$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6432343a3a2f34362d3438203d3e20323135363439.roa File: 326130623a346530373a6432343a3a2f34362d3438203d3e20323135363439.roa (raw, json) Hash identifier: AEsSa7PTrw8Q3J81c/QPpx00Fsl2HDjGv45J2P7gbzY= Subject key identifier: 99:33:66:EB:C3:5C:DA:9A:A4:30:A0:52:BB:80:2D:D7:8A:E9:68:E0 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 605E5188DA8B3289695EAA1B85B03D015F30A0DD Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6432343a3a2f34362d3438203d3e20323135363439.roa Signing time: Wed 28 Aug 2024 10:10:27 +0000 ROA not before: Wed 28 Aug 2024 10:05:27 +0000 ROA not after: Wed 27 Aug 2025 10:10:27 +0000 asID: 215649 IP address blocks: 2a0b:4e07:d24::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:5e:51:88:da:8b:32:89:69:5e:aa:1b:85:b0:3d:01:5f:30:a0:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 28 10:05:27 2024 GMT Not After : Aug 27 10:10:27 2025 GMT Subject: CN=993366EBC35CDA9AA430A052BB802DD78AE968E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:2a:7b:64:ca:d2:cb:e2:88:dd:46:7a:94:53: 92:2e:d2:f4:28:f3:4f:f7:e4:7d:11:70:ee:a7:44: 22:c8:26:b0:55:9a:21:61:c8:e5:2a:b9:b7:3f:67: 46:44:1c:bc:4a:6c:7d:f6:9e:f4:12:23:af:42:3a: 9b:74:2e:78:e7:de:4f:86:2b:c3:d3:5f:a5:6a:18: 1f:bb:4a:cb:81:63:d9:e8:5e:0f:d7:d8:46:fe:a9: 32:a3:8c:44:cb:27:70:0e:7a:13:f8:60:d9:fb:3b: 39:5f:d0:db:88:5f:01:29:c4:26:7d:27:d7:64:cb: c2:97:70:3f:02:55:80:59:af:38:5c:e9:53:b4:0b: 17:3b:11:2a:f0:b6:b1:5a:76:61:d7:55:7f:38:81: d6:ac:30:f7:5b:aa:bd:48:50:8b:e0:1a:20:a8:dc: 13:52:fe:b6:31:dd:fe:56:7a:7c:92:84:c7:55:33: 02:5a:c2:a6:c0:69:e2:07:d6:a4:2a:68:59:c5:26: a5:97:5f:33:39:70:c5:4a:59:59:b3:f8:54:43:ef: 32:86:32:e7:c5:e4:9b:19:ed:78:c9:d0:dd:5e:aa: 13:30:91:73:45:a6:35:01:8a:47:5b:59:44:6e:52: 08:74:da:7a:89:2c:50:bb:bf:ba:63:ae:df:67:60: e0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:33:66:EB:C3:5C:DA:9A:A4:30:A0:52:BB:80:2D:D7:8A:E9:68:E0 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6432343a3a2f34362d3438203d3e20323135363439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:d24::/46 Signature Algorithm: sha256WithRSAEncryption 64:f9:c7:30:b0:00:d3:c3:9e:78:ef:e8:ea:3f:5e:a2:19:91: 4f:63:ee:88:bf:ed:71:2e:78:8d:1b:1e:c0:b1:ca:1b:e1:3e: a4:6a:05:37:26:c6:ae:57:53:ff:1b:89:3a:f8:99:e9:b4:aa: 14:42:18:70:ff:fb:08:5f:9e:90:fe:16:18:1e:7f:6b:2d:45: 03:4b:58:c9:60:5c:cc:fa:3c:78:5f:ec:48:ae:c0:d0:23:47: 76:22:df:4a:77:f9:66:9a:49:f3:8f:17:b8:ac:c2:c3:1a:24: 9b:37:39:59:80:75:31:3d:5c:3d:6c:8d:5b:e1:d2:a1:f4:fb: 51:a1:f5:ee:18:70:49:6d:26:70:4c:b1:7e:0f:e4:c1:bb:1d: 21:ff:17:3b:0a:ea:ac:9c:6d:90:4b:b1:01:cd:13:69:b9:bb: ef:07:58:06:99:62:7b:e5:6e:92:95:1b:47:03:c0:1e:6b:2d: d7:52:eb:f3:50:ca:67:51:54:13:78:0b:cd:22:74:9c:09:e4: 50:e4:87:ba:3e:7a:1e:65:5a:48:4e:47:59:89:6e:c0:76:11: ee:bc:04:60:9d:79:c1:66:18:e7:62:e7:df:ec:8e:17:bd:08: 45:32:87:e9:89:98:85:1f:19:45:f6:7d:fc:48:d1:51:d4:be: b9:ac:50:c0 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUYF5RiNqLMolpXqobhbA9AV8woN0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MjgxMDA1MjdaFw0yNTA4MjcxMDEwMjdaMDMxMTAvBgNV BAMTKDk5MzM2NkVCQzM1Q0RBOUFBNDMwQTA1MkJCODAyREQ3OEFFOTY4RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkKntkytLL4ojdRnqUU5Iu0vQo 80/35H0RcO6nRCLIJrBVmiFhyOUqubc/Z0ZEHLxKbH32nvQSI69COpt0Lnjn3k+G K8PTX6VqGB+7SsuBY9noXg/X2Eb+qTKjjETLJ3AOehP4YNn7Ozlf0NuIXwEpxCZ9 J9dky8KXcD8CVYBZrzhc6VO0Cxc7ESrwtrFadmHXVX84gdasMPdbqr1IUIvgGiCo 3BNS/rYx3f5WenyShMdVMwJawqbAaeIH1qQqaFnFJqWXXzM5cMVKWVmz+FRD7zKG MufF5JsZ7XjJ0N1eqhMwkXNFpjUBikdbWURuUgh02nqJLFC7v7pjrt9nYOAjAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUmTNm68Nc2pqkMKBSu4At14rpaOAwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTY0MzIzNDNhM2EyZjM0MzYyZDM0MzgyMDNkM2UyMDMyMzEz NTM2MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHAioLTgcNJDANBgkqhkiG9w0BAQsFAAOCAQEAZPnH MLAA08OeeO/o6j9eohmRT2PuiL/tcS54jRsewLHKG+E+pGoFNybGrldT/xuJOviZ 6bSqFEIYcP/7CF+ekP4WGB5/ay1FA0tYyWBczPo8eF/sSK7A0CNHdiLfSnf5ZppJ 848XuKzCwxokmzc5WYB1MT1cPWyNW+HSofT7UaH17hhwSW0mcEyxfg/kwbsdIf8X OwrqrJxtkEuxAc0Tabm77wdYBplie+VukpUbRwPAHmst11Lr81DKZ1FUE3gLzSJ0 nAnkUOSHuj56HmVaSE5HWYluwHYR7rwEYJ15wWYY52Ln3+yOF70IRTKH6YmYhR8Z RfZ9/EjRUdS+uaxQwA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org