$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa File: 326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa (raw, json) Hash identifier: r6tJ7+PsYReNkVi9bF8I5Y276vNcfkbxeYw2zslVfdY= Subject key identifier: 78:83:CB:44:6C:EE:1E:20:79:A5:66:97:18:F1:D0:40:B3:A0:27:D5 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 2F915E7508D17C244903318CF5CF276BD68AE027 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa Signing time: Mon 12 Aug 2024 11:56:08 +0000 ROA not before: Mon 12 Aug 2024 11:51:08 +0000 ROA not after: Mon 11 Aug 2025 11:56:08 +0000 asID: 215192 IP address blocks: 2a0b:4e07:e54::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:91:5e:75:08:d1:7c:24:49:03:31:8c:f5:cf:27:6b:d6:8a:e0:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Aug 12 11:51:08 2024 GMT Not After : Aug 11 11:56:08 2025 GMT Subject: CN=7883CB446CEE1E2079A5669718F1D040B3A027D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:7f:44:57:e0:e2:83:7b:20:91:a7:45:31: b5:95:64:23:ba:49:98:d3:2e:4d:9e:07:fb:70:d6: f7:5e:87:ba:4c:01:5b:0f:1c:45:ef:9c:14:51:de: 65:6e:10:ca:4a:91:aa:e0:a8:6d:b2:e7:45:fd:df: be:3f:67:bb:2a:78:26:f3:5a:d0:9e:80:ff:ec:30: 52:ba:e6:45:67:a0:6c:2e:74:1c:85:e1:bb:e8:96: 2d:7b:f3:f1:4a:aa:a5:69:29:82:1c:68:90:04:6d: 4f:68:08:ec:a1:0e:74:3b:47:b0:e0:12:f7:a8:0e: 50:f5:35:6b:d9:c6:00:7e:cb:d9:95:f3:0b:0c:ad: 9f:46:ba:ee:e8:c4:f1:9f:22:3f:8a:3e:f5:e4:52: 87:57:e9:ad:1c:16:ec:8e:3f:fa:e7:d7:1f:91:6e: 84:61:ab:34:11:54:10:1d:46:c6:8f:64:50:51:49: b7:37:d6:0b:ec:af:6c:25:cf:ba:78:87:c1:0c:38: 38:64:47:3e:f5:bc:b3:f1:03:07:1e:2b:12:2f:79: d8:82:2d:c8:61:8f:4f:48:db:13:d3:ab:5e:09:a9: c0:42:48:56:9b:82:7c:6d:4f:97:51:2b:b5:19:3a: 82:b7:ce:b8:94:02:51:c7:e5:63:57:89:16:bf:3d: 64:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:83:CB:44:6C:EE:1E:20:79:A5:66:97:18:F1:D0:40:B3:A0:27:D5 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6535343a3a2f34362d3438203d3e20323135313932.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:e54::/46 Signature Algorithm: sha256WithRSAEncryption 96:fc:c7:05:42:fd:e9:41:44:ea:4f:a0:da:3c:1f:0c:61:ac: 45:e4:d5:8f:f0:5a:96:01:e1:cd:90:73:25:c2:e2:ad:68:f6: 4c:28:3d:6c:4a:c4:93:1a:42:80:eb:cf:5a:6e:4f:40:6c:1e: 8a:a5:d7:60:53:eb:62:b6:fc:a8:1d:71:8a:b6:7b:27:57:0f: 22:5c:fe:99:63:09:1d:7b:e5:72:aa:be:8e:00:75:3a:06:08: 20:82:e5:3c:d9:1b:f0:27:21:93:47:9e:a5:8d:0f:14:6c:40: 4d:86:cc:cb:5d:62:2b:44:2b:7b:0a:57:31:35:99:be:a7:a9: 72:8e:28:3f:ee:45:0a:89:2f:bb:25:1c:b3:ff:ca:fd:9e:e3: 6e:3c:0d:98:3b:a3:b9:c0:90:95:56:56:68:11:5a:c4:9b:d3: 1c:96:4f:1c:fc:e1:fe:d6:ef:55:73:4e:32:40:be:74:ab:1a: e6:57:ae:94:dc:42:5f:db:9d:dc:d9:d8:f9:08:08:9e:b8:cc: dd:a5:5f:d3:7a:ce:1c:31:28:91:41:55:2a:87:8b:69:18:81: 9d:58:66:fd:73:70:bf:ec:17:e4:d5:11:78:61:22:18:db:98: 54:45:8b:05:3f:1c:71:02:e5:0d:36:22:7c:42:de:90:39:66: fa:d9:cc:04 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUL5FedQjRfCRJAzGM9c8na9aK4CcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA4MTIxMTUxMDhaFw0yNTA4MTExMTU2MDhaMDMxMTAvBgNV BAMTKDc4ODNDQjQ0NkNFRTFFMjA3OUE1NjY5NzE4RjFEMDQwQjNBMDI3RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+yH9EV+Dig3sgkadFMbWVZCO6 SZjTLk2eB/tw1vdeh7pMAVsPHEXvnBRR3mVuEMpKkargqG2y50X9374/Z7sqeCbz WtCegP/sMFK65kVnoGwudByF4bvoli178/FKqqVpKYIcaJAEbU9oCOyhDnQ7R7Dg EveoDlD1NWvZxgB+y9mV8wsMrZ9Guu7oxPGfIj+KPvXkUodX6a0cFuyOP/rn1x+R boRhqzQRVBAdRsaPZFBRSbc31gvsr2wlz7p4h8EMODhkRz71vLPxAwceKxIvediC Lchhj09I2xPTq14JqcBCSFabgnxtT5dRK7UZOoK3zriUAlHH5WNXiRa/PWR9AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUeIPLRGzuHiB5pWaXGPHQQLOgJ9UwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTY1MzUzNDNhM2EyZjM0MzYyZDM0MzgyMDNkM2UyMDMyMzEz NTMxMzkzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHAioLTgcOVDANBgkqhkiG9w0BAQsFAAOCAQEAlvzH BUL96UFE6k+g2jwfDGGsReTVj/BalgHhzZBzJcLirWj2TCg9bErEkxpCgOvPWm5P QGweiqXXYFPrYrb8qB1xirZ7J1cPIlz+mWMJHXvlcqq+jgB1OgYIIILlPNkb8Cch k0eepY0PFGxATYbMy11iK0QrewpXMTWZvqepco4oP+5FCokvuyUcs//K/Z7jbjwN mDujucCQlVZWaBFaxJvTHJZPHPzh/tbvVXNOMkC+dKsa5leulNxCX9ud3NnY+QgI nrjM3aVf03rOHDEokUFVKoeLaRiBnVhm/XNwv+wX5NUReGEiGNuYVEWLBT8ccQLl DTYifELekDlm+tnMBA== -----END CERTIFICATE-----Generated at Thu Nov 21 07:50:28 2024 by rpki-client on console-ams.rpki-client.org