$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6666633a3a2f34362d3438203d3e20323135313931.roa File: 326130623a346530373a6666633a3a2f34362d3438203d3e20323135313931.roa (raw, json) Hash identifier: 6xiuBMlQzi6+vLG9xTbQsG48Vtdgi9h2LRVB/LnnHyc= Subject key identifier: C9:59:B0:A4:9D:41:34:0B:AA:BE:F3:B0:4E:62:79:96:58:5D:87:6F Certificate issuer: /CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Certificate serial: 692E7B093B3E6D1F6D585C4310D1A17C3DA504BE Authority key identifier: D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6666633a3a2f34362d3438203d3e20323135313931.roa Signing time: Tue 23 Jul 2024 08:37:21 +0000 ROA not before: Tue 23 Jul 2024 08:32:21 +0000 ROA not after: Tue 22 Jul 2025 08:37:21 +0000 asID: 215191 IP address blocks: 2a0b:4e07:ffc::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.mft rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:2e:7b:09:3b:3e:6d:1f:6d:58:5c:43:10:d1:a1:7c:3d:a5:04:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D18207466AB0A7D7D1EF3C7CD02E80BED58340BC Validity Not Before: Jul 23 08:32:21 2024 GMT Not After : Jul 22 08:37:21 2025 GMT Subject: CN=C959B0A49D41340BAABEF3B04E627996585D876F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:be:52:e9:a7:d2:5a:f3:26:f7:22:16:29:70: e2:58:18:db:5c:08:63:bb:3a:1b:5d:7b:54:d0:32: 03:1e:70:71:98:62:f2:7b:bc:83:11:58:fc:3f:e2: 30:0e:6d:78:a7:62:51:b1:76:42:08:f1:f7:9a:22: 56:71:f6:95:88:8d:fd:c9:d4:3c:51:40:86:91:cd: e0:77:9b:41:78:5e:bd:63:b0:c1:1c:42:ad:2a:38: 04:b3:0b:6f:40:d1:79:f6:64:76:94:d1:bb:f4:1e: 1c:1c:52:78:22:f8:0f:95:9f:eb:de:ec:5f:fe:80: 71:42:a1:03:44:93:f3:32:67:f1:76:6f:0e:8f:b0: 4e:ae:62:61:ef:44:2a:1b:90:5b:e2:04:db:1b:5c: 09:33:8e:13:ff:f1:fb:ce:0b:ef:d0:fc:2e:e0:46: b7:4c:eb:6a:66:16:99:7f:5a:8d:a6:f8:fb:36:c6: 8a:a8:7f:79:19:7a:8e:82:d4:14:38:90:5f:70:c6: 6e:b9:ae:70:18:f1:81:58:89:66:7e:e9:8a:ed:fa: 92:29:1e:99:4c:cd:dc:de:07:be:a5:a1:e8:58:df: 3d:a6:13:88:ad:2f:5a:38:82:4e:76:c7:f1:80:0b: 24:6f:44:42:e7:c3:19:99:23:ff:fe:d8:b5:e3:49: 65:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:59:B0:A4:9D:41:34:0B:AA:BE:F3:B0:4E:62:79:96:58:5D:87:6F X509v3 Authority Key Identifier: keyid:D1:82:07:46:6A:B0:A7:D7:D1:EF:3C:7C:D0:2E:80:BE:D5:83:40:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/D18207466AB0A7D7D1EF3C7CD02E80BED58340BC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/0c70401c-7f41-4a6b-9434-cc80dca093e6/2/326130623a346530373a6666633a3a2f34362d3438203d3e20323135313931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0b:4e07:ffc::/46 Signature Algorithm: sha256WithRSAEncryption 4e:0e:f7:c5:d7:5f:74:43:63:a5:fa:bf:58:cc:d0:f1:53:b3: 9a:bc:2e:c8:ec:1d:6c:6f:d3:50:6b:c8:b6:20:0b:39:3c:a4: 3a:8e:0f:b6:68:09:04:f7:e9:98:68:b2:0c:98:a3:99:6a:b3: dc:c8:11:45:a6:18:e6:90:d6:b8:e6:67:81:f1:b4:91:93:92: bd:5a:a5:e3:a5:a8:75:73:ea:44:14:24:e5:6e:e1:29:fd:4e: f1:33:75:32:ff:c8:c2:20:5f:fb:02:a5:ca:de:30:36:47:15: 3d:c7:65:6c:2e:10:64:e4:74:3c:83:ab:fa:82:0e:84:41:97: b5:da:8b:23:60:59:ca:b6:3b:6c:25:44:0e:7b:2f:31:e0:73: 15:15:90:a9:fe:db:a1:a3:69:c3:85:c9:bb:56:ed:85:9a:19: 52:d5:1d:a5:57:7e:3c:2d:60:8e:1a:7a:97:45:cf:6d:be:91: 60:b1:a8:0f:8a:ca:48:8f:60:f7:fc:19:e2:7a:97:0c:26:17: c0:bc:21:d5:38:22:e6:64:21:1e:c4:1b:ae:65:80:ab:b1:c0: 2e:83:c9:ea:a0:c3:25:d9:ea:b7:d1:81:d0:71:74:82:38:f1: 72:21:52:43:18:df:31:85:85:df:ed:58:2e:8e:07:7c:09:10: 7a:77:ae:4d -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUaS57CTs+bR9tWFxDENGhfD2lBL4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVE NTgzNDBCQzAeFw0yNDA3MjMwODMyMjFaFw0yNTA3MjIwODM3MjFaMDMxMTAvBgNV BAMTKEM5NTlCMEE0OUQ0MTM0MEJBQUJFRjNCMDRFNjI3OTk2NTg1RDg3NkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSvlLpp9Ja8yb3IhYpcOJYGNtc CGO7Ohtde1TQMgMecHGYYvJ7vIMRWPw/4jAObXinYlGxdkII8feaIlZx9pWIjf3J 1DxRQIaRzeB3m0F4Xr1jsMEcQq0qOASzC29A0Xn2ZHaU0bv0HhwcUngi+A+Vn+ve 7F/+gHFCoQNEk/MyZ/F2bw6PsE6uYmHvRCobkFviBNsbXAkzjhP/8fvOC+/Q/C7g RrdM62pmFpl/Wo2m+Ps2xoqof3kZeo6C1BQ4kF9wxm65rnAY8YFYiWZ+6Yrt+pIp HplMzdzeB76loehY3z2mE4itL1o4gk52x/GACyRvRELnwxmZI//+2LXjSWUXAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUyVmwpJ1BNAuqvvOwTmJ5llhdh28wHwYDVR0j BBgwFoAU0YIHRmqwp9fR7zx80C6AvtWDQLwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMGM3MDQwMWMtN2Y0MS00YTZiLTk0MzQtY2M4MGRjYTA5 M2U2LzIvRDE4MjA3NDY2QUIwQTdEN0QxRUYzQzdDRDAyRTgwQkVENTgzNDBCQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04YmE1LTQ3 OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC9EMTgyMDc0NjZBQjBBN0Q3RDFFRjNDN0NE MDJFODBCRUQ1ODM0MEJDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wYzcwNDAxYy03ZjQxLTRhNmItOTQzNC1jYzgwZGNhMDkzZTYvMi8zMjYxMzA2 MjNhMzQ2NTMwMzczYTY2NjY2MzNhM2EyZjM0MzYyZDM0MzgyMDNkM2UyMDMyMzEz NTMxMzkzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHAioLTgcP/DANBgkqhkiG9w0BAQsFAAOCAQEATg73 xddfdENjpfq/WMzQ8VOzmrwuyOwdbG/TUGvItiALOTykOo4PtmgJBPfpmGiyDJij mWqz3MgRRaYY5pDWuOZngfG0kZOSvVql46WodXPqRBQk5W7hKf1O8TN1Mv/IwiBf +wKlyt4wNkcVPcdlbC4QZOR0PIOr+oIOhEGXtdqLI2BZyrY7bCVEDnsvMeBzFRWQ qf7boaNpw4XJu1bthZoZUtUdpVd+PC1gjhp6l0XPbb6RYLGoD4rKSI9g9/wZ4nqX DCYXwLwh1Tgi5mQhHsQbrmWAq7HALoPJ6qDDJdnqt9GB0HF0gjjxciFSQxjfMYWF 3+1YLo4HfAkQeneuTQ== -----END CERTIFICATE-----Generated at Thu Nov 21 08:09:03 2024 by rpki-client on console-fra.rpki-client.org