$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6539303a3a2f34342d3434203d3e20323032313937.roa File: 326130373a323438363a6539303a3a2f34342d3434203d3e20323032313937.roa (raw, json) Hash identifier: oEraGb8cVD417N/ZwdodkgGzgyHZSyxlMLOeOliW6CQ= Subject key identifier: 81:49:D7:17:51:73:6F:55:9F:ED:71:A0:88:59:F3:C7:70:56:C5:F3 Certificate issuer: /CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711 Certificate serial: 65EDB6B99C3D56FF85C637D067DE7ED2528B3CEA Authority key identifier: AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6539303a3a2f34342d3434203d3e20323032313937.roa Signing time: Tue 07 May 2024 00:54:40 +0000 ROA not before: Tue 07 May 2024 00:49:40 +0000 ROA not after: Tue 06 May 2025 00:54:40 +0000 asID: 202197 IP address blocks: 2a07:2486:e90::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/AC2B083EE37BCF2D737C576EF9D532ED717A1711.crl rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/AC2B083EE37BCF2D737C576EF9D532ED717A1711.mft rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.crl rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/07D362BDD7CA6E80E2C244437597BD47EF7A4FDE.mft rsync://rpki.ripe.net/repository/DEFAULT/B9NivdfKboDiwkRDdZe9R-96T94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 29 May 2024 12:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ed:b6:b9:9c:3d:56:ff:85:c6:37:d0:67:de:7e:d2:52:8b:3c:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC2B083EE37BCF2D737C576EF9D532ED717A1711 Validity Not Before: May 7 00:49:40 2024 GMT Not After : May 6 00:54:40 2025 GMT Subject: CN=8149D71751736F559FED71A08859F3C77056C5F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b0:08:9e:a6:eb:e2:97:ab:3c:84:2f:96:51: ad:10:45:d6:e9:90:15:ee:34:c8:9d:e7:ee:91:86: ee:f4:fb:5c:50:4a:59:51:3e:5a:81:27:4a:2f:61: 45:3b:fd:16:ba:de:76:04:e4:aa:6e:fe:94:85:ba: 5a:87:3c:91:40:42:de:0b:88:0f:52:e2:5b:03:fe: 05:0c:63:64:a5:3f:19:c9:99:fa:ba:c9:f5:dd:ae: ae:4d:39:15:55:88:b1:6a:6e:e0:78:1a:f5:c6:21: cc:0c:b2:62:0e:1d:4c:43:85:b4:21:3c:1c:f2:31: bb:2e:99:31:e5:59:e1:ae:e7:23:cd:ca:c9:ca:40: 59:59:53:26:0d:b0:a9:60:8b:60:6d:a2:46:16:c2: 88:ba:7b:df:ea:59:21:36:88:62:4c:22:51:96:61: 37:58:f8:6d:b7:b6:fa:be:2a:af:27:1e:51:41:44: 61:30:e3:82:3d:9c:da:65:ce:15:8c:ec:15:d6:27: a6:81:d8:a1:be:9a:3e:d4:67:d8:8d:c5:42:03:1d: 74:50:a2:1d:55:3f:b2:37:84:82:34:ba:1e:2d:1d: 51:67:74:14:17:83:0f:07:68:5d:9d:ab:b2:5d:37: 86:13:f3:55:6f:55:92:2a:64:2b:76:0f:75:01:4d: 8c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:49:D7:17:51:73:6F:55:9F:ED:71:A0:88:59:F3:C7:70:56:C5:F3 X509v3 Authority Key Identifier: keyid:AC:2B:08:3E:E3:7B:CF:2D:73:7C:57:6E:F9:D5:32:ED:71:7A:17:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/AC2B083EE37BCF2D737C576EF9D532ED717A1711.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/21a797f9-3c10-4536-aa64-09ca2d9545c8/0/AC2B083EE37BCF2D737C576EF9D532ED717A1711.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/cd7a5527-fb19-4565-9733-d45a870050e5/1/326130373a323438363a6539303a3a2f34342d3434203d3e20323032313937.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:2486:e90::/44 Signature Algorithm: sha256WithRSAEncryption 45:42:b4:7b:bb:f6:b2:dc:86:17:3c:b8:3d:74:fa:4b:8d:66: 13:c3:c7:58:db:57:05:5b:39:05:53:39:20:e7:4b:08:dc:35: e5:83:e4:65:7a:12:c6:f3:b2:3b:09:1d:b2:bc:da:9d:00:6e: db:ff:4d:73:84:70:92:08:c5:c9:13:53:74:2b:5e:7f:43:ef: 11:5b:40:c9:5a:17:c7:84:3e:81:b9:13:29:89:89:aa:a7:83: c4:9d:93:c6:4d:b3:55:b0:0d:ce:6a:7a:a6:32:56:81:2c:74: 13:9d:e5:e8:b3:af:a5:f1:eb:f9:44:f4:a2:c0:34:35:b9:bb: bb:79:dc:ec:4c:61:41:07:95:8c:09:d6:55:bc:94:d7:b1:ea: 59:a7:e5:f5:7e:f2:41:93:47:ef:8e:77:3a:83:be:71:bd:ab: dd:03:c6:35:66:d2:20:a3:a8:65:d6:a0:f0:0d:1e:ac:86:2c: d4:56:8b:a1:64:96:8b:ce:2f:bf:b0:6f:56:df:4f:f5:e6:fd: e3:26:57:e1:5d:dc:5b:e3:4f:60:a3:8d:81:2e:2d:25:bc:c0: df:d9:a8:71:00:96:b5:12:79:ef:d0:1e:85:24:4b:44:80:58: 7a:32:b0:e5:19:71:eb:03:67:19:2f:a9:92:73:de:ac:cd:1b: 1e:d5:6b:a6 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUZe22uZw9Vv+FxjfQZ95+0lKLPOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyQjA4M0VFMzdCQ0YyRDczN0M1NzZFRjlENTMyRUQ3 MTdBMTcxMTAeFw0yNDA1MDcwMDQ5NDBaFw0yNTA1MDYwMDU0NDBaMDMxMTAvBgNV BAMTKDgxNDlENzE3NTE3MzZGNTU5RkVENzFBMDg4NTlGM0M3NzA1NkM1RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2sAiepuvil6s8hC+WUa0QRdbp kBXuNMid5+6Rhu70+1xQSllRPlqBJ0ovYUU7/Ra63nYE5Kpu/pSFulqHPJFAQt4L iA9S4lsD/gUMY2SlPxnJmfq6yfXdrq5NORVViLFqbuB4GvXGIcwMsmIOHUxDhbQh PBzyMbsumTHlWeGu5yPNysnKQFlZUyYNsKlgi2BtokYWwoi6e9/qWSE2iGJMIlGW YTdY+G23tvq+Kq8nHlFBRGEw44I9nNplzhWM7BXWJ6aB2KG+mj7UZ9iNxUIDHXRQ oh1VP7I3hII0uh4tHVFndBQXgw8HaF2dq7JdN4YT81VvVZIqZCt2D3UBTYylAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUgUnXF1Fzb1Wf7XGgiFnzx3BWxfMwHwYDVR0j BBgwFoAUrCsIPuN7zy1zfFdu+dUy7XF6FxEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvY2Q3YTU1MjctZmIxOS00NTY1LTk3MzMtZDQ1YTg3MDA1 MGU1LzEvQUMyQjA4M0VFMzdCQ0YyRDczN0M1NzZFRjlENTMyRUQ3MTdBMTcxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yMWE3OTdmOS0zYzEwLTQ1 MzYtYWE2NC0wOWNhMmQ5NTQ1YzgvMC9BQzJCMDgzRUUzN0JDRjJENzM3QzU3NkVG OUQ1MzJFRDcxN0ExNzExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jZDdhNTUyNy1mYjE5LTQ1NjUtOTczMy1kNDVhODcwMDUwZTUvMS8zMjYxMzAz NzNhMzIzNDM4MzYzYTY1MzkzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzAz MjMxMzkzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoHJIYOkDANBgkqhkiG9w0BAQsFAAOCAQEARUK0 e7v2styGFzy4PXT6S41mE8PHWNtXBVs5BVM5IOdLCNw15YPkZXoSxvOyOwkdsrza nQBu2/9Nc4RwkgjFyRNTdCtef0PvEVtAyVoXx4Q+gbkTKYmJqqeDxJ2Txk2zVbAN zmp6pjJWgSx0E53l6LOvpfHr+UT0osA0Nbm7u3nc7ExhQQeVjAnWVbyU17HqWafl 9X7yQZNH7453OoO+cb2r3QPGNWbSIKOoZdag8A0erIYs1FaLoWSWi84vv7BvVt9P 9eb94yZX4V3cW+NPYKONgS4tJbzA39mocQCWtRJ579AehSRLRIBYejKw5Rlx6wNn GS+pknPerM0bHtVrpg== -----END CERTIFICATE-----Generated at Tue May 28 21:12:40 2024 by rpki-client on console-fra.rpki-client.org