$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa File: 326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa (raw, json) Hash identifier: KwVZ4PSvdghpf9hVVabUEsTRRxuGENiHkh1a0myhXYg= Subject key identifier: E2:57:F9:CA:05:4D:B4:E4:9F:DE:F3:6D:B3:61:C6:E8:DE:D5:4C:B6 Certificate issuer: /CN=4BA4511F4B81C565CED3E70B3020FBD0ED05562F Certificate serial: 6AA3B7CBF182D5A7806AAAF6C156F8B5445EA661 Authority key identifier: 4B:A4:51:1F:4B:81:C5:65:CE:D3:E7:0B:30:20:FB:D0:ED:05:56:2F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa Signing time: Mon 08 Jul 2024 09:26:08 +0000 ROA not before: Mon 08 Jul 2024 09:21:08 +0000 ROA not after: Mon 07 Jul 2025 09:26:08 +0000 asID: 215778 IP address blocks: 2a11:f2c0:ffcb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:a3:b7:cb:f1:82:d5:a7:80:6a:aa:f6:c1:56:f8:b5:44:5e:a6:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4BA4511F4B81C565CED3E70B3020FBD0ED05562F Validity Not Before: Jul 8 09:21:08 2024 GMT Not After : Jul 7 09:26:08 2025 GMT Subject: CN=E257F9CA054DB4E49FDEF36DB361C6E8DED54CB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f9:2d:55:fc:ef:36:c7:72:14:51:4b:ef:32: 97:fd:4e:ae:4d:49:1a:3f:79:ce:1e:eb:31:d4:66: d6:9a:f9:a8:67:95:42:03:29:50:32:24:6e:c3:b1: 1f:2a:e4:02:a0:2f:52:87:0f:ea:47:da:69:c1:0c: c6:95:50:4e:22:16:83:b8:f8:67:61:15:b6:5b:b0: 4e:f5:0c:37:8a:48:98:a7:f9:e1:77:f8:30:44:18: 37:59:dc:1c:d7:c5:6d:39:25:d0:c9:93:d0:00:5f: a3:5c:5f:f3:07:44:6d:a4:6c:79:85:f3:f4:5c:b0: ed:a6:26:00:99:63:9c:b0:a9:96:7d:f9:34:b7:a3: ab:0d:85:81:08:fb:0f:ab:b1:ac:4a:f3:f5:e8:c1: 16:b5:2f:ef:91:5b:63:90:5a:5c:19:f7:48:e9:5d: a2:a3:77:f0:70:01:e1:22:bf:1b:10:85:1e:55:44: 8d:a5:88:c7:19:a5:c3:a8:1a:43:6f:47:fb:cc:bd: 46:f5:6d:5a:89:1e:2b:5c:15:3a:fd:70:2b:5e:86: c7:96:16:db:e0:00:68:09:9e:12:58:7c:fc:a7:fa: f6:cf:22:a5:98:9e:24:f5:11:d9:3c:99:23:97:96: cd:d7:ab:7a:bb:87:7e:f8:8a:a8:fc:2d:4d:49:7f: c7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:57:F9:CA:05:4D:B4:E4:9F:DE:F3:6D:B3:61:C6:E8:DE:D5:4C:B6 X509v3 Authority Key Identifier: keyid:4B:A4:51:1F:4B:81:C5:65:CE:D3:E7:0B:30:20:FB:D0:ED:05:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/4BA4511F4B81C565CED3E70B3020FBD0ED05562F.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_973e7a98a71b49ffbb22b76ed5f129e2/0/326131313a663263303a666663623a3a2f34382d3438203d3e20323135373738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffcb::/48 Signature Algorithm: sha256WithRSAEncryption 4c:e2:2a:13:22:89:fc:d3:0b:2f:62:ad:26:69:01:9d:c1:0d: 2e:f2:b2:38:a2:cd:13:86:7a:a2:0f:9c:93:c7:23:65:64:2d: 48:2e:3d:3c:b7:5a:6c:76:8c:6c:77:bf:b4:54:e5:19:e8:05: bb:25:bd:e0:fe:9c:9f:e7:57:5e:53:07:9b:ea:ed:bd:b0:48: c6:80:62:0f:c1:a6:3c:35:aa:df:8f:49:f0:ed:87:50:81:bf: fa:60:9b:51:4d:c0:4b:2a:5f:a6:4f:7a:df:6b:ff:e4:fa:ea: b0:de:f0:7a:33:50:96:0c:b3:0e:dd:eb:7b:10:50:f1:3f:41: 5a:af:05:99:ed:cd:48:7b:a9:4c:bb:9e:28:23:16:bd:e9:45: 17:4f:07:bb:35:dc:5c:a1:dd:cf:b6:97:b2:9c:dd:63:42:3f: 7f:1b:16:21:58:97:91:86:36:ff:b8:80:f6:c0:16:4a:97:9a: 7d:96:c2:e7:de:6a:2a:03:d4:14:8f:f3:6f:d5:4e:2d:89:f4: 6b:30:97:63:b9:6a:53:00:d3:2a:04:81:b1:5f:16:53:4a:36: d5:e2:a2:cb:44:a7:ea:cf:db:d2:28:9a:2e:5f:4f:af:22:7d: 8e:50:a8:bd:9c:d4:86:68:25:a8:a8:aa:98:6f:b3:5f:17:a3: 78:99:33:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUaqO3y/GC1aeAaqr2wVb4tURepmEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEJBNDUxMUY0QjgxQzU2NUNFRDNFNzBCMzAyMEZCRDBF RDA1NTYyRjAeFw0yNDA3MDgwOTIxMDhaFw0yNTA3MDcwOTI2MDhaMDMxMTAvBgNV BAMTKEUyNTdGOUNBMDU0REI0RTQ5RkRFRjM2REIzNjFDNkU4REVENTRDQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb+S1V/O82x3IUUUvvMpf9Tq5N SRo/ec4e6zHUZtaa+ahnlUIDKVAyJG7DsR8q5AKgL1KHD+pH2mnBDMaVUE4iFoO4 +GdhFbZbsE71DDeKSJin+eF3+DBEGDdZ3BzXxW05JdDJk9AAX6NcX/MHRG2kbHmF 8/RcsO2mJgCZY5ywqZZ9+TS3o6sNhYEI+w+rsaxK8/XowRa1L++RW2OQWlwZ90jp XaKjd/BwAeEivxsQhR5VRI2liMcZpcOoGkNvR/vMvUb1bVqJHitcFTr9cCtehseW FtvgAGgJnhJYfPyn+vbPIqWYniT1Edk8mSOXls3Xq3q7h374iqj8LU1Jf8c5AgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQU4lf5ygVNtOSf3vNts2HG6N7VTLYwHwYDVR0j BBgwFoAUS6RRH0uBxWXO0+cLMCD70O0FVi8wDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzk3M2U3YTk4YTcxYjQ5ZmZiYjIyYjc2ZWQ1ZjEyOWUyLzAv NEJBNDUxMUY0QjgxQzU2NUNFRDNFNzBCMzAyMEZCRDBFRDA1NTYyRi5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy80QkE0NTExRjRCODFDNTY1Q0VEM0U3MEIzMDIwRkJE MEVEMDU1NjJGLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85NzNl N2E5OGE3MWI0OWZmYmIyMmI3NmVkNWYxMjllMi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzNjIzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUzNzM3Mzgu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8swDQYJKoZIhvcNAQELBQADggEBAEziKhMiifzTCy9i rSZpAZ3BDS7ysjiizROGeqIPnJPHI2VkLUguPTy3Wmx2jGx3v7RU5RnoBbslveD+ nJ/nV15TB5vq7b2wSMaAYg/Bpjw1qt+PSfDth1CBv/pgm1FNwEsqX6ZPet9r/+T6 6rDe8HozUJYMsw7d63sQUPE/QVqvBZntzUh7qUy7nigjFr3pRRdPB7s13Fyh3c+2 l7Kc3WNCP38bFiFYl5GGNv+4gPbAFkqXmn2WwufeaioD1BSP82/VTi2J9Gswl2O5 alMA0yoEgbFfFlNKNtXiostEp+rP29Iomi5fT68ifY5QqL2c1IZoJaioqphvs18X o3iZM9k= -----END CERTIFICATE-----Generated at Fri Nov 22 19:42:11 2024 by rpki-client on console-fra.rpki-client.org