$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa File: 326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa (raw, json) Hash identifier: OlGJebwgzLl1MZkg6WAWp5Rn1p2QRt/im/GQMhP3acE= Subject key identifier: BD:9D:30:2B:93:85:B5:E7:1E:48:E4:CC:58:44:49:BC:BD:55:02:F2 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 7C013C1BA0912D0933B8F928F4F828E554FFD1DC Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa Signing time: Fri 09 Aug 2024 13:53:38 +0000 ROA not before: Fri 09 Aug 2024 13:48:38 +0000 ROA not after: Fri 08 Aug 2025 13:53:38 +0000 asID: 214999 IP address blocks: 2a0b:4e07:91c::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:01:3c:1b:a0:91:2d:09:33:b8:f9:28:f4:f8:28:e5:54:ff:d1:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 9 13:48:38 2024 GMT Not After : Aug 8 13:53:38 2025 GMT Subject: CN=BD9D302B9385B5E71E48E4CC584449BCBD5502F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8e:9c:24:eb:98:ac:76:1f:2f:df:5b:03:65: c2:9f:e3:a9:ff:a7:fa:37:0a:85:d6:e8:96:3e:bc: 3f:10:9d:60:8c:fc:03:62:7d:6d:f9:b5:68:07:a3: 44:9a:d5:d5:ef:5f:8b:38:d9:0e:be:8f:4e:d5:c3: c9:a9:9e:ba:17:52:56:f9:a0:56:5f:4a:da:5f:e7: eb:26:2d:ea:2b:c4:69:51:92:6c:29:4e:0c:f6:00: f4:65:c0:e4:ce:3e:55:49:55:38:00:6d:cf:ac:21: c3:74:ab:82:15:dd:6a:ef:b2:51:96:9b:33:66:78: d4:92:ae:f5:79:c4:45:60:58:7f:5f:2f:51:78:55: 0d:40:14:56:c2:ac:f1:2c:93:58:b9:5e:22:73:43: 65:af:00:22:03:ca:61:6f:dd:6a:e2:2b:ae:e8:4a: 31:11:01:bf:51:8e:ae:77:0c:f7:a0:34:1a:4b:cf: 8e:1c:77:73:ff:34:3c:28:11:2a:97:fe:22:e8:cf: 7b:b2:9c:02:0b:6e:1c:a4:2d:33:65:45:31:15:0c: a5:53:1c:ee:74:bf:ae:80:eb:00:c5:89:e6:96:d7: c0:aa:6f:c7:75:89:97:29:7a:dd:61:f3:89:5c:e9: 1b:a1:f7:e6:d7:c9:7c:5a:51:f3:47:83:cc:79:d9: 0e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:9D:30:2B:93:85:B5:E7:1E:48:E4:CC:58:44:49:BC:BD:55:02:F2 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a3931633a3a2f34382d3438203d3e20323134393939.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:91c::/48 Signature Algorithm: sha256WithRSAEncryption ac:c7:92:8a:ba:41:d9:c6:66:96:49:9b:ec:ec:67:aa:c9:27: ba:01:72:64:7c:99:51:00:ee:b7:1d:41:52:6e:17:f4:6a:ba: 89:b4:46:b5:b2:55:39:4b:aa:d5:49:dc:11:d9:91:8b:11:81: 69:6f:ef:6d:5e:b0:35:36:61:4e:6b:5b:96:c7:e5:c6:b7:d7: 43:b4:99:51:b8:74:9f:06:cf:00:54:93:a9:8d:29:0e:ee:80: 28:22:aa:3f:b6:25:99:07:45:b8:7a:89:29:8f:db:72:47:c2: fe:f8:38:d4:48:00:4e:84:ac:1c:68:04:ff:e1:16:92:76:91: b8:6d:82:21:45:56:94:a7:cc:72:bc:2e:9f:1b:47:c5:a4:38: 08:c3:f6:71:58:52:4d:4d:11:3b:45:db:52:46:9f:fa:eb:be: 9c:7e:e9:93:58:1e:7d:65:5c:5f:37:1d:f7:69:98:44:13:3f: 32:65:46:c5:be:9b:d8:71:44:5b:e5:1e:c8:8f:77:6d:d2:fe: 26:f5:fd:aa:0f:0b:77:be:3f:51:3c:af:a8:8c:8f:0d:68:84: 52:fd:0d:a8:d0:c5:68:6c:4d:d9:a0:9f:48:32:7d:2c:f1:0c: 61:ab:45:1f:dd:25:9e:25:fb:68:c6:59:74:98:a0:90:c4:d6: 55:52:91:bb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUfAE8G6CRLQkzuPko9Pgo5VT/0dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MDkxMzQ4MzhaFw0yNTA4MDgxMzUzMzhaMDMxMTAvBgNV BAMTKEJEOUQzMDJCOTM4NUI1RTcxRTQ4RTRDQzU4NDQ0OUJDQkQ1NTAyRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9jpwk65isdh8v31sDZcKf46n/ p/o3CoXW6JY+vD8QnWCM/ANifW35tWgHo0Sa1dXvX4s42Q6+j07Vw8mpnroXUlb5 oFZfStpf5+smLeorxGlRkmwpTgz2APRlwOTOPlVJVTgAbc+sIcN0q4IV3WrvslGW mzNmeNSSrvV5xEVgWH9fL1F4VQ1AFFbCrPEsk1i5XiJzQ2WvACIDymFv3WriK67o SjERAb9Rjq53DPegNBpLz44cd3P/NDwoESqX/iLoz3uynAILbhykLTNlRTEVDKVT HO50v66A6wDFieaW18Cqb8d1iZcpet1h84lc6Ruh9+bXyXxaUfNHg8x52Q7HAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUvZ0wK5OFteceSOTMWERJvL1VAvIwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTM5MzE2MzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NDM5MzkzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoLTgcJHDANBgkqhkiG9w0BAQsFAAOCAQEArMeS irpB2cZmlkmb7OxnqsknugFyZHyZUQDutx1BUm4X9Gq6ibRGtbJVOUuq1UncEdmR ixGBaW/vbV6wNTZhTmtblsflxrfXQ7SZUbh0nwbPAFSTqY0pDu6AKCKqP7YlmQdF uHqJKY/bckfC/vg41EgAToSsHGgE/+EWknaRuG2CIUVWlKfMcrwunxtHxaQ4CMP2 cVhSTU0RO0XbUkaf+uu+nH7pk1gefWVcXzcd92mYRBM/MmVGxb6b2HFEW+UeyI93 bdL+JvX9qg8Ld74/UTyvqIyPDWiEUv0NqNDFaGxN2aCfSDJ9LPEMYatFH90lniX7 aMZZdJigkMTWVVKRuw== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org