$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa File: 326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa (raw, json) Hash identifier: XIzrL2MNBKx1bfPZ625gQ9E7s+gjmIdIkdh8m0KCCFQ= Subject key identifier: E0:58:B9:7E:BF:9A:86:5E:BC:02:B1:34:82:EB:E1:D0:75:EB:25:0E Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 2D34A8225C6C90F21C5AAD88A796B806F1EE1831 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa Signing time: Tue 17 Sep 2024 13:13:12 +0000 ROA not before: Tue 17 Sep 2024 13:08:12 +0000 ROA not after: Tue 16 Sep 2025 13:13:12 +0000 asID: 214543 IP address blocks: 2a0b:4e07:2a0b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:34:a8:22:5c:6c:90:f2:1c:5a:ad:88:a7:96:b8:06:f1:ee:18:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Sep 17 13:08:12 2024 GMT Not After : Sep 16 13:13:12 2025 GMT Subject: CN=E058B97EBF9A865EBC02B13482EBE1D075EB250E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c6:5d:e9:1a:0e:f2:70:85:ee:14:51:fd:ff: 46:4d:9e:42:6f:be:fb:11:6c:de:ae:92:a9:93:f1: 59:a8:ee:f2:dc:88:27:17:c6:32:44:71:2d:b6:a1: 8d:a8:40:83:cb:3c:60:9f:e8:92:f0:3d:ed:2f:4e: 7f:60:43:f5:42:5e:01:39:62:14:81:96:a4:d7:a1: 51:3d:08:f5:d2:67:eb:a1:90:0a:48:6d:fc:3f:60: d4:9a:fb:e3:ce:12:94:be:14:3c:41:b4:02:0e:04: 25:cc:1d:75:e9:fe:c9:d0:c4:14:59:d6:a7:44:12: ee:2a:d2:a3:d6:b6:a6:60:a3:d0:08:0e:96:98:26: 8b:bb:e9:df:f4:15:8b:5c:50:6b:e0:f0:67:20:96: 4e:ca:fb:92:62:7d:4a:60:fd:0e:2b:a8:3c:41:63: ca:ef:86:ab:4f:90:95:73:82:dd:47:11:f9:d3:e1: 0f:e1:40:3e:d0:da:ab:08:54:3b:64:69:57:32:98: ef:17:00:9d:31:10:2c:30:10:99:17:50:e1:8b:2a: 3f:15:d5:f3:f4:a3:3c:25:8c:80:82:c8:a6:48:f1: 7a:9b:91:17:44:8d:83:06:ac:6a:5c:0f:c1:4c:ae: 24:c2:32:f0:9b:28:f0:ed:e7:9f:fa:f3:63:3d:d1: 48:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:58:B9:7E:BF:9A:86:5E:BC:02:B1:34:82:EB:E1:D0:75:EB:25:0E X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a326130623a3a2f34382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:2a0b::/48 Signature Algorithm: sha256WithRSAEncryption 62:dc:e6:97:ed:fd:3a:5e:69:e3:c3:f2:c2:6b:c1:55:16:b5: cc:48:68:f4:1b:87:01:fc:11:d3:15:1b:6e:68:bc:25:73:4c: 15:00:33:4b:bb:8f:28:49:98:c0:35:35:f1:77:68:ee:d9:ec: f6:d7:ce:23:29:b9:36:37:98:88:45:fa:77:5e:f9:49:d9:e0: b3:b9:a3:8a:81:cc:3c:3e:54:5b:33:e0:cf:06:44:ba:2b:dd: 81:6c:6a:e4:45:3a:be:fb:a7:8c:7e:b1:02:c3:d9:ee:2d:50: 25:d0:1c:ac:49:97:38:73:12:eb:df:c2:fd:d3:2b:f4:f9:94: ee:b6:e5:95:1c:a3:57:b9:cb:e6:f2:f8:98:6f:ca:50:b7:11: 8e:12:1e:5c:3f:2e:0a:40:94:a4:30:c1:ec:6c:b8:85:87:04: d8:4d:c6:f7:a7:7c:ff:48:fa:64:be:c0:94:06:2f:46:fc:34: 1c:bd:24:46:44:00:15:f7:4f:c1:6b:14:35:64:ad:05:59:b3: 39:5b:15:1e:0c:84:85:20:29:ab:23:b6:d2:d2:2c:08:0f:10: b4:2a:f1:1a:4a:12:3c:1d:70:6a:ee:bd:45:d3:91:f9:b2:64: 4a:56:94:e9:44:c1:23:52:c7:05:28:3e:ba:92:40:fe:29:46: 19:e5:6f:1a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIULTSoIlxskPIcWq2Ip5a4BvHuGDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA5MTcxMzA4MTJaFw0yNTA5MTYxMzEzMTJaMDMxMTAvBgNV BAMTKEUwNThCOTdFQkY5QTg2NUVCQzAyQjEzNDgyRUJFMUQwNzVFQjI1MEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7xl3pGg7ycIXuFFH9/0ZNnkJv vvsRbN6ukqmT8Vmo7vLciCcXxjJEcS22oY2oQIPLPGCf6JLwPe0vTn9gQ/VCXgE5 YhSBlqTXoVE9CPXSZ+uhkApIbfw/YNSa++POEpS+FDxBtAIOBCXMHXXp/snQxBRZ 1qdEEu4q0qPWtqZgo9AIDpaYJou76d/0FYtcUGvg8Gcglk7K+5JifUpg/Q4rqDxB Y8rvhqtPkJVzgt1HEfnT4Q/hQD7Q2qsIVDtkaVcymO8XAJ0xECwwEJkXUOGLKj8V 1fP0ozwljICCyKZI8XqbkRdEjYMGrGpcD8FMriTCMvCbKPDt55/682M90UhVAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU4Fi5fr+ahl68ArE0guvh0HXrJQ4wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTMyNjEzMDYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzUzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgtOByoLMA0GCSqGSIb3DQEBCwUAA4IBAQBi 3OaX7f06Xmnjw/LCa8FVFrXMSGj0G4cB/BHTFRtuaLwlc0wVADNLu48oSZjANTXx d2ju2ez2184jKbk2N5iIRfp3XvlJ2eCzuaOKgcw8PlRbM+DPBkS6K92BbGrkRTq+ +6eMfrECw9nuLVAl0BysSZc4cxLr38L90yv0+ZTutuWVHKNXucvm8viYb8pQtxGO Eh5cPy4KQJSkMMHsbLiFhwTYTcb3p3z/SPpkvsCUBi9G/DQcvSRGRAAV90/BaxQ1 ZK0FWbM5WxUeDISFICmrI7bS0iwIDxC0KvEaShI8HXBq7r1F05H5smRKVpTpRMEj UscFKD66kkD+KUYZ5W8a -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org