a666530303a3a2f34302d3430203d3e203438373030.roa Signing time: Fri 17 May 2024 17:54:36 +0000 ROA not before: Fri 17 May 2024 17:49:36 +0000 ROA not after: Fri 16 May 2025 17:54:36 +0000 asID: 48700 IP address blocks: 2a14:1ec7:fe00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.crl rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 29 May 2024 12:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c6:e8:f5:b8:d7:8c:f3:f6:86:f7:ee:bd:00:bd:c1:4b:55:bd:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8B788E11038E988A479693F5D7C2EA216BCD76 Validity Not Before: May 17 17:49:36 2024 GMT Not After : May 16 17:54:36 2025 GMT Subject: CN=B73357F3F9E25CC15C8F692F50AB809AF37F5814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a8:3f:20:e7:e3:e9:f9:9c:d7:09:ab:55:cf: 5b:ca:13:11:8a:82:d5:54:35:3e:05:4a:28:6c:5a: 40:fe:a3:ec:57:6a:00:d0:93:a2:ab:3e:6a:0d:d9: da:87:3d:0e:90:1c:35:c7:20:fe:30:b8:f9:5c:25: ed:06:fd:db:82:9e:ff:22:3d:bd:e4:3a:8f:17:1f: dc:6f:a7:5a:90:8e:25:86:f2:5c:9e:ff:b2:56:4e: c6:02:65:16:4f:29:bd:09:a7:08:65:96:9f:5e:d9: d2:85:ee:96:b9:bb:20:1b:55:63:bf:18:4b:61:9b: 19:d8:66:a4:53:ab:af:79:2b:ef:de:3d:41:ba:75: ce:9f:49:5a:f3:1e:26:38:d3:ca:8a:9e:75:75:fa: 3b:f6:8d:44:5a:17:f6:6b:87:66:64:ee:50:18:87: 9e:21:f7:b7:3b:a0:16:98:7e:bb:01:60:ba:c4:7f: 16:97:86:ff:32:1a:a0:d2:e8:73:37:d7:3d:55:1f: 18:7a:ea:56:13:5e:f6:08:a4:f1:a3:5f:d4:b5:60: d8:d0:5b:e1:b3:1b:5d:0e:7c:05:79:d8:66:ef:d6: 40:7d:ef:75:20:2c:25:e9:aa:c0:84:31:99:0f:c5: 26:d9:75:53:ce:31:15:39:20:65:77:16:13:4d:8b: 40:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:33:57:F3:F9:E2:5C:C1:5C:8F:69:2F:50:AB:80:9A:F3:7F:58:14 X509v3 Authority Key Identifier: keyid:7B:8B:78:8E:11:03:8E:98:8A:47:96:93:F5:D7:C2:EA:21:6B:CD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/7B8B788E11038E988A479693F5D7C2EA216BCD76.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/58833e98-6f21-4d30-8d83-140aca938d71/0/326131343a316563373a666530303a3a2f34302d3430203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:fe00::/40 Signature Algorithm: sha256WithRSAEncryption 28:b2:c0:77:16:50:c5:c5:ae:3d:0b:d2:0d:c3:32:0b:26:1d: ae:3b:76:74:90:6c:5d:03:e9:44:66:30:09:b0:70:33:d3:bf: 09:3f:c0:5b:61:ad:be:b3:55:ed:11:47:2d:b6:c1:90:00:b9: 81:32:f0:da:56:fc:3c:25:12:06:c0:f9:88:61:4c:1e:a4:a8: 61:4f:d1:83:88:73:43:3d:e8:60:e1:ee:9d:94:a8:9d:bc:b3: 88:73:be:28:5c:9d:9d:1a:33:34:47:94:95:00:d6:ff:e1:5d: 9c:86:c6:78:9f:b2:8d:9f:68:73:1b:0e:43:f3:ea:71:52:24: bf:1a:ba:05:34:b3:e8:d5:21:00:12:0a:06:ff:9f:de:ef:de: 26:f7:bb:df:c6:fd:4f:c4:dc:14:83:1f:97:c9:c3:d2:a7:0e: d6:ce:40:f2:bd:3d:82:21:f9:f6:ef:1d:e9:a9:7b:a2:14:d0: be:da:4a:94:22:8c:72:8c:e0:24:6d:0a:7d:50:32:8b:72:63: dd:6c:58:30:38:c7:ec:46:52:e7:32:52:89:d3:21:bd:bc:53: fe:e8:23:b0:fd:49:78:af:db:c2:29:3d:3e:55:6c:0e:65:e0: c1:c5:0c:89:df:82:6c:51:c8:e5:c2:75:3c:7c:e4:6f:c8:36: 7b:b8:83:9c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUe8bo9bjXjPP2hvfuvQC9wUtVvQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0I4Qjc4OEUxMTAzOEU5ODhBNDc5NjkzRjVEN0MyRUEy MTZCQ0Q3NjAeFw0yNDA1MTcxNzQ5MzZaFw0yNTA1MTYxNzU0MzZaMDMxMTAvBgNV BAMTKEI3MzM1N0YzRjlFMjVDQzE1QzhGNjkyRjUwQUI4MDlBRjM3RjU4MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClqD8g5+Pp+ZzXCatVz1vKExGK gtVUNT4FSihsWkD+o+xXagDQk6KrPmoN2dqHPQ6QHDXHIP4wuPlcJe0G/duCnv8i Pb3kOo8XH9xvp1qQjiWG8lye/7JWTsYCZRZPKb0Jpwhllp9e2dKF7pa5uyAbVWO/ GEthmxnYZqRTq695K+/ePUG6dc6fSVrzHiY408qKnnV1+jv2jURaF/Zrh2Zk7lAY h54h97c7oBaYfrsBYLrEfxaXhv8yGqDS6HM31z1VHxh66lYTXvYIpPGjX9S1YNjQ W+GzG10OfAV52Gbv1kB973UgLCXpqsCEMZkPxSbZdVPOMRU5IGV3FhNNi0CTAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUtzNX8/niXMFcj2kvUKuAmvN/WBQwHwYDVR0j BBgwFoAUe4t4jhEDjpiKR5aT9dfC6iFrzXYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTg4MzNlOTgtNmYyMS00ZDMwLThkODMtMTQwYWNhOTM4 ZDcxLzAvN0I4Qjc4OEUxMTAzOEU5ODhBNDc5NjkzRjVEN0MyRUEyMTZCQ0Q3Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC83QjhCNzg4RTExMDM4RTk4OEE0Nzk2OTNG NUQ3QzJFQTIxNkJDRDc2LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS81ODgzM2U5OC02ZjIxLTRkMzAtOGQ4My0xNDBhY2E5MzhkNzEvMC8zMjYxMzEz NDNhMzE2NTYzMzczYTY2NjUzMDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzQz ODM3MzAzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUHsf+MA0GCSqGSIb3DQEBCwUAA4IBAQAossB3 FlDFxa49C9INwzILJh2uO3Z0kGxdA+lEZjAJsHAz078JP8BbYa2+s1XtEUcttsGQ ALmBMvDaVvw8JRIGwPmIYUwepKhhT9GDiHNDPehg4e6dlKidvLOIc74oXJ2dGjM0 R5SVANb/4V2chsZ4n7KNn2hzGw5D8+pxUiS/GroFNLPo1SEAEgoG/5/e794m97vf xv1PxNwUgx+XycPSpw7WzkDyvT2CIfn27x3pqXuiFNC+2kqUIoxyjOAkbQp9UDKL cmPdbFgwOMfsRlLnMlKJ0yG9vFP+6COw/Ul4r9vCKT0+VWwOZeDBxQyJ34JsUcjl wnU8fORvyDZ7uIOc -----END CERTIFICATE-----Generated at Tue May 28 19:13:03 2024 by rpki-client on console-fra.rpki-client.org