$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3430303a3a2f33382d3438203d3e20323134353433.roa File: 326130623a346530373a3430303a3a2f33382d3438203d3e20323134353433.roa (raw, json) Hash identifier: tR6QjV9YjGJ8G9Uw2Cq1UPSzvBBU2DLabr7Gz3HxiTQ= Subject key identifier: FA:B9:EA:C1:6D:F1:0F:95:A8:CB:C8:14:38:50:DF:56:B1:62:61:F4 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 0D74CA0FC5CD96E2C5073BD93C3DCC9CCE1CD2F0 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3430303a3a2f33382d3438203d3e20323134353433.roa Signing time: Fri 26 Jul 2024 09:07:40 +0000 ROA not before: Fri 26 Jul 2024 09:02:40 +0000 ROA not after: Fri 25 Jul 2025 09:07:40 +0000 asID: 214543 IP address blocks: 2a0b:4e07:400::/38 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 01:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:74:ca:0f:c5:cd:96:e2:c5:07:3b:d9:3c:3d:cc:9c:ce:1c:d2:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Jul 26 09:02:40 2024 GMT Not After : Jul 25 09:07:40 2025 GMT Subject: CN=FAB9EAC16DF10F95A8CBC8143850DF56B16261F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fa:82:c2:04:d7:d1:94:a7:ca:fe:b0:f6:98: 33:71:a3:77:69:8e:bc:a0:ef:e6:54:17:63:a5:e3: ef:f4:35:cf:b0:f9:3e:8e:c2:0e:18:ba:ed:a4:e0: 21:4e:eb:15:df:29:bc:fa:5e:44:63:0c:79:55:0b: 22:e9:87:53:4c:97:83:43:59:4a:e0:36:25:47:a1: c8:57:b4:b7:56:e6:6e:f1:27:79:48:1e:9c:b7:90: c2:9c:cd:1a:8e:0d:c3:2a:0d:72:62:48:b9:3c:03: ce:e2:0f:55:af:f0:07:77:a0:bd:dc:ea:53:d8:0f: f3:9a:47:17:98:72:0f:ab:9f:45:35:c4:5f:d2:6c: f7:ff:74:88:23:ce:5e:f1:a9:14:d1:af:19:1c:34: 2c:69:59:a4:e5:bb:20:50:8f:2a:38:41:2e:5e:3b: 00:ef:a4:21:4a:e7:61:4c:33:48:99:e6:69:21:d5: df:db:0a:7e:28:08:fb:81:d9:34:23:74:9b:2c:8f: 4f:eb:e9:39:8e:e1:b3:24:7a:dd:d9:a1:54:cf:15: 40:9a:32:24:54:dc:a5:c0:aa:c4:06:2f:56:2a:6f: a1:81:06:aa:8b:c8:9a:0b:e8:68:15:ab:c6:15:dd: 99:7a:04:4b:62:4d:83:67:ff:9e:cd:ef:b6:89:11: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B9:EA:C1:6D:F1:0F:95:A8:CB:C8:14:38:50:DF:56:B1:62:61:F4 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3430303a3a2f33382d3438203d3e20323134353433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:400::/38 Signature Algorithm: sha256WithRSAEncryption 36:93:2e:e3:d8:4f:d7:6d:88:b5:79:5a:72:22:fd:d9:aa:0a: d9:36:07:9b:cc:ee:26:45:d8:b4:92:ce:12:49:61:b2:83:d8: b5:35:9f:e8:61:d4:0a:f2:4e:d7:12:fd:cb:0a:c8:db:6b:6a: d4:6d:0d:0a:b9:ec:06:13:23:03:73:67:93:54:96:cf:ea:a0: 10:24:53:33:b1:84:40:21:6e:07:b4:e6:48:22:fa:5f:9c:f0: 4b:06:1a:8f:6f:e2:01:52:f8:83:a7:cb:11:f8:e8:6a:cd:eb: 01:a8:6a:86:01:ac:5f:5b:7d:fe:3b:ca:e2:fc:78:0e:d3:f9: 96:07:41:31:e8:7d:26:98:25:62:5d:0c:46:04:92:f1:93:3c: 27:ba:01:60:47:7b:d1:fa:27:f6:71:08:67:12:0c:1d:07:f3: cb:fa:1e:86:72:2f:e7:9b:79:17:72:5d:93:f9:a7:93:0a:6e: 8d:e4:d4:1a:24:19:3e:be:60:5f:e2:69:c3:04:f1:f3:4f:d7: dc:fd:f3:ed:c8:32:b2:04:bb:f9:2e:e7:f3:44:26:03:be:cc: b1:b6:7e:3b:59:01:47:45:a4:50:ba:6f:91:e6:ae:96:38:34: 01:d5:16:a5:33:9a:e2:da:d9:d7:23:a6:30:25:1c:93:73:85: e9:dd:99:b2 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUDXTKD8XNluLFBzvZPD3MnM4c0vAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA3MjYwOTAyNDBaFw0yNTA3MjUwOTA3NDBaMDMxMTAvBgNV BAMTKEZBQjlFQUMxNkRGMTBGOTVBOENCQzgxNDM4NTBERjU2QjE2MjYxRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp+oLCBNfRlKfK/rD2mDNxo3dp jryg7+ZUF2Ol4+/0Nc+w+T6Owg4Yuu2k4CFO6xXfKbz6XkRjDHlVCyLph1NMl4ND WUrgNiVHochXtLdW5m7xJ3lIHpy3kMKczRqODcMqDXJiSLk8A87iD1Wv8Ad3oL3c 6lPYD/OaRxeYcg+rn0U1xF/SbPf/dIgjzl7xqRTRrxkcNCxpWaTluyBQjyo4QS5e OwDvpCFK52FMM0iZ5mkh1d/bCn4oCPuB2TQjdJssj0/r6TmO4bMket3ZoVTPFUCa MiRU3KXAqsQGL1Yqb6GBBqqLyJoL6GgVq8YV3Zl6BEtiTYNn/57N77aJEY8BAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQU+rnqwW3xD5Woy8gUOFDfVrFiYfQwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM0MzAzMDNhM2EyZjMzMzgyZDM0MzgyMDNkM2UyMDMyMzEz NDM1MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGAioLTgcEMA0GCSqGSIb3DQEBCwUAA4IBAQA2ky7j 2E/XbYi1eVpyIv3ZqgrZNgebzO4mRdi0ks4SSWGyg9i1NZ/oYdQK8k7XEv3LCsjb a2rUbQ0KuewGEyMDc2eTVJbP6qAQJFMzsYRAIW4HtOZIIvpfnPBLBhqPb+IBUviD p8sR+OhqzesBqGqGAaxfW33+O8ri/HgO0/mWB0Ex6H0mmCViXQxGBJLxkzwnugFg R3vR+if2cQhnEgwdB/PL+h6Gci/nm3kXcl2T+aeTCm6N5NQaJBk+vmBf4mnDBPHz T9fc/fPtyDKyBLv5LufzRCYDvsyxtn47WQFHRaRQum+R5q6WODQB1RalM5ri2tnX I6YwJRyTc4Xp3Zmy -----END CERTIFICATE-----Generated at Thu Sep 19 17:01:31 2024 by rpki-client on console-ams.rpki-client.org