$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa File: 326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa (raw, json) Hash identifier: 3DuIOWLJO8NrLMIsuHapBMIFfNv6pqKViDwoNolMhc0= Subject key identifier: 96:B4:48:F4:F0:4C:A6:CE:D8:2D:77:F3:3A:01:FE:C8:30:0E:DF:88 Certificate issuer: /CN=1D570B984E9C5E382B0A879AA21F6518621F059F Certificate serial: 02D5769BD789C8B0BF4D1DCFA78A74A460D747B7 Authority key identifier: 1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa Signing time: Sun 07 Jul 2024 19:18:54 +0000 ROA not before: Sun 07 Jul 2024 19:13:54 +0000 ROA not after: Sun 06 Jul 2025 19:18:54 +0000 asID: 216055 IP address blocks: 2a11:f2c0:ffc8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 00:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:d5:76:9b:d7:89:c8:b0:bf:4d:1d:cf:a7:8a:74:a4:60:d7:47:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D570B984E9C5E382B0A879AA21F6518621F059F Validity Not Before: Jul 7 19:13:54 2024 GMT Not After : Jul 6 19:18:54 2025 GMT Subject: CN=96B448F4F04CA6CED82D77F33A01FEC8300EDF88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e0:72:5b:f1:b3:5e:ee:be:bb:8d:bd:e8:4e: b2:8f:95:a5:25:0e:6f:1c:c4:dd:ef:5f:38:a1:b4: 8d:22:57:5e:99:8b:8c:ee:29:cb:07:37:0e:82:b4: cf:3e:fb:f6:65:d0:d5:06:3b:a1:df:a5:18:78:e6: a0:ec:cc:a7:d3:b9:ef:1e:fd:35:27:1a:51:c1:00: 6b:7b:23:28:02:0b:c3:85:94:d7:33:3a:3b:99:4b: 80:f7:ce:7d:e9:96:45:a0:1f:2e:1a:91:2c:2d:ec: 72:2c:ab:2a:2a:95:0d:3b:1f:b3:03:ea:f6:8a:25: 71:bb:34:a5:aa:f9:53:81:97:27:64:5c:1f:e4:dd: 02:47:fc:c3:d3:5c:f9:22:e9:92:08:21:2a:db:e8: 74:7d:e8:34:ed:9b:7a:5b:67:09:ae:33:2b:3d:a5: 0d:7c:b1:e6:89:43:54:82:73:97:e2:55:2c:87:c0: 00:f4:c8:56:c8:b7:d7:9b:3e:b3:96:cb:b9:ce:83: 5a:0e:2a:9e:b3:76:b8:05:d0:e0:f2:a0:6f:c9:33: 13:40:1f:8e:f6:87:0f:57:54:4d:dc:a0:ac:63:b9: f1:64:f5:d2:6d:b7:39:c5:a5:fe:78:ab:c6:6b:c0: c9:6a:a6:49:1f:df:81:e8:08:9b:68:e5:99:84:89: 0a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B4:48:F4:F0:4C:A6:CE:D8:2D:77:F3:3A:01:FE:C8:30:0E:DF:88 X509v3 Authority Key Identifier: keyid:1D:57:0B:98:4E:9C:5E:38:2B:0A:87:9A:A2:1F:65:18:62:1F:05:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/1D570B984E9C5E382B0A879AA21F6518621F059F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1D570B984E9C5E382B0A879AA21F6518621F059F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_4d5c309ae11a449ea8407ace1f7901f0/0/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc8::/48 Signature Algorithm: sha256WithRSAEncryption 74:a6:5d:d7:8d:9b:bb:eb:32:09:bf:20:37:f0:8a:56:83:f8: e5:92:00:7b:42:6a:c8:7b:ab:f5:2b:3b:dc:4d:60:69:21:f5: 32:67:1f:9d:26:04:c0:e0:63:70:e3:35:8d:b8:bd:91:07:31: e9:35:63:3e:10:17:d4:ac:a9:1e:35:17:75:eb:79:95:29:26: 33:f1:0f:5b:8e:f1:f4:8b:90:71:f7:b8:d2:22:c9:89:43:a5: d8:6d:ac:7b:90:f8:31:28:36:d2:43:46:9f:86:18:f4:9d:0c: a2:04:41:2a:7e:8a:af:cd:b2:b2:e0:08:5d:e6:e4:b6:87:9b: 57:d8:6f:52:a8:0d:6b:57:73:6c:f0:8a:0a:38:a2:08:f4:56: db:71:6a:30:ff:88:56:77:08:d0:8f:3e:4b:89:fa:57:10:e4: e5:50:04:c1:41:8a:2d:8b:4d:13:c8:b8:28:fa:f4:06:10:93: 72:97:a8:09:27:5f:2b:5b:a5:f7:dd:a9:02:aa:36:7c:ce:61: ab:3f:e3:a0:d9:45:03:a6:6b:bb:2c:31:dc:60:c8:9d:60:1c: 5a:5a:6b:37:09:c1:e0:34:b4:d9:7d:a2:52:2c:2b:72:5f:70: 63:63:54:25:93:05:6d:18:14:40:9d:f1:b5:54:da:de:37:a6: 15:34:7e:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUAtV2m9eJyLC/TR3Pp4p0pGDXR7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2 MjFGMDU5RjAeFw0yNDA3MDcxOTEzNTRaFw0yNTA3MDYxOTE4NTRaMDMxMTAvBgNV BAMTKDk2QjQ0OEY0RjA0Q0E2Q0VEODJENzdGMzNBMDFGRUM4MzAwRURGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw4HJb8bNe7r67jb3oTrKPlaUl Dm8cxN3vXzihtI0iV16Zi4zuKcsHNw6CtM8++/Zl0NUGO6HfpRh45qDszKfTue8e /TUnGlHBAGt7IygCC8OFlNczOjuZS4D3zn3plkWgHy4akSwt7HIsqyoqlQ07H7MD 6vaKJXG7NKWq+VOBlydkXB/k3QJH/MPTXPki6ZIIISrb6HR96DTtm3pbZwmuMys9 pQ18seaJQ1SCc5fiVSyHwAD0yFbIt9ebPrOWy7nOg1oOKp6zdrgF0ODyoG/JMxNA H472hw9XVE3coKxjufFk9dJttznFpf54q8ZrwMlqpkkf34HoCJto5ZmEiQrtAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUlrRI9PBMps7YLXfzOgH+yDAO34gwHwYDVR0j BBgwFoAUHVcLmE6cXjgrCoeaoh9lGGIfBZ8wDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzRkNWMzMDlhZTExYTQ0OWVhODQwN2FjZTFmNzkwMWYwLzAv MUQ1NzBCOTg0RTlDNUUzODJCMEE4NzlBQTIxRjY1MTg2MjFGMDU5Ri5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xRDU3MEI5ODRFOUM1RTM4MkIwQTg3OUFBMjFGNjUx ODYyMUYwNTlGLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV80ZDVj MzA5YWUxMWE0NDllYTg0MDdhY2UxZjc5MDFmMC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzgzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYzMDM1MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8gwDQYJKoZIhvcNAQELBQADggEBAHSmXdeNm7vrMgm/ IDfwilaD+OWSAHtCash7q/UrO9xNYGkh9TJnH50mBMDgY3DjNY24vZEHMek1Yz4Q F9SsqR41F3XreZUpJjPxD1uO8fSLkHH3uNIiyYlDpdhtrHuQ+DEoNtJDRp+GGPSd DKIEQSp+iq/NsrLgCF3m5LaHm1fYb1KoDWtXc2zwigo4ogj0VttxajD/iFZ3CNCP PkuJ+lcQ5OVQBMFBii2LTRPIuCj69AYQk3KXqAknXytbpffdqQKqNnzOYas/46DZ RQOma7ssMdxgyJ1gHFpaazcJweA0tNl9olIsK3JfcGNjVCWTBW0YFECd8bVU2t43 phU0fqg= -----END CERTIFICATE-----Generated at Fri Nov 22 13:31:47 2024 by rpki-client on console-fra.rpki-client.org