$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343030303a3a2f33362d3438203d3e203230343733.roa File: 326130623a346530373a343030303a3a2f33362d3438203d3e203230343733.roa (raw, json) Hash identifier: jEUKNrgb21+FQaVM3cJBAmOOvOhvR1ZOZnGF2PvxKTs= Subject key identifier: 6B:60:64:15:3E:B4:02:55:F5:95:FE:7F:8E:39:19:B1:B5:B9:97:46 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 52453EECA0F0B99E4D91361B6B7BB5E2ABBA3920 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343030303a3a2f33362d3438203d3e203230343733.roa Signing time: Sun 24 Nov 2024 06:33:19 +0000 ROA not before: Sun 24 Nov 2024 06:28:19 +0000 ROA not after: Sun 23 Nov 2025 06:33:19 +0000 asID: 20473 IP address blocks: 2a0b:4e07:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 22:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:45:3e:ec:a0:f0:b9:9e:4d:91:36:1b:6b:7b:b5:e2:ab:ba:39:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Nov 24 06:28:19 2024 GMT Not After : Nov 23 06:33:19 2025 GMT Subject: CN=6B6064153EB40255F595FE7F8E3919B1B5B99746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:20:ae:c3:45:2f:62:b0:4b:1f:8a:2e:cb:97: 0d:91:cb:d4:95:fe:2f:57:68:16:6b:af:c8:09:e7: 25:a2:ca:ad:47:d9:00:8f:cd:4c:2a:a1:66:70:aa: b6:6b:bd:40:52:54:d7:6b:b5:e3:d6:ab:ef:ff:20: e6:fd:5f:63:ba:f5:58:1e:1b:14:57:03:1c:76:e9: 35:db:60:36:d9:77:73:8d:32:7e:59:5f:d5:69:04: a1:3f:0a:06:97:43:31:3c:39:ab:87:1f:86:e0:14: a0:79:76:61:d7:5f:ea:65:cb:e1:54:f7:ec:6c:34: e2:59:35:d4:94:90:ba:72:57:bd:c4:ba:d3:5a:00: 54:f7:60:cb:5e:75:9b:4f:97:eb:e8:31:09:b1:5c: 46:65:bc:5a:86:da:9b:35:c0:40:c4:8d:75:73:77: a8:58:87:bb:15:22:2b:52:d7:0f:2e:a5:bd:fe:6d: 8f:b0:11:52:db:63:83:e5:9f:cb:8d:b3:2a:d2:fc: 6b:48:aa:66:bb:fa:3e:f6:2c:db:ff:2b:1f:1e:e7: 18:39:4c:5a:69:5d:cd:ad:6c:a4:f9:91:5c:6a:40: 70:f2:c9:09:5f:63:8d:31:3f:c5:df:6a:d9:66:22: ab:ef:ae:d5:ca:9b:02:df:0b:94:0d:05:74:90:e0: c6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:60:64:15:3E:B4:02:55:F5:95:FE:7F:8E:39:19:B1:B5:B9:97:46 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343030303a3a2f33362d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:4000::/36 Signature Algorithm: sha256WithRSAEncryption 19:85:cc:02:0e:ee:e8:7c:e0:6b:e3:e5:7d:45:f5:65:c9:3e: b0:9f:99:fe:9b:6f:ae:e3:a5:52:07:83:57:f9:c1:44:6e:46: 7e:39:c1:2b:7d:88:09:73:cd:38:b9:ac:0a:2d:75:0c:a0:90: b1:54:dc:82:ef:f9:fa:d8:47:ce:47:65:03:a9:b2:5e:15:ef: 98:c6:f4:31:2c:17:52:d7:6b:ad:ba:a0:61:61:41:41:ec:87: be:24:23:37:4a:e3:5a:54:4a:d6:3b:ea:ac:b5:f2:dc:47:0c: f1:21:c3:f2:f3:a3:04:24:4a:4c:3a:a5:05:f9:3a:d5:01:96: 93:20:b4:9a:29:1b:7b:2e:30:cb:fe:05:19:cd:98:0f:58:23: 00:c8:e2:6f:6c:2b:b6:74:a1:aa:91:08:b7:f8:0a:30:1e:e8: cb:40:5e:43:9a:81:41:89:f7:17:5c:82:3a:48:18:16:ed:22: 9b:48:e5:52:21:43:a0:5c:87:b6:eb:99:45:6e:53:cd:3c:48: 31:7f:74:95:a3:31:79:18:c4:38:e1:c2:04:84:3f:ab:f8:0c: fa:de:a6:65:46:e9:1c:bc:95:51:46:f2:19:b1:20:6a:d6:65: a5:7f:9f:a2:85:5b:22:0d:0c:44:7c:c2:0c:f3:b7:c2:df:90: aa:17:d1:0d -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUUkU+7KDwuZ5NkTYba3u14qu6OSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDExMjQwNjI4MTlaFw0yNTExMjMwNjMzMTlaMDMxMTAvBgNV BAMTKDZCNjA2NDE1M0VCNDAyNTVGNTk1RkU3RjhFMzkxOUIxQjVCOTk3NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9IK7DRS9isEsfii7Llw2Ry9SV /i9XaBZrr8gJ5yWiyq1H2QCPzUwqoWZwqrZrvUBSVNdrtePWq+//IOb9X2O69Vge GxRXAxx26TXbYDbZd3ONMn5ZX9VpBKE/CgaXQzE8OauHH4bgFKB5dmHXX+ply+FU 9+xsNOJZNdSUkLpyV73EutNaAFT3YMtedZtPl+voMQmxXEZlvFqG2ps1wEDEjXVz d6hYh7sVIitS1w8upb3+bY+wEVLbY4Pln8uNsyrS/GtIqma7+j72LNv/Kx8e5xg5 TFppXc2tbKT5kVxqQHDyyQlfY40xP8XfatlmIqvvrtXKmwLfC5QNBXSQ4MYjAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUa2BkFT60AlX1lf5/jjkZsbW5l0YwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM0MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MDM0MzczMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGBCoLTgdAMA0GCSqGSIb3DQEBCwUAA4IBAQAZhcwC Du7ofOBr4+V9RfVlyT6wn5n+m2+u46VSB4NX+cFEbkZ+OcErfYgJc804uawKLXUM oJCxVNyC7/n62EfOR2UDqbJeFe+YxvQxLBdS12utuqBhYUFB7Ie+JCM3SuNaVErW O+qstfLcRwzxIcPy86MEJEpMOqUF+TrVAZaTILSaKRt7LjDL/gUZzZgPWCMAyOJv bCu2dKGqkQi3+AowHujLQF5DmoFBifcXXII6SBgW7SKbSOVSIUOgXIe265lFblPN PEgxf3SVozF5GMQ44cIEhD+r+Az63qZlRukcvJVRRvIZsSBq1mWlf5+ihVsiDQxE fMIM87fC35CqF9EN -----END CERTIFICATE-----Generated at Sun Nov 24 08:39:48 2024 by rpki-client on console-ams.rpki-client.org