$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230323a3a2f34382d3438203d3e20323134373638.roa File: 326130613a363034343a376230323a3a2f34382d3438203d3e20323134373638.roa (raw, json) Hash identifier: CR7rvXsMnSL0QDx0Xxq2kk+jhYk7murgLpP3U4Y9IXk= Subject key identifier: CF:C6:EA:FE:83:0D:8A:42:42:BB:99:1E:15:82:2F:CB:1F:9D:27:E7 Certificate issuer: /CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Certificate serial: 098D4C403E5263CECAD376065C91D59B64742C4B Authority key identifier: 45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230323a3a2f34382d3438203d3e20323134373638.roa Signing time: Fri 04 Oct 2024 03:23:28 +0000 ROA not before: Fri 04 Oct 2024 03:18:28 +0000 ROA not after: Fri 03 Oct 2025 03:23:28 +0000 asID: 214768 IP address blocks: 2a0a:6044:7b02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8d:4c:40:3e:52:63:ce:ca:d3:76:06:5c:91:d5:9b:64:74:2c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Validity Not Before: Oct 4 03:18:28 2024 GMT Not After : Oct 3 03:23:28 2025 GMT Subject: CN=CFC6EAFE830D8A4242BB991E15822FCB1F9D27E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d7:d8:27:82:53:b6:ff:e0:b8:e3:9e:12:78: f5:ca:58:eb:1a:13:e5:94:85:c1:de:43:d7:c6:db: 6b:7c:df:f3:15:4d:cf:30:64:24:67:a5:36:b0:24: 75:97:ee:4c:49:6c:c6:e9:b0:e1:9d:93:4f:68:0f: 8a:e8:13:8e:d6:46:38:d2:3e:d0:12:6a:72:e9:05: a5:3c:9b:b2:9c:7b:a4:cc:7e:0f:52:9f:03:c2:83: bf:f2:5b:55:33:27:db:21:f8:ef:37:ca:7c:fe:2b: 82:f2:71:e9:ce:0d:50:75:c0:9a:11:ae:62:6f:6f: c2:cd:a4:a2:de:b5:a8:c2:f0:0e:04:c6:c0:ab:1b: bd:6e:2f:b6:e6:24:b3:74:c8:1a:57:d3:07:fb:a8: 83:7d:06:58:23:fb:f1:77:c7:da:51:97:13:e6:59: bc:00:60:4b:d8:49:75:dc:e4:21:0d:99:fd:09:b6: bc:7f:62:63:36:2c:24:61:af:47:9f:9b:4e:8d:a0: 35:01:42:e2:4f:f4:fc:65:d0:ec:ee:2d:6b:5e:2d: 9c:87:a5:1e:91:5a:b4:64:43:47:88:57:4d:ac:6b: 84:07:3a:f9:3e:b9:dc:ac:bc:70:c4:44:e9:2e:b7: 14:69:13:39:af:8f:9d:95:e6:ff:f0:cd:18:21:45: 74:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C6:EA:FE:83:0D:8A:42:42:BB:99:1E:15:82:2F:CB:1F:9D:27:E7 X509v3 Authority Key Identifier: keyid:45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230323a3a2f34382d3438203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7b02::/48 Signature Algorithm: sha256WithRSAEncryption 37:66:40:95:8c:ca:8f:6f:2e:5a:14:7f:bb:30:fe:a3:9a:87: cc:7f:23:95:07:40:84:a4:f4:7c:e6:a9:f2:51:92:65:95:26: 8e:5c:b6:cb:3f:63:26:1a:02:29:8e:5b:da:25:07:bf:ca:4b: 13:51:23:85:11:10:75:38:66:8c:25:57:9b:74:cd:c6:05:91: 3c:0e:a6:db:07:e2:90:82:8a:10:f1:56:07:78:5b:2b:27:34: 93:65:33:6b:26:23:6a:30:bf:a4:b4:e9:1d:ce:70:61:b8:21: 0c:ea:36:2e:88:36:09:d0:6a:21:71:e1:11:a8:1e:2b:4f:57: 19:c5:03:bb:e3:25:16:69:28:bc:02:50:53:61:b6:08:cc:a3: 3b:ed:fb:2a:1b:16:2b:51:c1:01:61:9d:41:a3:56:ab:c5:7e: 29:04:a4:2a:57:24:e8:5e:39:1e:48:a6:ad:4b:1a:12:44:fd: 3d:58:e0:48:1b:d8:1b:51:06:9d:71:7e:29:c5:79:7c:05:a9: 7d:8d:7d:28:6c:c2:be:b1:59:ed:47:bc:87:d6:88:04:ad:61: 95:bb:f4:a3:eb:b3:4c:62:fa:07:32:49:81:bd:7f:c7:ba:f2: 80:51:f2:92:34:75:7b:bb:b5:1a:dc:3a:6b:d6:be:76:68:90: a6:62:9b:9f -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUCY1MQD5SY87K03YGXJHVm2R0LEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFD NDc2NDNFRTAeFw0yNDEwMDQwMzE4MjhaFw0yNTEwMDMwMzIzMjhaMDMxMTAvBgNV BAMTKENGQzZFQUZFODMwRDhBNDI0MkJCOTkxRTE1ODIyRkNCMUY5RDI3RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq19gnglO2/+C4454SePXKWOsa E+WUhcHeQ9fG22t83/MVTc8wZCRnpTawJHWX7kxJbMbpsOGdk09oD4roE47WRjjS PtASanLpBaU8m7Kce6TMfg9SnwPCg7/yW1UzJ9sh+O83ynz+K4LycenODVB1wJoR rmJvb8LNpKLetajC8A4ExsCrG71uL7bmJLN0yBpX0wf7qIN9Blgj+/F3x9pRlxPm WbwAYEvYSXXc5CENmf0Jtrx/YmM2LCRhr0efm06NoDUBQuJP9Pxl0OzuLWteLZyH pR6RWrRkQ0eIV02sa4QHOvk+udysvHDEROkutxRpEzmvj52V5v/wzRghRXRLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUz8bq/oMNikJCu5keFYIvyx+dJ+cwHwYDVR0j BBgwFoAURR4g2pDG1ZeVH+wp3zdx6sR2Q+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm ZTc5LzEvNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFDNDc2NDNFRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC80NTFFMjBEQTkwQzZENTk3OTUxRkVDMjlE RjM3NzFFQUM0NzY0M0VFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2NkZjljYS1kZDY0LTRmMzEtYWJmMy0wZjMyYjhlN2ZlNzkvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjIzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHsCMA0GCSqGSIb3DQEBCwUAA4IBAQA3 ZkCVjMqPby5aFH+7MP6jmofMfyOVB0CEpPR85qnyUZJllSaOXLbLP2MmGgIpjlva JQe/yksTUSOFERB1OGaMJVebdM3GBZE8DqbbB+KQgooQ8VYHeFsrJzSTZTNrJiNq ML+ktOkdznBhuCEM6jYuiDYJ0GohceERqB4rT1cZxQO74yUWaSi8AlBTYbYIzKM7 7fsqGxYrUcEBYZ1Bo1arxX4pBKQqVyToXjkeSKatSxoSRP09WOBIG9gbUQadcX4p xXl8Bal9jX0obMK+sVntR7yH1ogErWGVu/Sj67NMYvoHMkmBvX/HuvKAUfKSNHV7 u7Ua3Dpr1r52aJCmYpuf -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:19 2024 by rpki-client on console-fra.rpki-client.org