$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa File: 326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa (raw, json) Hash identifier: 4NAkvNhOgG+FdQOl5H1HgnY8A0ca/GD2rGJr4GFMtSI= Subject key identifier: 1E:EA:18:69:65:6E:A9:62:AA:C5:A2:59:90:01:95:75:75:59:4E:46 Certificate issuer: /CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD Certificate serial: 619ED3FC60FEB08E6DB9015D93A5C6C71F87D0B0 Authority key identifier: CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa Signing time: Wed 11 Sep 2024 02:49:27 +0000 ROA not before: Wed 11 Sep 2024 02:44:27 +0000 ROA not after: Wed 10 Sep 2025 02:49:27 +0000 asID: 50755 IP address blocks: 2a06:a003:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 05:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:9e:d3:fc:60:fe:b0:8e:6d:b9:01:5d:93:a5:c6:c7:1f:87:d0:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD Validity Not Before: Sep 11 02:44:27 2024 GMT Not After : Sep 10 02:49:27 2025 GMT Subject: CN=1EEA1869656EA962AAC5A2599001957575594E46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:ce:64:36:18:ab:33:f1:f7:57:08:93:72: d1:5e:ae:ae:7a:04:72:94:93:0e:69:11:ab:ce:84: 0a:df:89:57:35:c7:ce:ba:17:22:1f:93:c9:e3:c2: 2d:60:bf:57:1d:f2:22:7c:e6:b0:e7:f0:25:b8:8f: f3:0c:da:b8:8e:10:96:ca:dd:89:23:73:36:3f:46: 45:cf:73:91:bd:59:5a:38:4e:22:82:c0:fd:88:e7: d5:0f:8f:7f:46:a7:51:9c:26:02:bf:e1:21:1a:5d: 8c:b7:15:2c:61:1b:85:4e:ba:2f:2e:ff:63:3f:c4: 2a:04:74:49:27:c9:10:ed:60:1c:51:e2:23:dc:0e: 7c:86:c8:47:0c:57:0f:cd:07:e8:16:2f:2f:60:ff: b5:9a:0a:bb:8c:67:dd:c2:27:55:4d:8e:54:97:2a: a4:18:5b:39:40:97:56:b8:55:ec:b5:ab:90:11:1a: 94:aa:7f:68:f8:2e:2b:bd:24:40:02:c7:b7:7c:53: 99:b5:13:8e:40:0c:59:38:a7:54:75:ec:fa:c4:3c: 3d:5a:a1:21:a3:d1:6a:54:1d:32:5e:83:99:81:03: 77:ae:d1:01:29:4e:bf:00:cd:73:96:fd:82:93:f7: 58:81:ff:9f:da:e4:24:12:3a:e8:e0:0e:24:1e:32: 53:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EA:18:69:65:6E:A9:62:AA:C5:A2:59:90:01:95:75:75:59:4E:46 X509v3 Authority Key Identifier: keyid:CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/326130363a613030333a666666663a3a2f34382d3438203d3e203530373535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:a003:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 8f:c7:a5:07:4d:94:2c:cc:9c:fa:41:fe:14:63:a2:a5:76:d6: 55:46:d5:31:46:e0:74:bc:62:b6:33:81:86:54:f1:d0:34:fe: e6:1f:cc:bf:db:03:97:71:60:09:6c:5a:bc:25:31:d8:e5:8f: 3f:b3:71:7b:78:53:98:a7:a1:5b:21:df:c8:74:e4:05:9b:9b: 8a:ae:14:60:8c:ad:f3:f1:8f:41:ed:d1:9c:ae:50:79:53:e2: 50:a2:57:76:87:14:52:51:9e:b3:ec:c1:d4:11:34:ae:06:c7: b3:a3:36:e0:6b:ea:9e:ce:c4:a5:bc:3f:85:12:71:1e:59:74: 89:c6:29:9c:78:e6:78:58:61:00:1c:f5:51:a7:07:ba:ab:d4: 95:08:8d:37:ed:9c:55:c0:4b:0e:46:65:02:e8:18:7d:b8:46: a3:2c:24:54:86:5a:af:6a:45:f6:10:5e:ca:c4:c8:cc:c8:f7: 15:33:86:c3:31:7a:85:22:d2:b1:51:8c:fb:bc:78:ec:88:f6: ab:fc:7d:be:93:b1:ff:3b:07:42:2c:5b:04:b5:6d:d4:c7:ae: 9b:0f:29:16:c4:2b:e4:f0:ba:1e:a1:a7:02:51:2d:0b:37:e5: 34:d4:ea:bf:2f:89:0f:89:b2:59:94:6c:e0:c0:4b:bf:ad:2f: 30:9f:6f:2a -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUYZ7T/GD+sI5tuQFdk6XGxx+H0LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgz Rjk1NTFDRDAeFw0yNDA5MTEwMjQ0MjdaFw0yNTA5MTAwMjQ5MjdaMDMxMTAvBgNV BAMTKDFFRUExODY5NjU2RUE5NjJBQUM1QTI1OTkwMDE5NTc1NzU1OTRFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUUc5kNhirM/H3VwiTctFerq56 BHKUkw5pEavOhArfiVc1x866FyIfk8njwi1gv1cd8iJ85rDn8CW4j/MM2riOEJbK 3YkjczY/RkXPc5G9WVo4TiKCwP2I59UPj39Gp1GcJgK/4SEaXYy3FSxhG4VOui8u /2M/xCoEdEknyRDtYBxR4iPcDnyGyEcMVw/NB+gWLy9g/7WaCruMZ93CJ1VNjlSX KqQYWzlAl1a4Vey1q5ARGpSqf2j4Liu9JEACx7d8U5m1E45ADFk4p1R17PrEPD1a oSGj0WpUHTJeg5mBA3eu0QEpTr8AzXOW/YKT91iB/5/a5CQSOujgDiQeMlNfAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUHuoYaWVuqWKqxaJZkAGVdXVZTkYwHwYDVR0j BBgwFoAUzhtPQ2e2pV80ypgaDWynWD+VUc0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzEvQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgzRjk1NTFDRC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgzRjk1 NTFDRC5jZXIwgbUGCCsGAQUFBwELBIGoMIGlMIGiBggrBgEFBQcwC4aBlXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzEvMzI2MTMwMzYzYTYxMzAzMDMz M2E2NjY2NjY2NjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzAzNzM1MzUucm9h MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAqBqAD//8wDQYJKoZIhvcNAQELBQADggEBAI/HpQdNlCzMnPpB/hRj oqV21lVG1TFG4HS8YrYzgYZU8dA0/uYfzL/bA5dxYAlsWrwlMdjljz+zcXt4U5in oVsh38h05AWbm4quFGCMrfPxj0Ht0ZyuUHlT4lCiV3aHFFJRnrPswdQRNK4Gx7Oj NuBr6p7OxKW8P4UScR5ZdInGKZx45nhYYQAc9VGnB7qr1JUIjTftnFXASw5GZQLo GH24RqMsJFSGWq9qRfYQXsrEyMzI9xUzhsMxeoUi0rFRjPu8eOyI9qv8fb6Tsf87 B0IsWwS1bdTHrpsPKRbEK+Twuh6hpwJRLQs35TTU6r8viQ+JslmUbODAS7+tLzCf byo= -----END CERTIFICATE-----Generated at Sun Nov 24 14:06:20 2024 by rpki-client on console-ams.rpki-client.org