$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa File: 326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa (raw, json) Hash identifier: 6lFQb6eCXqcLZgd4P35GIc9m+TLBcRj+kWqk182401Q= Subject key identifier: 77:17:8A:49:4E:C8:8C:13:1F:C6:01:E5:35:87:38:20:DD:A3:12:6C Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 7F493E49ED66FD26F7FA28EDF1C9662321A0F94D Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa Signing time: Tue 17 Sep 2024 09:23:34 +0000 ROA not before: Tue 17 Sep 2024 09:18:34 +0000 ROA not after: Tue 16 Sep 2025 09:23:34 +0000 asID: 215953 IP address blocks: 2a0b:4e07:cc::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:49:3e:49:ed:66:fd:26:f7:fa:28:ed:f1:c9:66:23:21:a0:f9:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Sep 17 09:18:34 2024 GMT Not After : Sep 16 09:23:34 2025 GMT Subject: CN=77178A494EC88C131FC601E535873820DDA3126C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dc:47:46:92:35:0e:c5:b0:95:77:ef:ea:eb: db:36:de:dc:1b:71:0f:30:d7:1e:72:4c:14:91:a2: b1:e2:77:27:0d:97:90:31:50:b6:e5:d0:94:d9:e4: ea:5c:29:b6:c1:aa:cb:df:30:13:ba:53:fe:b9:fb: 1f:91:94:1c:4a:6d:0f:16:36:0c:d0:af:77:c7:a3: 56:78:b2:ac:4a:94:12:e3:d6:72:06:1e:56:df:f9: 33:74:38:c5:76:71:4a:98:87:1b:82:95:94:22:5e: 0c:94:20:6d:f5:12:8d:4a:3a:f5:53:82:57:9f:f7: e3:d5:7b:8b:3a:c6:2d:e0:c8:21:95:31:e4:d1:36: b2:3d:36:af:3f:27:47:37:fd:24:2d:ce:76:96:20: f9:a9:86:97:4c:4d:73:68:63:6d:2e:f5:4c:9a:c5: 8a:b7:a3:55:62:e6:e1:c9:2a:98:4e:9b:51:64:ce: 4a:16:2d:f5:63:77:a0:59:7c:f8:87:62:01:e7:80: 61:7d:9f:2c:04:79:00:85:c4:67:4b:78:10:de:f4: 1c:9f:4b:38:92:8e:29:87:d2:4d:85:31:71:34:21: a2:b8:11:e0:86:f8:6b:0e:a6:38:de:3a:e3:99:35: d8:9c:0d:1c:2b:7a:76:1f:9b:2d:e9:58:21:ed:36: 58:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:17:8A:49:4E:C8:8C:13:1F:C6:01:E5:35:87:38:20:DD:A3:12:6C X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a63633a3a2f34382d3438203d3e20323135393533.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:cc::/48 Signature Algorithm: sha256WithRSAEncryption ae:2e:b2:4c:e5:18:41:ff:f8:54:c4:f0:3d:ad:6e:1e:88:5b: 68:c8:25:29:9f:b1:49:1c:45:93:14:b8:97:83:be:9a:af:10: 58:dc:89:77:51:e1:14:9d:36:3e:25:33:74:0a:b9:04:bb:45: a7:96:02:aa:8b:2d:e7:df:7f:e8:e3:9b:1f:f5:2f:4e:e5:3a: b8:19:60:9a:af:35:de:9f:d4:d7:d7:b8:aa:65:5f:4f:cf:ae: 74:a7:b9:e8:15:6b:6d:1c:a6:31:6f:52:4c:a2:a1:67:e8:2f: 18:69:30:4d:61:1e:ee:98:50:e1:83:10:2b:ea:38:2a:61:d2: 75:59:f3:41:d3:b2:e6:42:80:8b:2c:8e:61:ff:c2:46:89:56: 90:b0:15:11:92:e1:20:ee:a8:08:bf:f9:97:d0:4c:e7:71:5e: 3d:4b:57:0b:67:79:64:d9:fb:9b:c9:8d:74:c7:49:4e:e4:42: 2e:0e:ba:5b:2a:07:a5:22:61:4e:0e:52:0d:de:4e:51:c5:90: c9:54:1b:0d:fa:80:a9:38:2b:05:d1:94:62:a4:cb:9f:ce:6d: 6d:94:06:2f:76:67:09:c9:d2:8a:c4:6f:a8:0e:8a:3f:d8:ed: dd:70:84:f8:1e:84:9f:31:f1:80:9b:42:f8:f1:f3:4d:ce:f5: 06:40:ef:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUf0k+Se1m/Sb3+ijt8clmIyGg+U0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA5MTcwOTE4MzRaFw0yNTA5MTYwOTIzMzRaMDMxMTAvBgNV BAMTKDc3MTc4QTQ5NEVDODhDMTMxRkM2MDFFNTM1ODczODIwRERBMzEyNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC13EdGkjUOxbCVd+/q69s23twb cQ8w1x5yTBSRorHidycNl5AxULbl0JTZ5OpcKbbBqsvfMBO6U/65+x+RlBxKbQ8W NgzQr3fHo1Z4sqxKlBLj1nIGHlbf+TN0OMV2cUqYhxuClZQiXgyUIG31Eo1KOvVT glef9+PVe4s6xi3gyCGVMeTRNrI9Nq8/J0c3/SQtznaWIPmphpdMTXNoY20u9Uya xYq3o1Vi5uHJKphOm1FkzkoWLfVjd6BZfPiHYgHngGF9nywEeQCFxGdLeBDe9Byf SziSjimH0k2FMXE0IaK4EeCG+GsOpjjeOuOZNdicDRwrenYfmy3pWCHtNlgPAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUdxeKSU7IjBMfxgHlNYc4IN2jEmwwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTYzNjMzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjMxMzUz OTM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqC04HAMwwDQYJKoZIhvcNAQELBQADggEBAK4uskzl GEH/+FTE8D2tbh6IW2jIJSmfsUkcRZMUuJeDvpqvEFjciXdR4RSdNj4lM3QKuQS7 RaeWAqqLLefff+jjmx/1L07lOrgZYJqvNd6f1NfXuKplX0/PrnSnuegVa20cpjFv UkyioWfoLxhpME1hHu6YUOGDECvqOCph0nVZ80HTsuZCgIssjmH/wkaJVpCwFRGS 4SDuqAi/+ZfQTOdxXj1LVwtneWTZ+5vJjXTHSU7kQi4OulsqB6UiYU4OUg3eTlHF kMlUGw36gKk4KwXRlGKky5/ObW2UBi92ZwnJ0orEb6gOij/Y7d1whPgehJ8x8YCb Qvjx803O9QZA74Q= -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org