$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa File: 326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa (raw, json) Hash identifier: 5AF7Ya2mXlQ3FkeA0+Jli5+6yLkC1cJzKSA17MbTR8c= Subject key identifier: 82:2F:5E:D3:60:D7:AD:13:E5:39:A5:45:F0:6C:B0:16:E2:F5:86:D0 Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Certificate serial: 1A888E332EE292F8E1B29C8BF62CCD9C2E9FFFB6 Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa Signing time: Mon 19 Feb 2024 13:25:51 +0000 ROA not before: Mon 19 Feb 2024 13:20:51 +0000 ROA not after: Mon 17 Feb 2025 13:25:51 +0000 asID: 215473 IP address blocks: 2a07:54c0:b00b::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 07:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:88:8e:33:2e:e2:92:f8:e1:b2:9c:8b:f6:2c:cd:9c:2e:9f:ff:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Validity Not Before: Feb 19 13:20:51 2024 GMT Not After : Feb 17 13:25:51 2025 GMT Subject: CN=822F5ED360D7AD13E539A545F06CB016E2F586D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:e4:23:68:70:2f:71:3d:87:09:2c:a0:92:8c: aa:fa:23:77:b6:8d:4e:d5:0e:39:ec:22:48:53:c5: 7a:2f:60:89:5c:c6:73:4d:91:c4:11:45:8d:74:59: f0:50:86:7d:1f:4e:a7:ec:b5:7c:7a:f9:62:1b:47: 45:0e:68:9f:94:48:4a:7f:93:76:93:7f:3e:bd:cd: 4c:16:b5:12:7c:e8:06:1c:80:ff:96:6d:e3:b4:56: 43:e6:29:d4:de:3c:69:54:cb:e4:81:0d:23:0c:bf: 2f:cd:0c:fc:30:9c:36:d5:ff:41:d1:fd:74:9d:8b: e8:f4:58:53:e5:34:9d:d0:19:68:85:8a:22:c4:4d: ad:cf:38:45:3c:19:85:95:32:25:b1:71:88:bf:e1: 87:e1:5a:a0:f3:48:5a:e0:48:73:05:da:39:b6:71: fe:94:3f:5b:59:84:63:1c:fc:ae:c6:8e:6d:f7:94: 44:b4:94:bd:4c:c2:07:81:c5:51:ee:3a:6d:e9:22: ee:45:0d:ec:bd:2e:05:43:03:f9:83:ef:ca:2c:20: a5:a2:9d:7b:af:a6:d7:97:f8:8d:fd:08:c4:3b:65: 5f:e8:51:cc:8c:30:1d:e7:9d:60:07:46:2e:35:6a: e5:07:a6:7e:4b:e8:b7:69:4f:93:be:af:12:32:49: 38:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2F:5E:D3:60:D7:AD:13:E5:39:A5:45:F0:6C:B0:16:E2:F5:86:D0 X509v3 Authority Key Identifier: keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a623030623a3a2f34382d3438203d3e20323135343733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:b00b::/48 Signature Algorithm: sha256WithRSAEncryption 2a:8c:5e:24:84:84:de:6a:90:fe:03:63:44:61:1c:1d:71:66: 4a:2f:5e:93:19:01:1e:79:dd:df:00:3c:14:66:51:c8:17:7b: 1c:81:fe:95:4b:f5:6a:dd:da:85:fd:eb:0d:0e:f9:8c:e4:01: 27:b8:b8:94:11:dc:4c:fa:9e:de:47:b3:67:13:7b:1e:c8:fc: 8c:c9:c5:8f:18:c1:b1:4e:42:a4:b8:da:48:48:85:a7:bc:69: 33:c1:44:b2:1f:b5:b2:af:b5:5a:ea:43:e3:00:05:36:c8:84: 99:1c:ae:d6:4e:d6:60:a1:52:be:98:b6:f4:0e:0b:8e:79:57: b7:8b:a9:6c:0a:05:22:7f:b9:b1:5d:bb:1e:7b:d6:dc:99:f7: 16:fd:ae:f5:73:ac:57:9e:ef:36:47:81:5c:96:61:fc:4f:6f: 66:1e:50:20:c3:8b:28:4e:fb:60:18:38:03:e7:ad:1e:d9:8f: 20:eb:4a:f3:89:b8:3b:d5:fb:5a:ab:8b:f9:91:88:aa:a8:50: b3:92:7b:08:ee:bd:82:97:97:d4:22:a3:c5:87:d9:9b:a0:07: 20:71:56:57:5d:68:8b:9d:d1:6a:2d:42:7e:33:74:11:a8:df: 0d:0f:f5:8f:a7:49:11:98:d4:03:82:6e:17:77:fe:51:86:4e: 46:ed:66:04 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUGoiOMy7ikvjhspyL9izNnC6f/7YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4 MUM2RjUzODAeFw0yNDAyMTkxMzIwNTFaFw0yNTAyMTcxMzI1NTFaMDMxMTAvBgNV BAMTKDgyMkY1RUQzNjBEN0FEMTNFNTM5QTU0NUYwNkNCMDE2RTJGNTg2RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD35CNocC9xPYcJLKCSjKr6I3e2 jU7VDjnsIkhTxXovYIlcxnNNkcQRRY10WfBQhn0fTqfstXx6+WIbR0UOaJ+USEp/ k3aTfz69zUwWtRJ86AYcgP+WbeO0VkPmKdTePGlUy+SBDSMMvy/NDPwwnDbV/0HR /XSdi+j0WFPlNJ3QGWiFiiLETa3POEU8GYWVMiWxcYi/4YfhWqDzSFrgSHMF2jm2 cf6UP1tZhGMc/K7Gjm33lES0lL1MwgeBxVHuOm3pIu5FDey9LgVDA/mD78osIKWi nXuvpteX+I39CMQ7ZV/oUcyMMB3nnWAHRi41auUHpn5L6LdpT5O+rxIySTj5AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUgi9e02DXrRPlOaVF8GywFuL1htAwHwYDVR0j BBgwFoAUpuqsSQFCmxV0Cr8dmlS/sYHG9TgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM0NGZmMjktNzE4NC00N2JkLTkxNzItMzYwOWY1OWNl NmRmLzIvQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4MUM2RjUzOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BNkVBQUM0OTAxNDI5QjE1NzQwQUJGMUQ5 QTU0QkZCMTgxQzZGNTM4LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80MzQ0ZmYyOS03MTg0LTQ3YmQtOTE3Mi0zNjA5ZjU5Y2U2ZGYvMi8zMjYxMzAz NzNhMzUzNDYzMzAzYTYyMzAzMDYyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzQzNzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwLALMA0GCSqGSIb3DQEBCwUAA4IBAQAq jF4khITeapD+A2NEYRwdcWZKL16TGQEeed3fADwUZlHIF3scgf6VS/Vq3dqF/esN DvmM5AEnuLiUEdxM+p7eR7NnE3seyPyMycWPGMGxTkKkuNpISIWnvGkzwUSyH7Wy r7Va6kPjAAU2yISZHK7WTtZgoVK+mLb0DguOeVe3i6lsCgUif7mxXbsee9bcmfcW /a71c6xXnu82R4FclmH8T29mHlAgw4soTvtgGDgD560e2Y8g60rzibg71ftaq4v5 kYiqqFCzknsI7r2Cl5fUIqPFh9mboAcgcVZXXWiLndFqLUJ+M3QRqN8ND/WPp0kR mNQDgm4Xd/5Rhk5G7WYE -----END CERTIFICATE-----Generated at Fri May 31 16:56:19 2024 by rpki-client on console-fra.rpki-client.org