$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/326130363a396638353a3a2f34382d3438203d3e20323134343531.roa File: 326130363a396638353a3a2f34382d3438203d3e20323134343531.roa (raw, json) Hash identifier: Uyju0b4wEoDZ6zDrIgiasqGgJwakPPvaKdEHJZ63N2E= Subject key identifier: 52:99:3E:6B:05:60:1C:F5:92:B2:1F:DE:1A:74:8D:5A:40:3F:61:CA Certificate issuer: /CN=469D308DBBB88444EF4530905C6C6D40559ADF4D Certificate serial: 4E6CC5129E6D306D7ECD75C5195B362332B175A8 Authority key identifier: 46:9D:30:8D:BB:B8:84:44:EF:45:30:90:5C:6C:6D:40:55:9A:DF:4D Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/469D308DBBB88444EF4530905C6C6D40559ADF4D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/326130363a396638353a3a2f34382d3438203d3e20323134343531.roa Signing time: Mon 18 Nov 2024 16:52:23 +0000 ROA not before: Mon 18 Nov 2024 16:47:23 +0000 ROA not after: Mon 17 Nov 2025 16:52:23 +0000 asID: 214451 IP address blocks: 2a06:9f85::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/469D308DBBB88444EF4530905C6C6D40559ADF4D.crl rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/469D308DBBB88444EF4530905C6C6D40559ADF4D.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/469D308DBBB88444EF4530905C6C6D40559ADF4D.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:6c:c5:12:9e:6d:30:6d:7e:cd:75:c5:19:5b:36:23:32:b1:75:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=469D308DBBB88444EF4530905C6C6D40559ADF4D Validity Not Before: Nov 18 16:47:23 2024 GMT Not After : Nov 17 16:52:23 2025 GMT Subject: CN=52993E6B05601CF592B21FDE1A748D5A403F61CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5c:b3:d3:b2:fe:e0:5e:88:73:ac:21:0a:58: 88:ab:46:15:d5:b0:2f:6c:9f:45:a3:44:d0:6b:57: b3:9f:bc:4d:76:9b:f4:4d:6f:11:35:f8:8b:06:b8: 41:57:d5:b7:c2:5d:a3:2c:00:63:a2:45:34:f8:c7: 6d:26:46:07:a0:b3:6d:25:0f:0b:aa:99:19:21:97: c6:63:d1:e0:8a:a1:e1:e6:62:1e:37:9b:7a:cd:42: 98:cd:7f:16:b1:f7:78:75:95:56:72:c4:78:97:8c: e9:00:90:2a:7e:a4:ef:cd:10:34:8b:2d:82:df:1f: ff:55:f8:88:90:e1:08:ca:4a:3c:34:fe:f2:47:ce: 0d:93:90:b4:39:81:f1:94:82:22:82:68:69:2f:6c: 9f:77:50:c9:37:59:97:38:33:10:78:60:9c:cb:ad: f5:ed:36:5c:7a:f1:1d:bb:6f:6c:ce:6d:52:81:bf: 95:4f:cd:e3:41:e1:0b:22:09:70:17:6d:b7:f2:46: 44:5b:6f:5e:fd:89:f5:39:ba:ac:8d:11:08:92:e2: f3:ab:3a:f9:6d:0e:a1:19:d3:8e:53:79:01:04:30: c2:de:4e:58:91:6b:31:ae:77:bb:52:c7:59:11:a0: 05:a0:1e:17:fd:ea:7a:56:ca:be:a2:21:b5:6c:2f: 4c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:99:3E:6B:05:60:1C:F5:92:B2:1F:DE:1A:74:8D:5A:40:3F:61:CA X509v3 Authority Key Identifier: keyid:46:9D:30:8D:BB:B8:84:44:EF:45:30:90:5C:6C:6D:40:55:9A:DF:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/469D308DBBB88444EF4530905C6C6D40559ADF4D.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/469D308DBBB88444EF4530905C6C6D40559ADF4D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/22cf8ba7-cb02-418b-be04-4d9f3a07e950/3/326130363a396638353a3a2f34382d3438203d3e20323134343531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f85::/48 Signature Algorithm: sha256WithRSAEncryption 8d:65:f9:d9:06:15:af:f7:27:54:f5:93:d5:25:b4:83:60:68: 07:b5:97:b4:76:c7:19:a5:4c:a3:82:bd:2e:a7:ce:2e:94:e2: 1c:3d:7a:8d:a6:61:16:c6:d2:79:2b:ed:d1:90:06:b7:a4:fb: ae:49:62:fa:d5:ec:54:cc:20:7c:63:e1:5c:03:57:c5:76:b3: d2:d1:15:01:f7:ad:b6:cd:ae:0b:c6:be:21:91:ba:0c:32:cc: 30:a6:76:bf:40:80:a5:93:ce:1d:64:c5:c3:f4:7f:76:98:b7: 50:db:be:8a:6e:95:d1:a6:44:7f:c5:38:43:29:54:5b:f1:ad: 7e:79:71:40:c2:a0:1c:2b:3b:38:fe:5c:1e:c4:37:62:59:27: 55:90:c8:9a:7f:13:85:50:ed:b1:45:54:75:c1:95:74:14:a4: cc:15:90:1a:d4:c4:6a:85:71:9c:0c:69:f9:45:c6:29:06:e0: 8d:a9:c9:58:cf:d1:86:56:9b:b9:dc:d0:a8:f5:e9:9d:e9:f3: 47:db:fc:5e:62:e6:08:db:69:67:a2:7b:f8:fa:fc:3f:5b:c1: 2c:da:9e:f9:8c:59:70:af:41:35:98:96:18:e1:30:dc:6b:63: 0e:df:b6:1f:b1:93:55:5f:30:ad:f0:7e:32:21:ec:4d:07:1b: 71:82:75:8a -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIUTmzFEp5tMG1+zXXFGVs2IzKxdagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDY5RDMwOERCQkI4ODQ0NEVGNDUzMDkwNUM2QzZENDA1 NTlBREY0RDAeFw0yNDExMTgxNjQ3MjNaFw0yNTExMTcxNjUyMjNaMDMxMTAvBgNV BAMTKDUyOTkzRTZCMDU2MDFDRjU5MkIyMUZERTFBNzQ4RDVBNDAzRjYxQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeXLPTsv7gXohzrCEKWIirRhXV sC9sn0WjRNBrV7OfvE12m/RNbxE1+IsGuEFX1bfCXaMsAGOiRTT4x20mRgegs20l DwuqmRkhl8Zj0eCKoeHmYh43m3rNQpjNfxax93h1lVZyxHiXjOkAkCp+pO/NEDSL LYLfH/9V+IiQ4QjKSjw0/vJHzg2TkLQ5gfGUgiKCaGkvbJ93UMk3WZc4MxB4YJzL rfXtNlx68R27b2zObVKBv5VPzeNB4QsiCXAXbbfyRkRbb179ifU5uqyNEQiS4vOr OvltDqEZ045TeQEEMMLeTliRazGud7tSx1kRoAWgHhf96npWyr6iIbVsL0xNAgMB AAGjggJWMIICUjAdBgNVHQ4EFgQUUpk+awVgHPWSsh/eGnSNWkA/YcowHwYDVR0j BBgwFoAURp0wjbu4hETvRTCQXGxtQFWa300wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjJjZjhiYTctY2IwMi00MThiLWJlMDQtNGQ5ZjNhMDdl OTUwLzMvNDY5RDMwOERCQkI4ODQ0NEVGNDUzMDkwNUM2QzZENDA1NTlBREY0RC5j cmwwegYIKwYBBQUHAQEEbjBsMGoGCCsGAQUFBzAChl5yc3luYzovL2Nsb3VkaWUt cmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8wLzQ2OUQzMDhEQkJCODg0 NDRFRjQ1MzA5MDVDNkM2RDQwNTU5QURGNEQuY2VyMIGtBggrBgEFBQcBCwSBoDCB nTCBmgYIKwYBBQUHMAuGgY1yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5l dC9yZXBvc2l0b3J5LzIyY2Y4YmE3LWNiMDItNDE4Yi1iZTA0LTRkOWYzYTA3ZTk1 MC8zLzMyNjEzMDM2M2EzOTY2MzgzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMy MzEzNDM0MzUzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEF BQcBBwEB/wQTMBEwDwQCAAIwCQMHACoGn4UAADANBgkqhkiG9w0BAQsFAAOCAQEA jWX52QYVr/cnVPWT1SW0g2BoB7WXtHbHGaVMo4K9LqfOLpTiHD16jaZhFsbSeSvt 0ZAGt6T7rkli+tXsVMwgfGPhXANXxXaz0tEVAfetts2uC8a+IZG6DDLMMKZ2v0CA pZPOHWTFw/R/dpi3UNu+im6V0aZEf8U4QylUW/GtfnlxQMKgHCs7OP5cHsQ3Ylkn VZDImn8ThVDtsUVUdcGVdBSkzBWQGtTEaoVxnAxp+UXGKQbgjanJWM/RhlabudzQ qPXpnenzR9v8XmLmCNtpZ6J7+Pr8P1vBLNqe+YxZcK9BNZiWGOEw3GtjDt+2H7GT VV8wrfB+MiHsTQcbcYJ1ig== -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:43 2024 by rpki-client on console-fra.rpki-client.org