$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/39342e32342e3130382e302f32342d3234203d3e20323030363736.roa File: 39342e32342e3130382e302f32342d3234203d3e20323030363736.roa (raw, json) Hash identifier: Nyn9oM7uD3t9zeyaIzVAMa0fIXr9id1B4aigY0eVgwU= Subject key identifier: D6:45:D9:47:FE:7B:D4:9C:81:2C:9C:C3:90:C9:94:63:14:5F:75:87 Certificate issuer: /CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD Certificate serial: 59F0D93B75F2D958F7A91FF112DCD2F9DBED42FD Authority key identifier: CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/39342e32342e3130382e302f32342d3234203d3e20323030363736.roa Signing time: Tue 10 Sep 2024 19:15:20 +0000 ROA not before: Tue 10 Sep 2024 19:10:20 +0000 ROA not after: Tue 09 Sep 2025 19:15:20 +0000 asID: 200676 IP address blocks: 94.24.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 05:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:f0:d9:3b:75:f2:d9:58:f7:a9:1f:f1:12:dc:d2:f9:db:ed:42:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD Validity Not Before: Sep 10 19:10:20 2024 GMT Not After : Sep 9 19:15:20 2025 GMT Subject: CN=D645D947FE7BD49C812C9CC390C99463145F7587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a4:a2:9b:34:c3:38:04:24:5d:92:1d:0c:dd: f6:af:d1:e1:f5:e8:fe:3f:4d:d3:41:2d:b1:0d:45: 0b:78:52:9a:8b:4d:db:b1:a6:20:53:fb:b4:10:6d: 19:45:50:9b:00:3f:6f:51:7c:f4:a2:86:50:de:11: 6d:c2:89:ee:7a:0a:be:dc:37:42:b1:7e:9e:69:94: 47:94:cc:38:ee:3f:fe:6d:22:67:cd:74:05:50:41: e6:20:8a:a8:ec:32:b8:87:9d:ca:f3:67:2d:71:09: a6:97:1e:b9:a7:fc:2f:bb:d1:01:a4:e5:e6:36:5c: 06:a9:79:1f:a9:9e:4a:bb:14:5f:97:9d:73:4a:63: 4f:77:c8:02:68:5c:f2:dd:a4:6a:69:a9:f7:67:70: 3f:df:1f:73:58:75:ca:a9:55:96:94:e2:8a:c6:86: bd:0e:c5:ed:8c:e8:33:b5:3e:43:f1:72:d5:20:68: ac:52:74:46:6a:77:bc:25:f2:1a:ee:83:27:2c:37: 90:04:cc:03:13:3b:88:2d:8d:ef:a6:fc:24:d7:f0: 0d:b6:ed:04:c5:a9:17:e3:59:53:a1:c4:36:49:85: 8a:60:2b:8a:5c:5c:39:83:26:6e:ca:af:7f:29:64: e3:83:39:23:e2:cc:72:85:62:72:cf:1e:07:ba:16: 42:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:45:D9:47:FE:7B:D4:9C:81:2C:9C:C3:90:C9:94:63:14:5F:75:87 X509v3 Authority Key Identifier: keyid:CE:1B:4F:43:67:B6:A5:5F:34:CA:98:1A:0D:6C:A7:58:3F:95:51:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/CE1B4F4367B6A55F34CA981A0D6CA7583F9551CD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2aca3ca6-34cc-4772-bac0-a35dd0195ce7/1/39342e32342e3130382e302f32342d3234203d3e20323030363736.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.24.108.0/24 Signature Algorithm: sha256WithRSAEncryption 76:04:00:c8:ea:20:3b:af:fd:74:d5:37:49:f5:1d:f1:50:c6: 4b:e9:f1:a9:09:3e:d7:70:3a:60:9b:9d:34:6b:0c:45:b3:ac: 3e:fa:56:fc:67:78:f2:9b:f0:48:41:7d:dc:b8:8c:7e:27:92: f5:c8:a0:30:c3:88:79:c5:e5:8d:a0:f5:75:0c:9c:7d:f4:b3: 0c:49:f4:01:94:30:09:68:ee:b2:18:31:05:a6:f7:21:9c:33: 64:fb:95:10:2b:cf:e1:5d:8e:fc:65:d0:98:c3:8a:1e:96:60: de:ec:e3:80:93:7b:eb:eb:37:5a:f5:0e:9e:a2:c1:82:41:46: 20:fe:a0:db:13:36:cd:a9:31:7c:ea:cb:9a:c1:c8:63:10:ba: 5d:8b:42:ce:fb:9c:99:c4:78:a0:f8:99:16:0b:36:34:92:78: 4e:b2:d0:41:70:1d:2f:5e:ee:ca:5e:19:27:55:a7:f2:3f:be: c7:17:f6:2c:9d:19:f4:3a:3d:46:82:c3:af:ea:d0:20:46:d6: 7d:8e:5c:7d:2e:6c:59:ec:c4:34:e2:48:e1:84:6e:cb:49:3d: 30:62:54:da:ea:92:b3:0f:5a:76:4d:ce:e5:8c:78:5c:92:09: c5:c5:04:73:88:ed:7c:a6:00:89:1b:45:7c:d8:16:08:0b:72: 96:78:42:47 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIUWfDZO3Xy2Vj3qR/xEtzS+dvtQv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgz Rjk1NTFDRDAeFw0yNDA5MTAxOTEwMjBaFw0yNTA5MDkxOTE1MjBaMDMxMTAvBgNV BAMTKEQ2NDVEOTQ3RkU3QkQ0OUM4MTJDOUNDMzkwQzk5NDYzMTQ1Rjc1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRpKKbNMM4BCRdkh0M3fav0eH1 6P4/TdNBLbENRQt4UpqLTduxpiBT+7QQbRlFUJsAP29RfPSihlDeEW3Cie56Cr7c N0Kxfp5plEeUzDjuP/5tImfNdAVQQeYgiqjsMriHncrzZy1xCaaXHrmn/C+70QGk 5eY2XAapeR+pnkq7FF+XnXNKY093yAJoXPLdpGppqfdncD/fH3NYdcqpVZaU4orG hr0Oxe2M6DO1PkPxctUgaKxSdEZqd7wl8hrugycsN5AEzAMTO4gtje+m/CTX8A22 7QTFqRfjWVOhxDZJhYpgK4pcXDmDJm7Kr38pZOODOSPizHKFYnLPHge6FkLPAgMB AAGjggJtMIICaTAdBgNVHQ4EFgQU1kXZR/571JyBLJzDkMmUYxRfdYcwHwYDVR0j BBgwFoAUzhtPQ2e2pV80ypgaDWynWD+VUc0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYtMzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1 Y2U3LzEvQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgzRjk1NTFDRC5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvQ0UxQjRGNDM2N0I2QTU1RjM0Q0E5ODFBMEQ2Q0E3NTgzRjk1 NTFDRC5jZXIwga0GCCsGAQUFBwELBIGgMIGdMIGaBggrBgEFBQcwC4aBjXJzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMmFjYTNjYTYt MzRjYy00NzcyLWJhYzAtYTM1ZGQwMTk1Y2U3LzEvMzkzNDJlMzIzNDJlMzEzMDM4 MmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMDMwMzYzNzM2LnJvYTAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA XhhsMA0GCSqGSIb3DQEBCwUAA4IBAQB2BADI6iA7r/101TdJ9R3xUMZL6fGpCT7X cDpgm500awxFs6w++lb8Z3jym/BIQX3cuIx+J5L1yKAww4h5xeWNoPV1DJx99LMM SfQBlDAJaO6yGDEFpvchnDNk+5UQK8/hXY78ZdCYw4oelmDe7OOAk3vr6zda9Q6e osGCQUYg/qDbEzbNqTF86suawchjELpdi0LO+5yZxHig+JkWCzY0knhOstBBcB0v Xu7KXhknVafyP77HF/YsnRn0Oj1GgsOv6tAgRtZ9jlx9LmxZ7MQ04kjhhG7LST0w YlTa6pKzD1p2Tc7ljHhckgnFxQRziO18pgCJG0V82BYIC3KWeEJH -----END CERTIFICATE-----Generated at Sun Nov 24 14:06:20 2024 by rpki-client on console-ams.rpki-client.org