$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6536653a3a2f34382d3438203d3e203133383532.roa File: 326130623a346530373a6536653a3a2f34382d3438203d3e203133383532.roa (raw, json) Hash identifier: 7FXqTMCIxQahAHWesfkI0LEQlrRWdbjDj1FedlYGyRk= Subject key identifier: 5F:6E:C6:98:1F:1A:97:9F:08:86:F0:C6:05:92:89:AC:CA:33:E6:57 Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 4C2F2CD3492506117CDA2ACA7EE89C596122E259 Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6536653a3a2f34382d3438203d3e203133383532.roa Signing time: Mon 16 Sep 2024 09:33:23 +0000 ROA not before: Mon 16 Sep 2024 09:28:23 +0000 ROA not after: Mon 15 Sep 2025 09:33:23 +0000 asID: 13852 IP address blocks: 2a0b:4e07:e6e::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 01:28:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:2f:2c:d3:49:25:06:11:7c:da:2a:ca:7e:e8:9c:59:61:22:e2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Sep 16 09:28:23 2024 GMT Not After : Sep 15 09:33:23 2025 GMT Subject: CN=5F6EC6981F1A979F0886F0C6059289ACCA33E657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2c:52:ff:f5:d5:20:08:c9:5a:9b:6a:69:2e: 33:ca:d0:27:a3:68:5d:85:8d:e9:42:e5:80:7d:10: a7:79:79:d0:f0:64:14:33:68:54:ae:e7:c8:94:6e: 2e:1f:8b:de:6b:5f:69:72:b2:36:fe:1a:49:12:4e: d2:99:8f:fb:6e:80:56:5a:81:4d:59:b2:f5:f8:f7: fd:ef:e7:d5:ca:5e:5f:cb:6a:72:67:5f:a2:2d:df: 49:e7:94:d1:23:f7:6a:a8:99:81:6b:ca:10:14:40: e7:ed:2c:af:37:61:f3:51:84:dd:ce:3a:a4:4c:5a: 90:4a:48:35:4e:39:c2:c9:95:6e:08:d7:8a:55:e1: 58:ee:ef:14:81:d4:46:a1:8c:45:bf:f8:a1:e4:4a: ad:b3:5a:4b:5b:96:60:95:81:a5:30:ba:cf:45:d8: 20:0a:4f:9b:7c:07:26:1e:57:ef:4b:8f:bb:73:80: 2c:d2:b6:db:f7:f1:9e:b9:4a:46:52:89:b6:ae:0e: 93:19:47:1a:e2:ea:a8:4d:0e:d8:a9:9f:58:49:d7: 57:0e:23:97:61:42:b8:cf:47:81:c3:d8:31:06:90: 7f:d8:1a:f0:0d:2a:ab:1d:76:ac:46:72:de:51:72: f4:d6:05:60:51:18:cd:0c:b1:06:a6:f6:a9:c6:eb: 54:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:6E:C6:98:1F:1A:97:9F:08:86:F0:C6:05:92:89:AC:CA:33:E6:57 X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6536653a3a2f34382d3438203d3e203133383532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:e6e::/48 Signature Algorithm: sha256WithRSAEncryption 39:cc:49:61:07:74:94:a5:dc:79:f6:e3:ea:bc:a7:e3:eb:61: a3:21:9a:84:2b:de:89:ad:5a:33:a9:f0:c5:4e:20:5b:2f:6a: 62:7b:c6:9a:cd:f7:ac:75:2e:fe:91:3a:39:21:25:2a:94:13: 00:49:78:23:68:8e:ef:42:09:c3:7d:d5:e4:b6:2a:44:9c:80: f3:9e:ff:2f:5e:ea:b0:63:c7:85:c3:0d:3e:dd:0e:35:b0:c2: 05:c7:e8:66:6d:5e:fb:a8:ba:8f:c4:8f:f1:b4:6d:72:d6:a9: 2f:c7:a0:01:2c:2f:f6:f3:1c:3e:03:a5:5a:c7:88:ca:6c:bf: 7d:2f:4c:10:a6:b7:4b:9d:9b:f0:d8:a0:45:c3:e0:03:87:c2: a9:f9:ed:22:a5:e6:ff:32:07:63:c1:5d:e1:8f:c7:75:1c:88: f1:4b:d0:47:91:18:ac:e8:a4:eb:bf:54:9a:a9:11:13:65:04: cc:56:07:a0:0a:31:e3:e8:aa:fd:b0:37:4f:57:f7:4e:c3:3c: e3:5b:65:13:b4:05:cc:b1:37:01:c7:0d:69:19:61:4d:d4:f8: 97:b5:3f:88:31:58:c9:84:49:bd:6b:18:bf:96:c6:21:b1:bf: be:dd:31:23:d0:d7:cb:a3:33:ab:be:8d:8e:13:03:c6:d6:54: 25:0c:fb:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUTC8s00klBhF82irKfuicWWEi4lkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA5MTYwOTI4MjNaFw0yNTA5MTUwOTMzMjNaMDMxMTAvBgNV BAMTKDVGNkVDNjk4MUYxQTk3OUYwODg2RjBDNjA1OTI4OUFDQ0EzM0U2NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9LFL/9dUgCMlam2ppLjPK0Cej aF2FjelC5YB9EKd5edDwZBQzaFSu58iUbi4fi95rX2lysjb+GkkSTtKZj/tugFZa gU1ZsvX49/3v59XKXl/LanJnX6It30nnlNEj92qomYFryhAUQOftLK83YfNRhN3O OqRMWpBKSDVOOcLJlW4I14pV4Vju7xSB1EahjEW/+KHkSq2zWktblmCVgaUwus9F 2CAKT5t8ByYeV+9Lj7tzgCzSttv38Z65SkZSibauDpMZRxri6qhNDtipn1hJ11cO I5dhQrjPR4HD2DEGkH/YGvANKqsddqxGct5RcvTWBWBRGM0MsQam9qnG61TNAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUX27GmB8al58IhvDGBZKJrMoz5lcwHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTY1MzY2NTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzMz ODM1MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqC04HDm4wDQYJKoZIhvcNAQELBQADggEBADnMSWEH dJSl3Hn24+q8p+PrYaMhmoQr3omtWjOp8MVOIFsvamJ7xprN96x1Lv6ROjkhJSqU EwBJeCNoju9CCcN91eS2KkScgPOe/y9e6rBjx4XDDT7dDjWwwgXH6GZtXvuouo/E j/G0bXLWqS/HoAEsL/bzHD4DpVrHiMpsv30vTBCmt0udm/DYoEXD4AOHwqn57SKl 5v8yB2PBXeGPx3UciPFL0EeRGKzopOu/VJqpERNlBMxWB6AKMePoqv2wN09X907D PONbZRO0BcyxNwHHDWkZYU3U+Je1P4gxWMmESb1rGL+WxiGxv77dMSPQ18ujM6u+ jY4TA8bWVCUM+/s= -----END CERTIFICATE-----Generated at Thu Sep 19 17:07:45 2024 by rpki-client on console-fra.rpki-client.org