$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/326131313a323963303a396562383a3a2f34362d3438203d3e203134363138.roa File: 326131313a323963303a396562383a3a2f34362d3438203d3e203134363138.roa (raw, json) Hash identifier: VairAG1GH3Nqpnot+beTl4FtLl0ofBKMtMIyfr2b4xQ= Subject key identifier: A0:81:C9:1C:87:BC:55:D7:90:42:A4:24:56:B0:36:6D:6A:A8:01:A2 Certificate issuer: /CN=32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4 Certificate serial: 3DC3C34E04D85056CD1475815D1F37CDFE1D3408 Authority key identifier: 32:39:8A:14:06:A1:C1:D3:23:CA:63:CB:32:0F:FD:1E:B4:D1:B0:C4 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/326131313a323963303a396562383a3a2f34362d3438203d3e203134363138.roa Signing time: Tue 30 Jan 2024 06:33:18 +0000 ROA not before: Tue 30 Jan 2024 06:28:18 +0000 ROA not after: Tue 28 Jan 2025 06:33:18 +0000 asID: 14618 IP address blocks: 2a11:29c0:9eb8::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/CDC014669D381152AFB94B76936268BFF73E7D50.mft rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/CDC014669D381152AFB94B76936268BFF73E7D50.cer rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.crl rsync://rsync.paas.rpki.ripe.net/repository/81115bc6-10f6-4af3-ba09-8b687a56fbf5/0/E96D85996E9354D1005E44C781D38ADCF1082873.mft rsync://rpki.ripe.net/repository/DEFAULT/6W2FmW6TVNEAXkTHgdOK3PEIKHM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 02 May 2024 05:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c3:c3:4e:04:d8:50:56:cd:14:75:81:5d:1f:37:cd:fe:1d:34:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4 Validity Not Before: Jan 30 06:28:18 2024 GMT Not After : Jan 28 06:33:18 2025 GMT Subject: CN=A081C91C87BC55D79042A42456B0366D6AA801A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:90:4e:6a:57:05:27:e9:39:9d:66:36:72:79: db:98:af:6e:4d:6c:b8:ea:7c:33:0a:dc:d2:a0:c0: 6c:91:07:c3:aa:d6:ba:ae:cb:a0:98:67:82:89:9b: 8e:a9:ce:dd:97:47:bb:d3:18:33:62:fd:11:fa:92: 8d:2c:9a:b6:5a:3d:ac:9f:bf:ac:71:61:09:fb:2e: cd:6f:5b:0a:2c:73:db:a1:29:e6:47:be:50:1c:6c: 59:f5:90:35:68:b2:f3:cc:4d:4b:e1:9a:c2:ef:d7: c7:28:ea:2c:b5:8f:1b:34:c2:3c:bf:33:85:55:c5: ab:dc:d7:48:89:31:c4:1d:b1:70:82:df:d8:12:df: b3:82:22:b9:d0:99:dc:6f:2c:51:a3:2d:d4:d5:25: 57:88:16:1e:fb:4e:73:ad:26:43:91:49:85:89:cb: b7:ff:a3:22:da:62:60:4d:57:53:76:e9:88:44:b5: 1e:55:37:7f:e7:f3:05:cb:89:3f:ba:26:87:5e:ef: d6:1e:e1:59:87:f6:bc:d5:f4:79:ae:6b:04:e5:ff: a4:28:a9:56:c6:c6:cb:88:6b:e3:49:84:58:89:6f: 0a:d5:c4:2d:a9:ba:ab:9d:f7:67:eb:b8:2d:42:99: d0:11:53:5c:0f:78:c5:78:c7:34:30:a6:f8:ea:59: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:81:C9:1C:87:BC:55:D7:90:42:A4:24:56:B0:36:6D:6A:A8:01:A2 X509v3 Authority Key Identifier: keyid:32:39:8A:14:06:A1:C1:D3:23:CA:63:CB:32:0F:FD:1E:B4:D1:B0:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/2/32398A1406A1C1D323CA63CB320FFD1EB4D1B0C4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/8/326131313a323963303a396562383a3a2f34362d3438203d3e203134363138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a11:29c0:9eb8::/46 Signature Algorithm: sha256WithRSAEncryption 01:16:91:ab:c1:50:48:27:77:7f:8e:9a:a3:04:eb:25:ae:09: 60:f1:1b:7c:5d:fd:32:f7:a6:f5:8d:15:a4:b9:b7:ca:8e:aa: c5:b0:18:4f:87:04:26:1d:6d:35:e3:23:1d:3c:64:49:66:cd: c7:b9:c0:bd:90:9d:0f:40:de:d0:e6:42:5a:f5:63:f8:ce:bc: 9a:c7:1a:b2:40:f5:20:35:da:65:67:3d:98:87:fa:48:c7:24: b9:0e:25:f4:3c:a7:15:fc:26:fc:1a:27:f9:b6:46:0c:24:78: 99:b6:85:d7:b9:3a:7e:24:a5:55:1e:d3:8b:ef:bc:3b:cb:d3: 05:ac:62:4f:fe:1f:29:fe:48:07:f5:ca:c1:62:29:08:4f:a1: 42:ef:11:17:31:7d:10:8d:9b:b0:7b:79:10:af:79:21:c7:c8: c1:b4:ce:f0:b5:5b:a1:ad:62:91:62:b6:d7:de:13:99:12:32: d2:1e:97:4d:48:bc:9a:89:e3:01:ac:a6:1e:45:92:be:ae:ec: 6b:33:85:4d:d6:d5:05:cf:83:cf:01:d9:59:79:19:d1:0d:7e: 96:6f:65:57:c2:04:8d:c2:6f:61:76:04:42:28:c2:c9:f8:73: f3:b3:e9:01:fe:78:4f:1d:58:fc:df:73:90:84:97:5f:85:d8: 60:f6:41:4b -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUPcPDTgTYUFbNFHWBXR83zf4dNAgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzIzOThBMTQwNkExQzFEMzIzQ0E2M0NCMzIwRkZEMUVC NEQxQjBDNDAeFw0yNDAxMzAwNjI4MThaFw0yNTAxMjgwNjMzMThaMDMxMTAvBgNV BAMTKEEwODFDOTFDODdCQzU1RDc5MDQyQTQyNDU2QjAzNjZENkFBODAxQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtkE5qVwUn6TmdZjZyeduYr25N bLjqfDMK3NKgwGyRB8Oq1rquy6CYZ4KJm46pzt2XR7vTGDNi/RH6ko0smrZaPayf v6xxYQn7Ls1vWwosc9uhKeZHvlAcbFn1kDVosvPMTUvhmsLv18co6iy1jxs0wjy/ M4VVxavc10iJMcQdsXCC39gS37OCIrnQmdxvLFGjLdTVJVeIFh77TnOtJkORSYWJ y7f/oyLaYmBNV1N26YhEtR5VN3/n8wXLiT+6Jode79Ye4VmH9rzV9HmuawTl/6Qo qVbGxsuIa+NJhFiJbwrVxC2puqud92fruC1CmdARU1wPeMV4xzQwpvjqWfT3AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUoIHJHIe8VdeQQqQkVrA2bWqoAaIwHwYDVR0j BBgwFoAUMjmKFAahwdMjymPLMg/9HrTRsMQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzgvMzIzOThBMTQwNkExQzFEMzIzQ0E2M0NCMzIwRkZEMUVCNEQxQjBDNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMi8zMjM5OEExNDA2QTFDMUQzMjNDQTYzQ0Iz MjBGRkQxRUI0RDFCMEM0LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xYmY4ZTk3Ny03Mjc4LTQ2Y2YtYWJkMS05OWNkMWZkMmJlNGUvOC8zMjYxMzEz MTNhMzIzOTYzMzAzYTM5NjU2MjM4M2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzEz NDM2MzEzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHAioRKcCeuDANBgkqhkiG9w0BAQsFAAOCAQEAARaR q8FQSCd3f46aowTrJa4JYPEbfF39Mvem9Y0VpLm3yo6qxbAYT4cEJh1tNeMjHTxk SWbNx7nAvZCdD0De0OZCWvVj+M68mscaskD1IDXaZWc9mIf6SMckuQ4l9DynFfwm /Bon+bZGDCR4mbaF17k6fiSlVR7Ti++8O8vTBaxiT/4fKf5IB/XKwWIpCE+hQu8R FzF9EI2bsHt5EK95IcfIwbTO8LVboa1ikWK2194TmRIy0h6XTUi8monjAaymHkWS vq7sazOFTdbVBc+DzwHZWXkZ0Q1+lm9lV8IEjcJvYXYEQijCyfhz87PpAf54Tx1Y /N9zkISXX4XYYPZBSw== -----END CERTIFICATE-----Generated at Wed May 1 17:21:52 2024 by rpki-client on console-ams.rpki-client.org