$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230303a3a2f34382d3438203d3e20323134373638.roa File: 326130613a363034343a376230303a3a2f34382d3438203d3e20323134373638.roa (raw, json) Hash identifier: hopnfP4ixKItSG6CqL2CJ+Q8Oym3vKVP9EFvxnMVTo8= Subject key identifier: 7D:2D:29:D9:47:52:0B:F0:0B:73:F9:F8:F9:81:0E:4B:6B:7F:FF:11 Certificate issuer: /CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Certificate serial: 711F6B036C182239984ED9E29E728E1B72FF5620 Authority key identifier: 45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230303a3a2f34382d3438203d3e20323134373638.roa Signing time: Mon 09 Sep 2024 16:35:57 +0000 ROA not before: Mon 09 Sep 2024 16:30:57 +0000 ROA not after: Mon 08 Sep 2025 16:35:57 +0000 asID: 214768 IP address blocks: 2a0a:6044:7b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 22:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:1f:6b:03:6c:18:22:39:98:4e:d9:e2:9e:72:8e:1b:72:ff:56:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Validity Not Before: Sep 9 16:30:57 2024 GMT Not After : Sep 8 16:35:57 2025 GMT Subject: CN=7D2D29D947520BF00B73F9F8F9810E4B6B7FFF11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:ab:51:50:6d:3f:00:ab:aa:ba:9d:56:e2: 6b:f4:a4:0c:8e:dc:28:ec:18:41:af:1c:ef:91:ca: 46:61:38:77:4c:6e:ee:52:f0:20:c8:4d:4a:a9:b3: d8:ca:c3:70:6a:16:7d:17:14:a1:61:02:2d:dd:8c: da:46:ae:12:33:33:ad:32:f8:c0:51:d9:86:29:4a: 67:41:f1:32:19:e6:bc:da:9e:52:64:fb:42:e0:20: f7:8e:28:04:eb:de:8b:3b:5c:56:b3:33:fb:e1:14: 45:1b:c8:12:e6:36:6f:ea:40:57:0c:c3:1f:87:4c: e9:74:cc:73:9b:24:f9:3a:a9:aa:4c:44:1c:af:ef: 5b:b2:51:9e:aa:a0:bb:e8:4a:a4:1d:fe:01:18:06: c8:3a:97:6d:0e:10:90:db:00:31:40:0d:eb:5a:bd: 92:cd:30:0b:01:13:b9:bc:95:69:4d:27:48:22:7e: e2:80:78:30:bb:cd:f9:6c:98:14:9e:83:2a:f2:e6: 74:2b:78:80:7c:f9:48:64:24:b2:dc:43:93:30:d5: 38:f1:66:2e:21:84:a8:40:59:48:c5:21:c2:49:82: 67:f6:75:8f:81:18:84:3e:a6:54:c1:bb:2f:6c:83: ff:e7:48:46:ee:5f:cd:49:a5:3b:63:0c:a6:d4:8e: 61:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:2D:29:D9:47:52:0B:F0:0B:73:F9:F8:F9:81:0E:4B:6B:7F:FF:11 X509v3 Authority Key Identifier: keyid:45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230303a3a2f34382d3438203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7b00::/48 Signature Algorithm: sha256WithRSAEncryption 05:6e:6b:5e:49:86:0a:3b:6f:68:d2:4f:13:09:b8:1b:04:5f: 8e:bf:df:bd:14:74:ed:ca:10:00:44:13:5d:33:56:4d:bd:54: 3a:41:09:70:5a:bd:4e:b4:d4:0f:0b:e1:03:e9:81:19:2f:7b: 69:e7:44:2b:a7:40:cd:a5:ac:50:b2:b4:1d:c0:44:1a:fe:b9: ae:39:07:a4:92:6f:cb:b9:6a:0f:60:d8:4b:86:93:be:c1:90: c8:cf:b2:c0:12:9e:ea:d8:f6:57:e3:d3:d2:f4:69:88:e7:24: 92:0b:6c:ed:28:fc:47:5c:29:51:36:6e:78:1f:ed:44:91:ef: d9:03:78:35:28:58:63:d0:b4:00:7c:8c:3b:f9:8a:41:8f:0c: bb:86:68:79:41:0c:28:d8:37:5b:eb:f9:c5:18:84:89:c8:1a: a8:38:2d:eb:68:fc:88:03:95:fc:ae:60:f4:5e:d6:c7:fd:80: e6:62:ea:af:21:44:9e:b9:4c:cb:03:0e:2b:ca:64:76:ed:e2: de:b7:f7:6f:6b:3a:f6:8d:d8:f4:c5:de:2a:36:f2:60:ad:46: 66:79:dd:81:3c:82:d1:1e:1f:3c:7f:50:1b:44:23:61:d4:41: 89:48:78:f2:bb:94:96:8d:e6:41:94:be:57:52:d9:80:45:29: 08:b3:e2:29 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcR9rA2wYIjmYTtninnKOG3L/ViAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFD NDc2NDNFRTAeFw0yNDA5MDkxNjMwNTdaFw0yNTA5MDgxNjM1NTdaMDMxMTAvBgNV BAMTKDdEMkQyOUQ5NDc1MjBCRjAwQjczRjlGOEY5ODEwRTRCNkI3RkZGMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0watRUG0/AKuqup1W4mv0pAyO 3CjsGEGvHO+RykZhOHdMbu5S8CDITUqps9jKw3BqFn0XFKFhAi3djNpGrhIzM60y +MBR2YYpSmdB8TIZ5rzanlJk+0LgIPeOKATr3os7XFazM/vhFEUbyBLmNm/qQFcM wx+HTOl0zHObJPk6qapMRByv71uyUZ6qoLvoSqQd/gEYBsg6l20OEJDbADFADeta vZLNMAsBE7m8lWlNJ0gifuKAeDC7zflsmBSegyry5nQreIB8+UhkJLLcQ5Mw1Tjx Zi4hhKhAWUjFIcJJgmf2dY+BGIQ+plTBuy9sg//nSEbuX81JpTtjDKbUjmEDAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUfS0p2UdSC/ALc/n4+YEOS2t//xEwHwYDVR0j BBgwFoAURR4g2pDG1ZeVH+wp3zdx6sR2Q+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm ZTc5LzEvNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFDNDc2NDNFRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC80NTFFMjBEQTkwQzZENTk3OTUxRkVDMjlE RjM3NzFFQUM0NzY0M0VFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2NkZjljYS1kZDY0LTRmMzEtYWJmMy0wZjMyYjhlN2ZlNzkvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjIzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHsAMA0GCSqGSIb3DQEBCwUAA4IBAQAF bmteSYYKO29o0k8TCbgbBF+Ov9+9FHTtyhAARBNdM1ZNvVQ6QQlwWr1OtNQPC+ED 6YEZL3tp50Qrp0DNpaxQsrQdwEQa/rmuOQekkm/LuWoPYNhLhpO+wZDIz7LAEp7q 2PZX49PS9GmI5ySSC2ztKPxHXClRNm54H+1Eke/ZA3g1KFhj0LQAfIw7+YpBjwy7 hmh5QQwo2Ddb6/nFGISJyBqoOC3raPyIA5X8rmD0XtbH/YDmYuqvIUSeuUzLAw4r ymR27eLet/dvazr2jdj0xd4qNvJgrUZmed2BPILRHh88f1AbRCNh1EGJSHjyu5SW jeZBlL5XUtmARSkIs+Ip -----END CERTIFICATE-----Generated at Sun Nov 24 08:39:48 2024 by rpki-client on console-ams.rpki-client.org