$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3335313a3a2f34382d3438203d3e20343031333836.roa File: 326130663a383563313a3335313a3a2f34382d3438203d3e20343031333836.roa (raw, json) Hash identifier: 7mR3vQrcbHUSwKtu57zMbBmzQiQeIJwUP4b5xp+7MO0= Subject key identifier: DA:FF:F6:C8:33:B8:9D:90:F8:2C:07:F4:51:78:45:B6:3B:1B:13:51 Certificate issuer: /CN=069FAF47FF48AEF4C98F5097074530A74C111AB9 Certificate serial: 0BC052EFBCBB1827819C3A3DE1B5DB34BDE6B6DD Authority key identifier: 06:9F:AF:47:FF:48:AE:F4:C9:8F:50:97:07:45:30:A7:4C:11:1A:B9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/069FAF47FF48AEF4C98F5097074530A74C111AB9.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3335313a3a2f34382d3438203d3e20343031333836.roa Signing time: Sat 12 Oct 2024 16:29:36 +0000 ROA not before: Sat 12 Oct 2024 16:24:36 +0000 ROA not after: Sat 11 Oct 2025 16:29:36 +0000 asID: 401386 IP address blocks: 2a0f:85c1:351::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/069FAF47FF48AEF4C98F5097074530A74C111AB9.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/069FAF47FF48AEF4C98F5097074530A74C111AB9.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/069FAF47FF48AEF4C98F5097074530A74C111AB9.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:c0:52:ef:bc:bb:18:27:81:9c:3a:3d:e1:b5:db:34:bd:e6:b6:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069FAF47FF48AEF4C98F5097074530A74C111AB9 Validity Not Before: Oct 12 16:24:36 2024 GMT Not After : Oct 11 16:29:36 2025 GMT Subject: CN=DAFFF6C833B89D90F82C07F4517845B63B1B1351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:00:d6:c0:a5:5b:ce:e1:65:fa:53:f7:8c:e5: 51:06:1b:51:31:4c:a1:15:02:45:62:37:dc:1f:1c: 91:b4:95:64:d0:65:60:b5:41:ee:79:c7:0b:5f:f2: 28:9b:e6:29:c8:7b:dc:20:f9:02:b2:98:c3:10:1f: 16:7f:d7:ec:09:e2:0b:ec:ca:fd:11:3e:34:c0:f8: 10:5e:c1:25:0a:4c:74:a9:42:08:4c:55:0c:e9:2e: e6:b2:2c:68:0b:f9:59:94:19:b1:20:b4:29:64:25: 92:c2:41:7e:56:d5:0a:36:44:c7:86:04:af:8a:23: 82:1d:38:01:30:a7:1e:b2:f8:78:bc:86:bc:19:75: 7e:b8:20:5f:56:7a:0a:aa:a3:6b:f6:22:4f:9a:c0: 82:cf:da:be:db:09:36:c3:7b:6d:99:47:a0:51:81: e0:bd:81:00:dc:95:1a:a1:44:34:1a:c2:8a:54:44: ea:90:98:fa:24:e4:39:a9:10:b6:bc:d9:10:b3:7c: 7c:70:03:d3:ca:47:10:7a:73:c4:87:c3:75:73:a2: e5:7b:f7:e2:ec:52:fd:b0:bb:34:5e:f1:be:94:d3: f4:77:d5:71:28:bd:4e:5f:2a:67:e1:fe:2b:52:41: 70:02:24:62:db:68:b1:2e:06:03:74:35:13:5a:a0: fe:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FF:F6:C8:33:B8:9D:90:F8:2C:07:F4:51:78:45:B6:3B:1B:13:51 X509v3 Authority Key Identifier: keyid:06:9F:AF:47:FF:48:AE:F4:C9:8F:50:97:07:45:30:A7:4C:11:1A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/069FAF47FF48AEF4C98F5097074530A74C111AB9.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/069FAF47FF48AEF4C98F5097074530A74C111AB9.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/2/326130663a383563313a3335313a3a2f34382d3438203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:351::/48 Signature Algorithm: sha256WithRSAEncryption 10:26:ad:8f:ff:1d:73:79:b0:cd:8b:30:e2:4a:c2:f5:28:e5: b9:be:56:c6:11:8c:cc:c3:f3:1b:ca:61:2e:8c:f5:6f:a0:b5: 15:79:36:1d:a2:2b:a6:b5:24:24:27:88:13:bf:4f:36:f4:80: 2f:e1:cb:69:f6:b2:0e:e0:4d:9a:e1:b6:0e:4b:1c:43:8a:0f: df:32:0f:c6:eb:26:12:17:5b:73:84:1b:b0:9a:7a:f1:f8:b2: 3e:e4:8b:5a:fa:49:8c:18:a3:71:2c:54:90:d2:9e:0d:62:33: 6f:58:54:26:74:76:64:01:eb:f0:4f:be:df:6c:59:31:43:b9: 50:ac:e9:d7:97:ab:2c:18:bd:c5:ff:42:4b:f1:19:94:60:20: d0:65:fb:8f:87:b4:0d:28:b8:c7:30:11:ea:f0:fe:bf:fb:75: f5:79:37:1b:dd:b2:7e:2d:30:22:07:56:8a:ee:ea:b7:df:5d: ac:8d:8a:fb:85:b4:45:a0:e4:5e:a5:fd:47:91:a8:9d:05:04: 55:9a:cc:e2:92:2f:a4:f5:72:2d:e7:9b:33:98:83:f5:99:5e: bc:89:69:96:3e:df:4c:a8:da:8e:ac:8f:f2:c2:b1:4a:27:a4: 32:fb:85:84:ce:fa:07:16:dc:11:0b:5c:f4:a2:22:42:91:a4: ed:70:86:ba -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUC8BS77y7GCeBnDo94bXbNL3mtt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDY5RkFGNDdGRjQ4QUVGNEM5OEY1MDk3MDc0NTMwQTc0 QzExMUFCOTAeFw0yNDEwMTIxNjI0MzZaFw0yNTEwMTExNjI5MzZaMDMxMTAvBgNV BAMTKERBRkZGNkM4MzNCODlEOTBGODJDMDdGNDUxNzg0NUI2M0IxQjEzNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtANbApVvO4WX6U/eM5VEGG1Ex TKEVAkViN9wfHJG0lWTQZWC1Qe55xwtf8iib5inIe9wg+QKymMMQHxZ/1+wJ4gvs yv0RPjTA+BBewSUKTHSpQghMVQzpLuayLGgL+VmUGbEgtClkJZLCQX5W1Qo2RMeG BK+KI4IdOAEwpx6y+Hi8hrwZdX64IF9Wegqqo2v2Ik+awILP2r7bCTbDe22ZR6BR geC9gQDclRqhRDQawopUROqQmPok5DmpELa82RCzfHxwA9PKRxB6c8SHw3VzouV7 9+LsUv2wuzRe8b6U0/R31XEovU5fKmfh/itSQXACJGLbaLEuBgN0NRNaoP4pAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU2v/2yDO4nZD4LAf0UXhFtjsbE1EwHwYDVR0j BBgwFoAUBp+vR/9IrvTJj1CXB0Uwp0wRGrkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzIvMDY5RkFGNDdGRjQ4QUVGNEM5OEY1MDk3MDc0NTMwQTc0QzExMUFCOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC8wNjlGQUY0N0ZGNDhBRUY0Qzk4RjUwOTcw NzQ1MzBBNzRDMTExQUI5LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMi8zMjYxMzA2 NjNhMzgzNTYzMzEzYTMzMzUzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzAz MTMzMzgzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoPhcEDUTANBgkqhkiG9w0BAQsFAAOCAQEAECat j/8dc3mwzYsw4krC9Sjlub5WxhGMzMPzG8phLoz1b6C1FXk2HaIrprUkJCeIE79P NvSAL+HLafayDuBNmuG2DkscQ4oP3zIPxusmEhdbc4QbsJp68fiyPuSLWvpJjBij cSxUkNKeDWIzb1hUJnR2ZAHr8E++32xZMUO5UKzp15erLBi9xf9CS/EZlGAg0GX7 j4e0DSi4xzAR6vD+v/t19Xk3G92yfi0wIgdWiu7qt99drI2K+4W0RaDkXqX9R5Go nQUEVZrM4pIvpPVyLeebM5iD9ZlevIlplj7fTKjajqyP8sKxSiekMvuFhM76Bxbc EQtc9KIiQpGk7XCGug== -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org