$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa File: 326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa (raw, json) Hash identifier: 5mtKnsi0eiuLOj/vuPgtBHrR4ubrh7kZVKE+RU5MUcA= Subject key identifier: 50:B4:B9:B3:A0:37:61:2B:D1:FC:9C:BD:E4:13:86:72:5D:24:0B:F5 Certificate issuer: /CN=B89BFA84DC5AFE05076A0800B960FEA22FC90D09 Certificate serial: 728D60E97789B91134D640A12DD610D4EC5F0CE2 Authority key identifier: B8:9B:FA:84:DC:5A:FE:05:07:6A:08:00:B9:60:FE:A2:2F:C9:0D:09 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa Signing time: Sat 17 Aug 2024 19:13:13 +0000 ROA not before: Sat 17 Aug 2024 19:08:13 +0000 ROA not after: Sat 16 Aug 2025 19:13:13 +0000 asID: 214393 IP address blocks: 2a0a:6044:8ff0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.crl rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8d:60:e9:77:89:b9:11:34:d6:40:a1:2d:d6:10:d4:ec:5f:0c:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89BFA84DC5AFE05076A0800B960FEA22FC90D09 Validity Not Before: Aug 17 19:08:13 2024 GMT Not After : Aug 16 19:13:13 2025 GMT Subject: CN=50B4B9B3A037612BD1FC9CBDE41386725D240BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:cb:ee:d7:53:6f:48:fd:0a:01:75:c9:51:4d: 74:87:c8:9f:6a:47:ff:4b:dc:15:30:45:c7:65:f6: 6a:f7:8a:65:5e:ae:b3:7c:2d:92:fb:0d:e1:e5:77: 50:e6:a4:c0:2b:e4:12:d4:8f:61:e8:05:ac:df:d3: c8:98:f1:da:8d:c3:59:c4:62:d7:5a:5d:58:fa:14: a9:d6:3d:db:9e:5a:87:6b:4f:7b:29:34:48:b7:07: 50:b7:e7:bf:d8:ee:d0:0d:16:7b:6d:56:8d:ba:ae: e0:3d:bf:94:43:be:93:30:9a:4d:5f:b9:92:e1:17: a5:36:7c:f1:95:7a:73:44:f1:9d:5f:f5:35:e7:df: d2:ea:3b:72:ad:e0:c4:46:d9:99:1d:70:51:e9:f2: 18:60:23:75:af:66:a1:f8:74:64:b3:ce:ad:7c:a0: 3a:a6:2f:c9:c9:73:b8:ee:41:e5:85:e1:67:ab:b6: 21:1d:01:ca:da:d2:94:3d:8f:a8:29:5a:06:92:9d: b0:d8:ff:64:ee:28:4a:48:29:07:65:df:2f:66:0d: 33:c1:25:8f:58:e4:4d:c9:dc:39:e0:0a:a0:27:35: 39:85:94:42:6a:25:07:58:68:0c:a3:ed:4b:75:86: 97:e3:99:0e:06:45:17:41:90:02:5f:ae:2f:75:e0: 33:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B4:B9:B3:A0:37:61:2B:D1:FC:9C:BD:E4:13:86:72:5D:24:0B:F5 X509v3 Authority Key Identifier: keyid:B8:9B:FA:84:DC:5A:FE:05:07:6A:08:00:B9:60:FE:A2:2F:C9:0D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/B89BFA84DC5AFE05076A0800B960FEA22FC90D09.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/491a43bc-76ec-4abe-ba7d-e73e90d662cb/1/326130613a363034343a386666303a3a2f34342d3438203d3e20323134333933.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:8ff0::/44 Signature Algorithm: sha256WithRSAEncryption 16:ac:15:33:6b:10:00:e6:3f:12:6c:ab:18:2f:6f:e6:f5:02: b6:51:41:fa:03:72:d4:79:c1:f3:4d:dc:70:10:73:4b:3c:9a: e2:d7:70:e5:34:9c:5d:1e:b9:04:f4:ce:f4:d9:15:1e:24:1e: d9:00:ee:1c:93:c9:a8:31:db:48:0a:18:ac:6d:e1:d0:72:2b: cc:bc:e5:07:4d:61:9e:1f:da:73:87:ec:b0:f9:9c:a1:3e:df: 60:6d:f2:8a:40:52:b1:41:bc:c7:2c:b3:3a:89:72:e4:d7:01: f4:9f:ae:35:42:0f:62:de:d6:2d:da:e6:a2:ca:5a:f8:d3:27: d9:7e:c8:33:8b:d5:5f:99:53:31:ec:45:36:33:50:25:0d:34: 41:28:34:14:b6:61:95:44:8e:de:01:4c:58:a1:b0:6a:e9:f4: 39:52:fd:9a:2b:08:aa:53:b2:03:bf:63:2a:bf:b9:e7:a0:1c: cd:9f:3e:c4:f3:fd:26:d1:c6:ec:b1:cb:dc:0d:a7:ef:9f:29: d2:db:d4:37:a2:a4:35:59:4a:f9:a3:e3:6a:6c:3c:74:ff:ea: be:d6:97:33:27:42:92:70:9b:fd:a7:8d:3d:61:cc:49:3b:f0: 6d:29:ad:7d:07:7f:b9:1d:d6:13:ca:75:c2:95:7e:50:9c:10: ef:73:d7:04 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUco1g6XeJuRE01kChLdYQ1OxfDOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5QkZBODREQzVBRkUwNTA3NkEwODAwQjk2MEZFQTIy RkM5MEQwOTAeFw0yNDA4MTcxOTA4MTNaFw0yNTA4MTYxOTEzMTNaMDMxMTAvBgNV BAMTKDUwQjRCOUIzQTAzNzYxMkJEMUZDOUNCREU0MTM4NjcyNUQyNDBCRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyy+7XU29I/QoBdclRTXSHyJ9q R/9L3BUwRcdl9mr3imVerrN8LZL7DeHld1DmpMAr5BLUj2HoBazf08iY8dqNw1nE YtdaXVj6FKnWPdueWodrT3spNEi3B1C357/Y7tANFnttVo26ruA9v5RDvpMwmk1f uZLhF6U2fPGVenNE8Z1f9TXn39LqO3Kt4MRG2ZkdcFHp8hhgI3WvZqH4dGSzzq18 oDqmL8nJc7juQeWF4WertiEdAcra0pQ9j6gpWgaSnbDY/2TuKEpIKQdl3y9mDTPB JY9Y5E3J3DngCqAnNTmFlEJqJQdYaAyj7Ut1hpfjmQ4GRRdBkAJfri914DM7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUULS5s6A3YSvR/Jy95BOGcl0kC/UwHwYDVR0j BBgwFoAUuJv6hNxa/gUHaggAuWD+oi/JDQkwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNDkxYTQzYmMtNzZlYy00YWJlLWJhN2QtZTczZTkwZDY2 MmNiLzEvQjg5QkZBODREQzVBRkUwNTA3NkEwODAwQjk2MEZFQTIyRkM5MEQwOS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9CODlCRkE4NERDNUFGRTA1MDc2QTA4MDBC OTYwRkVBMjJGQzkwRDA5LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS80OTFhNDNiYy03NmVjLTRhYmUtYmE3ZC1lNzNlOTBkNjYyY2IvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM4NjY2NjMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzMzOTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgRI/wMA0GCSqGSIb3DQEBCwUAA4IBAQAW rBUzaxAA5j8SbKsYL2/m9QK2UUH6A3LUecHzTdxwEHNLPJri13DlNJxdHrkE9M70 2RUeJB7ZAO4ck8moMdtIChisbeHQcivMvOUHTWGeH9pzh+yw+ZyhPt9gbfKKQFKx QbzHLLM6iXLk1wH0n641Qg9i3tYt2uaiylr40yfZfsgzi9VfmVMx7EU2M1AlDTRB KDQUtmGVRI7eAUxYobBq6fQ5Uv2aKwiqU7IDv2Mqv7nnoBzNnz7E8/0m0cbsscvc DafvnynS29Q3oqQ1WUr5o+NqbDx0/+q+1pczJ0KScJv9p409YcxJO/BtKa19B3+5 HdYTynXClX5QnBDvc9cE -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org