$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa File: 3139342e35382e36352e302f32342d3234203d3e20323134373638.roa (raw, json) Hash identifier: y/fox/NDWEI298o75eeGijkFXnfs+27YTJMVLS6ZcwQ= Subject key identifier: 9C:68:9A:D5:2E:FB:FE:F6:56:86:56:32:E8:59:B4:6E:18:9A:0A:F3 Certificate issuer: /CN=974E186C2E15C12700D0165ACC54D7A585EE383C Certificate serial: 151AD6D5C218F88319042FC30AC22B67DCC47CF7 Authority key identifier: 97:4E:18:6C:2E:15:C1:27:00:D0:16:5A:CC:54:D7:A5:85:EE:38:3C Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/974E186C2E15C12700D0165ACC54D7A585EE383C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa Signing time: Fri 13 Sep 2024 10:59:36 +0000 ROA not before: Fri 13 Sep 2024 10:54:36 +0000 ROA not after: Fri 12 Sep 2025 10:59:36 +0000 asID: 214768 IP address blocks: 194.58.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/974E186C2E15C12700D0165ACC54D7A585EE383C.crl rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/974E186C2E15C12700D0165ACC54D7A585EE383C.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/974E186C2E15C12700D0165ACC54D7A585EE383C.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:1a:d6:d5:c2:18:f8:83:19:04:2f:c3:0a:c2:2b:67:dc:c4:7c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=974E186C2E15C12700D0165ACC54D7A585EE383C Validity Not Before: Sep 13 10:54:36 2024 GMT Not After : Sep 12 10:59:36 2025 GMT Subject: CN=9C689AD52EFBFEF656865632E859B46E189A0AF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5b:76:8f:42:55:ca:5a:4e:f1:de:bd:17:65: 22:e5:27:03:f4:27:c1:f6:6b:30:8f:00:dd:5a:6d: 2a:56:60:1a:11:9a:b4:f6:7d:87:07:cc:10:0f:e7: 97:f9:25:6a:fe:3e:7d:d1:82:2e:4f:aa:88:61:21: f5:65:11:65:93:87:3f:ae:c6:de:da:db:92:c8:c7: d1:34:ce:4c:40:ee:1d:48:2f:a9:0e:24:d8:9f:69: 4d:0a:19:09:1a:f3:4a:b5:8a:9b:9b:d1:64:66:35: d6:46:c0:59:52:80:63:88:21:34:8b:c9:e9:16:39: 27:8e:a2:0c:45:c7:00:4d:d4:4d:73:1b:f0:da:12: 8b:87:19:03:2f:7d:bc:25:3c:5d:25:55:1d:37:e2: 20:3b:09:db:16:01:e5:e5:da:ee:c9:38:be:ec:10: f6:67:66:ec:9f:5d:3d:00:83:ef:b1:f0:46:bd:ba: cd:b3:90:b8:9f:8d:3b:68:aa:53:40:bd:78:10:f8: 22:c9:08:82:3a:22:44:41:bd:3f:cc:4d:51:41:46: f8:8b:1e:8f:68:d7:84:52:54:49:62:7c:83:87:76: 8c:ab:5d:80:cf:bb:b8:99:d1:d3:68:26:c6:3c:63: cf:f6:50:fa:24:b3:96:1a:ee:75:ce:ec:48:61:25: 7a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:68:9A:D5:2E:FB:FE:F6:56:86:56:32:E8:59:B4:6E:18:9A:0A:F3 X509v3 Authority Key Identifier: keyid:97:4E:18:6C:2E:15:C1:27:00:D0:16:5A:CC:54:D7:A5:85:EE:38:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/974E186C2E15C12700D0165ACC54D7A585EE383C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/974E186C2E15C12700D0165ACC54D7A585EE383C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23cdf9ca-dd64-4f31-abf3-0f32b8e7fe79/2/3139342e35382e36352e302f32342d3234203d3e20323134373638.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.58.65.0/24 Signature Algorithm: sha256WithRSAEncryption 37:94:05:28:c3:c2:9c:d6:a9:34:44:ab:d7:eb:33:e3:fc:ed: 27:c5:97:7a:ed:fe:61:32:0e:41:a7:ed:2a:3c:3c:17:4c:eb: d8:7c:70:5e:eb:65:ba:b0:fb:5c:2f:66:21:0d:8b:59:47:d7: 77:9b:ad:02:87:a7:50:27:a1:fb:43:78:50:44:2f:17:e7:31: 69:65:24:71:fa:5d:eb:ff:94:b7:a9:61:7f:57:a7:1d:87:3c: 8e:08:2d:da:01:cc:bb:2c:b1:fa:ee:a7:6b:16:46:20:59:9b: 24:61:93:b3:2e:4a:7e:da:25:4d:47:98:cb:91:f2:ba:7c:35: fe:c8:8b:2b:72:da:d1:6d:27:1e:9d:d4:4e:6a:1b:75:93:b3: 8f:0c:56:92:93:96:21:c9:d7:5b:80:4f:66:42:79:3c:f9:e4: e9:dd:c2:cf:e9:00:be:2b:ad:78:58:2d:d4:b1:d0:bc:66:57: 7b:69:1e:e6:0d:75:28:7b:0f:15:83:0e:83:7e:b6:fd:91:2f: 1b:30:8c:16:82:81:78:d6:44:84:bf:d3:64:ec:3c:c5:f6:55: 9c:ab:3b:95:54:36:d7:49:14:ea:a0:1c:d0:3d:bd:6c:b5:f5: b2:af:e6:b0:b4:bd:6d:f4:9c:a0:03:c0:a4:85:d9:24:fb:f6: b3:0b:37:13 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUFRrW1cIY+IMZBC/DCsIrZ9zEfPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4 NUVFMzgzQzAeFw0yNDA5MTMxMDU0MzZaFw0yNTA5MTIxMDU5MzZaMDMxMTAvBgNV BAMTKDlDNjg5QUQ1MkVGQkZFRjY1Njg2NTYzMkU4NTlCNDZFMTg5QTBBRjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpW3aPQlXKWk7x3r0XZSLlJwP0 J8H2azCPAN1abSpWYBoRmrT2fYcHzBAP55f5JWr+Pn3Rgi5PqohhIfVlEWWThz+u xt7a25LIx9E0zkxA7h1IL6kOJNifaU0KGQka80q1ipub0WRmNdZGwFlSgGOIITSL yekWOSeOogxFxwBN1E1zG/DaEouHGQMvfbwlPF0lVR034iA7CdsWAeXl2u7JOL7s EPZnZuyfXT0Ag++x8Ea9us2zkLifjTtoqlNAvXgQ+CLJCII6IkRBvT/MTVFBRviL Ho9o14RSVElifIOHdoyrXYDPu7iZ0dNoJsY8Y8/2UPoks5Ya7nXO7EhhJXq/AgMB AAGjggJtMIICaTAdBgNVHQ4EFgQUnGia1S77/vZWhlYy6Fm0bhiaCvMwHwYDVR0j BBgwFoAUl04YbC4VwScA0BZazFTXpYXuODwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2EtZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdm ZTc5LzIvOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4NUVFMzgzQy5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvOTc0RTE4NkMyRTE1QzEyNzAwRDAxNjVBQ0M1NEQ3QTU4NUVF MzgzQy5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMjNjZGY5Y2Et ZGQ2NC00ZjMxLWFiZjMtMGYzMmI4ZTdmZTc5LzIvMzEzOTM0MmUzNTM4MmUzNjM1 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM0MzczNjM4LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA wjpBMA0GCSqGSIb3DQEBCwUAA4IBAQA3lAUow8Kc1qk0RKvX6zPj/O0nxZd67f5h Mg5Bp+0qPDwXTOvYfHBe62W6sPtcL2YhDYtZR9d3m60Ch6dQJ6H7Q3hQRC8X5zFp ZSRx+l3r/5S3qWF/V6cdhzyOCC3aAcy7LLH67qdrFkYgWZskYZOzLkp+2iVNR5jL kfK6fDX+yIsrctrRbScendROaht1k7OPDFaSk5YhyddbgE9mQnk8+eTp3cLP6QC+ K614WC3UsdC8Zld7aR7mDXUoew8Vgw6Dfrb9kS8bMIwWgoF41kSEv9Nk7DzF9lWc qzuVVDbXSRTqoBzQPb1stfWyr+awtL1t9JygA8Ckhdkk+/azCzcT -----END CERTIFICATE-----Generated at Thu Nov 21 21:14:50 2024 by rpki-client on console-fra.rpki-client.org