$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230333a3a2f34382d3438203d3e20323134373638.roa File: 326130613a363034343a376230333a3a2f34382d3438203d3e20323134373638.roa (raw, json) Hash identifier: yPAHiQMuvisKvZgTuxJWVNcL7IJSeHI4LfepvP7q8Ek= Subject key identifier: B4:64:2E:92:9B:99:4D:25:21:51:65:F6:11:55:ED:02:44:42:F4:E9 Certificate issuer: /CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Certificate serial: 6D6CE63759470F8594BF74B870AB8406DEB4E025 Authority key identifier: 45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230333a3a2f34382d3438203d3e20323134373638.roa Signing time: Mon 07 Oct 2024 13:47:56 +0000 ROA not before: Mon 07 Oct 2024 13:42:56 +0000 ROA not after: Mon 06 Oct 2025 13:47:56 +0000 asID: 214768 IP address blocks: 2a0a:6044:7b03::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:6c:e6:37:59:47:0f:85:94:bf:74:b8:70:ab:84:06:de:b4:e0:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451E20DA90C6D597951FEC29DF3771EAC47643EE Validity Not Before: Oct 7 13:42:56 2024 GMT Not After : Oct 6 13:47:56 2025 GMT Subject: CN=B4642E929B994D25215165F61155ED024442F4E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:24:49:b4:e6:4a:16:a2:b4:7c:31:a5:a9:df: e3:9b:78:62:1a:90:a7:4a:2d:94:6a:55:f6:36:6e: b1:ef:d2:da:3e:d0:77:22:be:8b:bd:67:d1:18:32: f5:bd:92:9a:af:72:31:3c:34:6b:67:51:a7:8f:94: 1a:ee:6e:96:fb:80:2d:3b:19:8b:a5:94:0a:70:9c: b1:cf:bd:d9:32:cf:e7:ad:a5:ba:d0:49:71:fb:88: e5:b8:6b:76:bc:b9:00:c1:81:15:3e:a0:5c:de:42: 6d:49:7c:61:3d:de:c4:78:df:12:60:9e:05:13:e8: 65:aa:e3:73:fa:e5:c8:8e:4c:a7:a0:99:75:45:ec: e0:78:be:6a:5f:b3:1a:e5:1b:14:ef:9b:2e:e0:5f: c8:cc:f6:03:b0:a9:86:18:d9:74:96:62:ec:9e:03: 1c:58:b5:98:0f:e3:ee:70:e2:54:78:47:84:2b:1c: 68:f3:6d:7a:13:9c:46:e5:9c:27:75:b8:70:79:3d: 7a:f0:c7:f6:35:ba:8a:69:e7:09:97:63:90:25:65: 6a:c0:b3:67:24:82:0f:01:8e:75:bc:e4:1f:b6:f0: 7b:be:b9:38:db:6b:de:5a:62:26:39:92:1c:27:fc: 84:3e:8d:09:c6:50:27:ae:7b:a5:78:c6:4b:14:cf: 66:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:64:2E:92:9B:99:4D:25:21:51:65:F6:11:55:ED:02:44:42:F4:E9 X509v3 Authority Key Identifier: keyid:45:1E:20:DA:90:C6:D5:97:95:1F:EC:29:DF:37:71:EA:C4:76:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/451E20DA90C6D597951FEC29DF3771EAC47643EE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/451E20DA90C6D597951FEC29DF3771EAC47643EE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/1/326130613a363034343a376230333a3a2f34382d3438203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7b03::/48 Signature Algorithm: sha256WithRSAEncryption 96:fb:72:ed:97:35:1a:cd:a2:55:31:f2:30:a0:85:8f:4e:5d: 36:9e:96:d1:ff:23:7d:b6:7f:75:e1:55:e3:64:11:99:8d:74: 23:a7:16:54:e0:23:86:23:5e:e4:4f:26:5a:1f:86:24:1b:0b: 47:22:3f:29:a6:c2:2c:fd:39:b6:03:eb:8a:ec:93:e4:b8:db: 96:ec:01:fa:06:c2:dd:49:c0:66:7f:92:c5:05:22:b0:a5:77: d5:6c:de:57:bb:bd:9c:d3:8a:73:c8:ec:01:fb:61:ef:e7:88: 9f:dd:d6:e8:a0:00:cb:65:1d:22:93:4e:de:c1:5f:66:91:e3: 73:10:92:5d:b7:82:1c:f7:4d:53:a7:d8:4b:95:3c:6f:31:3e: 58:af:10:34:19:8b:9b:ec:96:39:1e:ad:6f:90:20:27:29:ba: 0e:f4:dc:80:2c:81:85:44:63:1b:a4:97:11:13:da:3e:eb:17: a4:77:6b:0f:35:7a:8c:78:f3:e4:fe:f0:a7:e8:32:c2:b0:1a: 3b:70:06:11:c2:a8:a5:93:dc:ec:86:b6:bd:1e:f6:b4:cc:ba: 94:da:39:1a:4b:eb:3b:d4:27:37:b6:35:6f:73:43:14:3b:f4: d3:11:dd:1d:3e:35:7a:ad:a1:e4:16:2b:bc:4d:2a:b5:ea:71: 5b:a4:26:20 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUbWzmN1lHD4WUv3S4cKuEBt604CUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFD NDc2NDNFRTAeFw0yNDEwMDcxMzQyNTZaFw0yNTEwMDYxMzQ3NTZaMDMxMTAvBgNV BAMTKEI0NjQyRTkyOUI5OTREMjUyMTUxNjVGNjExNTVFRDAyNDQ0MkY0RTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJEm05koWorR8MaWp3+ObeGIa kKdKLZRqVfY2brHv0to+0Hcivou9Z9EYMvW9kpqvcjE8NGtnUaePlBrubpb7gC07 GYullApwnLHPvdkyz+etpbrQSXH7iOW4a3a8uQDBgRU+oFzeQm1JfGE93sR43xJg ngUT6GWq43P65ciOTKegmXVF7OB4vmpfsxrlGxTvmy7gX8jM9gOwqYYY2XSWYuye AxxYtZgP4+5w4lR4R4QrHGjzbXoTnEblnCd1uHB5PXrwx/Y1uopp5wmXY5AlZWrA s2ckgg8BjnW85B+28Hu+uTjba95aYiY5khwn/IQ+jQnGUCeue6V4xksUz2bvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUtGQukpuZTSUhUWX2EVXtAkRC9OkwHwYDVR0j BBgwFoAURR4g2pDG1ZeVH+wp3zdx6sR2Q+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm ZTc5LzEvNDUxRTIwREE5MEM2RDU5Nzk1MUZFQzI5REYzNzcxRUFDNDc2NDNFRS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC80NTFFMjBEQTkwQzZENTk3OTUxRkVDMjlE RjM3NzFFQUM0NzY0M0VFLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2NkZjljYS1kZDY0LTRmMzEtYWJmMy0wZjMyYjhlN2ZlNzkvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjIzMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczNjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHsDMA0GCSqGSIb3DQEBCwUAA4IBAQCW +3LtlzUazaJVMfIwoIWPTl02npbR/yN9tn914VXjZBGZjXQjpxZU4COGI17kTyZa H4YkGwtHIj8ppsIs/Tm2A+uK7JPkuNuW7AH6BsLdScBmf5LFBSKwpXfVbN5Xu72c 04pzyOwB+2Hv54if3dbooADLZR0ik07ewV9mkeNzEJJdt4Ic901Tp9hLlTxvMT5Y rxA0GYub7JY5Hq1vkCAnKboO9NyALIGFRGMbpJcRE9o+6xekd2sPNXqMePPk/vCn 6DLCsBo7cAYRwqilk9zshra9Hva0zLqU2jkaS+s71Cc3tjVvc0MUO/TTEd0dPjV6 raHkFiu8TSq16nFbpCYg -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:19 2024 by rpki-client on console-fra.rpki-client.org