$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538303a623030303a3a2f34382d3438203d3e20323134343531.roa File: 326131343a373538303a623030303a3a2f34382d3438203d3e20323134343531.roa (raw, json) Hash identifier: 8e6qsVLbhhSzQEyv+jVflD+xc2a0nkXLrF/N0bMcfFY= Subject key identifier: B4:2D:1D:62:BD:FB:6F:50:5A:38:B1:67:9B:3A:9C:E1:A6:16:F8:AC Certificate issuer: /CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Certificate serial: 41666E276EEC42DAA055D44D33B23DF9DACD589C Authority key identifier: 41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538303a623030303a3a2f34382d3438203d3e20323134343531.roa Signing time: Mon 18 Nov 2024 17:13:06 +0000 ROA not before: Mon 18 Nov 2024 17:08:06 +0000 ROA not after: Mon 17 Nov 2025 17:13:06 +0000 asID: 214451 IP address blocks: 2a14:7580:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:66:6e:27:6e:ec:42:da:a0:55:d4:4d:33:b2:3d:f9:da:cd:58:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B Validity Not Before: Nov 18 17:08:06 2024 GMT Not After : Nov 17 17:13:06 2025 GMT Subject: CN=B42D1D62BDFB6F505A38B1679B3A9CE1A616F8AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:bc:8c:61:65:47:ad:63:6f:1d:42:5e:22: d8:5d:75:9c:9f:72:bc:ed:fd:6a:7c:6e:76:a5:f8: e6:be:96:79:2b:c0:72:5e:b6:7c:5a:ae:90:91:0d: 8b:61:0b:e0:32:29:52:54:02:97:0b:11:0c:e9:ef: 89:5f:e7:ac:5c:b7:b7:29:4d:f0:4a:76:18:91:8b: 79:02:a3:95:85:c1:39:d0:2a:81:13:a5:7c:29:bb: 67:10:4e:b9:ce:29:e4:e7:98:53:4b:3a:ad:90:91: a9:88:c9:47:28:d9:09:85:a4:cd:3e:d5:b9:cf:eb: 32:87:62:c9:9f:bd:b3:57:b2:e2:00:a8:d4:79:46: 2e:19:4d:b4:a6:d6:24:d5:54:f9:44:24:65:60:c7: c7:45:84:6f:b4:08:5b:f4:0e:ff:78:0d:b9:b7:56: 0a:8f:29:60:a3:75:e0:2e:f2:fa:43:49:6d:46:71: 0b:84:1e:df:2a:60:6a:cc:99:ab:82:f5:11:bc:c1: a9:19:93:05:40:9a:a5:88:29:2f:f3:a6:b7:5c:2c: 39:e4:83:1a:45:c9:3e:2c:5f:cb:9b:5a:c1:c9:b8: 4f:61:a5:e9:36:a8:12:dc:9f:9f:6f:11:ec:66:e4: bc:b7:d4:ff:93:4b:f3:08:80:5f:89:20:50:5e:5f: 20:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2D:1D:62:BD:FB:6F:50:5A:38:B1:67:9B:3A:9C:E1:A6:16:F8:AC X509v3 Authority Key Identifier: keyid:41:C6:B5:56:7A:DB:76:46:22:2A:1B:9F:1A:A7:03:8F:0C:2D:4B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/41C6B5567ADB7646222A1B9F1AA7038F0C2D4B4B.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/1/326131343a373538303a623030303a3a2f34382d3438203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:b000::/48 Signature Algorithm: sha256WithRSAEncryption 82:8c:8a:71:70:fc:bd:67:3e:e3:cd:0c:e3:fa:e8:c2:0c:e2: 89:86:10:3a:2b:56:b7:41:f0:bd:01:49:5e:d3:5e:d6:8c:7b: ae:24:c0:33:c3:63:f6:f7:48:83:4d:f5:ef:82:76:1b:4e:53: a1:ab:10:f2:39:82:30:6c:3c:34:15:49:99:bd:ad:7c:5f:79: 80:ac:80:9f:f3:62:f0:d8:4b:62:47:c5:33:a4:23:7c:26:8a: 9b:32:77:a0:e9:e1:2c:ae:0d:b6:35:0b:c0:c1:15:fb:6b:fa: 10:1f:e2:56:4d:89:36:67:e6:aa:49:d4:1f:54:10:83:e8:2d: 3e:38:df:4f:53:21:c2:1a:07:6e:1d:61:82:48:3c:6b:e3:7a: f8:e3:43:d8:47:50:9a:f8:95:97:d2:22:a4:ea:c7:70:70:9c: c6:16:fc:6c:c6:7d:81:d1:ad:12:0e:d3:8a:9c:16:ef:dc:39: 42:55:82:e8:d0:f5:ad:c8:a4:e0:57:1e:74:cb:e1:52:8f:46: c7:e2:56:c1:ff:74:0b:5f:b2:8c:5f:e3:34:bd:fc:2a:df:ab: 00:1b:2c:b7:b8:2f:86:fb:e1:75:9b:e9:26:97:e3:8e:35:e8: 71:bd:23:24:1b:70:6d:9d:c2:46:3b:46:4a:41:6d:65:02:cb: 71:88:aa:5a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQWZuJ27sQtqgVdRNM7I9+drNWJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYw QzJENEI0QjAeFw0yNDExMTgxNzA4MDZaFw0yNTExMTcxNzEzMDZaMDMxMTAvBgNV BAMTKEI0MkQxRDYyQkRGQjZGNTA1QTM4QjE2NzlCM0E5Q0UxQTYxNkY4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMNryMYWVHrWNvHUJeIthddZyf crzt/Wp8bnal+Oa+lnkrwHJetnxarpCRDYthC+AyKVJUApcLEQzp74lf56xct7cp TfBKdhiRi3kCo5WFwTnQKoETpXwpu2cQTrnOKeTnmFNLOq2QkamIyUco2QmFpM0+ 1bnP6zKHYsmfvbNXsuIAqNR5Ri4ZTbSm1iTVVPlEJGVgx8dFhG+0CFv0Dv94Dbm3 VgqPKWCjdeAu8vpDSW1GcQuEHt8qYGrMmauC9RG8wakZkwVAmqWIKS/zprdcLDnk gxpFyT4sX8ubWsHJuE9hpek2qBLcn59vEexm5Ly31P+TS/MIgF+JIFBeXyC1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUtC0dYr37b1BaOLFnmzqc4aYW+KwwHwYDVR0j BBgwFoAUQca1VnrbdkYiKhufGqcDjwwtS0swDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzEvNDFDNkI1NTY3QURCNzY0NjIyMkExQjlGMUFBNzAzOEYwQzJENEI0Qi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC80MUM2QjU1NjdBREI3NjQ2MjIyQTFCOUYx QUE3MDM4RjBDMkQ0QjRCLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yMmNmOGJhNy1jYjAyLTQxOGItYmUwNC00ZDlmM2EwN2U5NTAvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTYyMzAzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzQzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gLAAMA0GCSqGSIb3DQEBCwUAA4IBAQCC jIpxcPy9Zz7jzQzj+ujCDOKJhhA6K1a3QfC9AUle017WjHuuJMAzw2P290iDTfXv gnYbTlOhqxDyOYIwbDw0FUmZva18X3mArICf82Lw2EtiR8UzpCN8JoqbMneg6eEs rg22NQvAwRX7a/oQH+JWTYk2Z+aqSdQfVBCD6C0+ON9PUyHCGgduHWGCSDxr43r4 40PYR1Ca+JWX0iKk6sdwcJzGFvxsxn2B0a0SDtOKnBbv3DlCVYLo0PWtyKTgVx50 y+FSj0bH4lbB/3QLX7KMX+M0vfwq36sAGyy3uC+G++F1m+kml+OONehxvSMkG3Bt ncJGO0ZKQW1lAstxiKpa -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:19 2024 by rpki-client on console-fra.rpki-client.org