$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330303a3a2f34302d3438203d3e20323135343730.roa File: 326131343a373538303a663330303a3a2f34302d3438203d3e20323135343730.roa (raw, json) Hash identifier: X3xnYiPWfIm3B+YPQOjYhBFBsBXuQLEeAv0Jg3YQ+nw= Subject key identifier: EF:F7:0A:1A:E3:E7:F0:79:45:8F:7A:57:65:71:FB:4A:90:DC:1F:0B Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 67E212D6F234D2F7A35D52D1BAA2DBDBA4361845 Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330303a3a2f34302d3438203d3e20323135343730.roa Signing time: Sun 10 Nov 2024 14:49:32 +0000 ROA not before: Sun 10 Nov 2024 14:44:32 +0000 ROA not after: Sun 09 Nov 2025 14:49:32 +0000 asID: 215470 IP address blocks: 2a14:7580:f300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e2:12:d6:f2:34:d2:f7:a3:5d:52:d1:ba:a2:db:db:a4:36:18:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Nov 10 14:44:32 2024 GMT Not After : Nov 9 14:49:32 2025 GMT Subject: CN=EFF70A1AE3E7F079458F7A576571FB4A90DC1F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:89:40:96:51:ce:93:16:36:b6:7f:58:31:9f: db:49:08:8d:c0:f9:4b:21:87:2a:c3:e8:a2:d4:0f: ec:c3:a2:27:07:cf:5a:69:05:45:de:89:41:f4:a8: 45:d4:35:32:fd:ec:06:fe:ad:54:3e:32:c7:43:08: 21:e3:42:01:ff:4c:37:ad:3a:1e:a1:6e:5b:bf:c4: 02:e7:26:aa:9a:b5:48:69:c4:51:82:75:f6:03:dd: 53:58:9d:e0:1d:37:62:d1:6e:02:7c:96:dd:ba:b8: 4b:f4:3d:64:97:66:18:43:31:2b:42:3e:ee:53:75: 81:99:4a:6e:2e:13:ad:10:5f:1b:2b:ad:ba:ca:0e: f5:c7:c1:f6:13:a0:67:5c:a3:1d:60:80:63:37:21: b0:ed:c5:09:b8:a9:db:61:9c:91:c6:e5:75:b7:3a: cd:ab:ab:9a:a7:8d:8e:14:e2:8d:ab:57:bc:c9:2d: 36:c4:89:4b:3b:89:fd:bd:ec:21:4a:a0:17:52:b1: 34:83:bf:78:e8:a3:0f:99:77:66:11:2a:c0:a6:2f: 26:7d:3a:66:e3:6e:4a:b3:de:73:da:87:a6:3f:ce: da:39:14:ba:49:c6:39:bf:5d:e9:d3:55:88:a6:39: 50:83:93:ad:78:f5:36:08:17:31:eb:40:82:6b:41: f0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F7:0A:1A:E3:E7:F0:79:45:8F:7A:57:65:71:FB:4A:90:DC:1F:0B X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/326131343a373538303a663330303a3a2f34302d3438203d3e20323135343730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:f300::/40 Signature Algorithm: sha256WithRSAEncryption c0:8e:e2:18:06:35:10:f4:da:ea:82:e1:83:5c:05:89:56:08: eb:ec:de:0b:91:0a:6d:3e:f6:9b:8d:88:36:36:fe:5f:38:1d: 42:31:e6:a3:8a:6b:3a:ed:d8:2d:77:5c:31:ce:2d:23:0c:21: bf:cc:5d:db:cf:46:52:28:5a:ff:29:50:6f:60:9f:50:59:3b: 70:d5:39:e4:4e:30:39:df:dd:6b:ea:63:c2:e9:66:65:9b:e7: 6f:87:3f:31:41:a3:17:50:03:b6:5f:f5:48:48:e6:43:c9:31: 6d:25:a4:c5:10:34:26:87:e7:05:77:f4:77:a8:0d:a2:a9:44: 7d:f2:2d:c4:87:3f:74:71:ac:c3:b9:f3:fd:ba:ba:e5:e5:19: c8:65:e7:0c:a7:4a:9e:a0:bc:be:1b:8f:2f:84:cc:d7:7c:46: b5:30:bd:40:77:1f:af:49:6f:6d:4b:ae:39:c9:fd:a6:e7:74: 0e:f5:8d:5c:33:b7:8b:ad:3e:c1:73:d5:71:6a:cd:a7:99:44: 26:0b:e1:16:f6:ac:f1:79:15:da:ec:d5:d2:27:b1:ca:e9:4e: 0c:da:22:27:dc:df:46:bc:96:fb:eb:22:44:3e:64:6d:05:e0: af:e6:c6:6d:d2:27:de:94:dd:8e:86:8e:61:8b:bc:68:54:ba: 64:87:9b:45 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUZ+IS1vI00vejXVLRuqLb26Q2GEUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNDExMTAxNDQ0MzJaFw0yNTExMDkxNDQ5MzJaMDMxMTAvBgNV BAMTKEVGRjcwQTFBRTNFN0YwNzk0NThGN0E1NzY1NzFGQjRBOTBEQzFGMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCciUCWUc6TFja2f1gxn9tJCI3A +UshhyrD6KLUD+zDoicHz1ppBUXeiUH0qEXUNTL97Ab+rVQ+MsdDCCHjQgH/TDet Oh6hblu/xALnJqqatUhpxFGCdfYD3VNYneAdN2LRbgJ8lt26uEv0PWSXZhhDMStC Pu5TdYGZSm4uE60QXxsrrbrKDvXHwfYToGdcox1ggGM3IbDtxQm4qdthnJHG5XW3 Os2rq5qnjY4U4o2rV7zJLTbEiUs7if297CFKoBdSsTSDv3joow+Zd2YRKsCmLyZ9 Ombjbkqz3nPah6Y/zto5FLpJxjm/XenTVYimOVCDk6149TYIFzHrQIJrQfABAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU7/cKGuPn8HlFj3pXZXH7SpDcHwswHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xOWFhOWRhNy1mMWU0LTRkOTgtYmY5NS05ZmRmY2Y0NDhmNzcvMC8zMjYxMzEz NDNhMzczNTM4MzAzYTY2MzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTM1MzQzNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gPMwDQYJKoZIhvcNAQELBQADggEBAMCO 4hgGNRD02uqC4YNcBYlWCOvs3guRCm0+9puNiDY2/l84HUIx5qOKazrt2C13XDHO LSMMIb/MXdvPRlIoWv8pUG9gn1BZO3DVOeROMDnf3WvqY8LpZmWb52+HPzFBoxdQ A7Zf9UhI5kPJMW0lpMUQNCaH5wV39HeoDaKpRH3yLcSHP3RxrMO58/26uuXlGchl 5wynSp6gvL4bjy+EzNd8RrUwvUB3H69Jb21LrjnJ/abndA71jVwzt4utPsFz1XFq zaeZRCYL4Rb2rPF5Fdrs1dInscrpTgzaIifc30a8lvvrIkQ+ZG0F4K/mxm3SJ96U 3Y6GjmGLvGhUumSHm0U= -----END CERTIFICATE-----Generated at Thu Nov 21 12:18:35 2024 by rpki-client on console-ams.rpki-client.org