$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6164333a3a2f34382d3438203d3e20323136333131.roa File: 326130623a346530373a6164333a3a2f34382d3438203d3e20323136333131.roa (raw, json) Hash identifier: pDxAOCa00XUxi0CPysaIBKKN55EZc5LvYrA7FrzMjsg= Subject key identifier: E3:42:12:26:12:AF:0D:6E:36:F5:55:0D:15:8B:BD:B8:07:A2:7D:73 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 125F7A89F28897D4C1ECB110FA2BD8B0DF1399ED Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6164333a3a2f34382d3438203d3e20323136333131.roa Signing time: Thu 25 Jul 2024 11:35:12 +0000 ROA not before: Thu 25 Jul 2024 11:30:12 +0000 ROA not after: Thu 24 Jul 2025 11:35:12 +0000 asID: 216311 IP address blocks: 2a0b:4e07:ad3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:5f:7a:89:f2:88:97:d4:c1:ec:b1:10:fa:2b:d8:b0:df:13:99:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Jul 25 11:30:12 2024 GMT Not After : Jul 24 11:35:12 2025 GMT Subject: CN=E342122612AF0D6E36F5550D158BBDB807A27D73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:31:37:4c:4f:1b:42:cb:24:c5:35:3f:c0:68: d2:0c:ec:f9:20:88:01:31:a9:28:d2:85:bd:35:dc: 59:55:56:64:dd:4c:95:a6:46:47:fe:9d:5c:66:67: cf:77:7c:61:13:17:b0:5f:94:d5:3d:e8:08:9b:54: e8:99:b2:dc:38:38:9a:75:70:f1:b2:1c:b1:71:87: 7a:f4:67:89:14:dc:cd:8d:85:57:7b:9a:b0:fc:c3: e8:a0:dd:f2:f5:50:a5:0e:d1:83:87:b7:2b:95:3b: bf:96:ee:9a:b6:86:a3:b0:84:be:53:0f:64:d0:f6: a7:eb:64:13:ff:4f:8c:8b:3d:43:f1:d9:80:86:e6: ef:f4:b0:9b:fa:a8:85:8f:98:03:4e:6c:72:b2:09: 53:20:4c:3a:f9:04:3d:c2:14:f7:ba:dc:6f:d8:94: de:50:50:10:a3:29:f2:cd:c1:eb:07:e5:28:59:e6: 9f:47:78:6f:55:b6:dc:03:3d:fd:48:46:d7:da:82: 27:ba:6b:5e:78:e3:22:fd:1d:dc:6f:3d:05:cd:25: ad:c8:5c:cb:37:26:4a:a5:5c:35:71:dd:6d:a6:81: a1:e8:fc:65:fd:1c:5c:db:4c:56:c2:5e:cd:d4:96: 7a:cc:a0:c8:85:79:86:79:f7:e2:06:d6:92:e4:6f: 82:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:42:12:26:12:AF:0D:6E:36:F5:55:0D:15:8B:BD:B8:07:A2:7D:73 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6164333a3a2f34382d3438203d3e20323136333131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ad3::/48 Signature Algorithm: sha256WithRSAEncryption 60:f8:78:f9:8d:c3:f7:5b:c6:e1:88:5c:3b:ec:41:ae:99:cf: 6b:c1:47:31:9c:ff:31:c7:50:6f:81:33:b1:c7:14:68:83:78: d1:4e:f9:6b:10:b9:64:47:83:89:d9:7f:d5:9f:9f:09:99:ef: e5:16:dc:12:02:1f:99:d3:dc:fb:d5:74:df:7f:eb:27:bb:95: dc:3e:04:8c:df:5f:30:a8:32:dc:a4:e5:a3:d9:12:61:bf:63: 67:b6:08:24:f7:6c:ba:21:68:a1:2d:6b:a8:e3:98:03:24:fb: 45:09:3e:9a:f9:91:2c:a4:f4:7d:f9:d3:fb:ee:47:3e:d1:75: ef:27:46:48:46:4f:9d:61:f9:d3:d3:56:e9:de:28:7d:d8:d3: 1c:46:d3:cf:45:a5:21:ac:aa:f3:6f:6c:cc:49:90:63:d1:e6: 39:c2:2c:b6:29:b3:e8:aa:23:38:53:c0:6a:a0:32:cd:24:da: 00:0f:1d:d4:c3:6b:f9:5c:7d:c9:40:43:51:71:d9:60:f0:1a: d7:b7:0b:40:f6:19:86:b5:c3:02:8a:a4:f9:cb:64:12:a1:60: f4:76:b8:cd:04:db:2e:3b:dd:df:bd:4e:7f:ab:cc:c2:e0:d1: d7:7c:2c:93:ea:62:ca:b6:1a:47:fa:bf:20:48:4a:e8:6b:6e: 20:77:eb:ea -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUEl96ifKIl9TB7LEQ+ivYsN8Tme0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA3MjUxMTMwMTJaFw0yNTA3MjQxMTM1MTJaMDMxMTAvBgNV BAMTKEUzNDIxMjI2MTJBRjBENkUzNkY1NTUwRDE1OEJCREI4MDdBMjdENzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNMTdMTxtCyyTFNT/AaNIM7Pkg iAExqSjShb013FlVVmTdTJWmRkf+nVxmZ893fGETF7BflNU96AibVOiZstw4OJp1 cPGyHLFxh3r0Z4kU3M2NhVd7mrD8w+ig3fL1UKUO0YOHtyuVO7+W7pq2hqOwhL5T D2TQ9qfrZBP/T4yLPUPx2YCG5u/0sJv6qIWPmANObHKyCVMgTDr5BD3CFPe63G/Y lN5QUBCjKfLNwesH5ShZ5p9HeG9VttwDPf1IRtfagie6a1544yL9HdxvPQXNJa3I XMs3JkqlXDVx3W2mgaHo/GX9HFzbTFbCXs3UlnrMoMiFeYZ59+IG1pLkb4IbAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU40ISJhKvDW429VUNFYu9uAeifXMwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYxNjQzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzEzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoLTgcK0zANBgkqhkiG9w0BAQsFAAOCAQEAYPh4 +Y3D91vG4YhcO+xBrpnPa8FHMZz/McdQb4EzsccUaIN40U75axC5ZEeDidl/1Z+f CZnv5RbcEgIfmdPc+9V033/rJ7uV3D4EjN9fMKgy3KTlo9kSYb9jZ7YIJPdsuiFo oS1rqOOYAyT7RQk+mvmRLKT0ffnT++5HPtF17ydGSEZPnWH509NW6d4ofdjTHEbT z0WlIayq829szEmQY9HmOcIstimz6KojOFPAaqAyzSTaAA8d1MNr+Vx9yUBDUXHZ YPAa17cLQPYZhrXDAoqk+ctkEqFg9Ha4zQTbLjvd371Of6vMwuDR13wsk+piyrYa R/q/IEhK6GtuIHfr6g== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org