$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203135333533.roa File: 326130623a346530373a63313a3a2f34382d3438203d3e203135333533.roa (raw, json) Hash identifier: MjhVaL3VmqI5CtUaBZEOiBd85gmzWOczCPC8PGg8NHE= Subject key identifier: 88:1F:E1:A5:F2:0B:26:66:0D:EC:00:06:1A:76:29:C4:08:02:DC:E6 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 5C2125B3854BD24CE4FA8BB640930E00AA4F1A69 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203135333533.roa Signing time: Mon 28 Oct 2024 07:46:59 +0000 ROA not before: Mon 28 Oct 2024 07:41:59 +0000 ROA not after: Mon 27 Oct 2025 07:46:59 +0000 asID: 15353 IP address blocks: 2a0b:4e07:c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:21:25:b3:85:4b:d2:4c:e4:fa:8b:b6:40:93:0e:00:aa:4f:1a:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Oct 28 07:41:59 2024 GMT Not After : Oct 27 07:46:59 2025 GMT Subject: CN=881FE1A5F20B26660DEC00061A7629C40802DCE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4b:ca:d7:41:72:61:f3:35:64:f0:37:8f:d1: c4:fa:26:7c:4a:6e:3f:5e:93:dc:74:fd:cb:a4:48: 5d:4f:08:1b:0f:3e:2a:f9:52:16:00:c3:1d:54:bc: d7:3b:df:ec:c5:8b:9b:3a:7f:cb:1a:ab:dd:1f:99: cc:e7:59:3e:01:72:ed:b4:3a:45:9f:16:b3:16:f5: 7c:37:45:94:81:f5:35:3c:2e:f1:32:53:af:ac:8d: 24:6b:5e:02:67:ad:e9:37:21:66:f9:07:7c:91:31: fe:a6:21:43:44:e2:ac:af:5b:fc:df:38:09:33:7b: a3:6b:c1:c7:16:60:4c:54:02:bc:df:9b:08:23:a1: 7d:c2:8e:92:8a:db:11:29:8f:35:94:40:66:cf:76: de:d7:4f:c2:3d:44:5b:ef:e6:2d:78:4a:29:6a:3a: bc:87:e3:e9:1c:76:32:10:c8:cc:9c:6f:64:ef:0b: dc:23:4c:87:22:5a:f6:de:be:4d:56:1c:18:1b:6a: b9:f8:4f:0e:58:e5:72:be:40:73:3b:e4:80:2e:7d: 3b:14:3f:3d:2e:05:8a:54:32:80:3b:f8:a6:18:fe: 81:cf:9a:b5:69:b4:a2:93:3a:b1:05:e8:80:5d:89: 54:33:37:14:cd:ea:4f:f3:04:57:3f:a3:be:47:cb: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1F:E1:A5:F2:0B:26:66:0D:EC:00:06:1A:76:29:C4:08:02:DC:E6 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63313a3a2f34382d3438203d3e203135333533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c1::/48 Signature Algorithm: sha256WithRSAEncryption 0b:10:7d:bd:c8:4d:1b:08:32:96:f2:3e:f7:fd:dd:4c:10:ad: a8:f8:5e:69:e3:88:c2:f8:cf:72:bb:54:12:56:b8:cd:f1:f5: dc:6a:11:f1:a5:84:8c:7e:87:0b:48:93:89:16:9c:ba:1c:cb: bd:e8:11:15:10:a8:db:f9:56:5d:c2:12:9b:f5:5f:84:fc:af: 25:55:a7:ab:71:a0:2f:91:eb:ff:13:77:de:0f:15:19:a6:c4: f5:37:6e:83:05:81:27:30:79:b9:5b:5b:de:10:93:67:c1:5e: 07:ef:af:f2:c7:b3:e9:39:02:5a:d7:45:e1:25:04:ab:77:19: 17:33:1c:ef:ed:86:a8:03:32:ac:04:a0:9a:2b:0e:2d:ea:8d: 69:31:72:6d:57:2d:00:80:c5:9b:1c:b3:e9:e8:79:20:a3:72: 8c:3c:fa:12:f6:cd:9a:30:b0:1f:56:c9:f6:20:18:e0:d2:d9: a5:09:07:b0:a6:27:d6:c1:81:37:4a:4d:16:1a:da:44:92:4b: ec:25:f1:b8:a4:c0:c2:82:6b:b4:6c:16:fe:7e:2d:0d:91:b5: 18:21:73:00:76:3b:af:b9:4c:45:78:88:90:e0:30:04:4b:c3: 02:b3:1b:31:a7:b3:b1:7a:81:e6:fe:af:95:e3:4a:36:f2:97: 36:25:c8:cd -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUXCEls4VL0kzk+ou2QJMOAKpPGmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDEwMjgwNzQxNTlaFw0yNTEwMjcwNzQ2NTlaMDMxMTAvBgNV BAMTKDg4MUZFMUE1RjIwQjI2NjYwREVDMDAwNjFBNzYyOUM0MDgwMkRDRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9S8rXQXJh8zVk8DeP0cT6JnxK bj9ek9x0/cukSF1PCBsPPir5UhYAwx1UvNc73+zFi5s6f8saq90fmcznWT4Bcu20 OkWfFrMW9Xw3RZSB9TU8LvEyU6+sjSRrXgJnrek3IWb5B3yRMf6mIUNE4qyvW/zf OAkze6NrwccWYExUArzfmwgjoX3CjpKK2xEpjzWUQGbPdt7XT8I9RFvv5i14Silq OryH4+kcdjIQyMycb2TvC9wjTIciWvbevk1WHBgbarn4Tw5Y5XK+QHM75IAufTsU Pz0uBYpUMoA7+KYY/oHPmrVptKKTOrEF6IBdiVQzNxTN6k/zBFc/o75Hy6dpAgMB AAGjggJ/MIICezAdBgNVHQ4EFgQUiB/hpfILJmYN7AAGGnYpxAgC3OYwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBsQYIKwYBBQUHAQsEgaQwgaEwgZ4GCCsGAQUF BzALhoGRcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzMzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTM1MzMz NTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAKgtOBwDBMA0GCSqGSIb3DQEBCwUAA4IBAQALEH29yE0b CDKW8j73/d1MEK2o+F5p44jC+M9yu1QSVrjN8fXcahHxpYSMfocLSJOJFpy6HMu9 6BEVEKjb+VZdwhKb9V+E/K8lVaercaAvkev/E3feDxUZpsT1N26DBYEnMHm5W1ve EJNnwV4H76/yx7PpOQJa10XhJQSrdxkXMxzv7YaoAzKsBKCaKw4t6o1pMXJtVy0A gMWbHLPp6Hkgo3KMPPoS9s2aMLAfVsn2IBjg0tmlCQewpifWwYE3Sk0WGtpEkkvs JfG4pMDCgmu0bBb+fi0NkbUYIXMAdjuvuUxFeIiQ4DAES8MCsxsxp7OxeoHm/q+V 40o28pc2JcjN -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org