$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3830303a3a2f34302d3438203d3e203335363631.roa File: 326130623a346530373a3830303a3a2f34302d3438203d3e203335363631.roa (raw, json) Hash identifier: EW8SShd3SDsEeBLEOegEoo1BAAfOisROEzJE/y3VT6I= Subject key identifier: 74:B4:B2:E4:B7:4C:1D:F2:83:11:0E:DE:87:B9:E5:B6:4D:DF:FC:EF Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 27F06AEEC10C1CA0F18551879A54A2EBFF7738D0 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3830303a3a2f34302d3438203d3e203335363631.roa Signing time: Mon 11 Nov 2024 09:00:09 +0000 ROA not before: Mon 11 Nov 2024 08:55:09 +0000 ROA not after: Mon 10 Nov 2025 09:00:09 +0000 asID: 35661 IP address blocks: 2a0b:4e07:800::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f0:6a:ee:c1:0c:1c:a0:f1:85:51:87:9a:54:a2:eb:ff:77:38:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Nov 11 08:55:09 2024 GMT Not After : Nov 10 09:00:09 2025 GMT Subject: CN=74B4B2E4B74C1DF283110EDE87B9E5B64DDFFCEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8c:1b:31:26:0e:8b:c7:87:77:a9:e1:06:e5: 8f:94:03:12:b8:83:09:bb:8f:48:b3:d1:dc:3d:63: 27:59:03:f6:e0:22:0e:80:74:00:49:1c:fd:73:d2: 14:7d:aa:01:cf:47:8a:8d:13:d8:76:3e:d5:61:f4: 2c:35:18:f7:13:b8:97:bc:dd:a4:ab:6d:18:c6:e0: 4d:c5:68:8e:7a:76:56:bf:bd:2f:62:0f:1e:0c:11: 02:60:2f:36:57:e2:a2:9d:8a:7e:29:a4:b2:6c:21: 37:15:8e:e1:0d:5a:96:42:0e:cb:28:4c:f4:1e:36: 4f:e8:2f:5a:2a:55:b1:b8:36:d1:98:38:c5:a1:b0: 06:07:fe:93:e7:a0:1e:b1:64:a2:56:ea:18:17:c6: 14:f2:6f:bb:71:3e:e1:52:a3:1b:8c:13:05:ba:a0: 50:18:46:e2:c1:f1:70:74:f4:56:b0:29:7b:0a:91: c5:6a:25:00:2b:fe:3d:7a:bf:f7:81:e7:08:4f:b5: 1f:84:36:c6:64:4b:84:a2:0c:e3:d8:40:4d:d0:7c: 8b:76:30:ac:84:8c:7a:a2:da:ca:a0:23:a9:50:e9: b9:c6:0b:18:c1:d4:61:86:37:54:7f:bc:72:17:4f: 1b:50:58:45:6e:b5:15:81:96:ed:f3:0e:4a:13:f7: 0e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B4:B2:E4:B7:4C:1D:F2:83:11:0E:DE:87:B9:E5:B6:4D:DF:FC:EF X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3830303a3a2f34302d3438203d3e203335363631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:800::/40 Signature Algorithm: sha256WithRSAEncryption 1f:d1:14:e5:33:53:d7:dd:cc:5a:fb:ef:5d:97:f7:9e:84:29: 22:e9:83:d0:19:08:a5:5c:19:5b:f3:ff:08:d5:07:b0:b8:56: cc:d2:42:24:60:90:9d:91:13:fa:dc:df:98:2c:72:ff:f6:5a: 6a:0f:fe:36:04:f1:c1:3a:f7:0a:0f:e9:e1:16:60:2d:35:82: e8:ce:8f:3d:db:d9:69:3e:9e:86:d5:5e:97:29:c1:a4:78:73: 59:6e:75:03:94:c9:62:37:7f:54:5a:5d:6d:58:25:39:1b:0d: f2:25:2f:35:58:b6:47:5d:29:c4:62:1e:81:22:17:26:6d:6f: 9e:46:00:c2:a1:2f:7c:f1:f6:e2:57:74:8e:6a:73:db:8b:ed: c7:58:fe:2c:02:12:a5:0e:a7:64:3a:bc:aa:8f:a1:e9:c2:1b: 8f:70:3b:76:ed:fe:f9:cc:37:5b:ad:a7:99:ce:ab:8e:36:65: 07:9e:99:51:ec:00:af:17:69:2d:65:e3:a4:02:35:dc:34:3a: 1c:17:3d:a2:4c:6a:79:bf:e9:29:f4:2d:c1:53:35:6a:68:41: dc:c5:36:b1:0c:f4:e8:5c:62:ec:26:60:0e:39:33:58:86:61: f0:81:64:a6:93:fe:e6:af:04:ad:12:46:8a:5f:66:da:5e:f4: d9:55:cc:9a -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIUJ/Bq7sEMHKDxhVGHmlSi6/93ONAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDExMTEwODU1MDlaFw0yNTExMTAwOTAwMDlaMDMxMTAvBgNV BAMTKDc0QjRCMkU0Qjc0QzFERjI4MzExMEVERTg3QjlFNUI2NERERkZDRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrjBsxJg6Lx4d3qeEG5Y+UAxK4 gwm7j0iz0dw9YydZA/bgIg6AdABJHP1z0hR9qgHPR4qNE9h2PtVh9Cw1GPcTuJe8 3aSrbRjG4E3FaI56dla/vS9iDx4MEQJgLzZX4qKdin4ppLJsITcVjuENWpZCDsso TPQeNk/oL1oqVbG4NtGYOMWhsAYH/pPnoB6xZKJW6hgXxhTyb7txPuFSoxuMEwW6 oFAYRuLB8XB09FawKXsKkcVqJQAr/j16v/eB5whPtR+ENsZkS4SiDOPYQE3QfIt2 MKyEjHqi2sqgI6lQ6bnGCxjB1GGGN1R/vHIXTxtQWEVutRWBlu3zDkoT9w5XAgMB AAGjggKAMIICfDAdBgNVHQ4EFgQUdLSy5LdMHfKDEQ7eh7nltk3f/O8wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM4MzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMzMzUz NjM2MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcB Af8EEjAQMA4EAgACMAgDBgAqC04HCDANBgkqhkiG9w0BAQsFAAOCAQEAH9EU5TNT 193MWvvvXZf3noQpIumD0BkIpVwZW/P/CNUHsLhWzNJCJGCQnZET+tzfmCxy//Za ag/+NgTxwTr3Cg/p4RZgLTWC6M6PPdvZaT6ehtVelynBpHhzWW51A5TJYjd/VFpd bVglORsN8iUvNVi2R10pxGIegSIXJm1vnkYAwqEvfPH24ld0jmpz24vtx1j+LAIS pQ6nZDq8qo+h6cIbj3A7du3++cw3W62nmc6rjjZlB56ZUewArxdpLWXjpAI13DQ6 HBc9okxqeb/pKfQtwVM1amhB3MU2sQz06Fxi7CZgDjkzWIZh8IFkppP+5q8ErRJG il9m2l702VXMmg== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org