$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa File: 326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa (raw, json) Hash identifier: QaVbTPixSxoLKIBCBc6TBXReUO7Tfdq1bhXVMryMBOI= Subject key identifier: 95:1D:5D:98:33:2D:68:B7:C7:FE:F4:1D:6B:47:19:5B:C2:7B:C4:42 Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Certificate serial: 08B428BCA4254338FD87962DAC6B5ABD27D8FB49 Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa Signing time: Sat 20 Jan 2024 19:50:40 +0000 ROA not before: Sat 20 Jan 2024 19:45:40 +0000 ROA not after: Sat 18 Jan 2025 19:50:40 +0000 asID: 205789 IP address blocks: 2a07:54c0:cafe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 07:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b4:28:bc:a4:25:43:38:fd:87:96:2d:ac:6b:5a:bd:27:d8:fb:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Validity Not Before: Jan 20 19:45:40 2024 GMT Not After : Jan 18 19:50:40 2025 GMT Subject: CN=951D5D98332D68B7C7FEF41D6B47195BC27BC442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c6:84:d0:e4:d9:18:41:a6:e0:06:6e:3f:84: 33:84:cb:ae:fd:a4:cd:d8:fa:e4:31:7e:6d:f4:de: a7:34:43:61:c9:cd:67:df:e7:58:9d:c3:b9:1e:bc: d0:42:1a:61:84:ac:8c:2d:cc:4b:cd:77:01:29:99: a5:0c:84:0b:2b:e7:0a:6c:f2:53:57:e4:cd:e5:c0: e8:e3:bc:d9:d4:76:15:5c:3a:40:1f:c7:df:0e:1a: 07:2a:43:82:35:c7:73:bf:73:8c:43:48:f3:8c:1c: c7:9c:00:c1:64:9d:26:c7:3a:2f:0b:37:34:10:cd: fb:6a:64:a4:f2:9d:f7:ff:ab:16:31:ae:97:39:a2: 1b:0a:b5:be:24:1b:7a:ef:20:6a:0e:2a:f9:0f:76: a0:3d:7a:3a:89:2e:8c:3c:7f:f8:99:81:ad:70:9b: 99:f6:1a:49:5a:71:6e:ff:62:2d:ca:54:ca:b0:2d: 43:fc:18:f2:3b:3a:c1:2d:00:9d:46:e9:63:33:ff: 25:b1:3e:e1:c2:68:2f:e4:63:af:e6:f4:a1:37:74: 26:09:a7:a6:9e:e0:98:58:55:a5:35:3b:17:40:7d: 83:5f:fe:cd:06:c3:4d:19:c7:1b:c1:e4:c0:5a:71: 5f:eb:68:21:18:52:90:f9:51:f8:b2:bd:42:04:3a: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1D:5D:98:33:2D:68:B7:C7:FE:F4:1D:6B:47:19:5B:C2:7B:C4:42 X509v3 Authority Key Identifier: keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a636166653a3a2f34382d3438203d3e20323035373839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:cafe::/48 Signature Algorithm: sha256WithRSAEncryption 08:19:63:3c:c6:96:f5:a0:be:01:03:d0:e2:dd:89:56:d1:75: 8d:9c:a9:e8:2b:fe:ea:02:00:88:10:14:58:24:55:7b:a3:35: 5c:15:b6:64:2d:c0:e2:39:08:d6:ec:ec:1c:43:a5:f8:7f:b3: 79:d2:b3:50:42:a9:a7:72:79:8b:f5:51:5c:dc:2c:ae:74:39: f0:47:6e:bb:cd:32:cb:81:fc:ca:ac:fc:25:cd:0f:49:f0:7a: 98:75:0f:07:43:46:72:fd:4a:18:b8:31:ae:f6:d9:56:59:d3: a9:b6:10:d3:73:22:03:a2:e0:33:be:99:a3:19:2d:bb:ca:e4: 5f:c9:7c:64:98:c2:e4:eb:ea:65:ba:56:82:7d:81:84:9b:a2: 4a:96:a0:95:3a:c4:e2:87:f3:97:3a:31:5b:37:de:79:c8:44: d3:a4:74:0a:24:06:77:3e:00:a0:b3:c8:6f:e6:91:5b:3f:ef: d5:4f:b0:f2:d6:1c:9d:37:8d:7b:d5:c3:98:69:e8:f3:99:4e: 99:59:d3:0a:ee:67:c4:a3:71:6c:57:c8:8c:3a:3b:07:d2:84: 2d:17:0a:9e:ab:d7:8e:32:31:b7:7b:e0:fa:5f:14:af:31:ae: c7:a9:70:1f:1e:d3:13:fd:db:03:be:fc:01:b9:91:8d:ba:0d: 05:fa:12:fe -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUCLQovKQlQzj9h5YtrGtavSfY+0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4 MUM2RjUzODAeFw0yNDAxMjAxOTQ1NDBaFw0yNTAxMTgxOTUwNDBaMDMxMTAvBgNV BAMTKDk1MUQ1RDk4MzMyRDY4QjdDN0ZFRjQxRDZCNDcxOTVCQzI3QkM0NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1xoTQ5NkYQabgBm4/hDOEy679 pM3Y+uQxfm303qc0Q2HJzWff51idw7kevNBCGmGErIwtzEvNdwEpmaUMhAsr5wps 8lNX5M3lwOjjvNnUdhVcOkAfx98OGgcqQ4I1x3O/c4xDSPOMHMecAMFknSbHOi8L NzQQzftqZKTynff/qxYxrpc5ohsKtb4kG3rvIGoOKvkPdqA9ejqJLow8f/iZga1w m5n2GklacW7/Yi3KVMqwLUP8GPI7OsEtAJ1G6WMz/yWxPuHCaC/kY6/m9KE3dCYJ p6ae4JhYVaU1OxdAfYNf/s0Gw00ZxxvB5MBacV/raCEYUpD5UfiyvUIEOm+lAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUlR1dmDMtaLfH/vQda0cZW8J7xEIwHwYDVR0j BBgwFoAUpuqsSQFCmxV0Cr8dmlS/sYHG9TgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM0NGZmMjktNzE4NC00N2JkLTkxNzItMzYwOWY1OWNl NmRmLzIvQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4MUM2RjUzOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BNkVBQUM0OTAxNDI5QjE1NzQwQUJGMUQ5 QTU0QkZCMTgxQzZGNTM4LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80MzQ0ZmYyOS03MTg0LTQ3YmQtOTE3Mi0zNjA5ZjU5Y2U2ZGYvMi8zMjYxMzAz NzNhMzUzNDYzMzAzYTYzNjE2NjY1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MDM1MzczODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgdUwMr+MA0GCSqGSIb3DQEBCwUAA4IBAQAI GWM8xpb1oL4BA9Di3YlW0XWNnKnoK/7qAgCIEBRYJFV7ozVcFbZkLcDiOQjW7Owc Q6X4f7N50rNQQqmncnmL9VFc3CyudDnwR267zTLLgfzKrPwlzQ9J8HqYdQ8HQ0Zy /UoYuDGu9tlWWdOpthDTcyIDouAzvpmjGS27yuRfyXxkmMLk6+plulaCfYGEm6JK lqCVOsTih/OXOjFbN955yETTpHQKJAZ3PgCgs8hv5pFbP+/VT7Dy1hydN4171cOY aejzmU6ZWdMK7mfEo3FsV8iMOjsH0oQtFwqeq9eOMjG3e+D6XxSvMa7HqXAfHtMT /dsDvvwBuZGNug0F+hL+ -----END CERTIFICATE-----Generated at Fri May 31 16:56:19 2024 by rpki-client on console-fra.rpki-client.org