$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6336383a3a2f34362d3436203d3e20323134383138.roa File: 326130623a346530373a6336383a3a2f34362d3436203d3e20323134383138.roa (raw, json) Hash identifier: MWGX8DeBT3keNo7OAusCtD5297SwUtMzWF2iOp8py00= Subject key identifier: 72:CC:4A:E0:26:4D:6F:B3:FF:F5:05:08:B6:6C:21:CF:93:4A:9A:C0 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 23FE543EA90C23FCD11E495FC791D7C5B164DED8 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6336383a3a2f34362d3436203d3e20323134383138.roa Signing time: Mon 12 Aug 2024 07:10:24 +0000 ROA not before: Mon 12 Aug 2024 07:05:24 +0000 ROA not after: Mon 11 Aug 2025 07:10:24 +0000 asID: 214818 IP address blocks: 2a0b:4e07:c68::/46 maxlen: 46 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:fe:54:3e:a9:0c:23:fc:d1:1e:49:5f:c7:91:d7:c5:b1:64:de:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 12 07:05:24 2024 GMT Not After : Aug 11 07:10:24 2025 GMT Subject: CN=72CC4AE0264D6FB3FFF50508B66C21CF934A9AC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:37:33:e4:e3:72:7d:20:f0:b6:33:ea:64:5c: 1f:c3:78:be:73:db:1c:f6:a1:3c:c7:02:26:48:fc: 49:d6:a9:87:a7:6c:f7:86:02:6b:54:37:b8:26:2b: 4c:70:14:6e:d6:ee:73:27:5f:1f:23:3c:92:6d:7b: bb:05:f4:08:e2:fc:1a:64:07:ed:55:60:55:1d:df: a5:5c:4a:9d:5e:ff:81:b8:d0:77:96:1c:19:5e:65: c9:a5:f2:10:f1:c2:14:ef:61:36:bb:bf:ed:d3:82: 05:e9:68:34:45:ae:c6:b7:24:39:ce:06:d7:e0:f1: 47:41:bb:5c:1e:ee:ce:64:59:73:ac:cf:7f:e1:a9: 40:2b:0b:92:f6:60:05:d3:d1:77:d1:ea:b5:0a:bd: 5b:3c:d4:50:31:5b:76:20:ab:c7:65:0a:5a:d7:9d: 83:40:f0:c9:51:50:89:3a:b6:13:29:a9:1f:86:fa: 99:46:e9:e8:42:38:5a:e0:c4:7a:e5:1c:b8:1a:37: 3d:0d:96:3c:c1:ef:51:42:38:a5:f2:fb:2c:7a:3b: 4b:de:c6:a0:23:e2:da:a1:fe:2a:e5:9d:27:6b:7c: 4b:2b:5f:b8:59:25:b1:97:df:d9:63:e5:2a:f4:1e: 81:32:86:ce:48:c9:8c:54:e9:d5:68:e1:ab:5f:82: ae:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CC:4A:E0:26:4D:6F:B3:FF:F5:05:08:B6:6C:21:CF:93:4A:9A:C0 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6336383a3a2f34362d3436203d3e20323134383138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c68::/46 Signature Algorithm: sha256WithRSAEncryption 66:0c:c2:52:13:8d:95:37:05:9f:b3:37:07:53:98:30:1b:f1: 6e:25:65:44:0c:ae:e4:d9:77:e6:86:04:46:f9:fe:4b:e2:93: 1f:6e:9b:36:f4:43:4e:7a:8a:d8:65:f6:e8:bd:1f:e8:b8:49: 02:97:b1:07:02:61:c6:c6:24:31:49:d8:c9:98:8b:01:b9:67: e1:b4:eb:1e:2d:49:21:71:d8:36:fc:69:7f:7d:4d:d4:44:ee: d1:8e:89:6a:07:56:9c:22:bd:1d:db:ce:36:12:07:c7:30:7a: d6:f7:36:91:70:81:d5:f7:fe:bd:a7:86:ec:cb:72:1a:33:87: 1b:ad:f8:da:d7:0e:aa:98:4b:7a:cd:b1:39:33:42:dd:57:91: 2a:0f:0f:8d:4a:d8:25:91:fd:9a:73:16:e6:f1:5b:91:a4:d0: 02:80:b5:e9:9c:38:5c:d9:d3:fb:01:f3:f9:70:3d:7f:62:b4: 42:03:af:85:f1:05:82:ec:55:30:75:cc:33:c6:50:33:f7:27: f4:6e:0e:2f:1a:82:3c:e7:51:6d:f7:c4:9f:3e:2e:7a:5c:33: 69:9e:81:76:79:ef:61:ad:02:80:d7:3f:8c:0c:f4:55:61:b9: 74:15:c6:d1:0d:62:05:40:38:1d:4a:80:4f:9d:9f:38:5c:01: 45:60:34:96 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUI/5UPqkMI/zRHklfx5HXxbFk3tgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MTIwNzA1MjRaFw0yNTA4MTEwNzEwMjRaMDMxMTAvBgNV BAMTKDcyQ0M0QUUwMjY0RDZGQjNGRkY1MDUwOEI2NkMyMUNGOTM0QTlBQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkNzPk43J9IPC2M+pkXB/DeL5z 2xz2oTzHAiZI/EnWqYenbPeGAmtUN7gmK0xwFG7W7nMnXx8jPJJte7sF9Aji/Bpk B+1VYFUd36VcSp1e/4G40HeWHBleZcml8hDxwhTvYTa7v+3TggXpaDRFrsa3JDnO Btfg8UdBu1we7s5kWXOsz3/hqUArC5L2YAXT0XfR6rUKvVs81FAxW3Ygq8dlClrX nYNA8MlRUIk6thMpqR+G+plG6ehCOFrgxHrlHLgaNz0NljzB71FCOKXy+yx6O0ve xqAj4tqh/irlnSdrfEsrX7hZJbGX39lj5Sr0HoEyhs5IyYxU6dVo4atfgq4BAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUcsxK4CZNb7P/9QUItmwhz5NKmsAwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzMzYzODNhM2EyZjM0MzYyZDM0MzYyMDNkM2UyMDMyMzEz NDM4MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHAioLTgcMaDANBgkqhkiG9w0BAQsFAAOCAQEAZgzC UhONlTcFn7M3B1OYMBvxbiVlRAyu5Nl35oYERvn+S+KTH26bNvRDTnqK2GX26L0f 6LhJApexBwJhxsYkMUnYyZiLAbln4bTrHi1JIXHYNvxpf31N1ETu0Y6JagdWnCK9 HdvONhIHxzB61vc2kXCB1ff+vaeG7MtyGjOHG6342tcOqphLes2xOTNC3VeRKg8P jUrYJZH9mnMW5vFbkaTQAoC16Zw4XNnT+wHz+XA9f2K0QgOvhfEFguxVMHXMM8ZQ M/cn9G4OLxqCPOdRbffEnz4uelwzaZ6BdnnvYa0CgNc/jAz0VWG5dBXG0Q1iBUA4 HUqAT52fOFwBRWA0lg== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org