$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3438203d3e20323134373537.roa File: 326130373a353463313a633530303a3a2f34302d3438203d3e20323134373537.roa (raw, json) Hash identifier: zI/7RS5CULQs/eQeVEsRQEIfCAOBbTKX6vZdqlRmV9c= Subject key identifier: 8A:A6:A1:FA:60:F9:61:EA:4C:31:05:4B:20:E8:94:E3:35:25:9B:1F Certificate issuer: /CN=41CF30FBDC220B6E4A6FA67792B3B248EECF6570 Certificate serial: 3FCFC18898A89B990C9649A00E819D165DF0AF Authority key identifier: 41:CF:30:FB:DC:22:0B:6E:4A:6F:A6:77:92:B3:B2:48:EE:CF:65:70 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3438203d3e20323134373537.roa Signing time: Tue 25 Jun 2024 09:36:49 +0000 ROA not before: Tue 25 Jun 2024 09:31:49 +0000 ROA not after: Tue 24 Jun 2025 09:36:49 +0000 asID: 214757 IP address blocks: 2a07:54c1:c500::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.crl rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jul 2024 11:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:cf:c1:88:98:a8:9b:99:0c:96:49:a0:0e:81:9d:16:5d:f0:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41CF30FBDC220B6E4A6FA67792B3B248EECF6570 Validity Not Before: Jun 25 09:31:49 2024 GMT Not After : Jun 24 09:36:49 2025 GMT Subject: CN=8AA6A1FA60F961EA4C31054B20E894E335259B1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8e:8b:64:23:18:49:b2:24:9d:f4:5e:25:84: 20:6f:ca:63:4c:c0:aa:c9:63:6a:f6:7a:d9:a7:14: e1:9c:62:0b:89:97:bd:78:0a:f7:97:fc:a1:67:43: c7:52:a0:aa:bd:ce:c3:da:68:6d:bc:fe:34:e8:6e: e8:47:1f:76:07:5e:fd:9b:cd:4d:76:63:f0:08:81: fa:8c:6c:ff:54:7e:ea:92:57:d4:94:40:19:26:d3: fc:98:43:36:1e:27:fb:4f:4c:11:95:9c:81:c9:7e: f9:79:e7:cb:b0:ea:9f:bc:6d:2d:91:d8:b1:a2:b1: b4:54:e7:55:c6:52:e5:f8:9d:e0:2a:1d:0d:19:b3: 78:fd:f7:af:d4:ef:76:ad:d7:64:f0:25:a5:8f:44: c5:5f:49:0a:a6:f8:ab:b4:70:75:56:9a:f2:73:15: e1:e2:9b:60:4e:9d:2d:20:b0:3b:22:92:c5:cf:03: f9:8d:77:3a:50:0e:0c:d2:4b:d8:e7:23:ce:6b:14: 08:fa:87:c5:07:01:08:64:1e:2f:58:77:46:8b:6f: 47:68:00:3c:d4:d7:09:51:ef:6f:ef:8e:da:ff:9f: 58:ee:c5:99:07:bf:13:87:e7:66:50:31:83:24:2d: 38:d0:fd:36:ea:52:4a:7f:e5:54:c6:5f:09:4b:ce: ec:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A6:A1:FA:60:F9:61:EA:4C:31:05:4B:20:E8:94:E3:35:25:9B:1F X509v3 Authority Key Identifier: keyid:41:CF:30:FB:DC:22:0B:6E:4A:6F:A6:77:92:B3:B2:48:EE:CF:65:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41CF30FBDC220B6E4A6FA67792B3B248EECF6570.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7f5d2a1b-cacc-4e22-8af2-9f20a9329bcb/2/326130373a353463313a633530303a3a2f34302d3438203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c1:c500::/40 Signature Algorithm: sha256WithRSAEncryption 98:09:84:51:3e:86:56:ce:d8:47:82:6f:ac:f6:05:4a:1b:9c: 18:ef:3d:7c:fe:ee:c7:1d:ff:17:18:c6:14:ac:36:2a:3e:a0: 5a:17:f6:ed:86:76:10:5f:78:4d:b4:4d:05:89:16:ac:23:d0: 15:71:ef:1b:e1:9f:b9:16:d8:c7:73:e4:53:99:9f:e2:34:f3: bd:7b:23:40:5c:3a:f7:75:da:6e:40:19:4f:9f:e4:1a:de:2f: c1:a4:9c:49:98:90:25:e0:18:5e:88:f7:2e:f7:d6:44:f1:f0: d9:99:31:66:92:dd:cb:32:17:ad:19:29:67:a5:d8:d7:64:73: 61:d9:3c:6d:cf:05:95:30:23:77:e5:9f:03:7d:5c:40:25:43: 17:8b:c8:b8:ef:ec:a9:14:2b:a8:c9:fa:a8:dd:4b:59:b6:81: f7:a0:d1:48:a3:bc:06:88:8e:c8:ef:52:85:0d:ad:dd:ba:25: ea:13:b2:18:fe:43:83:f6:3f:21:24:0d:c0:b3:d8:03:ef:e7: 21:40:b2:3a:21:88:c5:80:d8:03:60:1d:3d:89:f8:a0:f8:5c: ef:f5:d7:d1:cd:f8:b7:ca:9c:6e:1b:10:f2:a3:69:c1:d0:6a: 3c:43:c5:d0:1a:a4:d9:aa:52:45:16:3c:75:34:8d:fd:30:f6: f8:bb:fe:23 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgITP8/BiJiom5kMlkmgDoGdFl3wrzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0MUNGMzBGQkRDMjIwQjZFNEE2RkE2Nzc5MkIzQjI0OEVF Q0Y2NTcwMB4XDTI0MDYyNTA5MzE0OVoXDTI1MDYyNDA5MzY0OVowMzExMC8GA1UE AxMoOEFBNkExRkE2MEY5NjFFQTRDMzEwNTRCMjBFODk0RTMzNTI1OUIxRjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANmOi2QjGEmyJJ30XiWEIG/KY0zA qsljavZ62acU4ZxiC4mXvXgK95f8oWdDx1Kgqr3Ow9pobbz+NOhu6Ecfdgde/ZvN TXZj8AiB+oxs/1R+6pJX1JRAGSbT/JhDNh4n+09MEZWcgcl++Xnny7Dqn7xtLZHY saKxtFTnVcZS5fid4CodDRmzeP33r9Tvdq3XZPAlpY9ExV9JCqb4q7RwdVaa8nMV 4eKbYE6dLSCwOyKSxc8D+Y13OlAODNJL2OcjzmsUCPqHxQcBCGQeL1h3RotvR2gA PNTXCVHvb++O2v+fWO7FmQe/E4fnZlAxgyQtOND9NupSSn/lVMZfCUvO7P8CAwEA AaOCAoQwggKAMB0GA1UdDgQWBBSKpqH6YPlh6kwxBUsg6JTjNSWbHzAfBgNVHSME GDAWgBRBzzD73CILbkpvpneSs7JI7s9lcDAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS83ZjVkMmExYi1jYWNjLTRlMjItOGFmMi05ZjIwYTkzMjli Y2IvMi80MUNGMzBGQkRDMjIwQjZFNEE2RkE2Nzc5MkIzQjI0OEVFQ0Y2NTcwLmNy bDCBngYIKwYBBQUHAQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5j LnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FhMDA0YmExLTQxOWItNGRi NS1iYmQzLTVjY2E2MzNjYWUzZi8wLzQxQ0YzMEZCREMyMjBCNkU0QTZGQTY3Nzky QjNCMjQ4RUVDRjY1NzAuY2VyMIG3BggrBgEFBQcBCwSBqjCBpzCBpAYIKwYBBQUH MAuGgZdyc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzdmNWQyYTFiLWNhY2MtNGUyMi04YWYyLTlmMjBhOTMyOWJjYi8yLzMyNjEzMDM3 M2EzNTM0NjMzMTNhNjMzNTMwMzAzYTNhMmYzNDMwMmQzNDM4MjAzZDNlMjAzMjMx MzQzNzM1Mzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqB1TBxTANBgkqhkiG9w0BAQsFAAOCAQEAmAmE UT6GVs7YR4JvrPYFShucGO89fP7uxx3/FxjGFKw2Kj6gWhf27YZ2EF94TbRNBYkW rCPQFXHvG+GfuRbYx3PkU5mf4jTzvXsjQFw693XabkAZT5/kGt4vwaScSZiQJeAY Xoj3LvfWRPHw2ZkxZpLdyzIXrRkpZ6XY12RzYdk8bc8FlTAjd+WfA31cQCVDF4vI uO/sqRQrqMn6qN1LWbaB96DRSKO8BoiOyO9ShQ2t3bol6hOyGP5Dg/Y/ISQNwLPY A+/nIUCyOiGIxYDYA2AdPYn4oPhc7/XX0c34t8qcbhsQ8qNpwdBqPEPF0Bqk2apS RRY8dTSN/TD2+Lv+Iw== -----END CERTIFICATE-----Generated at Sun Jun 30 21:59:51 2024 by rpki-client on console-ams.rpki-client.org