$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa File: 326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa (raw, json) Hash identifier: iF8Ye8vJ9K2gVh9mmhftlrMH0DGBAd4nVfgnpVtc6hw= Subject key identifier: 0F:97:4D:DA:92:49:5A:23:22:BE:BF:19:D4:28:CF:AA:AD:8B:9F:CD Certificate issuer: /CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Certificate serial: 38CC2F2929D5840571F312FE5D89ACAD62A6D33A Authority key identifier: 45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa Signing time: Mon 16 Sep 2024 15:27:45 +0000 ROA not before: Mon 16 Sep 2024 15:22:45 +0000 ROA not after: Mon 15 Sep 2025 15:27:45 +0000 asID: 214768 IP address blocks: 2a0a:6044:7b01::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 21 Nov 2024 17:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:cc:2f:29:29:d5:84:05:71:f3:12:fe:5d:89:ac:ad:62:a6:d3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Validity Not Before: Sep 16 15:22:45 2024 GMT Not After : Sep 15 15:27:45 2025 GMT Subject: CN=0F974DDA92495A2322BEBF19D428CFAAAD8B9FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6e:cb:64:8e:7b:84:cb:bf:b2:31:d3:48:07: 33:b7:e2:4f:a0:5d:a3:cf:b8:54:df:7c:c0:ae:6b: a5:56:fa:6e:0d:cf:f0:16:0e:68:96:32:89:8b:37: 93:55:e0:71:1c:78:e7:a2:5d:75:70:91:d2:82:47: 5f:58:2c:e3:10:50:4e:dd:a0:dd:6b:c7:ef:d2:52: 39:77:f0:7b:bf:43:bd:78:4a:8d:7d:f2:4a:43:48: 48:a7:70:da:10:a8:c1:81:58:cb:12:03:8e:cc:93: 40:73:3a:40:93:94:bf:0e:7a:6d:bb:77:28:c9:12: 42:9e:48:c0:b7:87:73:3f:89:82:f8:98:db:57:15: e8:1f:62:10:7d:1c:af:70:d4:a5:61:e9:74:26:41: 25:51:09:f0:7e:c5:c1:68:aa:23:ea:92:ed:da:40: 5e:1f:ce:eb:3b:1b:ff:64:a9:29:96:66:b5:98:69: 7a:b5:cf:cb:fb:28:f3:48:dd:e7:d5:b6:6e:e5:2f: 51:a7:d8:f6:c6:b8:1e:18:f2:c4:2d:75:e7:2a:c7: 7a:6e:ff:89:f9:6e:6d:36:66:67:f7:b6:b7:db:df: 64:ff:a7:e6:a8:76:84:12:b4:02:95:4c:0a:69:ff: 3c:c4:33:a0:cc:df:14:39:8c:0e:63:ec:73:ac:94: ae:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:97:4D:DA:92:49:5A:23:22:BE:BF:19:D4:28:CF:AA:AD:8B:9F:CD X509v3 Authority Key Identifier: keyid:45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230313a3a2f34382d3438203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7b01::/48 Signature Algorithm: sha256WithRSAEncryption 91:b8:b0:cc:ea:16:39:b2:bd:36:17:75:b7:ae:23:60:95:ae: 15:83:15:a5:a9:85:47:4b:ae:84:ed:b1:99:fd:55:58:a6:e0: 31:cd:4d:4a:5d:60:c2:4e:e5:f3:54:bb:72:7d:98:53:57:46: cb:cb:72:e3:b0:75:eb:61:c4:66:1f:46:9f:69:d3:19:04:5f: d9:26:fb:ad:49:79:2d:c4:af:a7:1a:a4:77:28:74:a9:6f:97: 46:cf:a7:08:06:bd:a6:c5:09:21:88:8f:7b:36:83:bb:55:89: 3e:42:de:be:3d:90:eb:98:6f:76:8a:9a:7c:7c:83:39:81:6d: 95:07:08:d6:7e:0b:8e:45:96:4d:77:d0:e2:fd:cd:b6:3b:9f: 3a:5c:bf:bf:29:2a:85:03:97:f3:54:d7:7c:33:46:fb:7f:f4: 30:a1:f1:31:67:3c:bc:63:ba:c5:97:f9:bb:21:5d:9f:c5:92: 06:7f:8d:38:76:c0:d6:d2:72:f9:fc:50:a6:c9:7f:13:ee:67: 1b:f4:26:be:32:72:48:b5:56:5b:f5:20:d1:7f:d4:0f:4c:8f: c0:0c:5a:3d:dd:a9:d1:bd:95:82:c0:a2:ba:f1:25:d4:48:ff: f5:97:d2:ae:25:60:ee:28:98:5f:54:f0:b0:ca:23:fe:44:74: 92:75:7b:76 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUOMwvKSnVhAVx8xL+XYmsrWKm0zowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFD NDc2NDNFRTAeFw0yNDA5MTYxNTIyNDVaFw0yNTA5MTUxNTI3NDVaMDMxMTAvBgNV BAMTKDBGOTc0RERBOTI0OTVBMjMyMkJFQkYxOUQ0MjhDRkFBQUQ4QjlGQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWbstkjnuEy7+yMdNIBzO34k+g XaPPuFTffMCua6VW+m4Nz/AWDmiWMomLN5NV4HEceOeiXXVwkdKCR19YLOMQUE7d oN1rx+/SUjl38Hu/Q714So198kpDSEincNoQqMGBWMsSA47Mk0BzOkCTlL8Oem27 dyjJEkKeSMC3h3M/iYL4mNtXFegfYhB9HK9w1KVh6XQmQSVRCfB+xcFoqiPqku3a QF4fzus7G/9kqSmWZrWYaXq1z8v7KPNI3efVtm7lL1Gn2PbGuB4Y8sQtdecqx3pu /4n5bm02Zmf3trfb32T/p+aodoQStAKVTApp/zzEM6DM3xQ5jA5j7HOslK6RAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUD5dN2pJJWiMivr8Z1CjPqq2Ln80wHwYDVR0j BBgwFoAURR4g2pDG1ZeVH+wp3zdx6sR2Q+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm ZTc5LzEvNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFDNDc2NDNFRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC80NTFFMjBEQTkwQzZENTk3OTUxRkVDMjlE RjM3NzFFQUM0NzY0M0VFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2NkZjljYS1kZDY0LTRmMzEtYWJmMy0wZjMyYjhlN2ZlNzkvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjIzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHsBMA0GCSqGSIb3DQEBCwUAA4IBAQCR uLDM6hY5sr02F3W3riNgla4VgxWlqYVHS66E7bGZ/VVYpuAxzU1KXWDCTuXzVLty fZhTV0bLy3LjsHXrYcRmH0afadMZBF/ZJvutSXktxK+nGqR3KHSpb5dGz6cIBr2m xQkhiI97NoO7VYk+Qt6+PZDrmG92ipp8fIM5gW2VBwjWfguORZZNd9Di/c22O586 XL+/KSqFA5fzVNd8M0b7f/QwofExZzy8Y7rFl/m7IV2fxZIGf404dsDW0nL5/FCm yX8T7mcb9Ca+MnJItVZb9SDRf9QPTI/ADFo93anRvZWCwKK68SXUSP/1l9KuJWDu KJhfVPCwyiP+RHSSdXt2 -----END CERTIFICATE-----Generated at Thu Nov 21 06:58:16 2024 by rpki-client on console-fra.rpki-client.org