$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa File: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (raw, json) Hash identifier: peEWNd0YL6h2f+IuETNQmau2DbuDTFrugtWV/YFAw0I= Subject key identifier: 97:2C:85:3D:64:B5:EA:9A:7A:B1:2A:C8:FF:BC:FB:CB:AA:53:D9:E2 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 0C8B0A842E1B026D10B07F850D668659B03C1BE6 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa Signing time: Sun 07 Jul 2024 19:25:25 +0000 ROA not before: Sun 07 Jul 2024 19:20:25 +0000 ROA not after: Sun 06 Jul 2025 19:25:25 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffd4::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 03:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:8b:0a:84:2e:1b:02:6d:10:b0:7f:85:0d:66:86:59:b0:3c:1b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jul 7 19:20:25 2024 GMT Not After : Jul 6 19:25:25 2025 GMT Subject: CN=972C853D64B5EA9A7AB12AC8FFBCFBCBAA53D9E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:85:24:6e:cf:4d:13:79:bb:e5:bf:c5:1b:de: ef:e9:c1:0f:6b:98:b9:76:12:1f:4b:73:a3:fc:c3: 11:c9:cc:78:f4:71:1f:be:06:68:5a:72:d6:7f:33: d4:00:b2:a1:68:6a:09:fa:f1:f9:b5:65:5f:2e:6a: 5f:fc:55:b3:3f:3e:3d:e2:f0:7a:e7:cf:27:ed:b5: 00:63:47:6e:66:c2:32:4f:57:34:08:92:1a:a3:40: 79:a2:29:3c:ec:ef:b6:b4:7e:63:1e:1a:d1:1d:92: 2a:1b:b4:4b:fe:87:f1:66:4d:b6:1c:5e:7f:0a:f4: 4a:95:76:58:d8:48:b1:3d:15:ac:b2:5f:b2:f7:02: 07:53:10:0a:45:cb:56:c6:3f:f9:b8:20:6c:4e:9d: e2:ec:9c:73:4c:f1:d9:48:3e:b5:2f:50:91:1e:92: 03:5e:2e:27:d8:73:b6:50:21:4d:84:b5:03:e3:36: 36:73:3c:ff:2a:7e:8c:99:bc:ce:ff:fa:58:57:b1: 8d:48:4c:7a:28:a6:c9:36:34:67:30:47:2c:bc:0e: cf:d9:74:66:13:0a:99:99:74:a2:38:97:8a:fa:fc: cf:03:56:2c:d3:6f:50:69:b7:a9:13:bd:db:11:25: f5:be:03:87:37:a8:4c:88:29:96:a6:11:13:d3:61: 39:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:2C:85:3D:64:B5:EA:9A:7A:B1:2A:C8:FF:BC:FB:CB:AA:53:D9:E2 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffd4::/46 Signature Algorithm: sha256WithRSAEncryption 61:60:ae:d1:b2:bf:ce:4d:af:d8:13:2e:aa:ba:c2:36:97:37: f0:81:ba:78:a4:42:db:dd:00:9b:e4:74:18:4c:fa:e5:c4:fc: ad:ba:de:52:14:63:7f:d0:6a:1f:58:ef:c4:dd:0d:b5:9e:5a: 86:89:ff:d6:12:e3:40:eb:03:47:67:12:78:a4:3f:31:bd:f8: d3:61:ca:64:77:b8:e1:7c:47:31:74:89:55:7e:00:0a:56:7e: 56:ef:d8:31:a9:50:77:64:d2:69:5d:16:e4:49:13:08:08:3c: 6f:2e:15:5f:d5:dc:15:aa:64:5a:e2:a0:f1:b7:08:11:73:fd: e2:41:e5:84:17:b6:7d:8e:4d:3b:76:fd:43:f7:0e:0e:e2:58: da:77:78:98:14:e7:7d:d7:34:14:ca:88:45:6c:8d:cd:f8:52: 73:18:8e:a1:9b:2c:0c:3c:34:ba:3e:63:1a:97:32:88:02:77: 92:b4:5f:a9:7b:ff:2a:58:f1:54:e1:7f:4c:b3:99:03:de:f5: 1d:0e:9d:49:0e:ba:2c:da:ab:61:e7:47:86:0e:2a:cb:42:3f: 95:ac:80:2c:0d:73:59:99:81:fd:20:1f:f7:b6:71:68:a3:6d: db:c8:ff:d7:33:dc:64:d2:9a:3a:9b:b1:2f:d0:97:41:76:c9: f8:bd:0c:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUDIsKhC4bAm0QsH+FDWaGWbA8G+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNDA3MDcxOTIwMjVaFw0yNTA3MDYxOTI1MjVaMDMxMTAvBgNV BAMTKDk3MkM4NTNENjRCNUVBOUE3QUIxMkFDOEZGQkNGQkNCQUE1M0Q5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnhSRuz00Tebvlv8Ub3u/pwQ9r mLl2Eh9Lc6P8wxHJzHj0cR++BmhactZ/M9QAsqFoagn68fm1ZV8ual/8VbM/Pj3i 8HrnzyfttQBjR25mwjJPVzQIkhqjQHmiKTzs77a0fmMeGtEdkiobtEv+h/FmTbYc Xn8K9EqVdljYSLE9FayyX7L3AgdTEApFy1bGP/m4IGxOneLsnHNM8dlIPrUvUJEe kgNeLifYc7ZQIU2EtQPjNjZzPP8qfoyZvM7/+lhXsY1ITHoopsk2NGcwRyy8Ds/Z dGYTCpmZdKI4l4r6/M8DVizTb1Bpt6kTvdsRJfW+A4c3qEyIKZamERPTYTnFAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUlyyFPWS16pp6sSrI/7z7y6pT2eIwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0MzQzYTNhMmYzNDM2MmQzNDM2MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwIqEfLA/9QwDQYJKoZIhvcNAQELBQADggEBAGFgrtGyv85Nr9gT Lqq6wjaXN/CBunikQtvdAJvkdBhM+uXE/K263lIUY3/Qah9Y78TdDbWeWoaJ/9YS 40DrA0dnEnikPzG9+NNhymR3uOF8RzF0iVV+AApWflbv2DGpUHdk0mldFuRJEwgI PG8uFV/V3BWqZFrioPG3CBFz/eJB5YQXtn2OTTt2/UP3Dg7iWNp3eJgU533XNBTK iEVsjc34UnMYjqGbLAw8NLo+YxqXMogCd5K0X6l7/ypY8VThf0yzmQPe9R0OnUkO uizaq2HnR4YOKstCP5WsgCwNc1mZgf0gH/e2cWijbdvI/9cz3GTSmjqbsS/Ql0F2 yfi9DOM= -----END CERTIFICATE-----Generated at Thu Sep 19 18:20:17 2024 by rpki-client on console-ams.rpki-client.org