$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6332353a3a2f34382d3438203d3e20323134333732.roa File: 326130623a346530373a6332353a3a2f34382d3438203d3e20323134333732.roa (raw, json) Hash identifier: uFw+KXvuuXJZpoBq10xxBq4fy1zHtz/s/2csDE7+VJw= Subject key identifier: 0B:BB:E3:93:6D:05:06:56:7A:DB:B7:51:1C:A3:91:90:F1:19:F9:9D Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 37609D4AFFE1EF633CAEBB273D3A6F39ECE38B3C Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6332353a3a2f34382d3438203d3e20323134333732.roa Signing time: Sun 18 Aug 2024 05:47:19 +0000 ROA not before: Sun 18 Aug 2024 05:42:19 +0000 ROA not after: Sun 17 Aug 2025 05:47:19 +0000 asID: 214372 IP address blocks: 2a0b:4e07:c25::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:60:9d:4a:ff:e1:ef:63:3c:ae:bb:27:3d:3a:6f:39:ec:e3:8b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 18 05:42:19 2024 GMT Not After : Aug 17 05:47:19 2025 GMT Subject: CN=0BBBE3936D0506567ADBB7511CA39190F119F99D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bc:c3:e0:17:d4:75:d7:ae:63:ac:4c:c7:26: f3:24:66:cc:00:8f:39:0b:a7:1c:5c:4c:17:47:e2: 44:30:08:d8:f4:45:b1:9b:4e:d9:b6:c8:59:5c:17: 5b:25:08:a5:8b:d4:1c:79:bb:56:43:23:aa:d1:28: 8e:59:a9:8b:db:d3:fd:95:96:75:bc:ca:3c:58:83: b1:4a:b6:b8:99:4b:21:46:a7:a9:eb:91:7a:ac:f2: 2d:cb:3c:53:eb:12:eb:c5:23:79:55:6d:f2:dd:0f: e1:27:08:cc:ab:f1:29:f5:4f:f8:c6:32:88:6b:91: 73:54:6c:45:d0:be:40:74:1d:87:91:3d:69:74:57: 3b:99:ce:2e:af:56:e0:e0:cf:26:db:42:94:7f:0d: c7:59:0c:02:da:d0:33:28:b3:2b:70:64:ce:5c:bc: 35:57:9b:65:52:49:8b:c1:48:53:0c:8e:86:cc:a9: af:b5:9f:54:83:69:50:c0:27:a0:f6:4b:6d:df:6b: b0:70:e9:bf:12:de:4c:a1:cf:ba:27:51:6d:f9:d0: 2e:bb:55:6e:de:5d:49:f7:13:82:94:af:3e:2d:d2: 98:6c:df:10:80:e5:cc:25:d1:02:05:8b:c3:5f:07: 84:a2:4d:98:ba:de:8c:18:a7:4d:2b:03:b5:54:af: 59:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BB:E3:93:6D:05:06:56:7A:DB:B7:51:1C:A3:91:90:F1:19:F9:9D X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6332353a3a2f34382d3438203d3e20323134333732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c25::/48 Signature Algorithm: sha256WithRSAEncryption b1:88:40:bf:17:61:d8:aa:8b:25:4c:d1:82:9a:d0:11:d5:62: e1:3a:d1:86:d4:d6:f1:61:a5:6c:6b:e8:3a:f0:63:bb:5a:46: 06:f6:27:e7:07:1b:bf:d9:a6:f8:33:a7:72:65:d7:12:02:44: 8a:63:b1:00:a1:05:a7:de:c4:30:be:40:13:b3:2c:f7:8d:bc: 9e:dd:bf:26:5b:2d:8d:92:85:9f:3a:5e:41:cc:29:bc:46:5d: 7f:f5:39:65:4f:6e:cb:81:ef:9d:58:c0:01:8f:9c:ab:a4:fc: d2:9d:c6:9f:f3:c6:8f:6e:97:28:b5:fb:ef:38:e2:05:c8:36: 1e:41:f2:d3:42:e8:22:a5:e7:bf:f3:9d:79:67:ae:9c:d7:2a: f8:9d:05:34:56:73:58:a5:34:95:32:43:a4:6b:cf:dc:a0:a9: 32:54:36:ae:a4:68:2a:68:02:60:7d:b6:42:bf:ae:ed:42:05: 5d:ab:66:0c:b5:ed:99:f8:fe:96:01:17:09:f7:fd:08:15:3d: 53:bb:10:d3:e2:1f:9e:61:31:09:29:f5:02:74:bb:31:a6:96: 00:2f:63:00:2e:13:54:67:51:e7:42:07:b8:96:22:2b:cb:dd: 1d:29:0e:03:8d:9f:0b:ea:4e:58:e2:72:cc:92:30:2f:ca:c7: 79:f5:e7:4c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUN2CdSv/h72M8rrsnPTpvOezjizwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MTgwNTQyMTlaFw0yNTA4MTcwNTQ3MTlaMDMxMTAvBgNV BAMTKDBCQkJFMzkzNkQwNTA2NTY3QURCQjc1MTFDQTM5MTkwRjExOUY5OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVvMPgF9R1165jrEzHJvMkZswA jzkLpxxcTBdH4kQwCNj0RbGbTtm2yFlcF1slCKWL1Bx5u1ZDI6rRKI5ZqYvb0/2V lnW8yjxYg7FKtriZSyFGp6nrkXqs8i3LPFPrEuvFI3lVbfLdD+EnCMyr8Sn1T/jG MohrkXNUbEXQvkB0HYeRPWl0VzuZzi6vVuDgzybbQpR/DcdZDALa0DMosytwZM5c vDVXm2VSSYvBSFMMjobMqa+1n1SDaVDAJ6D2S23fa7Bw6b8S3kyhz7onUW350C67 VW7eXUn3E4KUrz4t0phs3xCA5cwl0QIFi8NfB4SiTZi63owYp00rA7VUr1lPAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUC7vjk20FBlZ627dRHKORkPEZ+Z0wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzMzIzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NDMzMzczMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoLTgcMJTANBgkqhkiG9w0BAQsFAAOCAQEAsYhA vxdh2KqLJUzRgprQEdVi4TrRhtTW8WGlbGvoOvBju1pGBvYn5wcbv9mm+DOncmXX EgJEimOxAKEFp97EML5AE7Ms9428nt2/JlstjZKFnzpeQcwpvEZdf/U5ZU9uy4Hv nVjAAY+cq6T80p3Gn/PGj26XKLX77zjiBcg2HkHy00LoIqXnv/OdeWeunNcq+J0F NFZzWKU0lTJDpGvP3KCpMlQ2rqRoKmgCYH22Qr+u7UIFXatmDLXtmfj+lgEXCff9 CBU9U7sQ0+IfnmExCSn1AnS7MaaWAC9jAC4TVGdR50IHuJYiK8vdHSkOA42fC+pO WOJyzJIwL8rHefXnTA== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org