$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203133383532.roa File: 326130623a346530373a63313a3a2f34382d3438203d3e203133383532.roa (raw, json) Hash identifier: hZiqznLZ3UmAHEJuDKftkq6P08O/cI/xZ8WYV0e0GrQ= Subject key identifier: DD:CA:F6:F2:36:EA:2E:D3:B0:C8:5C:E1:C4:E1:2F:8B:89:92:C5:52 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 6B69595B887CD1C728627E3C20C522D9AC91D715 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203133383532.roa Signing time: Fri 04 Oct 2024 21:00:24 +0000 ROA not before: Fri 04 Oct 2024 20:55:24 +0000 ROA not after: Fri 03 Oct 2025 21:00:24 +0000 asID: 13852 IP address blocks: 2a0b:4e07:c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:69:59:5b:88:7c:d1:c7:28:62:7e:3c:20:c5:22:d9:ac:91:d7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Oct 4 20:55:24 2024 GMT Not After : Oct 3 21:00:24 2025 GMT Subject: CN=DDCAF6F236EA2ED3B0C85CE1C4E12F8B8992C552 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9d:8f:72:c3:dc:96:7b:68:cd:c7:74:7d:5c: c7:0b:1d:65:4d:5d:71:23:c2:66:d7:b8:86:15:9d: 4f:ff:f8:72:95:57:0d:6f:74:ea:19:39:50:18:0d: f9:58:cc:27:fb:62:7a:7c:ec:59:30:2c:cf:0f:6f: 2b:bf:67:4c:09:ef:53:c4:ee:35:57:c4:1a:f0:e5: d2:75:06:bc:f8:93:99:f6:7f:73:fa:73:70:e5:40: dc:f7:06:9f:f0:bc:9e:6c:bc:62:bc:0c:e1:89:56: 76:f8:bd:10:c3:a5:c2:30:72:d3:16:8c:91:35:08: 71:01:a9:db:08:f2:0b:da:34:31:9b:7b:d0:56:2b: 7a:fd:e0:ce:a2:73:1d:1b:07:a5:f3:53:ea:e2:a1: 04:7c:88:73:bc:17:f0:52:e3:e1:06:bd:9f:df:70: 8c:f3:7e:69:f4:64:9e:3b:5e:bd:9d:0a:ee:f0:48: 12:da:74:5a:9c:f7:ab:a9:5d:fc:94:3c:12:45:21: d9:36:15:2d:a6:63:e2:02:8b:2c:88:d7:23:a1:7d: e8:0c:0e:30:c5:67:92:ee:38:71:01:5e:77:89:4e: db:15:a7:68:dd:dd:70:e5:9c:7d:8e:e1:5d:8e:45: 06:c3:45:a9:3d:e5:fb:15:ae:95:24:0b:6a:c1:53: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CA:F6:F2:36:EA:2E:D3:B0:C8:5C:E1:C4:E1:2F:8B:89:92:C5:52 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203133383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c1::/48 Signature Algorithm: sha256WithRSAEncryption ac:6b:8c:a7:b4:1a:a2:bb:62:bf:36:f8:b6:02:dd:ef:f7:97: e6:bc:aa:2c:a9:0d:e5:cf:e0:a0:26:4e:c0:ce:3a:36:65:16: bb:bc:08:e6:c7:62:ec:c3:37:a4:da:4a:54:5f:49:5d:78:e2: 3e:7e:5d:3c:f8:85:c0:a8:84:5d:70:ce:cf:67:ac:0d:0c:aa: 86:f2:fc:33:65:db:c3:73:a2:92:93:f6:3d:dd:80:d9:5f:d7: 04:1f:ab:b0:bd:26:41:a4:96:b3:0b:83:55:36:69:3b:6b:2f: 5e:9a:17:b5:c6:a0:87:fa:df:0b:b2:e0:7f:e0:28:ef:af:7d: ef:66:0d:ed:67:94:67:a4:53:fb:9c:f2:f6:45:ae:ea:63:1d: 55:9f:89:1e:99:d7:bb:c7:7d:66:3f:4f:aa:e2:94:c3:3c:d5: d1:53:36:bb:b8:63:4a:33:47:9a:be:bd:40:e8:cc:74:7f:9f: df:fb:cc:25:66:78:c3:71:b0:63:1a:9b:d4:b9:50:00:de:7c: a3:a1:ca:5a:8e:1a:2c:97:0b:fc:40:c3:ee:85:40:06:c9:2d: 64:53:f2:3c:89:67:fe:37:01:6d:9f:42:25:1b:d2:c6:6a:54: da:37:67:ec:44:4a:96:92:e1:71:8b:28:d1:76:55:d6:c0:4a: 9f:2a:78:b4 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUa2lZW4h80ccoYn48IMUi2ayR1xUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDEwMDQyMDU1MjRaFw0yNTEwMDMyMTAwMjRaMDMxMTAvBgNV BAMTKEREQ0FGNkYyMzZFQTJFRDNCMEM4NUNFMUM0RTEyRjhCODk5MkM1NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwnY9yw9yWe2jNx3R9XMcLHWVN XXEjwmbXuIYVnU//+HKVVw1vdOoZOVAYDflYzCf7Ynp87FkwLM8Pbyu/Z0wJ71PE 7jVXxBrw5dJ1Brz4k5n2f3P6c3DlQNz3Bp/wvJ5svGK8DOGJVnb4vRDDpcIwctMW jJE1CHEBqdsI8gvaNDGbe9BWK3r94M6icx0bB6XzU+rioQR8iHO8F/BS4+EGvZ/f cIzzfmn0ZJ47Xr2dCu7wSBLadFqc96upXfyUPBJFIdk2FS2mY+ICiyyI1yOhfegM DjDFZ5LuOHEBXneJTtsVp2jd3XDlnH2O4V2ORQbDRak95fsVrpUkC2rBUxrBAgMB AAGjggJ/MIICezAdBgNVHQ4EFgQU3cr28jbqLtOwyFzhxOEvi4mSxVIwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBsQYIKwYBBQUHAQsEgaQwgaEwgZ4GCCsGAQUF BzALhoGRcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzMzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgz NTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAKgtOBwDBMA0GCSqGSIb3DQEBCwUAA4IBAQCsa4yntBqi u2K/Nvi2At3v95fmvKosqQ3lz+CgJk7Azjo2ZRa7vAjmx2Lswzek2kpUX0ldeOI+ fl08+IXAqIRdcM7PZ6wNDKqG8vwzZdvDc6KSk/Y93YDZX9cEH6uwvSZBpJazC4NV Nmk7ay9emhe1xqCH+t8LsuB/4Cjvr33vZg3tZ5RnpFP7nPL2Ra7qYx1Vn4kemde7 x31mP0+q4pTDPNXRUza7uGNKM0eavr1A6Mx0f5/f+8wlZnjDcbBjGpvUuVAA3nyj ocpajhoslwv8QMPuhUAGyS1kU/I8iWf+NwFtn0IlG9LGalTaN2fsREqWkuFxiyjR dlXWwEqfKni0 -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org