$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6231653a3a2f34382d3438203d3e203434333331.roa File: 326130623a346530373a6231653a3a2f34382d3438203d3e203434333331.roa (raw, json) Hash identifier: l8gckWcYbjxaIHUfydB0JEQ3ow1gM8O+p8MVGQ5rqRM= Subject key identifier: 5E:E2:30:7B:53:89:BF:AD:ED:52:18:04:6B:1F:33:C1:BE:CF:F9:4D Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 09B533DE33940736BA987012E82796A89D3576B7 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6231653a3a2f34382d3438203d3e203434333331.roa Signing time: Tue 13 Aug 2024 09:13:10 +0000 ROA not before: Tue 13 Aug 2024 09:08:10 +0000 ROA not after: Tue 12 Aug 2025 09:13:10 +0000 asID: 44331 IP address blocks: 2a0b:4e07:b1e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b5:33:de:33:94:07:36:ba:98:70:12:e8:27:96:a8:9d:35:76:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 13 09:08:10 2024 GMT Not After : Aug 12 09:13:10 2025 GMT Subject: CN=5EE2307B5389BFADED5218046B1F33C1BECFF94D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:74:27:89:65:11:32:ad:5a:38:e5:c8:0e:f8: 83:e0:85:e8:fb:3c:42:a1:df:f5:10:65:ba:e3:5a: 27:35:32:f3:c4:0e:1a:5a:ad:d2:30:31:e5:7c:72: e5:ae:23:71:45:ec:39:09:0d:2a:b7:e2:d8:b7:32: 50:9e:2d:a1:d3:13:92:d9:fb:7a:96:65:15:d8:e4: 87:f6:a2:0a:02:ad:05:5d:7b:7e:8a:a6:ef:ac:3e: 14:db:2c:1e:59:1a:de:66:39:83:96:16:77:d6:8f: 3d:ff:9d:a6:13:27:6d:19:36:0c:a8:c1:b1:d8:ef: b0:67:99:c0:d1:99:07:94:00:6f:53:bb:06:8e:db: 31:a6:b8:96:91:92:36:b1:fc:34:c5:a9:b4:47:ae: 19:01:6b:b9:53:5b:09:da:26:6c:2e:1c:42:10:b2: 50:98:42:83:a8:ba:4c:05:3f:47:14:5c:ed:54:92: a5:32:f7:c4:4f:30:ea:65:91:77:35:c4:ee:c9:be: ba:e2:2e:3d:72:8c:72:02:5b:89:40:98:53:b5:f0: 81:94:d1:1f:eb:7a:5d:32:29:39:14:a4:d0:46:32: 3b:3f:be:4b:74:da:c7:21:a5:da:ab:53:13:ed:b9: 82:5d:55:b4:70:eb:c1:bf:a5:a6:3c:c3:ff:67:cb: 2e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E2:30:7B:53:89:BF:AD:ED:52:18:04:6B:1F:33:C1:BE:CF:F9:4D X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6231653a3a2f34382d3438203d3e203434333331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:b1e::/48 Signature Algorithm: sha256WithRSAEncryption 78:e7:8b:b8:b1:b3:d6:61:73:96:be:e1:93:be:89:aa:b2:f9: ef:d5:f7:3b:2c:bd:c3:94:52:c3:40:11:f5:55:78:72:81:72: dc:5d:95:30:77:83:ba:af:e6:91:fe:75:87:3f:97:f4:dc:b4: 4a:4f:00:30:9c:be:d3:4c:40:27:ed:27:5b:c1:ab:89:1e:9f: c2:ee:76:cf:52:d8:44:64:2f:e9:41:8e:76:9a:6e:e9:fa:4c: 9e:d9:18:42:07:a9:4f:f8:dc:89:63:44:c9:94:20:30:7d:c2: 8c:7c:ac:d2:b0:6a:02:cd:4c:7a:5b:51:d6:ca:49:b6:39:85: 2f:69:d3:f4:a6:20:53:46:41:b4:1a:c4:be:80:e0:32:f1:7b: 62:70:9d:7b:50:1f:6c:52:09:02:5a:6b:4a:ad:a4:10:0f:44: 74:9b:2f:33:0d:a7:e2:77:90:c2:53:60:c6:a7:58:37:62:01: d4:4e:da:8d:f6:87:bd:da:9e:69:55:b0:79:42:0e:4b:08:e9: 8f:f8:7d:b8:67:0d:95:c7:18:05:56:90:54:39:85:db:74:dd: 29:cb:04:82:92:c6:67:78:6f:4a:d3:14:9c:9e:3b:f8:8a:cb: cf:8f:eb:7e:c7:d2:92:bb:8d:57:32:9f:f3:3b:41:e6:37:f9: 48:b7:03:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUCbUz3jOUBza6mHAS6CeWqJ01drcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MTMwOTA4MTBaFw0yNTA4MTIwOTEzMTBaMDMxMTAvBgNV BAMTKDVFRTIzMDdCNTM4OUJGQURFRDUyMTgwNDZCMUYzM0MxQkVDRkY5NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChdCeJZREyrVo45cgO+IPghej7 PEKh3/UQZbrjWic1MvPEDhpardIwMeV8cuWuI3FF7DkJDSq34ti3MlCeLaHTE5LZ +3qWZRXY5If2ogoCrQVde36Kpu+sPhTbLB5ZGt5mOYOWFnfWjz3/naYTJ20ZNgyo wbHY77BnmcDRmQeUAG9TuwaO2zGmuJaRkjax/DTFqbRHrhkBa7lTWwnaJmwuHEIQ slCYQoOoukwFP0cUXO1UkqUy98RPMOplkXc1xO7JvrriLj1yjHICW4lAmFO18IGU 0R/rel0yKTkUpNBGMjs/vkt02schpdqrUxPtuYJdVbRw68G/paY8w/9nyy4pAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUXuIwe1OJv63tUhgEax8zwb7P+U0wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYyMzE2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzQz MzMzMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqC04HCx4wDQYJKoZIhvcNAQELBQADggEBAHjni7ix s9Zhc5a+4ZO+iaqy+e/V9zssvcOUUsNAEfVVeHKBctxdlTB3g7qv5pH+dYc/l/Tc tEpPADCcvtNMQCftJ1vBq4ken8Luds9S2ERkL+lBjnaabun6TJ7ZGEIHqU/43Ilj RMmUIDB9wox8rNKwagLNTHpbUdbKSbY5hS9p0/SmIFNGQbQaxL6A4DLxe2JwnXtQ H2xSCQJaa0qtpBAPRHSbLzMNp+J3kMJTYManWDdiAdRO2o32h73anmlVsHlCDksI 6Y/4fbhnDZXHGAVWkFQ5hdt03SnLBIKSxmd4b0rTFJyeO/iKy8+P637H0pK7jVcy n/M7QeY3+Ui3A2I= -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org