$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a31303a3a2f34342d3434203d3e203133383532.roa File: 326130623a346530373a31303a3a2f34342d3434203d3e203133383532.roa (raw, json) Hash identifier: ceDKKQ4l1jwMy3ICEFRYdaqJDwbPURJqCpX1De1CVBE= Subject key identifier: C6:CD:BE:68:C4:D3:E7:1E:F3:3B:BD:D3:63:66:42:6E:BE:B5:1B:86 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 7EE7BCCFA2C9483A7A9928B00935B647347E1294 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a31303a3a2f34342d3434203d3e203133383532.roa Signing time: Sun 03 Nov 2024 15:24:18 +0000 ROA not before: Sun 03 Nov 2024 15:19:18 +0000 ROA not after: Sun 02 Nov 2025 15:24:18 +0000 asID: 13852 IP address blocks: 2a0b:4e07:10::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:e7:bc:cf:a2:c9:48:3a:7a:99:28:b0:09:35:b6:47:34:7e:12:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Nov 3 15:19:18 2024 GMT Not After : Nov 2 15:24:18 2025 GMT Subject: CN=C6CDBE68C4D3E71EF33BBDD36366426EBEB51B86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9c:59:c8:7d:82:69:70:44:ad:93:1f:42:e6: ca:92:2f:97:79:2d:b5:e0:4f:07:0d:15:4d:f7:e0: 11:4c:84:65:ec:b6:40:40:f5:a8:54:18:bf:a3:9c: 7d:78:0c:82:68:28:56:f7:90:0c:19:69:4f:dc:7c: 9a:8f:34:d5:0a:92:9f:d8:ed:71:d9:d2:a4:8f:69: 9d:48:a2:41:71:2a:e5:66:56:13:2a:f0:77:ce:0c: 30:1f:5a:b9:4e:7b:3a:a4:9b:d6:5c:05:1a:ed:78: 21:0f:b3:fd:34:21:8e:50:3e:90:96:f5:0b:16:12: be:3f:da:1f:cb:7d:aa:d8:a9:4f:92:f8:b9:5d:a1: 39:b1:a6:1d:34:a0:69:a4:12:8d:bd:35:d6:35:01: a0:06:f8:34:f7:64:d0:0d:3a:04:ae:1f:fd:fc:df: 79:b8:0b:9d:ed:5a:62:dd:91:6b:cb:9b:b0:68:0f: e5:af:2b:9a:1c:93:40:83:f3:b2:e9:83:2c:e6:97: 15:ac:5e:42:cf:f3:58:76:b9:13:18:e9:29:dd:bc: 05:7b:46:32:f3:7c:8c:d6:44:14:19:a7:f6:40:4f: cd:0f:52:38:c9:75:82:4e:b6:a7:ba:f0:c1:65:58: 3d:6d:6d:ed:b6:76:f5:ae:bb:8d:45:a5:57:1f:ba: fe:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CD:BE:68:C4:D3:E7:1E:F3:3B:BD:D3:63:66:42:6E:BE:B5:1B:86 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a31303a3a2f34342d3434203d3e203133383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:10::/44 Signature Algorithm: sha256WithRSAEncryption 02:75:57:b4:78:6d:be:7c:20:c7:1c:3d:51:2f:be:a3:8a:21: b9:29:1b:6a:87:81:de:e5:b3:39:ee:b8:df:fa:ad:e6:4f:3c: 8b:0d:23:ca:0a:97:ef:c3:7c:df:00:d5:dd:a9:b0:d8:fd:e7: ef:e5:2b:8a:ed:91:52:ee:e2:88:ee:2d:02:63:eb:62:c5:17: 1d:53:f3:45:69:64:49:b2:b0:8f:df:52:b2:c5:79:41:9c:ec: 06:f8:c8:01:65:17:a9:99:69:16:8f:90:28:59:0f:0b:9b:7d: 2d:a7:8a:62:ae:00:f5:61:9c:24:f4:b1:9d:ab:0b:c7:08:2f: 36:5e:ac:b9:29:bc:f5:4d:c7:56:be:b7:b2:81:44:73:46:cc: 00:63:bc:db:9a:95:bb:d1:4c:8e:49:2b:af:03:f7:a7:25:c4: 68:77:32:fe:5d:59:d1:64:51:52:22:79:4e:54:6e:6e:6c:9f: a6:2f:e8:21:69:9a:a7:83:19:fc:eb:37:fd:74:53:bf:12:51: 7f:5a:b2:12:14:74:f2:7f:37:51:c9:8e:cc:4f:21:ea:2d:fc: 7d:65:62:ce:c8:dc:06:99:22:ed:55:6b:70:34:41:4b:f5:0e: ee:9a:c4:3c:68:dd:e7:27:6a:59:8f:74:3e:77:a3:15:65:64: 4e:1d:16:93 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUfue8z6LJSDp6mSiwCTW2RzR+EpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDExMDMxNTE5MThaFw0yNTExMDIxNTI0MThaMDMxMTAvBgNV BAMTKEM2Q0RCRTY4QzREM0U3MUVGMzNCQkREMzYzNjY0MjZFQkVCNTFCODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDenFnIfYJpcEStkx9C5sqSL5d5 LbXgTwcNFU334BFMhGXstkBA9ahUGL+jnH14DIJoKFb3kAwZaU/cfJqPNNUKkp/Y 7XHZ0qSPaZ1IokFxKuVmVhMq8HfODDAfWrlOezqkm9ZcBRrteCEPs/00IY5QPpCW 9QsWEr4/2h/LfarYqU+S+LldoTmxph00oGmkEo29NdY1AaAG+DT3ZNANOgSuH/38 33m4C53tWmLdkWvLm7BoD+WvK5ock0CD87LpgyzmlxWsXkLP81h2uRMY6SndvAV7 RjLzfIzWRBQZp/ZAT80PUjjJdYJOtqe68MFlWD1tbe22dvWuu41FpVcfuv4zAgMB AAGjggJ/MIICezAdBgNVHQ4EFgQUxs2+aMTT5x7zO73TY2ZCbr61G4YwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBsQYIKwYBBQUHAQsEgaQwgaEwgZ4GCCsGAQUF BzALhoGRcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTMxMzAzYTNhMmYzNDM0MmQzNDM0MjAzZDNlMjAzMTMzMzgz NTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcEKgtOBwAQMA0GCSqGSIb3DQEBCwUAA4IBAQACdVe0eG2+ fCDHHD1RL76jiiG5KRtqh4He5bM57rjf+q3mTzyLDSPKCpfvw3zfANXdqbDY/efv 5SuK7ZFS7uKI7i0CY+tixRcdU/NFaWRJsrCP31KyxXlBnOwG+MgBZRepmWkWj5Ao WQ8Lm30tp4pirgD1YZwk9LGdqwvHCC82Xqy5Kbz1TcdWvreygURzRswAY7zbmpW7 0UyOSSuvA/enJcRodzL+XVnRZFFSInlOVG5ubJ+mL+ghaZqngxn86zf9dFO/ElF/ WrISFHTyfzdRyY7MTyHqLfx9ZWLOyNwGmSLtVWtwNEFL9Q7umsQ8aN3nJ2pZj3Q+ d6MVZWROHRaT -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org