$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa File: 326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa (raw, json) Hash identifier: R+EHp+7oDMOUFSmzqdi3mmsF7O1yuorGLzaG9GYZg6c= Subject key identifier: 9B:01:FE:15:8C:6B:D8:60:1D:D1:7B:DD:7E:6B:AC:7F:D3:53:E7:32 Certificate issuer: /CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Certificate serial: 3AF74A3BBAA2844EAE202064068643DED4E95898 Authority key identifier: A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa Signing time: Sat 20 Jan 2024 19:50:40 +0000 ROA not before: Sat 20 Jan 2024 19:45:40 +0000 ROA not after: Sat 18 Jan 2025 19:50:40 +0000 asID: 54681 IP address blocks: 2a07:54c0:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Jun 2024 07:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f7:4a:3b:ba:a2:84:4e:ae:20:20:64:06:86:43:de:d4:e9:58:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6EAAC4901429B15740ABF1D9A54BFB181C6F538 Validity Not Before: Jan 20 19:45:40 2024 GMT Not After : Jan 18 19:50:40 2025 GMT Subject: CN=9B01FE158C6BD8601DD17BDD7E6BAC7FD353E732 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4a:ea:76:aa:6f:16:db:25:9e:ee:a2:3b:5b: 76:a9:6f:f3:c1:81:74:4b:0a:ba:0d:93:ad:f0:03: 72:58:6f:09:9f:7d:72:3f:10:a2:a0:ad:c4:cb:46: 00:14:54:92:d9:ca:62:1b:a1:84:37:ab:39:4c:58: 56:f5:26:06:0e:7e:8a:48:25:52:17:a6:57:a5:3a: b8:24:c0:2b:b8:89:4e:1c:5a:0a:3b:75:b7:81:1e: 17:9b:b4:66:3b:62:91:27:fc:09:c4:7f:1f:15:82: ab:b0:7a:29:20:48:55:ed:78:88:ed:c2:6c:f1:52: 58:6c:a4:95:7d:85:3a:b9:73:f7:3a:ad:d7:46:95: 68:2e:d3:29:f5:9f:6e:c3:0e:23:a3:aa:9a:c7:dc: 83:81:2d:8e:ce:0c:a7:57:70:a0:7b:37:31:d8:d0: ab:2f:eb:57:6c:8b:76:10:ff:7d:2b:00:4c:9b:e1: 31:15:89:6c:6e:ae:da:ef:b1:e9:ca:19:fc:33:2c: d2:63:97:a6:9f:11:a7:34:9d:45:a2:42:ce:8e:66: e0:cf:7d:d7:39:f7:41:3c:cf:f8:f2:c9:5c:45:58: 6a:fb:ed:a6:83:78:b1:99:26:1f:1b:5b:0a:9c:de: 8f:f9:b0:e6:49:24:75:e9:4f:9b:c3:5a:52:92:35: 0d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:01:FE:15:8C:6B:D8:60:1D:D1:7B:DD:7E:6B:AC:7F:D3:53:E7:32 X509v3 Authority Key Identifier: keyid:A6:EA:AC:49:01:42:9B:15:74:0A:BF:1D:9A:54:BF:B1:81:C6:F5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/A6EAAC4901429B15740ABF1D9A54BFB181C6F538.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4344ff29-7184-47bd-9172-3609f59ce6df/2/326130373a353463303a646561643a3a2f34382d3438203d3e203534363831.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c0:dead::/48 Signature Algorithm: sha256WithRSAEncryption 06:3e:da:a6:3b:20:b8:2e:33:18:14:d9:98:70:de:a8:94:7d: 29:25:4a:52:c0:82:47:54:2a:0b:f6:8a:dd:b2:08:62:e8:c6: 6d:91:8d:a2:51:6b:c7:95:52:1d:49:29:1c:dd:47:88:00:fe: 67:c0:89:47:92:01:aa:04:fd:0a:7c:f9:6f:6a:69:b3:c9:73: f0:e7:ac:ef:db:a4:3d:e9:1a:7f:5a:81:4f:7e:14:15:eb:60: c8:da:42:44:c1:91:da:e4:db:2d:88:9a:dd:5f:6a:f0:ed:8a: 0d:3f:3d:6b:89:a9:6f:d7:69:12:78:13:fd:f9:76:83:c4:fc: 65:c0:16:08:73:72:98:b3:e6:74:d0:ee:af:94:b6:42:79:c9: 9e:62:43:d2:13:6b:93:67:67:10:ea:b5:33:cc:bd:18:87:8a: a6:2b:e9:25:aa:26:1d:25:c7:cc:91:87:a4:6e:d6:b4:c6:b9: ad:b2:7a:53:f9:b7:cb:ce:37:0a:2b:82:f3:02:11:f9:90:a5: 81:4c:9e:54:63:cc:a2:68:83:d4:13:81:6e:3a:af:80:b8:27: e9:ca:88:24:2b:87:46:f6:2a:4f:a4:19:6e:e6:06:d1:c9:61: f9:01:f9:bc:35:88:ac:7e:58:88:1a:ca:66:ab:12:5c:1b:f4: b2:ca:b8:97 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUOvdKO7qihE6uICBkBoZD3tTpWJgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4 MUM2RjUzODAeFw0yNDAxMjAxOTQ1NDBaFw0yNTAxMTgxOTUwNDBaMDMxMTAvBgNV BAMTKDlCMDFGRTE1OEM2QkQ4NjAxREQxN0JERDdFNkJBQzdGRDM1M0U3MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChSup2qm8W2yWe7qI7W3apb/PB gXRLCroNk63wA3JYbwmffXI/EKKgrcTLRgAUVJLZymIboYQ3qzlMWFb1JgYOfopI JVIXplelOrgkwCu4iU4cWgo7dbeBHhebtGY7YpEn/AnEfx8VgquweikgSFXteIjt wmzxUlhspJV9hTq5c/c6rddGlWgu0yn1n27DDiOjqprH3IOBLY7ODKdXcKB7NzHY 0Ksv61dsi3YQ/30rAEyb4TEViWxurtrvsenKGfwzLNJjl6afEac0nUWiQs6OZuDP fdc590E8z/jyyVxFWGr77aaDeLGZJh8bWwqc3o/5sOZJJHXpT5vDWlKSNQ39AgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUmwH+FYxr2GAd0Xvdfmusf9NT5zIwHwYDVR0j BBgwFoAUpuqsSQFCmxV0Cr8dmlS/sYHG9TgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDM0NGZmMjktNzE4NC00N2JkLTkxNzItMzYwOWY1OWNl NmRmLzIvQTZFQUFDNDkwMTQyOUIxNTc0MEFCRjFEOUE1NEJGQjE4MUM2RjUzOC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9BNkVBQUM0OTAxNDI5QjE1NzQwQUJGMUQ5 QTU0QkZCMTgxQzZGNTM4LmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80MzQ0ZmYyOS03MTg0LTQ3YmQtOTE3Mi0zNjA5ZjU5Y2U2ZGYvMi8zMjYxMzAz NzNhMzUzNDYzMzAzYTY0NjU2MTY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzUz NDM2MzgzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoHVMDerTANBgkqhkiG9w0BAQsFAAOCAQEABj7a pjsguC4zGBTZmHDeqJR9KSVKUsCCR1QqC/aK3bIIYujGbZGNolFrx5VSHUkpHN1H iAD+Z8CJR5IBqgT9Cnz5b2pps8lz8Oes79ukPekaf1qBT34UFetgyNpCRMGR2uTb LYia3V9q8O2KDT89a4mpb9dpEngT/fl2g8T8ZcAWCHNymLPmdNDur5S2QnnJnmJD 0hNrk2dnEOq1M8y9GIeKpivpJaomHSXHzJGHpG7WtMa5rbJ6U/m3y843CiuC8wIR +ZClgUyeVGPMomiD1BOBbjqvgLgn6cqIJCuHRvYqT6QZbuYG0clh+QH5vDWIrH5Y iBrKZqsSXBv0ssq4lw== -----END CERTIFICATE-----Generated at Fri May 31 19:29:52 2024 by rpki-client on console-ams.rpki-client.org