$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa File: 326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa (raw, json) Hash identifier: pLh45pB1svAQHP5Xv38naFs3vwEc4Ksu1QAkru4X3nA= Subject key identifier: B8:23:E3:20:E9:96:E6:8A:6A:6E:11:08:5C:12:0E:CB:6A:91:95:93 Certificate issuer: /CN=EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52 Certificate serial: 019DCD6326B6F12D4A4E489ED40932986069DA43 Authority key identifier: EE:B9:FB:9A:32:9D:DB:5B:94:FC:5E:24:24:E5:72:EC:B9:EE:DE:52 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa Signing time: Tue 15 Oct 2024 15:33:56 +0000 ROA not before: Tue 15 Oct 2024 15:28:56 +0000 ROA not after: Tue 14 Oct 2025 15:33:56 +0000 asID: 44817 IP address blocks: 2a0f:85c1:325::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.mft rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.cer rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.crl rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/C4CE7D8902405BA4598F84B6A41C27D722834B1C.mft rsync://rpki.ripe.net/repository/DEFAULT/xM59iQJAW6RZj4S2pBwn1yKDSxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9d:cd:63:26:b6:f1:2d:4a:4e:48:9e:d4:09:32:98:60:69:da:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52 Validity Not Before: Oct 15 15:28:56 2024 GMT Not After : Oct 14 15:33:56 2025 GMT Subject: CN=B823E320E996E68A6A6E11085C120ECB6A919593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:52:20:83:c6:f2:6b:3c:98:ce:f2:2e:27:35: 03:57:93:ba:90:fc:93:02:bb:05:a3:7e:67:48:67: 84:cd:08:2d:83:fd:92:06:49:e5:a5:eb:e7:7e:cc: 4c:f2:76:b4:b6:7d:11:ad:38:6c:92:e1:cf:e5:26: 0f:01:3e:5d:76:39:f6:7a:7b:fb:7e:7a:d0:ca:ba: ce:30:6b:a7:dd:c5:35:e5:80:d5:7a:e7:21:35:ff: aa:29:29:dd:73:bd:e5:29:f1:ae:90:df:b8:0d:c8: 75:1d:b3:cd:a0:6f:1e:a6:9a:b6:54:5f:c8:1c:d3: 35:55:c3:e2:a6:3d:ec:d0:6b:71:a2:32:0b:60:5a: 26:93:1a:89:12:30:19:a8:0b:46:82:a0:02:73:2f: 30:0c:a3:24:6b:c2:1c:d2:e3:c5:a8:a0:9c:3c:00: bc:45:14:7f:47:bb:ec:c2:00:6a:70:39:6e:59:ce: 38:64:12:55:4e:94:cf:1f:4d:66:a3:02:62:b3:5c: 04:91:78:b6:5a:f4:af:92:73:e4:ab:b0:af:36:75: 16:07:3b:5a:28:f4:1c:db:89:85:fe:82:07:b3:0d: 5a:f1:28:27:5a:24:eb:34:d4:8b:57:ec:ab:19:ca: 3f:2b:e5:5a:ea:51:64:ff:4c:6a:27:fd:ea:df:a8: 53:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:23:E3:20:E9:96:E6:8A:6A:6E:11:08:5C:12:0E:CB:6A:91:95:93 X509v3 Authority Key Identifier: keyid:EE:B9:FB:9A:32:9D:DB:5B:94:FC:5E:24:24:E5:72:EC:B9:EE:DE:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/84d51810-1987-4701-8f1f-8425111964f4/0/EEB9FB9A329DDB5B94FC5E2424E572ECB9EEDE52.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/1/326130663a383563313a3332353a3a2f34382d3438203d3e203434383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0f:85c1:325::/48 Signature Algorithm: sha256WithRSAEncryption 86:a8:a6:0e:a3:ea:49:d3:52:6c:93:ed:e6:21:61:cc:fc:ae: 8e:09:b6:76:ec:bd:cd:2d:ac:67:8e:fd:42:c6:e3:bc:55:98: 27:bf:bf:eb:d8:a7:09:2c:00:31:a3:3e:21:f5:2e:0f:22:1e: 04:0d:94:35:df:2a:95:96:52:93:a7:b4:12:40:3d:eb:96:fd: 2b:d6:ea:75:d8:16:48:8b:85:37:94:cf:a5:f4:28:e6:13:87: 25:f2:f3:f8:c9:b4:61:7e:db:52:29:24:89:2b:2e:ff:09:a9: a5:37:6e:dc:e1:fc:89:04:74:a4:92:4f:ab:b6:77:a0:63:38: d2:5a:11:93:24:e9:05:40:3f:3d:83:ea:af:d1:5e:89:c2:4e: fc:3f:3f:6d:44:9b:05:ea:65:59:4c:2e:39:81:2b:36:55:e5: 02:a3:6f:29:21:90:56:fc:a6:d6:b3:50:64:00:a4:90:13:ee: 06:4e:24:e2:bc:a5:80:e3:a2:81:ab:34:df:1d:90:2b:fe:d7: 2b:ad:2d:a2:3d:18:92:5b:97:de:89:4b:73:2c:c0:7f:1c:44: ff:35:51:69:7c:4c:ef:89:c5:8d:24:1f:19:7f:3b:74:c5:53: 1d:4e:91:90:a3:e8:08:ac:4b:5d:b6:a7:b2:0c:6e:ea:65:c5: be:d2:03:a9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUAZ3NYya28S1KTkie1AkymGBp2kMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUVCOUZCOUEzMjlEREI1Qjk0RkM1RTI0MjRFNTcyRUNC OUVFREU1MjAeFw0yNDEwMTUxNTI4NTZaFw0yNTEwMTQxNTMzNTZaMDMxMTAvBgNV BAMTKEI4MjNFMzIwRTk5NkU2OEE2QTZFMTEwODVDMTIwRUNCNkE5MTk1OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUiCDxvJrPJjO8i4nNQNXk7qQ /JMCuwWjfmdIZ4TNCC2D/ZIGSeWl6+d+zEzydrS2fRGtOGyS4c/lJg8BPl12OfZ6 e/t+etDKus4wa6fdxTXlgNV65yE1/6opKd1zveUp8a6Q37gNyHUds82gbx6mmrZU X8gc0zVVw+KmPezQa3GiMgtgWiaTGokSMBmoC0aCoAJzLzAMoyRrwhzS48WooJw8 ALxFFH9Hu+zCAGpwOW5ZzjhkElVOlM8fTWajAmKzXASReLZa9K+Sc+SrsK82dRYH O1oo9BzbiYX+ggezDVrxKCdaJOs01ItX7KsZyj8r5VrqUWT/TGon/erfqFNbAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUuCPjIOmW5opqbhEIXBIOy2qRlZMwHwYDVR0j BBgwFoAU7rn7mjKd21uU/F4kJOVy7Lnu3lIwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzEvRUVCOUZCOUEzMjlEREI1Qjk0RkM1RTI0MjRFNTcyRUNCOUVFREU1Mi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84NGQ1MTgxMC0xOTg3LTQ3 MDEtOGYxZi04NDI1MTExOTY0ZjQvMC9FRUI5RkI5QTMyOUREQjVCOTRGQzVFMjQy NEU1NzJFQ0I5RUVERTUyLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvMS8zMjYxMzA2 NjNhMzgzNTYzMzEzYTMzMzIzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM0MzQz ODMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqD4XBAyUwDQYJKoZIhvcNAQELBQADggEBAIaopg6j 6knTUmyT7eYhYcz8ro4Jtnbsvc0trGeO/ULG47xVmCe/v+vYpwksADGjPiH1Lg8i HgQNlDXfKpWWUpOntBJAPeuW/SvW6nXYFkiLhTeUz6X0KOYThyXy8/jJtGF+21Ip JIkrLv8JqaU3btzh/IkEdKSST6u2d6BjONJaEZMk6QVAPz2D6q/RXonCTvw/P21E mwXqZVlMLjmBKzZV5QKjbykhkFb8ptazUGQApJAT7gZOJOK8pYDjooGrNN8dkCv+ 1yutLaI9GJJbl96JS3MswH8cRP81UWl8TO+JxY0kHxl/O3TFUx1OkZCj6AisS122 p7IMbuplxb7SA6k= -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org