$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/326130373a323438363a313a3a2f34382d3438203d3e20323135383238.roa File: 326130373a323438363a313a3a2f34382d3438203d3e20323135383238.roa (raw, json) Hash identifier: xiPLQLnJuHQPDVuXLoa43JUgSDfVhnW7vvYUAwHf3BI= Subject key identifier: 84:2F:29:1C:72:11:58:F9:D2:E6:5D:3D:41:10:09:B4:23:45:AA:87 Certificate issuer: /CN=28FA507C2092BDD1BBD1B0816C9D71CD4681096C Certificate serial: 3F83B829F8B716100B8657FCBCA756DED0A02663 Authority key identifier: 28:FA:50:7C:20:92:BD:D1:BB:D1:B0:81:6C:9D:71:CD:46:81:09:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/326130373a323438363a313a3a2f34382d3438203d3e20323135383238.roa Signing time: Wed 08 May 2024 18:50:44 +0000 ROA not before: Wed 08 May 2024 18:45:44 +0000 ROA not after: Wed 07 May 2025 18:50:44 +0000 asID: 215828 IP address blocks: 2a07:2486:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.crl rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.mft rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.cer rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.mft rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 11 Jun 2024 05:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:83:b8:29:f8:b7:16:10:0b:86:57:fc:bc:a7:56:de:d0:a0:26:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28FA507C2092BDD1BBD1B0816C9D71CD4681096C Validity Not Before: May 8 18:45:44 2024 GMT Not After : May 7 18:50:44 2025 GMT Subject: CN=842F291C721158F9D2E65D3D411009B42345AA87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:12:a3:96:2d:7e:70:f7:36:15:87:5d:15:e1: ff:a8:5a:e8:ee:2b:18:7f:78:da:96:dd:f6:f7:91: cb:17:be:a1:84:bb:61:63:fa:b9:14:2a:7f:60:15: a7:d8:cc:80:d2:25:9c:f3:94:92:1b:b3:a2:78:02: 75:7c:77:71:0d:18:ae:c7:8c:81:01:56:9e:cc:48: 55:6b:f6:1c:d3:7b:e5:ad:20:cf:7e:ca:7b:da:53: 4d:93:45:77:be:2f:a6:3f:d8:c8:63:f5:cf:64:02: 94:83:9b:74:ca:8e:94:28:b6:94:b9:46:5e:54:2f: 84:6e:d9:8e:e9:8c:ce:e1:74:4b:21:51:4f:cf:b2: 3f:ae:a9:43:10:86:0f:b2:db:23:23:cc:8f:9b:20: 10:c2:bd:f5:3e:09:3d:02:e1:37:e0:ed:94:61:a2: 6c:a9:ad:9f:c9:fe:87:72:02:fd:fe:35:6c:ab:36: 44:7e:b8:61:06:2f:4d:ec:29:72:0c:16:14:d5:07: be:32:ec:49:8f:49:b6:d5:1c:51:29:7b:17:34:69: 56:66:dd:a0:e2:23:c4:d9:bc:39:1e:11:3b:e1:74: d3:93:47:92:36:f6:c6:48:ab:f9:20:95:ba:bf:36: 6a:bd:4e:b4:52:5d:0b:b0:6c:5f:a0:26:59:a6:1c: 23:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2F:29:1C:72:11:58:F9:D2:E6:5D:3D:41:10:09:B4:23:45:AA:87 X509v3 Authority Key Identifier: keyid:28:FA:50:7C:20:92:BD:D1:BB:D1:B0:81:6C:9D:71:CD:46:81:09:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/28FA507C2092BDD1BBD1B0816C9D71CD4681096C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9c0ed046-fa95-45c3-9146-971db8a9e8bb/5/326130373a323438363a313a3a2f34382d3438203d3e20323135383238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:2486:1::/48 Signature Algorithm: sha256WithRSAEncryption 81:50:70:9d:a2:92:b6:35:54:ab:5e:c5:5f:60:b9:91:34:1a: 37:5b:4f:f9:85:e1:e3:e7:d1:dd:dd:cd:c3:24:49:31:4d:74: 4b:21:58:a3:71:7c:d3:82:00:5d:20:1e:f5:26:6e:e0:20:90: cc:b6:57:3d:67:94:a7:fa:d4:54:22:0a:5b:de:96:1f:c7:87: c2:88:34:14:c8:6a:3e:e6:74:92:ed:e7:60:f3:7c:94:ef:8b: 46:a5:34:8e:55:7e:38:5c:88:dc:19:9f:8e:a2:26:9a:26:83: 4d:c4:95:5e:bf:80:6a:87:c7:fe:f1:78:7e:7f:b3:dd:78:6f: ce:55:08:cc:f6:e2:2b:26:e5:9a:db:d9:3b:ce:1e:ea:9f:e3: 6b:c0:84:05:98:b1:f9:f8:9c:cf:8b:fc:75:5a:c1:9e:2e:d0: 6b:28:ae:f9:0b:c1:aa:f1:e4:e9:68:f1:49:1c:eb:93:f2:d2: 28:eb:06:0d:ea:df:1d:c1:b9:69:57:99:f9:ff:7e:5b:d5:19: 27:87:ab:7d:7a:d9:94:24:7e:d1:fb:5d:6b:ea:91:c2:58:52: f5:3d:86:b2:14:b3:2e:31:4e:55:14:99:c5:e3:51:8f:e7:e4: a1:9d:28:13:e2:e5:6b:d3:00:98:28:88:01:5e:04:24:23:e8: a3:8d:cf:79 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUP4O4Kfi3FhALhlf8vKdW3tCgJmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhGQTUwN0MyMDkyQkREMUJCRDFCMDgxNkM5RDcxQ0Q0 NjgxMDk2QzAeFw0yNDA1MDgxODQ1NDRaFw0yNTA1MDcxODUwNDRaMDMxMTAvBgNV BAMTKDg0MkYyOTFDNzIxMTU4RjlEMkU2NUQzRDQxMTAwOUI0MjM0NUFBODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiEqOWLX5w9zYVh10V4f+oWuju Kxh/eNqW3fb3kcsXvqGEu2Fj+rkUKn9gFafYzIDSJZzzlJIbs6J4AnV8d3ENGK7H jIEBVp7MSFVr9hzTe+WtIM9+ynvaU02TRXe+L6Y/2Mhj9c9kApSDm3TKjpQotpS5 Rl5UL4Ru2Y7pjM7hdEshUU/Psj+uqUMQhg+y2yMjzI+bIBDCvfU+CT0C4Tfg7ZRh omyprZ/J/odyAv3+NWyrNkR+uGEGL03sKXIMFhTVB74y7EmPSbbVHFEpexc0aVZm 3aDiI8TZvDkeETvhdNOTR5I29sZIq/kglbq/Nmq9TrRSXQuwbF+gJlmmHCNDAgMB AAGjggJ/MIICezAdBgNVHQ4EFgQUhC8pHHIRWPnS5l09QRAJtCNFqocwHwYDVR0j BBgwFoAUKPpQfCCSvdG70bCBbJ1xzUaBCWwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWMwZWQwNDYtZmE5NS00NWMzLTkxNDYtOTcxZGI4YTll OGJiLzUvMjhGQTUwN0MyMDkyQkREMUJCRDFCMDgxNkM5RDcxQ0Q0NjgxMDk2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yMWE3OTdmOS0zYzEwLTQ1 MzYtYWE2NC0wOWNhMmQ5NTQ1YzgvMC8yOEZBNTA3QzIwOTJCREQxQkJEMUIwODE2 QzlENzFDRDQ2ODEwOTZDLmNlcjCBsQYIKwYBBQUHAQsEgaQwgaEwgZ4GCCsGAQUF BzALhoGRcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85YzBlZDA0Ni1mYTk1LTQ1YzMtOTE0Ni05NzFkYjhhOWU4YmIvNS8zMjYxMzAz NzNhMzIzNDM4MzYzYTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMTM1Mzgz MjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAKgckhgABMA0GCSqGSIb3DQEBCwUAA4IBAQCBUHCdopK2 NVSrXsVfYLmRNBo3W0/5heHj59Hd3c3DJEkxTXRLIVijcXzTggBdIB71Jm7gIJDM tlc9Z5Sn+tRUIgpb3pYfx4fCiDQUyGo+5nSS7edg83yU74tGpTSOVX44XIjcGZ+O oiaaJoNNxJVev4Bqh8f+8Xh+f7PdeG/OVQjM9uIrJuWa29k7zh7qn+NrwIQFmLH5 +JzPi/x1WsGeLtBrKK75C8Gq8eTpaPFJHOuT8tIo6wYN6t8dwblpV5n5/35b1Rkn h6t9etmUJH7R+11r6pHCWFL1PYayFLMuMU5VFJnF41GP5+ShnSgT4uVr0wCYKIgB XgQkI+ijjc95 -----END CERTIFICATE-----Generated at Mon Jun 10 18:29:07 2024 by rpki-client on console-fra.rpki-client.org