$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa File: 326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa (raw, json) Hash identifier: tepnhtpStfx+iROmpj+cPwbcFtzKc4geGeglxL8Depc= Subject key identifier: AA:60:CB:C1:7C:F7:6B:AF:22:86:62:33:21:73:00:5B:74:67:BA:97 Certificate issuer: /CN=970AD94C83244100A97F9186D53DADAB07995EE9 Certificate serial: 4EF01C331CB08E2D4C74BB9F8B36364C74FFBA7A Authority key identifier: 97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa Signing time: Sun 07 Jul 2024 19:36:54 +0000 ROA not before: Sun 07 Jul 2024 19:31:54 +0000 ROA not after: Sun 06 Jul 2025 19:36:54 +0000 asID: 212245 IP address blocks: 2a11:f2c0:fff6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 03:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f0:1c:33:1c:b0:8e:2d:4c:74:bb:9f:8b:36:36:4c:74:ff:ba:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=970AD94C83244100A97F9186D53DADAB07995EE9 Validity Not Before: Jul 7 19:31:54 2024 GMT Not After : Jul 6 19:36:54 2025 GMT Subject: CN=AA60CBC17CF76BAF228662332173005B7467BA97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ea:98:c6:60:87:46:c2:2b:ce:24:dd:ae:8c: f9:d9:53:dd:44:3e:d5:84:cf:da:30:a2:36:2c:4e: 6a:bd:2e:22:d0:19:f3:56:1a:b3:18:3d:79:b9:b6: ae:b6:32:3f:34:2d:a0:2e:c1:90:e5:2a:29:95:60: 69:bd:99:4e:67:a2:9e:20:bb:b8:ad:23:6b:a0:91: 7a:03:b4:d0:17:a1:80:2b:de:40:5b:96:52:8b:bd: db:a5:9c:a2:ba:65:60:ee:e1:51:4a:24:9c:14:3a: f8:4f:26:32:a6:62:71:3e:db:c9:aa:31:63:97:8c: fb:64:0f:f2:59:7c:00:2c:59:e9:bb:90:ec:02:b1: f9:b2:7c:b2:6d:7b:52:cc:f9:a8:1c:79:4e:6c:3b: b5:29:87:6e:ac:9a:a5:55:03:45:53:b2:af:6b:36: aa:29:dd:56:64:ce:3b:e5:f6:b3:9c:f9:17:fc:b2: f3:c9:00:c9:27:13:42:9c:29:d5:b0:a6:bd:9c:c2: 68:5f:a5:46:bb:7b:29:f3:33:7a:f9:6e:ba:af:ca: bf:93:46:b1:f0:3b:a3:59:ea:9b:8f:53:ee:da:c3: df:cd:97:4f:d5:a7:b0:56:08:d1:a0:93:12:a9:e1: 6e:7b:5c:15:fa:5d:69:57:87:c8:c6:c7:28:21:42: b9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:60:CB:C1:7C:F7:6B:AF:22:86:62:33:21:73:00:5B:74:67:BA:97 X509v3 Authority Key Identifier: keyid:97:0A:D9:4C:83:24:41:00:A9:7F:91:86:D5:3D:AD:AB:07:99:5E:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/970AD94C83244100A97F9186D53DADAB07995EE9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/970AD94C83244100A97F9186D53DADAB07995EE9.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_9d839ca0a55e42a49d10de071f46598b/0/326131313a663263303a666666363a3a2f34382d3438203d3e20323132323435.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:fff6::/48 Signature Algorithm: sha256WithRSAEncryption b7:18:31:21:89:f1:bb:db:c5:df:37:01:35:47:03:71:f5:b0: d8:af:51:f5:09:0b:9c:54:52:5f:b2:19:03:39:14:72:b5:47: b5:9c:bf:aa:0c:49:9d:ab:fe:0f:31:9b:88:43:91:4f:5f:75: 02:fb:cf:a3:ca:f3:07:f5:a5:ba:d0:21:4e:0e:72:cd:8e:f6: 2e:fb:29:7b:ed:24:54:dd:1d:f3:03:0a:be:2b:bb:70:09:54: fb:23:79:14:0c:02:b6:d1:e6:d3:a1:bd:ac:f5:e8:70:1d:4e: 58:c4:66:29:91:7b:b3:d8:5f:5b:d5:c3:ac:c9:7e:d2:fe:c0: 6e:21:f1:e2:0e:c6:13:8b:94:23:a4:1b:2e:48:3f:ad:6b:5e: 36:19:44:15:4a:b2:1c:88:27:b4:2e:32:71:7e:e0:0a:ba:66: d8:b5:a6:66:2b:ee:fb:ac:a5:dd:c3:dd:07:39:2d:ca:41:e0: 42:b4:ab:3a:2e:80:17:ee:2d:b3:b7:94:78:8c:1c:01:7b:61: 34:2c:38:8b:3b:98:7f:c6:30:23:77:cc:fd:67:9d:22:46:30: 68:e0:2b:8e:69:69:29:ea:ef:fd:82:45:ba:88:c5:27:b5:50: ab:0d:bb:30:17:8a:82:cc:53:94:d9:85:93:4a:f9:b0:dd:4e: 8c:03:84:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUTvAcMxywji1MdLufizY2THT/unowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIw Nzk5NUVFOTAeFw0yNDA3MDcxOTMxNTRaFw0yNTA3MDYxOTM2NTRaMDMxMTAvBgNV BAMTKEFBNjBDQkMxN0NGNzZCQUYyMjg2NjIzMzIxNzMwMDVCNzQ2N0JBOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq6pjGYIdGwivOJN2ujPnZU91E PtWEz9owojYsTmq9LiLQGfNWGrMYPXm5tq62Mj80LaAuwZDlKimVYGm9mU5nop4g u7itI2ugkXoDtNAXoYAr3kBbllKLvdulnKK6ZWDu4VFKJJwUOvhPJjKmYnE+28mq MWOXjPtkD/JZfAAsWem7kOwCsfmyfLJte1LM+agceU5sO7Uph26smqVVA0VTsq9r Nqop3VZkzjvl9rOc+Rf8svPJAMknE0KcKdWwpr2cwmhfpUa7eynzM3r5brqvyr+T RrHwO6NZ6puPU+7aw9/Nl0/Vp7BWCNGgkxKp4W57XBX6XWlXh8jGxyghQrkDAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUqmDLwXz3a68ihmIzIXMAW3RnupcwHwYDVR0j BBgwFoAUlwrZTIMkQQCpf5GG1T2tqweZXukwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzlkODM5Y2EwYTU1ZTQyYTQ5ZDEwZGUwNzFmNDY1OThiLzAv OTcwQUQ5NEM4MzI0NDEwMEE5N0Y5MTg2RDUzREFEQUIwNzk5NUVFOS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy85NzBBRDk0QzgzMjQ0MTAwQTk3RjkxODZENTNEQURB QjA3OTk1RUU5LmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV85ZDgz OWNhMGE1NWU0MmE0OWQxMGRlMDcxZjQ2NTk4Yi8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjY2MzYzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzIzMjM0MzUu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA//YwDQYJKoZIhvcNAQELBQADggEBALcYMSGJ8bvbxd83 ATVHA3H1sNivUfUJC5xUUl+yGQM5FHK1R7Wcv6oMSZ2r/g8xm4hDkU9fdQL7z6PK 8wf1pbrQIU4Ocs2O9i77KXvtJFTdHfMDCr4ru3AJVPsjeRQMArbR5tOhvaz16HAd TljEZimRe7PYX1vVw6zJftL+wG4h8eIOxhOLlCOkGy5IP61rXjYZRBVKshyIJ7Qu MnF+4Aq6Zti1pmYr7vuspd3D3Qc5LcpB4EK0qzougBfuLbO3lHiMHAF7YTQsOIs7 mH/GMCN3zP1nnSJGMGjgK45paSnq7/2CRbqIxSe1UKsNuzAXioLMU5TZhZNK+bDd TowDhEo= -----END CERTIFICATE-----Generated at Thu Sep 19 18:20:17 2024 by rpki-client on console-ams.rpki-client.org