$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a633a3a2f34362d3438203d3e203230343733.roa File: 326130623a346530373a633a3a2f34362d3438203d3e203230343733.roa (raw, json) Hash identifier: csSoOppoQaoQE3fIEjQD9SJlMiSu6Co+bbY79vvO6iw= Subject key identifier: B0:8F:0B:BA:20:B8:E9:4D:85:51:CF:FD:47:A7:E7:6A:55:B5:2A:F7 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 45C88F0EFBB6AB28F733D7CFB3843EFB8E220AB1 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a633a3a2f34362d3438203d3e203230343733.roa Signing time: Tue 19 Nov 2024 07:48:56 +0000 ROA not before: Tue 19 Nov 2024 07:43:56 +0000 ROA not after: Tue 18 Nov 2025 07:48:56 +0000 asID: 20473 IP address blocks: 2a0b:4e07:c::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:c8:8f:0e:fb:b6:ab:28:f7:33:d7:cf:b3:84:3e:fb:8e:22:0a:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Nov 19 07:43:56 2024 GMT Not After : Nov 18 07:48:56 2025 GMT Subject: CN=B08F0BBA20B8E94D8551CFFD47A7E76A55B52AF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:16:f7:52:22:0d:93:ef:a5:ba:80:49:b5:00: 03:a3:98:98:7b:1c:21:6a:75:90:96:cc:56:ab:aa: 9f:2e:b6:f1:b1:97:c8:68:0b:46:1c:fe:3f:71:74: a6:3b:54:9b:29:cd:eb:8e:9b:14:92:c6:58:d4:59: 15:37:37:db:ab:ef:7e:ab:ff:92:b3:02:70:d4:fe: 4c:b3:9c:06:28:18:37:21:c1:d9:3f:4d:e3:6f:47: 6e:67:fa:c9:b7:a5:38:55:ef:0a:17:d2:96:67:92: 55:c0:7c:c5:94:b9:de:3b:65:83:9c:5d:99:76:d5: d6:9c:d8:a4:5d:3e:b1:0d:3a:2b:10:a2:bc:47:59: c1:45:58:e2:96:e1:80:59:cb:f1:fa:c9:7f:cb:b7: 1b:c3:81:d3:a4:74:09:2a:84:c9:08:11:9a:38:37: 20:51:31:a1:2b:4a:c9:56:c5:98:84:b5:ee:be:42: b8:68:a5:5e:fe:54:e0:ba:4b:b2:e9:9c:de:8f:f4: 43:97:cf:b9:31:f1:d7:9e:56:02:1b:40:94:99:0d: b9:b0:b7:98:d7:eb:01:b6:db:4d:02:44:7c:28:37: 97:19:e2:74:0b:45:57:e8:5e:a9:43:a6:63:44:9b: 17:f2:2c:9e:52:5c:57:12:8c:08:08:6a:43:67:82: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:8F:0B:BA:20:B8:E9:4D:85:51:CF:FD:47:A7:E7:6A:55:B5:2A:F7 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a633a3a2f34362d3438203d3e203230343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:c::/46 Signature Algorithm: sha256WithRSAEncryption 7e:21:9e:8a:78:7f:b1:7b:82:5d:31:74:55:db:6c:59:bd:d7: a7:b1:9a:dd:aa:54:58:07:44:de:69:d1:0b:30:63:2c:56:62: 9b:0a:0e:53:f4:9a:2b:06:ca:5b:8f:4d:61:ef:4e:8f:3d:b0: a7:68:03:7a:fa:64:2f:dd:41:9d:7e:c5:24:25:14:96:17:d1: aa:17:31:14:ef:12:c9:04:ec:66:8d:4a:7d:44:39:9d:ee:5c: 10:47:51:5f:11:48:95:28:7c:44:b9:24:34:43:a8:27:87:8a: 8f:c7:1f:34:6b:af:ae:9b:36:b7:29:e5:12:63:b0:d0:04:be: 0a:36:84:ef:03:07:e3:f9:fd:29:4d:8e:5c:3d:a7:5a:c9:c8: f6:7a:9e:ad:b8:9c:0f:cc:04:95:48:b7:5c:0f:cc:32:01:a3: 44:cc:e5:d1:2f:a9:fa:9b:3c:ca:33:c0:e6:09:46:e5:2c:a1: db:f5:a9:12:85:1d:f3:e5:fe:5c:41:60:c7:60:bb:e8:79:fa: bf:fe:f2:7a:2b:e0:29:89:38:6c:4c:4c:58:e6:84:1d:cd:f9: 22:c4:ec:81:bd:85:fd:3d:8a:43:f5:19:b5:38:34:b6:59:a0: 55:d8:2e:d9:5e:8b:cf:4e:90:18:16:3e:81:6f:d9:08:fc:b8: d8:8e:56:58 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIURciPDvu2qyj3M9fPs4Q++44iCrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDExMTkwNzQzNTZaFw0yNTExMTgwNzQ4NTZaMDMxMTAvBgNV BAMTKEIwOEYwQkJBMjBCOEU5NEQ4NTUxQ0ZGRDQ3QTdFNzZBNTVCNTJBRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeFvdSIg2T76W6gEm1AAOjmJh7 HCFqdZCWzFarqp8utvGxl8hoC0Yc/j9xdKY7VJspzeuOmxSSxljUWRU3N9ur736r /5KzAnDU/kyznAYoGDchwdk/TeNvR25n+sm3pThV7woX0pZnklXAfMWUud47ZYOc XZl21dac2KRdPrENOisQorxHWcFFWOKW4YBZy/H6yX/LtxvDgdOkdAkqhMkIEZo4 NyBRMaErSslWxZiEte6+QrhopV7+VOC6S7LpnN6P9EOXz7kx8deeVgIbQJSZDbmw t5jX6wG2200CRHwoN5cZ4nQLRVfoXqlDpmNEmxfyLJ5SXFcSjAgIakNnguXpAgMB AAGjggJ9MIICeTAdBgNVHQ4EFgQUsI8LuiC46U2FUc/9R6fnalW1KvcwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBrwYIKwYBBQUHAQsEgaIwgZ8wgZwGCCsGAQUF BzALhoGPcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIzMDM0Mzcz My5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHAioLTgcADDANBgkqhkiG9w0BAQsFAAOCAQEAfiGeinh/sXuC XTF0VdtsWb3Xp7Ga3apUWAdE3mnRCzBjLFZimwoOU/SaKwbKW49NYe9Ojz2wp2gD evpkL91BnX7FJCUUlhfRqhcxFO8SyQTsZo1KfUQ5ne5cEEdRXxFIlSh8RLkkNEOo J4eKj8cfNGuvrps2tynlEmOw0AS+CjaE7wMH4/n9KU2OXD2nWsnI9nqerbicD8wE lUi3XA/MMgGjRMzl0S+p+ps8yjPA5glG5Syh2/WpEoUd8+X+XEFgx2C76Hn6v/7y eivgKYk4bExMWOaEHc35IsTsgb2F/T2KQ/UZtTg0tlmgVdgu2V6Lz06QGBY+gW/Z CPy42I5WWA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org