$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343a3a2f34362d3436203d3e203539343439.roa File: 326130623a346530373a343a3a2f34362d3436203d3e203539343439.roa (raw, json) Hash identifier: kDEheLYXlkzbzSSOQn7tz1maadhmJjSDQJxXMjXqhQQ= Subject key identifier: 87:C3:7E:CB:D4:1A:76:67:0B:9C:0F:65:5F:30:65:26:3A:C7:B5:FE Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 3A9E7448A508EA28B86A9C67A9CAC5BAED382FDD Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343a3a2f34362d3436203d3e203539343439.roa Signing time: Sun 29 Sep 2024 08:43:41 +0000 ROA not before: Sun 29 Sep 2024 08:38:41 +0000 ROA not after: Sun 28 Sep 2025 08:43:41 +0000 asID: 59449 IP address blocks: 2a0b:4e07:4::/46 maxlen: 46 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:9e:74:48:a5:08:ea:28:b8:6a:9c:67:a9:ca:c5:ba:ed:38:2f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Sep 29 08:38:41 2024 GMT Not After : Sep 28 08:43:41 2025 GMT Subject: CN=87C37ECBD41A76670B9C0F655F3065263AC7B5FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ef:74:c7:dd:c7:49:cf:dc:18:03:00:51:10: c0:54:4c:19:63:5f:2d:ca:5d:c9:99:3d:61:7b:7f: 94:63:19:7b:a2:d5:16:e7:b5:55:cb:40:7a:6b:05: eb:5c:67:c6:8b:81:a4:8c:bc:24:08:72:39:3c:3b: a2:e8:91:57:99:13:fa:f9:d4:86:a8:c9:a4:43:3d: 46:8b:3e:90:91:e2:c5:0d:3c:19:7c:4a:7c:7c:dd: 1b:61:fd:24:dc:05:69:9a:53:fb:5e:08:fc:09:bc: ed:63:91:e2:53:05:a2:6c:ed:7f:7b:74:fb:bb:f7: be:ef:44:b6:41:94:41:40:3f:14:c5:df:31:fe:aa: 51:b0:ae:ad:16:51:f5:14:4d:74:cc:8a:92:70:29: 93:4b:c0:02:5e:27:3f:c5:80:37:57:70:1f:36:e1: 42:63:95:ff:5b:8c:bb:25:a2:f5:10:bc:6b:63:28: 57:b6:5e:02:d6:24:b1:48:c7:3f:c5:90:1c:3c:40: 00:6f:a8:c8:ff:db:ba:3c:53:a8:3a:b8:f7:8a:c2: f6:eb:54:01:7a:22:21:ac:ab:fa:17:4c:c0:c6:12: 1a:17:f3:51:ce:63:07:1d:8a:10:1c:a6:1e:67:5e: b4:71:38:14:8d:b5:95:c5:0b:fc:67:2b:c6:f9:49: ba:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:C3:7E:CB:D4:1A:76:67:0B:9C:0F:65:5F:30:65:26:3A:C7:B5:FE X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a343a3a2f34362d3436203d3e203539343439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:4::/46 Signature Algorithm: sha256WithRSAEncryption 97:ed:c0:0b:e4:5a:44:78:cf:22:5f:6f:8c:3f:9a:8a:3b:b7: 1e:c7:1e:42:31:e9:9f:6e:35:3f:c7:de:25:47:bf:2d:7e:e1: 81:af:02:0b:c9:86:ed:d9:21:c3:7d:5e:2e:83:82:d4:9b:b9: dc:4e:60:8f:a8:5a:24:24:e6:cd:a7:ba:30:e9:0e:3e:2a:cb: c5:43:a8:ef:1a:6d:0c:41:f0:b9:d7:05:a3:ce:11:b7:6e:c5: 22:7c:8b:ab:84:aa:86:1c:ac:31:25:9c:8e:cb:05:96:6e:92: 7b:ac:9c:01:3f:c7:69:95:d6:8f:df:36:c1:fb:f4:ec:dd:e5: d6:46:e7:f6:5e:d5:86:69:53:c5:b6:35:d7:8b:4b:9d:94:f0: 40:02:66:3e:38:7b:ef:56:81:a9:7c:89:a3:4a:39:97:b5:ec: 33:43:ad:b6:7d:4a:17:4d:35:16:9f:71:61:94:8f:d2:2e:d7: ea:02:c6:2a:8d:29:da:0b:82:87:8a:79:4c:24:35:6b:6b:a4: e0:83:b7:e7:0c:40:87:43:56:a7:ff:ed:2a:47:35:6c:a3:0a: 44:73:6b:d2:78:0c:46:38:53:c7:ab:d3:e9:20:33:0b:01:8b: 3f:b6:6a:d0:69:d1:dd:d2:22:e8:c1:5c:a9:d4:27:6a:e0:6e: 9d:9f:0d:74 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIUOp50SKUI6ii4apxnqcrFuu04L90wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA5MjkwODM4NDFaFw0yNTA5MjgwODQzNDFaMDMxMTAvBgNV BAMTKDg3QzM3RUNCRDQxQTc2NjcwQjlDMEY2NTVGMzA2NTI2M0FDN0I1RkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC873TH3cdJz9wYAwBREMBUTBlj Xy3KXcmZPWF7f5RjGXui1RbntVXLQHprBetcZ8aLgaSMvCQIcjk8O6LokVeZE/r5 1IaoyaRDPUaLPpCR4sUNPBl8Snx83Rth/STcBWmaU/teCPwJvO1jkeJTBaJs7X97 dPu7977vRLZBlEFAPxTF3zH+qlGwrq0WUfUUTXTMipJwKZNLwAJeJz/FgDdXcB82 4UJjlf9bjLslovUQvGtjKFe2XgLWJLFIxz/FkBw8QABvqMj/27o8U6g6uPeKwvbr VAF6IiGsq/oXTMDGEhoX81HOYwcdihAcph5nXrRxOBSNtZXFC/xnK8b5Sbr1AgMB AAGjggJ9MIICeTAdBgNVHQ4EFgQUh8N+y9QadmcLnA9lXzBlJjrHtf4wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBrwYIKwYBBQUHAQsEgaIwgZ8wgZwGCCsGAQUF BzALhoGPcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM0M2EzYTJmMzQzNjJkMzQzNjIwM2QzZTIwMzUzOTM0MzQz OS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHAioLTgcABDANBgkqhkiG9w0BAQsFAAOCAQEAl+3AC+RaRHjP Il9vjD+aiju3HsceQjHpn241P8feJUe/LX7hga8CC8mG7dkhw31eLoOC1Ju53E5g j6haJCTmzae6MOkOPirLxUOo7xptDEHwudcFo84Rt27FInyLq4SqhhysMSWcjssF lm6Se6ycAT/HaZXWj982wfv07N3l1kbn9l7VhmlTxbY114tLnZTwQAJmPjh771aB qXyJo0o5l7XsM0Ottn1KF001Fp9xYZSP0i7X6gLGKo0p2guCh4p5TCQ1a2uk4IO3 5wxAh0NWp//tKkc1bKMKRHNr0ngMRjhTx6vT6SAzCwGLP7Zq0GnR3dIi6MFcqdQn auBunZ8NdA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org