$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa File: 326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa (raw, json) Hash identifier: bIttpen3IjgsR1QdlNNcRrtX2dBZba5UCB54iz2dEbU= Subject key identifier: E3:14:16:83:7D:88:78:88:6A:66:0E:21:FA:71:E1:4E:09:C6:C5:36 Certificate issuer: /CN=DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1 Certificate serial: 3F72C08D29F083531D6F83CFEF8070DC2CA968F2 Authority key identifier: DC:2D:34:FE:0F:8C:90:B2:A8:CA:EC:47:27:D6:BA:31:B9:8D:25:D1 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa Signing time: Sun 07 Jul 2024 19:28:37 +0000 ROA not before: Sun 07 Jul 2024 19:23:37 +0000 ROA not after: Sun 06 Jul 2025 19:28:37 +0000 asID: 208051 IP address blocks: 2a11:f2c0:ffe0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:72:c0:8d:29:f0:83:53:1d:6f:83:cf:ef:80:70:dc:2c:a9:68:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1 Validity Not Before: Jul 7 19:23:37 2024 GMT Not After : Jul 6 19:28:37 2025 GMT Subject: CN=E31416837D8878886A660E21FA71E14E09C6C536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:25:fa:f9:97:bd:2b:52:b3:9f:ba:e9:33:8a: b3:d9:d8:60:bd:3a:d7:12:4e:82:e4:15:6e:fa:14: c8:0c:8b:e1:81:15:8f:f7:aa:f8:ba:e1:11:84:ba: 70:97:ed:c1:d6:1b:ad:16:58:6e:70:61:36:63:1b: 57:a7:36:57:94:8c:b5:4b:17:5b:d8:41:f7:91:16: 71:85:e4:4e:0b:66:46:c8:3e:bb:aa:cd:84:42:f6: 19:d9:44:80:9a:7a:9e:db:5e:a9:20:3b:28:25:d1: 0b:c8:f9:cf:84:38:e2:2d:60:0d:68:6a:d2:9d:15: 94:3f:00:60:20:09:fd:c2:3a:aa:54:65:d1:1f:c3: f9:c1:36:f1:dc:fd:2b:94:18:24:95:07:2b:51:d0: 8a:4a:f9:74:1e:a3:c3:6f:5b:b5:57:63:50:3f:ef: 7f:c9:6b:e9:19:49:94:ed:7d:14:4e:16:89:70:98: b8:a1:01:a7:81:32:0c:79:8a:54:47:05:c5:1a:a3: 11:9a:06:81:d7:cb:78:8b:30:d5:72:93:5c:5f:3f: 9b:90:8a:a3:b2:b6:7f:e8:b2:79:67:e6:05:c2:ee: 56:1a:f8:7a:74:9f:28:d8:af:c3:0e:35:fd:4d:f6: 9b:c5:63:f2:d5:62:da:cc:41:fe:ce:a9:34:4c:43: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:14:16:83:7D:88:78:88:6A:66:0E:21:FA:71:E1:4E:09:C6:C5:36 X509v3 Authority Key Identifier: keyid:DC:2D:34:FE:0F:8C:90:B2:A8:CA:EC:47:27:D6:BA:31:B9:8D:25:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/DC2D34FE0F8C90B2A8CAEC4727D6BA31B98D25D1.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_5c5522ba69fe47d2b63c7b6531a244f8/0/326131313a663263303a666665303a3a2f34342d3434203d3e20323038303531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffe0::/44 Signature Algorithm: sha256WithRSAEncryption 55:fb:e1:6a:75:e0:08:ff:36:6a:c0:62:47:c7:9f:98:dd:20: 08:45:c2:53:7e:48:23:b8:a1:e4:43:78:71:49:48:fe:bb:5c: 5d:78:56:d8:71:e0:dc:76:d7:41:bf:07:78:d9:21:34:3f:07: 36:7e:ef:5e:68:bf:10:cf:ce:b8:97:5e:ef:5a:db:d8:a0:26: 6a:36:7f:e0:12:bb:76:3f:a9:c8:7d:cf:89:de:9a:99:e2:61: cf:32:de:8e:23:ca:0f:ba:fe:96:64:48:98:db:4d:95:e2:f8: 3d:a3:a6:ee:b6:d5:aa:c5:d0:b1:84:db:75:3b:0b:d9:ad:da: 62:7e:fb:e4:ba:53:07:e2:72:68:b3:0f:5f:c3:e0:f6:59:e8: 0f:2a:61:da:01:a2:01:e5:c8:5d:56:09:c0:b7:91:04:fb:01: f4:ee:b8:b1:ee:b2:16:f3:8a:29:c9:7c:b9:c6:df:c9:60:f4: 7c:a1:22:af:42:2c:47:ac:36:ca:aa:37:06:38:82:81:83:46: d8:f8:69:9d:83:35:f1:a2:ee:22:9a:ef:78:e9:3e:75:11:01: 26:1b:ee:2b:13:a5:b9:53:9c:d0:fa:f9:64:cb:e8:ec:69:d9: 4e:0d:ac:de:76:69:e0:24:e8:b7:bc:ae:17:68:41:04:db:97: bf:50:c1:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUP3LAjSnwg1Mdb4PP74Bw3CypaPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREMyRDM0RkUwRjhDOTBCMkE4Q0FFQzQ3MjdENkJBMzFC OThEMjVEMTAeFw0yNDA3MDcxOTIzMzdaFw0yNTA3MDYxOTI4MzdaMDMxMTAvBgNV BAMTKEUzMTQxNjgzN0Q4ODc4ODg2QTY2MEUyMUZBNzFFMTRFMDlDNkM1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZJfr5l70rUrOfuukzirPZ2GC9 OtcSToLkFW76FMgMi+GBFY/3qvi64RGEunCX7cHWG60WWG5wYTZjG1enNleUjLVL F1vYQfeRFnGF5E4LZkbIPruqzYRC9hnZRICaep7bXqkgOygl0QvI+c+EOOItYA1o atKdFZQ/AGAgCf3COqpUZdEfw/nBNvHc/SuUGCSVBytR0IpK+XQeo8NvW7VXY1A/ 73/Ja+kZSZTtfRROFolwmLihAaeBMgx5ilRHBcUaoxGaBoHXy3iLMNVyk1xfP5uQ iqOytn/osnln5gXC7lYa+Hp0nyjYr8MONf1N9pvFY/LVYtrMQf7OqTRMQwBTAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQU4xQWg32IeIhqZg4h+nHhTgnGxTYwHwYDVR0j BBgwFoAU3C00/g+MkLKoyuxHJ9a6MbmNJdEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzVjNTUyMmJhNjlmZTQ3ZDJiNjNjN2I2NTMxYTI0NGY4LzAv REMyRDM0RkUwRjhDOTBCMkE4Q0FFQzQ3MjdENkJBMzFCOThEMjVEMS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy9EQzJEMzRGRTBGOEM5MEIyQThDQUVDNDcyN0Q2QkEz MUI5OEQyNUQxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV81YzU1 MjJiYTY5ZmU0N2QyYjYzYzdiNjUzMWEyNDRmOC8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY1MzAzYTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMjMwMzgzMDM1MzEu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwQqEfLA/+AwDQYJKoZIhvcNAQELBQADggEBAFX74Wp14Aj/NmrA YkfHn5jdIAhFwlN+SCO4oeRDeHFJSP67XF14Vthx4Nx210G/B3jZITQ/BzZ+715o vxDPzriXXu9a29igJmo2f+ASu3Y/qch9z4nempniYc8y3o4jyg+6/pZkSJjbTZXi +D2jpu621arF0LGE23U7C9mt2mJ+++S6UwficmizD1/D4PZZ6A8qYdoBogHlyF1W CcC3kQT7AfTuuLHushbziinJfLnG38lg9HyhIq9CLEesNsqqNwY4goGDRtj4aZ2D NfGi7iKa73jpPnURASYb7isTpblTnND6+WTL6Oxp2U4NrN52aeAk6Le8rhdoQQTb l79Qwc0= -----END CERTIFICATE-----Generated at Sun Nov 24 23:56:46 2024 by rpki-client on console-fra.rpki-client.org