$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa File: 326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa (raw, json) Hash identifier: GzEiMyaZmJGEJOMnA9GHpiDMkOuec40Ixldv97kT+sg= Subject key identifier: 4E:89:BB:AA:24:01:90:61:43:92:93:EB:38:CD:DF:A1:E9:7E:86:ED Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 09F9BA6C4BFDB27C277E4337388B8D5212C6916D Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa Signing time: Mon 28 Oct 2024 07:44:51 +0000 ROA not before: Mon 28 Oct 2024 07:39:51 +0000 ROA not after: Mon 27 Oct 2025 07:44:51 +0000 asID: 214675 IP address blocks: 2a0b:4e07:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f9:ba:6c:4b:fd:b2:7c:27:7e:43:37:38:8b:8d:52:12:c6:91:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Oct 28 07:39:51 2024 GMT Not After : Oct 27 07:44:51 2025 GMT Subject: CN=4E89BBAA24019061439293EB38CDDFA1E97E86ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:5f:71:34:66:97:0f:f5:e4:a4:91:16:24: 9e:09:5e:b6:86:81:e6:e0:14:91:03:73:3a:47:b6: d8:4d:c2:bc:d4:a3:ae:2e:28:95:ef:21:03:6b:eb: 14:ae:0f:55:f9:ef:25:7c:92:d8:fc:a8:b6:47:d8: bd:a6:59:46:cf:45:0a:86:c7:25:10:08:01:24:82: 05:73:f9:d8:ed:b9:d5:3a:75:ad:d3:74:77:1a:1f: d4:1f:fe:60:df:a0:ee:03:6a:07:8e:8b:1f:64:e6: 7c:e8:bd:2a:f9:29:f1:22:71:bf:ef:04:06:fb:a7: 5d:03:99:af:69:68:ce:f5:04:98:5a:2b:da:bd:4f: 51:e5:d8:5c:44:1a:25:e3:1c:f7:0c:89:33:fe:10: 1e:94:36:31:c4:54:64:a9:34:b6:50:29:45:34:df: 7c:26:74:58:85:93:73:74:58:67:60:5a:80:49:80: 28:26:66:49:92:cb:b8:8d:ff:31:54:5a:73:34:2c: 15:fd:05:88:83:d5:14:66:6a:83:09:fe:4d:cb:83: df:93:d9:88:6f:f0:9d:e1:38:41:e6:9b:af:9c:56: 0c:76:8a:77:6f:56:7f:60:f8:27:45:b8:61:13:64: 28:83:c7:bd:fd:e4:ce:23:7f:96:7a:62:9d:3a:8d: 52:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:89:BB:AA:24:01:90:61:43:92:93:EB:38:CD:DF:A1:E9:7E:86:ED X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3330303a3a2f34302d3438203d3e20323134363735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:300::/40 Signature Algorithm: sha256WithRSAEncryption 45:76:99:ae:a5:01:81:04:18:ba:b9:91:fd:12:6a:2b:3f:c6: f1:68:97:9f:00:50:79:75:31:ba:2e:d8:f8:be:42:f1:e7:35: ec:a9:3a:87:c4:fe:9d:38:b3:96:5a:f5:6e:19:fa:c1:84:6b: 39:fd:15:93:d4:a9:7c:59:5a:b8:9d:d8:4c:94:95:57:f7:51: d3:e6:5b:35:e1:33:37:3a:c0:03:c1:50:58:44:86:8e:31:a5: 9f:96:85:e2:81:9c:1e:de:00:c4:4a:52:d0:5d:52:b7:bc:f8: b1:0c:1b:26:fa:9f:60:9c:8b:0e:5a:8d:3e:2d:22:c1:05:a8: 68:18:d2:6c:fc:25:7a:53:39:bb:b7:7f:1d:dc:8a:99:2d:69: ce:2f:ab:03:3d:2c:57:3e:e1:61:f9:51:18:d3:70:7a:76:7a: 15:66:20:3f:b8:a0:a0:0b:dd:5e:1e:7b:58:94:63:92:8d:03: f7:03:e1:22:c2:34:83:ba:04:b2:ff:fe:24:fb:0e:09:c9:91: 5b:f6:15:e9:ef:93:b4:18:62:a7:ed:cf:21:f7:d7:b1:25:6e: 25:39:64:85:74:b4:a5:80:77:a3:42:2c:08:aa:8c:68:88:7d: df:b1:b8:37:38:b9:69:e8:bf:0d:c4:ac:3c:a9:86:80:1b:a0: 3a:92:83:94 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUCfm6bEv9snwnfkM3OIuNUhLGkW0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDEwMjgwNzM5NTFaFw0yNTEwMjcwNzQ0NTFaMDMxMTAvBgNV BAMTKDRFODlCQkFBMjQwMTkwNjE0MzkyOTNFQjM4Q0RERkExRTk3RTg2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBY19xNGaXD/XkpJEWJJ4JXraG gebgFJEDczpHtthNwrzUo64uKJXvIQNr6xSuD1X57yV8ktj8qLZH2L2mWUbPRQqG xyUQCAEkggVz+djtudU6da3TdHcaH9Qf/mDfoO4DageOix9k5nzovSr5KfEicb/v BAb7p10Dma9paM71BJhaK9q9T1Hl2FxEGiXjHPcMiTP+EB6UNjHEVGSpNLZQKUU0 33wmdFiFk3N0WGdgWoBJgCgmZkmSy7iN/zFUWnM0LBX9BYiD1RRmaoMJ/k3Lg9+T 2Yhv8J3hOEHmm6+cVgx2indvVn9g+CdFuGETZCiDx7395M4jf5Z6Yp06jVI1AgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUTom7qiQBkGFDkpPrOM3foel+hu0wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTMzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzEz NDM2MzczNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoLTgcDMA0GCSqGSIb3DQEBCwUAA4IBAQBFdpmu pQGBBBi6uZH9EmorP8bxaJefAFB5dTG6Ltj4vkLx5zXsqTqHxP6dOLOWWvVuGfrB hGs5/RWT1Kl8WVq4ndhMlJVX91HT5ls14TM3OsADwVBYRIaOMaWfloXigZwe3gDE SlLQXVK3vPixDBsm+p9gnIsOWo0+LSLBBahoGNJs/CV6Uzm7t38d3IqZLWnOL6sD PSxXPuFh+VEY03B6dnoVZiA/uKCgC91eHntYlGOSjQP3A+EiwjSDugSy//4k+w4J yZFb9hXp75O0GGKn7c8h99exJW4lOWSFdLSlgHejQiwIqoxoiH3fsbg3OLlp6L8N xKw8qYaAG6A6koOU -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org