$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa File: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (raw, json) Hash identifier: bGVhhAjrSr3hrPp0uo7loREHTNsf8cdWrceDPcnFXQ8= Subject key identifier: A5:17:5C:ED:51:77:10:0C:B3:D3:2C:C6:41:B1:A3:FA:8F:10:60:8C Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 607B7D9857E68F20C2CB2999793A5646C400A0C2 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa Signing time: Sun 07 Jul 2024 19:26:35 +0000 ROA not before: Sun 07 Jul 2024 19:21:35 +0000 ROA not after: Sun 06 Jul 2025 19:26:35 +0000 asID: 215069 IP address blocks: 2a11:f2c0:ffdd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 03:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:7b:7d:98:57:e6:8f:20:c2:cb:29:99:79:3a:56:46:c4:00:a0:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jul 7 19:21:35 2024 GMT Not After : Jul 6 19:26:35 2025 GMT Subject: CN=A5175CED5177100CB3D32CC641B1A3FA8F10608C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:96:97:fa:83:5a:36:c2:f8:5a:fd:7a:91:84: 44:82:83:e6:5b:93:00:da:67:91:ec:61:f8:16:e9: 3d:94:f1:56:a7:4d:d8:73:e6:5f:11:95:46:a0:44: 84:36:5c:af:55:32:cc:d6:2f:04:c0:1a:cf:d9:8c: 84:0c:90:3d:4e:e9:2e:9f:da:34:2d:0f:b4:77:2d: fb:41:94:03:e7:b3:25:31:ea:1a:d4:ae:55:f5:5e: c4:87:e2:7f:22:14:e8:30:3a:07:b9:09:42:ac:48: 3a:d5:31:a7:b7:21:87:6f:fb:4b:44:48:90:7f:ea: 54:7a:d8:e3:44:ae:09:9f:d1:5a:b8:b8:77:0e:6b: 28:dc:1e:db:e8:2d:27:22:12:7b:ec:f6:f2:97:eb: 68:23:b5:d0:6b:11:30:62:aa:b5:90:d0:ea:82:05: f4:44:da:e3:06:fa:81:25:0d:2d:2a:c3:cd:19:15: 76:11:72:ee:e0:42:61:61:e7:bb:1e:8c:15:6f:76: 44:50:ba:a8:59:9a:f7:86:f9:90:10:56:5c:c8:7c: d4:30:3c:08:f6:5b:49:aa:ce:aa:15:66:6f:37:0d: 8d:76:3b:89:69:ef:07:d9:26:ec:03:8c:93:ad:4f: b3:d4:32:18:7c:59:c8:9a:94:b9:fc:fc:81:28:d1: 55:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:17:5C:ED:51:77:10:0C:B3:D3:2C:C6:41:B1:A3:FA:8F:10:60:8C X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffdd::/48 Signature Algorithm: sha256WithRSAEncryption 80:c6:2d:24:a3:a8:10:74:5f:1e:bb:9d:89:58:67:67:a4:17: d0:16:63:f0:53:e8:ff:e0:4e:88:45:8d:a4:ad:86:8c:bc:5c: c5:a9:76:9b:07:af:81:88:5a:e1:f1:eb:2e:8f:87:dc:9b:65: 8d:0e:81:4f:6e:b1:d2:ed:34:b5:31:70:35:34:85:34:a8:39: 7d:40:f2:3f:73:83:7f:e8:22:7a:cd:31:4f:53:b3:2d:34:2f: b6:4c:57:f8:c9:cb:19:00:0c:eb:9b:46:f6:1c:eb:fd:5b:12: 90:41:bd:dd:a3:38:92:32:09:ad:01:a8:9f:f1:d7:6c:3f:42: e7:f4:dc:d6:21:7c:bc:06:b4:e2:a0:f1:23:c5:81:ad:bf:3d: c3:44:73:3b:69:b9:a6:2d:2d:64:e4:88:f8:0d:f6:71:4d:fd: 70:ae:f8:d8:c0:35:f8:b1:2b:45:0e:8c:5a:cc:50:5b:6a:25: 4f:4c:f8:22:de:92:1c:26:cf:25:84:a8:ea:e7:9c:ec:b2:fe: d2:b1:14:5e:e8:83:d6:17:21:2a:31:1d:25:9e:d3:ac:12:ff: 07:d1:1e:65:c9:c5:51:24:94:37:10:0c:a9:4b:92:ab:fd:8c: 73:79:01:d5:ab:ba:c8:95:06:7d:bb:42:ba:1b:ea:a3:1c:cf: 6f:f3:5c:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUYHt9mFfmjyDCyymZeTpWRsQAoMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNDA3MDcxOTIxMzVaFw0yNTA3MDYxOTI2MzVaMDMxMTAvBgNV BAMTKEE1MTc1Q0VENTE3NzEwMENCM0QzMkNDNjQxQjFBM0ZBOEYxMDYwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOlpf6g1o2wvha/XqRhESCg+Zb kwDaZ5HsYfgW6T2U8VanTdhz5l8RlUagRIQ2XK9VMszWLwTAGs/ZjIQMkD1O6S6f 2jQtD7R3LftBlAPnsyUx6hrUrlX1XsSH4n8iFOgwOge5CUKsSDrVMae3IYdv+0tE SJB/6lR62ONErgmf0Vq4uHcOayjcHtvoLSciEnvs9vKX62gjtdBrETBiqrWQ0OqC BfRE2uMG+oElDS0qw80ZFXYRcu7gQmFh57sejBVvdkRQuqhZmveG+ZAQVlzIfNQw PAj2W0mqzqoVZm83DY12O4lp7wfZJuwDjJOtT7PUMhh8WcialLn8/IEo0VV5AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUpRdc7VF3EAyz0yzGQbGj+o8QYIwwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV8yNTQw NWM3NmM3YTA0M2M4OWFjZTE2N2U5ZDJjZjc5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY0NjQzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzMDM2Mzku cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/90wDQYJKoZIhvcNAQELBQADggEBAIDGLSSjqBB0Xx67 nYlYZ2ekF9AWY/BT6P/gTohFjaSthoy8XMWpdpsHr4GIWuHx6y6Ph9ybZY0OgU9u sdLtNLUxcDU0hTSoOX1A8j9zg3/oInrNMU9Tsy00L7ZMV/jJyxkADOubRvYc6/1b EpBBvd2jOJIyCa0BqJ/x12w/Quf03NYhfLwGtOKg8SPFga2/PcNEcztpuaYtLWTk iPgN9nFN/XCu+NjANfixK0UOjFrMUFtqJU9M+CLekhwmzyWEqOrnnOyy/tKxFF7o g9YXISoxHSWe06wS/wfRHmXJxVEklDcQDKlLkqv9jHN5AdWrusiVBn27Qrob6qMc z2/zXGY= -----END CERTIFICATE-----Generated at Thu Sep 19 18:20:17 2024 by rpki-client on console-ams.rpki-client.org