$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa File: 326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa (raw, json) Hash identifier: 8L2dffl4g1ilG1l5/B+kC7djnpjUVSHg7XLmPYAhjYI= Subject key identifier: C4:18:DD:E1:9F:50:DF:31:6C:E9:10:CF:1A:E1:70:52:73:C8:2F:AC Certificate issuer: /CN=1A889E0950A8B6489E67E7C7189539FB887EAD71 Certificate serial: 78716A8E6A18D371CC764CCFA12E9DBA853B5B98 Authority key identifier: 1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa Signing time: Sun 07 Jul 2024 19:12:16 +0000 ROA not before: Sun 07 Jul 2024 19:07:16 +0000 ROA not after: Sun 06 Jul 2025 19:12:16 +0000 asID: 199337 IP address blocks: 2a11:f2c0:ffc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 00:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:71:6a:8e:6a:18:d3:71:cc:76:4c:cf:a1:2e:9d:ba:85:3b:5b:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A889E0950A8B6489E67E7C7189539FB887EAD71 Validity Not Before: Jul 7 19:07:16 2024 GMT Not After : Jul 6 19:12:16 2025 GMT Subject: CN=C418DDE19F50DF316CE910CF1AE1705273C82FAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:56:3b:e3:39:ce:9f:a5:f7:3b:de:9b:2d: af:56:4c:81:e1:dd:19:25:91:dd:f3:ac:ec:6d:15: 04:55:14:dc:84:86:99:11:6e:61:98:f3:bf:d2:5e: 14:93:9c:70:76:ba:52:93:29:0e:fc:9e:e0:25:a1: 9e:bb:cb:51:a1:08:66:e7:8f:07:24:e5:00:95:22: 3f:0d:6a:1d:51:c0:e2:6d:b4:99:a3:fc:30:d1:06: d4:c1:ff:13:f6:e9:01:86:81:7b:84:8b:6f:09:54: 85:79:a9:1d:69:67:e1:9c:4d:9e:0d:d5:00:c5:95: a1:b4:65:d4:84:a8:f6:53:67:66:3b:89:d4:ea:0a: 66:40:61:08:37:1d:64:87:e2:d8:d3:b9:5f:4b:7e: d8:af:d8:33:25:94:99:25:63:9f:aa:8b:46:d2:43: 13:81:30:4a:a1:b6:f2:dc:50:19:ba:27:f8:b1:a1: c2:b6:6a:17:8b:9a:64:7d:fa:47:18:cc:6d:f9:94: d0:31:d7:5c:8e:db:bc:09:ad:2a:aa:ac:44:2e:b6: 7b:da:9a:06:17:d5:89:8a:51:f8:47:96:f2:7c:6a: 2b:b8:9f:42:a8:3a:0d:61:f5:8d:37:31:24:31:ab: 4f:2e:ad:0b:b4:08:0e:41:e4:ba:26:ab:93:04:bf: 03:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:18:DD:E1:9F:50:DF:31:6C:E9:10:CF:1A:E1:70:52:73:C8:2F:AC X509v3 Authority Key Identifier: keyid:1A:88:9E:09:50:A8:B6:48:9E:67:E7:C7:18:95:39:FB:88:7E:AD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/1A889E0950A8B6489E67E7C7189539FB887EAD71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/1A889E0950A8B6489E67E7C7189539FB887EAD71.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_a50d7178badf43beb9811c7ec27b489c/0/326131313a663263303a666663313a3a2f34382d3438203d3e20313939333337.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:f2c0:ffc1::/48 Signature Algorithm: sha256WithRSAEncryption 94:df:a8:ea:2f:a1:bd:95:ff:33:ed:b0:87:39:3b:9c:6b:b5: cd:ed:d3:1b:1a:3f:88:25:77:37:8c:fc:74:41:21:0f:ec:67: f8:a8:60:2e:7c:64:47:40:bc:44:e5:36:63:84:1e:3e:29:ab: 08:59:01:87:25:73:72:91:5e:2e:a7:c7:a2:7a:f9:4f:51:b9: 51:86:e3:98:e0:1e:fe:33:01:ca:29:78:0d:d7:98:79:dd:4f: b8:bd:c5:0d:19:00:89:78:af:84:0f:f7:99:d0:18:bd:5b:30: e4:65:97:6e:be:9f:db:50:38:d9:69:f7:68:9f:e9:ac:d3:97: 5b:ae:65:50:7b:88:d1:5c:dd:a3:ec:b1:97:50:0c:2a:cf:d5: 57:57:2e:29:97:0b:51:f7:b3:51:02:e4:66:df:b0:89:e1:ae: 2f:e6:1b:e6:db:84:5b:41:77:6f:fe:52:09:19:39:b7:d5:18: 96:ad:97:35:9e:66:3c:9c:a0:27:0e:9b:5d:34:b5:5c:e7:99: e5:ef:e9:56:24:64:c8:a9:33:78:83:36:10:15:8e:ab:79:59: e8:95:44:a1:49:91:dc:02:da:0f:7e:3c:5f:10:63:3d:bb:ca: 7e:64:13:c3:a3:1d:2e:f7:c0:f8:75:72:9e:3b:26:86:bf:6d: a9:fb:ce:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIUeHFqjmoY03HMdkzPoS6duoU7W5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE4ODlFMDk1MEE4QjY0ODlFNjdFN0M3MTg5NTM5RkI4 ODdFQUQ3MTAeFw0yNDA3MDcxOTA3MTZaFw0yNTA3MDYxOTEyMTZaMDMxMTAvBgNV BAMTKEM0MThEREUxOUY1MERGMzE2Q0U5MTBDRjFBRTE3MDUyNzNDODJGQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49lY74znOn6X3O96bLa9WTIHh 3Rklkd3zrOxtFQRVFNyEhpkRbmGY87/SXhSTnHB2ulKTKQ78nuAloZ67y1GhCGbn jwck5QCVIj8Nah1RwOJttJmj/DDRBtTB/xP26QGGgXuEi28JVIV5qR1pZ+GcTZ4N 1QDFlaG0ZdSEqPZTZ2Y7idTqCmZAYQg3HWSH4tjTuV9Lftiv2DMllJklY5+qi0bS QxOBMEqhtvLcUBm6J/ixocK2aheLmmR9+kcYzG35lNAx11yO27wJrSqqrEQutnva mgYX1YmKUfhHlvJ8aiu4n0KoOg1h9Y03MSQxq08urQu0CA5B5Lomq5MEvwPlAgMB AAGjggJ7MIICdzAdBgNVHQ4EFgQUxBjd4Z9Q3zFs6RDPGuFwUnPIL6wwHwYDVR0j BBgwFoAUGoieCVCotkieZ+fHGJU5+4h+rXEwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhX2E1MGQ3MTc4YmFkZjQzYmViOTgxMWM3ZWMyN2I0ODljLzAv MUE4ODlFMDk1MEE4QjY0ODlFNjdFN0M3MTg5NTM5RkI4ODdFQUQ3MS5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8xQTg4OUUwOTUwQThCNjQ4OUU2N0U3QzcxODk1MzlG Qjg4N0VBRDcxLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUFBzALhoGT cnN5bmM6Ly9ycGtpLXJlcG8uYXMyMDc5NjAubmV0L3JlcG8vcnBraV9jYV9hNTBk NzE3OGJhZGY0M2JlYjk4MTFjN2VjMjdiNDg5Yy8wLzMyNjEzMTMxM2E2NjMyNjMz MDNhNjY2NjYzMzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM5MzkzMzMzMzcu cm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzAR MA8EAgACMAkDBwAqEfLA/8EwDQYJKoZIhvcNAQELBQADggEBAJTfqOovob2V/zPt sIc5O5xrtc3t0xsaP4gldzeM/HRBIQ/sZ/ioYC58ZEdAvETlNmOEHj4pqwhZAYcl c3KRXi6nx6J6+U9RuVGG45jgHv4zAcopeA3XmHndT7i9xQ0ZAIl4r4QP95nQGL1b MORll26+n9tQONlp92if6azTl1uuZVB7iNFc3aPssZdQDCrP1VdXLimXC1H3s1EC 5GbfsInhri/mG+bbhFtBd2/+UgkZObfVGJatlzWeZjycoCcOm100tVznmeXv6VYk ZMipM3iDNhAVjqt5WeiVRKFJkdwC2g9+PF8QYz27yn5kE8OjHS73wPh1cp47Joa/ ban7zgQ= -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:16 2024 by rpki-client on console-ams.rpki-client.org