$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: i2iB6YVLT5JYbpw54S9VrpRYgnjxp0KAmu7VBiJDogE= Subject key identifier: 11:30:5C:64:49:28:5D:01:95:DB:FA:09:9D:AD:7E:43:0B:94:A7:CE Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 354B892CD7640EA5D28415F5C49C21E66F30A2EE Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 07 Jul 2024 19:24:54 +0000 ROA not before: Sun 07 Jul 2024 19:19:54 +0000 ROA not after: Sun 06 Jul 2025 19:24:54 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 17:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4b:89:2c:d7:64:0e:a5:d2:84:15:f5:c4:9c:21:e6:6f:30:a2:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jul 7 19:19:54 2024 GMT Not After : Jul 6 19:24:54 2025 GMT Subject: CN=11305C6449285D0195DBFA099DAD7E430B94A7CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:39:19:81:e7:40:c4:aa:23:11:33:7e:df:82: 08:83:14:c4:23:31:c5:ce:30:7f:b7:01:0b:59:af: e4:4e:d3:14:c9:4a:0e:a6:66:a8:dc:fb:e7:9d:cb: b1:38:d5:d4:2c:9a:03:a8:5f:82:1d:52:7e:1d:36: 9b:c0:37:ab:6d:a0:24:5e:c0:70:24:0f:45:1e:01: c9:ad:d5:93:bd:03:d6:51:be:0c:99:03:7a:70:69: bc:54:72:bc:d3:aa:3c:33:d1:19:58:7d:c3:c2:d8: 40:46:3c:35:dc:c5:59:6a:05:98:c2:de:f1:20:1f: fc:26:70:a8:14:96:44:86:ee:27:fd:f1:83:19:4b: 57:5a:58:db:46:1f:66:76:fb:1e:27:a4:da:8d:68: 0d:f2:45:ef:5e:0d:61:a8:7b:a2:0d:c9:e8:9f:55: 29:40:8a:dd:aa:72:21:ee:2e:73:37:26:82:41:b7: 84:45:d9:8b:2b:9c:97:35:77:3d:a8:bd:d2:b8:00: 71:6a:42:fc:72:39:55:1e:cb:16:ad:d6:65:d1:e0: 65:23:b2:5c:c9:71:5d:55:8f:d3:e6:46:02:05:34: 7b:f9:4a:5c:a8:10:40:b7:50:df:93:92:65:0d:4a: 48:0a:ac:a5:4d:58:68:19:c5:a6:6c:e7:00:10:37: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:30:5C:64:49:28:5D:01:95:DB:FA:09:9D:AD:7E:43:0B:94:A7:CE X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd0::/48 Signature Algorithm: sha256WithRSAEncryption 85:9e:19:e7:c0:94:ac:da:86:4a:ef:a6:3a:87:90:07:f4:00: 18:94:22:80:06:7d:53:84:76:bb:ce:2b:bb:bf:a7:10:c0:28: 0d:d5:e3:56:a2:ad:9a:67:28:10:de:b8:36:d1:7b:f2:10:1d: 2f:68:d9:5b:53:b6:b8:ec:a4:b4:ca:94:28:a8:21:80:da:79: 79:2f:70:2e:78:f5:89:29:dd:b2:61:73:50:6b:68:5d:7f:9f: c3:fd:94:40:89:40:e9:d6:d7:22:6e:05:02:c9:81:0f:f7:c8: 66:ef:4a:bc:2d:48:70:3c:5e:22:2f:89:30:8e:d8:1c:86:6c: 76:9a:84:e7:7f:10:ed:1a:4f:12:09:43:d9:ae:5a:d1:6d:1c: 5f:63:f8:42:a2:7c:20:be:01:e9:88:4c:ed:58:5d:ce:d5:76: 87:41:6f:86:6f:30:f5:b3:e0:a4:6c:63:77:ab:cf:23:5a:f8: 60:d0:3a:b3:fb:eb:14:fa:ed:73:08:cb:39:1d:7e:9f:19:71: d2:5c:3e:d6:99:8d:6e:f2:97:6f:57:f0:45:bf:e2:2b:ba:ae: 2e:7c:21:74:87:0a:1d:d0:11:95:91:29:79:b2:f7:20:11:96: fe:68:fc:fb:28:99:e5:2a:d9:0c:8d:76:38:28:2e:59:0b:df: 13:3b:3f:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUNUuJLNdkDqXShBX1xJwh5m8wou4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNDA3MDcxOTE5NTRaFw0yNTA3MDYxOTI0NTRaMDMxMTAvBgNV BAMTKDExMzA1QzY0NDkyODVEMDE5NURCRkEwOTlEQUQ3RTQzMEI5NEE3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoORmB50DEqiMRM37fggiDFMQj McXOMH+3AQtZr+RO0xTJSg6mZqjc++edy7E41dQsmgOoX4IdUn4dNpvAN6ttoCRe wHAkD0UeAcmt1ZO9A9ZRvgyZA3pwabxUcrzTqjwz0RlYfcPC2EBGPDXcxVlqBZjC 3vEgH/wmcKgUlkSG7if98YMZS1daWNtGH2Z2+x4npNqNaA3yRe9eDWGoe6INyeif VSlAit2qciHuLnM3JoJBt4RF2YsrnJc1dz2ovdK4AHFqQvxyOVUeyxat1mXR4GUj slzJcV1Vj9PmRgIFNHv5SlyoEEC3UN+TkmUNSkgKrKVNWGgZxaZs5wAQN1RFAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUETBcZEkoXQGV2/oJna1+QwuUp84wHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/9AwDQYJKoZIhvcNAQELBQADggEBAIWeGefAlKzahkrv pjqHkAf0ABiUIoAGfVOEdrvOK7u/pxDAKA3V41airZpnKBDeuDbRe/IQHS9o2VtT trjspLTKlCioIYDaeXkvcC549Ykp3bJhc1BraF1/n8P9lECJQOnW1yJuBQLJgQ/3 yGbvSrwtSHA8XiIviTCO2ByGbHaahOd/EO0aTxIJQ9muWtFtHF9j+EKifCC+AemI TO1YXc7VdodBb4ZvMPWz4KRsY3erzyNa+GDQOrP76xT67XMIyzkdfp8ZcdJcPtaZ jW7yl29X8EW/4iu6ri58IXSHCh3QEZWRKXmy9yARlv5o/PsomeUq2QyNdjgoLlkL 3xM7P0c= -----END CERTIFICATE-----Generated at Sat Nov 23 07:43:28 2024 by rpki-client on console-ams.rpki-client.org