$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a64613a3a2f34382d3438203d3e203133383532.roa File: 326130623a346530373a64613a3a2f34382d3438203d3e203133383532.roa (raw, json) Hash identifier: ku7/0U4Vd0kZuD++HLWc6SaQ2D8A25UflflckPoaKKM= Subject key identifier: FE:D3:69:9B:8B:E4:58:4D:16:63:1A:BE:4C:F1:50:0D:F2:1B:7B:44 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 71EF7A4B2DF066766B2B81637AC0C3E0D09A3DB5 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a64613a3a2f34382d3438203d3e203133383532.roa Signing time: Thu 03 Oct 2024 14:04:59 +0000 ROA not before: Thu 03 Oct 2024 13:59:59 +0000 ROA not after: Thu 02 Oct 2025 14:04:59 +0000 asID: 13852 IP address blocks: 2a0b:4e07:da::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:ef:7a:4b:2d:f0:66:76:6b:2b:81:63:7a:c0:c3:e0:d0:9a:3d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Oct 3 13:59:59 2024 GMT Not After : Oct 2 14:04:59 2025 GMT Subject: CN=FED3699B8BE4584D16631ABE4CF1500DF21B7B44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b8:ca:b4:c8:24:64:00:fa:d0:dc:8d:32:1c: e6:48:98:56:5c:dd:2e:db:62:ca:8f:4d:06:8f:89: b4:e3:80:35:e0:cd:75:e9:80:68:59:d0:52:cf:62: 44:05:19:96:a8:10:02:07:ea:35:b2:13:ac:10:48: a6:75:0e:cd:1f:a4:8a:a5:4d:7c:69:19:54:15:82: eb:9b:84:76:32:a6:f3:20:ce:74:a2:aa:f5:79:d6: ce:43:36:f3:b6:d7:2d:46:6d:9f:c8:34:c1:47:de: d6:c6:19:bb:38:4a:9c:8e:b0:c6:59:4f:6a:3e:34: 81:5a:c1:c2:e0:86:37:f3:bc:f4:ae:20:9f:f5:bf: 2b:5b:07:90:5a:1a:26:b5:2b:09:33:93:f6:e7:15: 89:cb:39:a6:ce:49:fe:c5:e0:59:ea:c6:fb:37:1d: c5:9c:4f:7a:cd:e4:df:9e:10:30:1d:41:bc:06:15: ea:ca:50:30:63:0a:6c:ec:c4:8e:79:74:08:c3:19: 8f:02:4c:8b:2b:d8:fc:17:8c:70:31:e8:5c:a1:1d: 88:f2:cb:31:46:33:85:a9:02:d7:03:ab:9f:61:55: c6:97:85:07:72:50:c7:15:1e:7f:03:4b:9d:b6:42: 10:2b:91:f4:36:cb:ca:b5:4d:b6:4e:3d:b6:b6:87: 5c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D3:69:9B:8B:E4:58:4D:16:63:1A:BE:4C:F1:50:0D:F2:1B:7B:44 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a64613a3a2f34382d3438203d3e203133383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:da::/48 Signature Algorithm: sha256WithRSAEncryption a8:26:9c:3d:c0:38:bd:64:57:88:80:ad:d8:22:d8:30:76:79: a9:65:88:45:29:a3:37:4e:a9:8f:d3:33:dd:57:69:b2:17:a3: 53:2d:9d:62:ce:15:b4:1f:ad:e8:42:7a:31:2e:b5:8e:cc:16: d6:1d:a1:ea:22:da:87:e6:cc:2a:7f:3e:2f:87:2e:5b:01:f8: 83:c3:ad:2a:65:cf:0e:61:03:e3:ee:fc:fe:3b:79:b7:72:da: 2e:92:21:6e:bd:b2:04:a5:2e:bd:59:dd:2f:bf:e0:a9:07:61: 86:e1:80:73:a9:46:dd:b4:c9:30:a1:13:f6:90:20:58:98:f0: cb:c0:b1:0f:a8:ba:05:93:38:c5:fa:bc:ac:2f:45:28:be:73: a2:84:ab:d7:a2:47:e8:af:3f:0d:ad:2e:e4:8f:22:b6:2a:03: fa:bd:c5:0d:d7:1a:12:89:3a:43:34:65:4b:89:80:ee:6c:81: 46:b2:b6:43:cd:f2:91:a1:ce:c9:f7:e8:9e:b1:fc:a6:16:c2: b3:f6:c7:73:c4:e2:45:a6:9d:38:db:8e:9f:37:fe:f8:43:b5: 94:83:21:79:58:98:1a:bf:0e:be:ee:67:ab:d3:d9:a7:a8:0a: db:d2:28:b5:87:c5:2a:40:c9:1d:98:8e:66:0d:93:e6:a2:f2: 6c:46:bd:8e -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgIUce96Sy3wZnZrK4FjesDD4NCaPbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDEwMDMxMzU5NTlaFw0yNTEwMDIxNDA0NTlaMDMxMTAvBgNV BAMTKEZFRDM2OTlCOEJFNDU4NEQxNjYzMUFCRTRDRjE1MDBERjIxQjdCNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuuMq0yCRkAPrQ3I0yHOZImFZc 3S7bYsqPTQaPibTjgDXgzXXpgGhZ0FLPYkQFGZaoEAIH6jWyE6wQSKZ1Ds0fpIql TXxpGVQVguubhHYypvMgznSiqvV51s5DNvO21y1GbZ/INMFH3tbGGbs4SpyOsMZZ T2o+NIFawcLghjfzvPSuIJ/1vytbB5BaGia1Kwkzk/bnFYnLOabOSf7F4Fnqxvs3 HcWcT3rN5N+eEDAdQbwGFerKUDBjCmzsxI55dAjDGY8CTIsr2PwXjHAx6FyhHYjy yzFGM4WpAtcDq59hVcaXhQdyUMcVHn8DS522QhArkfQ2y8q1TbZOPba2h1wHAgMB AAGjggJ/MIICezAdBgNVHQ4EFgQU/tNpm4vkWE0WYxq+TPFQDfIbe0QwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBsQYIKwYBBQUHAQsEgaQwgaEwgZ4GCCsGAQUF BzALhoGRcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTY0NjEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzgz NTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/ BBMwETAPBAIAAjAJAwcAKgtOBwDaMA0GCSqGSIb3DQEBCwUAA4IBAQCoJpw9wDi9 ZFeIgK3YItgwdnmpZYhFKaM3TqmP0zPdV2myF6NTLZ1izhW0H63oQnoxLrWOzBbW HaHqItqH5swqfz4vhy5bAfiDw60qZc8OYQPj7vz+O3m3ctoukiFuvbIEpS69Wd0v v+CpB2GG4YBzqUbdtMkwoRP2kCBYmPDLwLEPqLoFkzjF+rysL0UovnOihKvXokfo rz8NrS7kjyK2KgP6vcUN1xoSiTpDNGVLiYDubIFGsrZDzfKRoc7J9+iesfymFsKz 9sdzxOJFpp04246fN/74Q7WUgyF5WJgavw6+7mer09mnqArb0ii1h8UqQMkdmI5m DZPmovJsRr2O -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org