$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e20323135363334.roa File: 326130663a383563313a3336323a3a2f34382d3438203d3e20323135363334.roa (raw, json) Hash identifier: CctXxGwYEMXB41i0QfQsgQyWu/XR8fA8pXG+KuyL2Fg= Subject key identifier: 9B:ED:5F:94:9F:FC:02:36:1C:0B:82:CA:D0:74:AD:99:79:89:BD:66 Certificate issuer: /CN=FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027 Certificate serial: 19983DCE73E1A6CAD81A3FDCCCE6F281D07EE7F2 Authority key identifier: FB:DF:5C:81:A0:D6:F7:9C:3D:FB:8B:4E:DF:29:66:F3:52:60:60:27 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e20323135363334.roa Signing time: Fri 15 Mar 2024 13:10:47 +0000 ROA not before: Fri 15 Mar 2024 13:05:47 +0000 ROA not after: Fri 14 Mar 2025 13:10:47 +0000 asID: 215634 IP address blocks: 2a0f:85c1:362::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.crl rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.mft rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.cer rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.crl rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/5AE4437029659539F54F900B35E43BE06A94B37B.mft rsync://rpki.ripe.net/repository/DEFAULT/WuRDcClllTn1T5ALNeQ74GqUs3s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 30 Jun 2024 20:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:98:3d:ce:73:e1:a6:ca:d8:1a:3f:dc:cc:e6:f2:81:d0:7e:e7:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027 Validity Not Before: Mar 15 13:05:47 2024 GMT Not After : Mar 14 13:10:47 2025 GMT Subject: CN=9BED5F949FFC02361C0B82CAD074AD997989BD66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0e:f6:da:b8:5b:1f:4e:76:2f:60:7c:42:41: ef:83:40:dc:29:be:19:d0:d4:be:6c:63:a4:59:ae: da:55:bb:c0:dc:63:c9:c2:6a:64:98:a8:76:8e:4d: 0b:dc:ac:02:d0:b4:d8:94:27:83:42:27:30:be:4a: 6e:c5:dd:b6:65:04:1d:c7:05:52:ea:74:cf:67:aa: 41:d0:50:9e:fc:6d:ca:f9:24:b8:3a:8d:ac:b9:e2: a8:bd:29:bf:91:59:b2:f9:37:c2:ba:ee:48:43:49: dc:19:b7:bb:e8:8f:15:3e:77:2b:d9:7d:26:1d:9b: 46:ba:78:49:60:d0:8b:57:57:8a:81:75:3b:df:88: 35:92:58:22:53:b9:66:dc:5d:9b:c4:9c:6b:5e:46: c8:fc:fc:97:5b:33:60:52:15:b7:55:80:f6:d9:2a: 39:08:d1:57:da:23:69:6d:7a:bd:36:db:6e:eb:f7: 57:91:a2:11:de:44:07:6e:b4:36:fc:aa:c6:0b:c0: 52:ac:6e:48:f7:ee:0a:ac:cf:94:33:ae:98:f7:63: d9:3c:ae:1e:bb:63:d3:77:28:fc:0e:cf:ca:10:b2: 9b:84:1f:26:c1:74:47:c4:13:f1:3f:8a:bf:0d:f4: c6:d1:b6:c6:f7:c6:4f:56:e7:23:ae:24:9a:99:20: 76:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:ED:5F:94:9F:FC:02:36:1C:0B:82:CA:D0:74:AD:99:79:89:BD:66 X509v3 Authority Key Identifier: keyid:FB:DF:5C:81:A0:D6:F7:9C:3D:FB:8B:4E:DF:29:66:F3:52:60:60:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc20add3-a88e-4bb2-a84d-55da2128f196/0/FBDF5C81A0D6F79C3DFB8B4EDF2966F352606027.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c974e2af-eaab-4d78-8d95-283144dda962/1/326130663a383563313a3336323a3a2f34382d3438203d3e20323135363334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:362::/48 Signature Algorithm: sha256WithRSAEncryption 2c:a7:d7:b0:3f:33:6c:ec:20:bb:14:e8:59:28:94:2a:27:95: 70:e4:ab:e8:a3:29:8d:b4:fb:5c:8a:85:4c:da:86:1c:9f:a8: 09:34:1b:1b:2e:78:c6:a6:a8:3c:6c:c9:dd:c0:ae:3c:88:f5: 14:05:85:52:52:80:b6:02:07:c8:3a:fa:5e:ac:75:e7:3b:15: ed:43:92:0d:7c:ff:ba:ac:68:f5:d0:b0:52:91:16:a3:72:8f: 80:83:6e:6a:c1:50:ea:f5:46:08:7d:d1:16:60:47:f2:39:90: 4f:f6:ce:35:bf:ee:4b:51:12:0e:83:eb:f8:ff:28:8f:ac:e4: 7b:f6:0d:c4:ac:1a:ee:3c:38:43:06:d8:ed:97:f3:64:fd:5f: 55:b1:b8:ed:e2:8b:bd:70:c1:b3:22:22:d0:b7:d9:13:95:8b: 51:c1:68:9b:6c:eb:af:0e:70:06:b1:62:8d:d3:94:bc:b8:44: b5:c7:bb:3c:8e:79:5e:18:fa:7c:fe:4c:63:79:75:77:34:5f: 98:af:78:59:95:d9:2b:9a:ed:0c:64:32:2e:78:64:4c:d0:02: a7:6e:ca:32:94:d4:c8:5b:12:01:e5:3b:af:e3:42:16:8d:cb: 89:bb:70:b4:24:70:2e:fa:3d:4d:98:80:84:1e:a9:7e:d9:94: a2:66:a2:be -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUGZg9znPhpsrYGj/czObygdB+5/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkJERjVDODFBMEQ2Rjc5QzNERkI4QjRFREYyOTY2RjM1 MjYwNjAyNzAeFw0yNDAzMTUxMzA1NDdaFw0yNTAzMTQxMzEwNDdaMDMxMTAvBgNV BAMTKDlCRUQ1Rjk0OUZGQzAyMzYxQzBCODJDQUQwNzRBRDk5Nzk4OUJENjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKDvbauFsfTnYvYHxCQe+DQNwp vhnQ1L5sY6RZrtpVu8DcY8nCamSYqHaOTQvcrALQtNiUJ4NCJzC+Sm7F3bZlBB3H BVLqdM9nqkHQUJ78bcr5JLg6jay54qi9Kb+RWbL5N8K67khDSdwZt7vojxU+dyvZ fSYdm0a6eElg0ItXV4qBdTvfiDWSWCJTuWbcXZvEnGteRsj8/JdbM2BSFbdVgPbZ KjkI0VfaI2lter02227r91eRohHeRAdutDb8qsYLwFKsbkj37gqsz5Qzrpj3Y9k8 rh67Y9N3KPwOz8oQspuEHybBdEfEE/E/ir8N9MbRtsb3xk9W5yOuJJqZIHbfAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUm+1flJ/8AjYcC4LK0HStmXmJvWYwHwYDVR0j BBgwFoAU+99cgaDW95w9+4tO3ylm81JgYCcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzk3NGUyYWYtZWFhYi00ZDc4LThkOTUtMjgzMTQ0ZGRh OTYyLzEvRkJERjVDODFBMEQ2Rjc5QzNERkI4QjRFREYyOTY2RjM1MjYwNjAyNy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9mYzIwYWRkMy1hODhlLTRi YjItYTg0ZC01NWRhMjEyOGYxOTYvMC9GQkRGNUM4MUEwRDZGNzlDM0RGQjhCNEVE RjI5NjZGMzUyNjA2MDI3LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jOTc0ZTJhZi1lYWFiLTRkNzgtOGQ5NS0yODMxNDRkZGE5NjIvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTMzMzYzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NTM2MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEDYjANBgkqhkiG9w0BAQsFAAOCAQEALKfX sD8zbOwguxToWSiUKieVcOSr6KMpjbT7XIqFTNqGHJ+oCTQbGy54xqaoPGzJ3cCu PIj1FAWFUlKAtgIHyDr6Xqx15zsV7UOSDXz/uqxo9dCwUpEWo3KPgINuasFQ6vVG CH3RFmBH8jmQT/bONb/uS1ESDoPr+P8oj6zke/YNxKwa7jw4QwbY7ZfzZP1fVbG4 7eKLvXDBsyIi0LfZE5WLUcFom2zrrw5wBrFijdOUvLhEtce7PI55Xhj6fP5MY3l1 dzRfmK94WZXZK5rtDGQyLnhkTNACp27KMpTUyFsSAeU7r+NCFo3LibtwtCRwLvo9 TZiAhB6pftmUomaivg== -----END CERTIFICATE-----Generated at Sun Jun 30 04:12:01 2024 by rpki-client on console-fra.rpki-client.org