$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/326130613a363034343a616337303a3a2f34342d3438203d3e20323134373537.roa File: 326130613a363034343a616337303a3a2f34342d3438203d3e20323134373537.roa (raw, json) Hash identifier: kTsgSKbRiL4aYX5SJXPuLKVktTLoWke+1YY/18wC8Yo= Subject key identifier: 44:78:54:6A:2E:AB:82:E7:D2:F4:06:E6:17:FF:B4:E1:50:EA:31:40 Certificate issuer: /CN=BB5C68696BDEF6289D58B3C0958E37E0DA23930D Certificate serial: 0D72EFBE0CC3E9EC87E4B41CE31F75BFDC98063E Authority key identifier: BB:5C:68:69:6B:DE:F6:28:9D:58:B3:C0:95:8E:37:E0:DA:23:93:0D Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/326130613a363034343a616337303a3a2f34342d3438203d3e20323134373537.roa Signing time: Tue 25 Jun 2024 09:36:15 +0000 ROA not before: Tue 25 Jun 2024 09:31:15 +0000 ROA not after: Tue 24 Jun 2025 09:36:15 +0000 asID: 214757 IP address blocks: 2a0a:6044:ac70::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.crl rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jul 2024 11:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:72:ef:be:0c:c3:e9:ec:87:e4:b4:1c:e3:1f:75:bf:dc:98:06:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB5C68696BDEF6289D58B3C0958E37E0DA23930D Validity Not Before: Jun 25 09:31:15 2024 GMT Not After : Jun 24 09:36:15 2025 GMT Subject: CN=4478546A2EAB82E7D2F406E617FFB4E150EA3140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d8:ca:e5:ae:3c:4f:4d:9d:d3:0b:49:8d:e4: 98:36:0d:78:09:85:f8:16:b0:e9:8e:ad:48:4f:34: e8:27:14:a9:87:85:72:3c:ee:46:0d:ae:5d:f7:02: e4:f1:c5:8d:03:68:58:a7:44:9e:99:9b:19:27:12: c3:7f:d2:8c:d4:51:e9:3e:a9:c6:40:f6:18:af:10: cd:3f:2d:17:17:d8:71:a9:03:b4:1a:f1:2c:ae:7f: eb:31:d7:9e:70:7b:ef:60:55:21:cf:da:01:52:33: d1:c6:eb:4f:4b:2e:11:59:d5:59:a7:5a:84:19:b3: 8b:35:3d:03:d9:79:cb:43:33:c4:2f:1e:0f:6f:fb: 1e:94:a2:3f:4c:44:37:fd:a0:84:0f:64:f2:f8:a3: e2:f4:4b:d4:11:17:20:f4:c3:f6:eb:c4:af:dc:22: 48:bd:39:05:45:43:27:ec:99:a7:9b:c7:a8:f2:f6: 89:5d:75:3b:41:0c:7e:8a:18:84:ea:0b:29:0f:47: c1:3f:82:40:52:04:97:88:b5:4f:3e:ea:61:56:16: e3:25:08:26:d7:50:65:0c:11:db:25:00:df:58:11: 1b:95:fd:ef:fe:63:51:71:d6:7e:4d:19:d5:3b:4a: db:cd:d8:9e:bb:ae:fa:50:c7:9d:46:a7:3b:43:c9: a1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:78:54:6A:2E:AB:82:E7:D2:F4:06:E6:17:FF:B4:E1:50:EA:31:40 X509v3 Authority Key Identifier: keyid:BB:5C:68:69:6B:DE:F6:28:9D:58:B3:C0:95:8E:37:E0:DA:23:93:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BB5C68696BDEF6289D58B3C0958E37E0DA23930D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/1/326130613a363034343a616337303a3a2f34342d3438203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ac70::/44 Signature Algorithm: sha256WithRSAEncryption cb:3c:57:2a:3c:13:e0:02:56:13:50:e8:f0:5c:b5:81:12:97: 85:5c:26:91:b7:b5:13:be:f5:c0:c8:25:14:ce:88:a2:f1:30: 83:5b:03:67:a2:2f:42:9c:32:3f:5a:1c:0a:25:a4:ea:3b:93: a9:0d:45:e0:17:ac:44:06:21:83:0c:71:82:09:ba:2b:18:59: fc:e5:33:c0:31:52:34:8c:bb:99:2f:db:44:f7:32:40:b1:3d: 41:71:ab:6e:7e:4e:fc:a5:2c:cd:40:3f:f5:cf:db:14:09:b9: 31:f7:ab:90:36:e1:42:67:1e:d2:ff:d2:12:16:d5:1b:10:7d: 9d:1f:dc:98:c5:a8:bd:95:b9:92:05:c8:08:78:50:32:32:98: 8c:f8:ea:ea:3b:d7:e1:f0:27:c7:00:54:cb:d9:29:4a:9b:90: ba:c6:6c:02:8a:f2:7d:d4:f3:df:de:96:e0:a9:fe:27:ed:76: 93:84:b0:e6:ae:2d:2d:fa:cb:6d:cf:46:c7:03:89:d1:f4:7f: 9a:50:88:e1:a8:05:19:e2:d2:f7:80:f6:28:e4:05:47:3c:75: 96:73:ad:b4:c8:c1:52:f9:0d:63:7e:1d:59:6d:23:3b:62:1d: ac:25:41:9e:1e:c5:59:09:c0:f1:3b:c1:89:69:ee:b1:07:5a: 0b:b6:2a:50 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUDXLvvgzD6eyH5LQc4x91v9yYBj4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI1QzY4Njk2QkRFRjYyODlENThCM0MwOTU4RTM3RTBE QTIzOTMwRDAeFw0yNDA2MjUwOTMxMTVaFw0yNTA2MjQwOTM2MTVaMDMxMTAvBgNV BAMTKDQ0Nzg1NDZBMkVBQjgyRTdEMkY0MDZFNjE3RkZCNEUxNTBFQTMxNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt2MrlrjxPTZ3TC0mN5Jg2DXgJ hfgWsOmOrUhPNOgnFKmHhXI87kYNrl33AuTxxY0DaFinRJ6ZmxknEsN/0ozUUek+ qcZA9hivEM0/LRcX2HGpA7Qa8Syuf+sx155we+9gVSHP2gFSM9HG609LLhFZ1Vmn WoQZs4s1PQPZectDM8QvHg9v+x6Uoj9MRDf9oIQPZPL4o+L0S9QRFyD0w/brxK/c Iki9OQVFQyfsmaebx6jy9olddTtBDH6KGITqCykPR8E/gkBSBJeItU8+6mFWFuMl CCbXUGUMEdslAN9YERuV/e/+Y1Fx1n5NGdU7StvN2J67rvpQx51GpztDyaFRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQURHhUai6rgufS9AbmF/+04VDqMUAwHwYDVR0j BBgwFoAUu1xoaWve9iidWLPAlY434Nojkw0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2Y1ZDJhMWItY2FjYy00ZTIyLThhZjItOWYyMGE5MzI5 YmNiLzEvQkI1QzY4Njk2QkRFRjYyODlENThCM0MwOTU4RTM3RTBEQTIzOTMwRC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9CQjVDNjg2OTZCREVGNjI4OUQ1OEIzQzA5 NThFMzdFMERBMjM5MzBELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83ZjVkMmExYi1jYWNjLTRlMjItOGFmMi05ZjIwYTkzMjliY2IvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYxNjMzNzMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzczNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgRKxwMA0GCSqGSIb3DQEBCwUAA4IBAQDL PFcqPBPgAlYTUOjwXLWBEpeFXCaRt7UTvvXAyCUUzoii8TCDWwNnoi9CnDI/WhwK JaTqO5OpDUXgF6xEBiGDDHGCCborGFn85TPAMVI0jLuZL9tE9zJAsT1Bcatufk78 pSzNQD/1z9sUCbkx96uQNuFCZx7S/9ISFtUbEH2dH9yYxai9lbmSBcgIeFAyMpiM +OrqO9fh8CfHAFTL2SlKm5C6xmwCivJ91PPf3pbgqf4n7XaThLDmri0t+sttz0bH A4nR9H+aUIjhqAUZ4tL3gPYo5AVHPHWWc620yMFS+Q1jfh1ZbSM7Yh2sJUGeHsVZ CcDxO8GJae6xB1oLtipQ -----END CERTIFICATE-----Generated at Sun Jun 30 20:37:25 2024 by rpki-client on console-fra.rpki-client.org