$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20313939353832.roa File: 326130373a353463303a623030623a3a2f34382d3438203d3e20313939353832.roa (raw, json) Hash identifier: CNmD7UzGqup2p7EPsAvcX5KD4URvABCnd3AmoMh/Azc= Subject key identifier: 3B:B8:F5:DE:03:68:89:60:DD:57:09:2A:35:75:81:67:05:54:6A:D5 Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Certificate serial: 02A062FDDC00F13698725D813C99B6800540DA74 Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20313939353832.roa Signing time: Wed 13 Mar 2024 00:06:20 +0000 ROA not before: Wed 13 Mar 2024 00:01:20 +0000 ROA not after: Wed 12 Mar 2025 00:06:20 +0000 asID: 199582 IP address blocks: 2a07:54c0:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Jun 2024 18:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a0:62:fd:dc:00:f1:36:98:72:5d:81:3c:99:b6:80:05:40:da:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Validity Not Before: Mar 13 00:01:20 2024 GMT Not After : Mar 12 00:06:20 2025 GMT Subject: CN=3BB8F5DE03688960DD57092A3575816705546AD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:75:af:08:81:3c:48:a4:36:96:76:72:d7: 0d:cd:dd:f5:91:e9:d1:cf:82:d7:bb:f5:2b:be:fc: 73:ce:c0:49:10:7d:31:6a:79:36:77:47:aa:ff:b7: 09:3b:93:31:4b:af:98:3b:47:45:03:ae:95:df:6e: 30:d2:d7:dc:8a:fc:54:96:e8:02:53:be:cc:ac:61: 90:d9:1c:69:77:37:7d:e3:51:f4:78:0b:da:c3:84: 64:f8:cf:dc:b6:3b:a2:0a:52:73:85:81:0d:67:60: d4:6a:30:a1:05:65:ca:4b:9d:94:ed:17:45:07:38: 51:a7:8d:19:2b:db:f0:52:86:66:0f:bc:97:8e:6b: 5c:b8:43:08:7c:ae:f8:3e:ab:7f:b3:89:87:bb:e4: bf:90:72:7d:9f:92:da:09:32:82:0e:fb:ef:da:fe: f5:0f:35:ec:63:66:29:0f:db:74:09:6c:a2:f4:db: b0:a2:b4:b0:19:7e:f9:9e:c6:a0:6c:15:9f:61:07: 40:55:e8:26:0e:56:7b:a6:a6:d4:7d:c3:c8:7f:dc: 2c:8b:78:62:e8:8a:e3:27:56:59:8e:2d:cd:c7:bc: 72:2b:fa:ce:cb:a9:59:66:c1:8c:02:f7:2b:dd:36: 2c:e7:13:46:f8:ce:dc:3a:76:7b:27:78:c4:79:61: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B8:F5:DE:03:68:89:60:DD:57:09:2A:35:75:81:67:05:54:6A:D5 X509v3 Authority Key Identifier: keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20313939353832.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 03:68:8c:90:db:12:c1:f5:c4:dc:97:de:e4:cb:bd:69:1e:9e: 49:cf:17:fe:0d:39:31:90:a8:26:a9:8a:f0:b0:b3:24:98:93: c2:b1:67:45:32:1a:a3:de:62:b0:51:a7:e8:93:15:a1:07:43: db:24:73:f0:0d:c8:4e:6b:4b:ed:18:a2:fd:4d:4c:c3:70:e4: 2e:7f:73:b1:ec:47:48:ee:5d:a8:e2:7b:8f:fc:7f:b5:6a:43: e9:de:2c:21:ef:6f:f1:c9:6e:b5:41:97:15:1a:f4:23:bf:39: eb:8a:8e:83:1b:28:9a:a4:f4:14:d3:b2:6f:fd:f7:23:d7:aa: 8e:cf:ff:86:7a:82:24:25:f8:79:5c:74:ca:16:d8:33:3f:c7: 75:32:ed:79:6e:44:bb:6f:da:6d:e2:3a:c9:29:c3:ed:bc:0a: 13:9a:13:83:d0:14:11:2e:d0:78:7b:54:cb:95:c4:63:4e:72: d0:6f:4d:16:6a:99:c0:a2:6e:9c:f0:df:ab:26:98:ed:5f:12: bb:b8:03:be:e5:7c:1b:de:dd:29:06:a3:fe:0e:94:9a:1f:e5: ce:79:f1:f7:df:8a:b1:d2:e3:8d:44:34:21:c0:12:7c:4c:aa: ee:c6:80:7b:0f:52:ee:d6:02:22:6e:7a:94:70:c2:ff:68:72: f0:e2:61:09 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUAqBi/dwA8TaYcl2BPJm2gAVA2nQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4 MUM2RjUzODAeFw0yNDAzMTMwMDAxMjBaFw0yNTAzMTIwMDA2MjBaMDMxMTAvBgNV BAMTKDNCQjhGNURFMDM2ODg5NjBERDU3MDkyQTM1NzU4MTY3MDU1NDZBRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvLXWvCIE8SKQ2lnZy1w3N3fWR 6dHPgte79Su+/HPOwEkQfTFqeTZ3R6r/twk7kzFLr5g7R0UDrpXfbjDS19yK/FSW 6AJTvsysYZDZHGl3N33jUfR4C9rDhGT4z9y2O6IKUnOFgQ1nYNRqMKEFZcpLnZTt F0UHOFGnjRkr2/BShmYPvJeOa1y4Qwh8rvg+q3+ziYe75L+Qcn2fktoJMoIO++/a /vUPNexjZikP23QJbKL027CitLAZfvmexqBsFZ9hB0BV6CYOVnumptR9w8h/3CyL eGLoiuMnVlmOLc3HvHIr+s7LqVlmwYwC9yvdNiznE0b4ztw6dnsneMR5YSOxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUO7j13gNoiWDdVwkqNXWBZwVUatUwHwYDVR0j BBgwFoAUpuqsSQFCmxV0Cr8dmlS/sYHG9TgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM0NGZmMjktNzE4NC00N2JkLTkxNzItMzYwOWY1OWNl NmRmLzIvQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4MUM2RjUzOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BNkVBQUM0OTAxNDI5QjE1NzQwQUJGMUQ5 QTU0QkZCMTgxQzZGNTM4LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80MzQ0ZmYyOS03MTg0LTQ3YmQtOTE3Mi0zNjA5ZjU5Y2U2ZGYvMi8zMjYxMzAz NzNhMzUzNDYzMzAzYTYyMzAzMDYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzEz OTM5MzUzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwLALMA0GCSqGSIb3DQEBCwUAA4IBAQAD aIyQ2xLB9cTcl97ky71pHp5Jzxf+DTkxkKgmqYrwsLMkmJPCsWdFMhqj3mKwUafo kxWhB0PbJHPwDchOa0vtGKL9TUzDcOQuf3Ox7EdI7l2o4nuP/H+1akPp3iwh72/x yW61QZcVGvQjvznrio6DGyiapPQU07Jv/fcj16qOz/+GeoIkJfh5XHTKFtgzP8d1 Mu15bkS7b9pt4jrJKcPtvAoTmhOD0BQRLtB4e1TLlcRjTnLQb00WapnAom6c8N+r JpjtXxK7uAO+5Xwb3t0pBqP+DpSaH+XOefH334qx0uONRDQhwBJ8TKruxoB7D1Lu 1gIibnqUcML/aHLw4mEJ -----END CERTIFICATE-----Generated at Wed Jun 26 05:17:37 2024 by rpki-client on console-fra.rpki-client.org