$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a38303a3a2f34382d3438203d3e20323136333131.roa File: 326130623a346530373a38303a3a2f34382d3438203d3e20323136333131.roa (raw, json) Hash identifier: 7xjlUJJvZCOqjFycG0YaEvg5QZChPShSHjrliOdGRf8= Subject key identifier: F9:8B:78:F4:A2:D8:7F:F3:FF:26:94:10:48:1A:50:77:73:AF:21:2F Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 0D980489C576B2E89721F8F1CBAD46E6AF4E7DF4 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a38303a3a2f34382d3438203d3e20323136333131.roa Signing time: Sun 11 Aug 2024 10:50:32 +0000 ROA not before: Sun 11 Aug 2024 10:45:32 +0000 ROA not after: Sun 10 Aug 2025 10:50:32 +0000 asID: 216311 IP address blocks: 2a0b:4e07:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 01:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:98:04:89:c5:76:b2:e8:97:21:f8:f1:cb:ad:46:e6:af:4e:7d:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 11 10:45:32 2024 GMT Not After : Aug 10 10:50:32 2025 GMT Subject: CN=F98B78F4A2D87FF3FF269410481A507773AF212F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:07:08:48:86:5a:bc:24:f4:58:29:62:08: d5:fb:2e:a2:58:48:fa:ff:04:fe:ac:79:63:13:57: c3:89:b2:cc:89:53:f5:93:13:14:ac:0f:36:41:d4: e3:d5:15:8e:4b:d6:7a:64:2b:4a:1c:20:44:ef:82: 15:bd:3e:e5:ac:7e:3a:ff:4c:a7:c8:9c:bb:5e:cf: bc:bd:d6:34:7a:11:25:d0:6d:04:b6:91:1b:45:4c: a6:61:41:14:84:c0:7b:34:27:a1:8c:95:66:bd:01: 8b:9f:57:8c:f7:d9:27:55:5b:c0:5f:e7:91:a5:b9: c7:a2:9d:d4:6d:6e:ba:a6:ee:d7:f4:e5:0c:98:33: d0:70:64:ef:a8:ca:68:dd:97:15:85:31:75:71:19: b4:8d:f5:30:82:c8:4a:18:a9:a8:3d:7a:b2:b0:ac: a1:87:18:64:f2:57:ef:48:2e:77:a1:5c:d6:72:47: bb:c2:12:90:63:0c:6d:bf:1a:ae:0f:7e:a8:10:d2: 8e:c3:26:47:16:1f:a0:d5:83:f9:dd:35:41:7a:a0: 85:39:15:8b:5e:7e:77:2f:19:22:2a:8c:fc:3c:1d: e8:33:c8:c8:2b:4d:c2:b6:d2:f6:da:00:2e:4b:03: 7c:bd:64:c4:e1:ee:e9:cc:d0:13:83:d1:d5:78:db: 02:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:8B:78:F4:A2:D8:7F:F3:FF:26:94:10:48:1A:50:77:73:AF:21:2F X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a38303a3a2f34382d3438203d3e20323136333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:80::/48 Signature Algorithm: sha256WithRSAEncryption ac:57:e1:7c:f4:c5:a8:f2:d4:34:62:b4:05:bf:58:3a:3e:e2: e9:10:ac:1c:ee:e6:55:ce:c5:d8:12:c0:0b:bd:b2:db:3b:ec: b2:54:90:1c:48:a4:ee:6d:08:7d:9a:38:fc:ec:05:ee:6b:0b: b5:2a:7c:c9:e3:f7:9f:fc:f4:18:0b:42:dc:20:1a:ef:86:62: 5a:8a:31:fb:a2:20:57:d9:6c:80:95:6e:02:9e:28:d0:e7:11: 65:0b:ff:34:55:f1:95:3e:d1:73:68:3d:75:13:57:09:c2:24: 38:6c:43:45:1a:bd:95:af:91:28:96:f0:e0:30:74:c3:a6:c3: 47:d5:57:b0:76:9f:82:d6:18:99:14:99:50:c7:ac:03:88:3a: ed:ca:a2:bf:83:ae:d9:20:fb:3d:d6:6e:67:7b:ff:81:74:1c: ed:91:9a:09:37:d4:7c:4e:8a:97:04:9e:91:40:2c:cc:7c:28: e8:7d:ce:c8:61:d2:38:8b:30:68:ab:17:e2:b1:f7:d1:0a:8c: c7:23:c8:11:d8:dc:8f:3f:18:b8:1f:8a:32:5f:43:43:2d:f9: cc:95:14:67:ea:ea:fd:65:ce:88:1f:12:a6:f1:0b:34:5a:dc: 5b:b4:f7:a6:6f:e1:18:c9:c4:52:7f:f2:8b:ad:b2:28:a3:87: 67:2e:5b:0b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUDZgEicV2suiXIfjxy61G5q9OffQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MTExMDQ1MzJaFw0yNTA4MTAxMDUwMzJaMDMxMTAvBgNV BAMTKEY5OEI3OEY0QTJEODdGRjNGRjI2OTQxMDQ4MUE1MDc3NzNBRjIxMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8jwcISIZavCT0WCliCNX7LqJY SPr/BP6seWMTV8OJssyJU/WTExSsDzZB1OPVFY5L1npkK0ocIETvghW9PuWsfjr/ TKfInLtez7y91jR6ESXQbQS2kRtFTKZhQRSEwHs0J6GMlWa9AYufV4z32SdVW8Bf 55GluceindRtbrqm7tf05QyYM9BwZO+oymjdlxWFMXVxGbSN9TCCyEoYqag9erKw rKGHGGTyV+9ILnehXNZyR7vCEpBjDG2/Gq4PfqgQ0o7DJkcWH6DVg/ndNUF6oIU5 FYtefncvGSIqjPw8HegzyMgrTcK20vbaAC5LA3y9ZMTh7unM0BOD0dV42wIlAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQU+Yt49KLYf/P/JpQQSBpQd3OvIS8wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM4MzAzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzYz MzMxMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqC04HAIAwDQYJKoZIhvcNAQELBQADggEBAKxX4Xz0 xajy1DRitAW/WDo+4ukQrBzu5lXOxdgSwAu9sts77LJUkBxIpO5tCH2aOPzsBe5r C7UqfMnj95/89BgLQtwgGu+GYlqKMfuiIFfZbICVbgKeKNDnEWUL/zRV8ZU+0XNo PXUTVwnCJDhsQ0UavZWvkSiW8OAwdMOmw0fVV7B2n4LWGJkUmVDHrAOIOu3Kor+D rtkg+z3Wbmd7/4F0HO2Rmgk31HxOipcEnpFALMx8KOh9zshh0jiLMGirF+Kx99EK jMcjyBHY3I8/GLgfijJfQ0Mt+cyVFGfq6v1lzogfEqbxCzRa3Fu096Zv4RjJxFJ/ 8outsiijh2cuWws= -----END CERTIFICATE-----Generated at Thu Sep 19 17:01:31 2024 by rpki-client on console-ams.rpki-client.org