$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa File: 326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa (raw, json) Hash identifier: e0au/5cGv1Pv+omA08EMMw/+Xqdlaj4f052UKrYUHYI= Subject key identifier: 14:5A:22:86:62:46:44:76:99:E1:81:1F:35:0D:0B:26:96:47:FE:67 Certificate issuer: /CN=BD36051F9A727996CE309FAF4E5757E504EB2C46 Certificate serial: 57944C3D086CAD320884EBE2E499FE1949A62EFF Authority key identifier: BD:36:05:1F:9A:72:79:96:CE:30:9F:AF:4E:57:57:E5:04:EB:2C:46 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD36051F9A727996CE309FAF4E5757E504EB2C46.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa Signing time: Thu 24 Oct 2024 20:42:58 +0000 ROA not before: Thu 24 Oct 2024 20:37:58 +0000 ROA not after: Thu 23 Oct 2025 20:42:58 +0000 asID: 214451 IP address blocks: 2a09:54c6:8000::/47 maxlen: 47 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/BD36051F9A727996CE309FAF4E5757E504EB2C46.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/BD36051F9A727996CE309FAF4E5757E504EB2C46.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD36051F9A727996CE309FAF4E5757E504EB2C46.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:94:4c:3d:08:6c:ad:32:08:84:eb:e2:e4:99:fe:19:49:a6:2e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD36051F9A727996CE309FAF4E5757E504EB2C46 Validity Not Before: Oct 24 20:37:58 2024 GMT Not After : Oct 23 20:42:58 2025 GMT Subject: CN=145A22866246447699E1811F350D0B269647FE67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:dc:71:0a:a0:10:85:bd:5f:76:bc:c4:4b: bf:a9:90:ac:e6:ab:37:15:55:2f:70:52:8d:a7:eb: ec:f6:86:34:8d:1e:30:2b:36:f8:13:9d:8f:11:6c: c3:f4:9e:76:90:24:4b:20:4d:c9:d1:5f:e7:a5:99: ca:4c:dc:89:58:73:87:fa:56:a8:8f:2c:f6:00:92: 5b:3d:0f:99:7e:5a:17:4f:32:72:ad:e0:7b:46:de: f6:11:2b:55:e8:20:5b:ef:07:21:ea:2b:0e:7e:7a: 10:0b:5c:5c:f0:11:01:7c:59:19:32:d6:0c:c4:64: e4:12:d6:2c:0b:75:03:57:5f:a9:96:3c:a6:1d:ce: f1:f2:c5:d7:3a:b8:05:19:9b:dd:7f:87:18:68:85: 05:27:21:89:09:6c:53:ef:f9:06:5a:ce:4b:9d:8f: f1:dd:ab:18:a8:d0:bf:3a:51:5b:4b:b9:87:ee:1a: ed:b1:11:bb:58:eb:3a:bd:41:0e:9a:b7:97:16:bc: 19:d6:b1:71:dc:d9:a9:d7:d5:5c:3d:5a:d4:99:60: cf:57:e8:c4:bf:c1:ad:d0:a7:d5:4f:0d:99:91:85: 1c:d6:fd:e9:37:62:65:3b:c0:2b:92:4a:d0:0f:0c: 7a:d5:f5:5f:3e:f5:dc:bf:47:b7:90:cd:aa:c3:67: 36:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5A:22:86:62:46:44:76:99:E1:81:1F:35:0D:0B:26:96:47:FE:67 X509v3 Authority Key Identifier: keyid:BD:36:05:1F:9A:72:79:96:CE:30:9F:AF:4E:57:57:E5:04:EB:2C:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/BD36051F9A727996CE309FAF4E5757E504EB2C46.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/BD36051F9A727996CE309FAF4E5757E504EB2C46.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/2/326130393a353463363a383030303a3a2f34372d3437203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:8000::/47 Signature Algorithm: sha256WithRSAEncryption 97:eb:9f:15:6e:a8:70:d7:7b:57:87:44:94:2f:cd:62:97:01: 97:bc:49:e9:34:8c:36:66:33:98:8e:7c:25:23:ea:67:15:72: ee:c9:b6:ef:05:a7:a4:9e:bc:06:7d:19:93:65:f1:c1:07:e5: 25:25:d7:be:1c:bb:05:24:0b:27:b5:f7:78:a1:19:ad:b2:07: 6a:02:d6:3c:ec:b3:4f:72:7a:a4:5c:5e:2b:ac:0b:a0:83:bb: 54:37:f1:26:0a:3c:3e:4a:c8:2f:28:6a:0d:6b:72:ba:16:cc: 73:be:f5:86:fb:0f:32:e0:c3:31:73:b6:9a:6c:bb:01:4d:a5: d8:e6:fe:36:84:ed:95:1a:90:3f:85:a4:d9:61:f3:3c:c5:43: aa:ef:d9:a7:21:52:4b:39:81:3e:8f:04:58:40:86:4c:b1:7d: 3e:88:b7:6d:6e:a4:34:4d:6f:db:a6:8c:4d:c6:d6:d1:32:9d: f8:76:4c:03:ea:1e:36:f1:e3:31:1c:d4:bf:14:26:33:b2:e6: 06:30:58:a9:25:7b:6f:d5:af:89:5b:c3:20:17:34:74:1b:99: c0:47:bb:37:9f:2c:09:59:bd:35:71:3d:e0:2e:65:fc:36:71: f7:48:8e:23:8a:29:79:ac:02:af:93:6d:72:6e:62:7e:23:06: 24:f2:ac:87 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUV5RMPQhsrTIIhOvi5Jn+GUmmLv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQzNjA1MUY5QTcyNzk5NkNFMzA5RkFGNEU1NzU3RTUw NEVCMkM0NjAeFw0yNDEwMjQyMDM3NThaFw0yNTEwMjMyMDQyNThaMDMxMTAvBgNV BAMTKDE0NUEyMjg2NjI0NjQ0NzY5OUUxODExRjM1MEQwQjI2OTY0N0ZFNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXGdxxCqAQhb1fdrzES7+pkKzm qzcVVS9wUo2n6+z2hjSNHjArNvgTnY8RbMP0nnaQJEsgTcnRX+elmcpM3IlYc4f6 VqiPLPYAkls9D5l+WhdPMnKt4HtG3vYRK1XoIFvvByHqKw5+ehALXFzwEQF8WRky 1gzEZOQS1iwLdQNXX6mWPKYdzvHyxdc6uAUZm91/hxhohQUnIYkJbFPv+QZazkud j/Hdqxio0L86UVtLuYfuGu2xEbtY6zq9QQ6at5cWvBnWsXHc2anX1Vw9WtSZYM9X 6MS/wa3Qp9VPDZmRhRzW/ek3YmU7wCuSStAPDHrV9V8+9dy/R7eQzarDZzaFAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUFFoihmJGRHaZ4YEfNQ0LJpZH/mcwHwYDVR0j BBgwFoAUvTYFH5pyeZbOMJ+vTldX5QTrLEYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzIvQkQzNjA1MUY5QTcyNzk5NkNFMzA5RkFGNEU1NzU3RTUwNEVCMkM0Ni5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9CRDM2MDUxRjlBNzI3OTk2Q0UzMDlGQUY0 RTU3NTdFNTA0RUIyQzQ2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yMmNmOGJhNy1jYjAyLTQxOGItYmUwNC00ZDlmM2EwN2U5NTAvMi8zMjYxMzAz OTNhMzUzNDYzMzYzYTM4MzAzMDMwM2EzYTJmMzQzNzJkMzQzNzIwM2QzZTIwMzIz MTM0MzQzNTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcBKglUxoAAMA0GCSqGSIb3DQEBCwUAA4IBAQCX 658Vbqhw13tXh0SUL81ilwGXvEnpNIw2ZjOYjnwlI+pnFXLuybbvBaeknrwGfRmT ZfHBB+UlJde+HLsFJAsntfd4oRmtsgdqAtY87LNPcnqkXF4rrAugg7tUN/EmCjw+ SsgvKGoNa3K6FsxzvvWG+w8y4MMxc7aabLsBTaXY5v42hO2VGpA/haTZYfM8xUOq 79mnIVJLOYE+jwRYQIZMsX0+iLdtbqQ0TW/bpoxNxtbRMp34dkwD6h428eMxHNS/ FCYzsuYGMFipJXtv1a+JW8MgFzR0G5nAR7s3nywJWb01cT3gLmX8NnH3SI4jiil5 rAKvk21ybmJ+IwYk8qyH -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:23 2024 by rpki-client on console-ams.rpki-client.org