$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a313a3a2f34382d3438203d3e203236303036.roa File: 326130363a313238373a313a3a2f34382d3438203d3e203236303036.roa (raw, json) Hash identifier: RRFtJdru0BMWcPpyQm75lctxeDIcv7Yna91EEvrVE94= Subject key identifier: 49:AF:9F:63:06:92:77:0C:56:8A:51:F1:DF:C9:5F:3A:0C:4A:D2:9B Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 3F6242406D629088FA80DF565C1695FBF550BDEC Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a313a3a2f34382d3438203d3e203236303036.roa Signing time: Mon 11 Nov 2024 01:12:38 +0000 ROA not before: Mon 11 Nov 2024 01:07:38 +0000 ROA not after: Mon 10 Nov 2025 01:12:38 +0000 asID: 26006 IP address blocks: 2a06:1287:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:62:42:40:6d:62:90:88:fa:80:df:56:5c:16:95:fb:f5:50:bd:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Nov 11 01:07:38 2024 GMT Not After : Nov 10 01:12:38 2025 GMT Subject: CN=49AF9F630692770C568A51F1DFC95F3A0C4AD29B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e2:ce:69:78:18:90:b4:79:72:16:52:38:48: f0:2b:f2:10:2b:56:a2:87:7f:23:7a:7f:21:00:1c: 0a:42:1d:03:18:24:a2:05:05:bd:64:b5:88:67:34: b2:03:85:a7:21:b2:e4:6c:05:b3:6e:90:04:4a:ef: 5e:17:9a:8b:1d:ab:cb:da:76:c8:10:18:36:06:21: 3c:d0:0d:5d:52:b3:d5:9c:90:27:f2:93:44:c8:06: b5:eb:e0:02:25:33:41:9c:22:13:6a:d5:78:e9:0f: d1:2b:bf:ac:3f:22:88:9e:90:3f:f0:0f:39:a1:69: 2d:e7:58:a5:12:f7:86:f2:8f:ca:09:54:dc:5f:28: 3d:b5:9e:e9:08:6f:e8:c4:11:d1:c1:3a:84:03:8e: e6:1b:c5:d1:fa:64:93:0e:80:ee:76:80:0b:51:d3: fc:b4:e5:8b:9e:35:00:49:24:bb:f1:d2:35:92:fe: f4:83:e3:dc:63:f6:96:f9:bb:20:9d:28:af:76:ee: be:89:e5:fa:e4:9c:09:36:99:a2:88:14:da:22:37: 8c:70:f8:64:ca:bd:bf:12:ee:5b:f3:c8:94:df:9e: 4e:bd:83:f5:9b:f6:d0:73:87:88:90:5b:09:42:2f: 17:64:1f:4e:d5:73:2f:72:ca:61:b6:01:89:f6:47: db:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AF:9F:63:06:92:77:0C:56:8A:51:F1:DF:C9:5F:3A:0C:4A:D2:9B X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a313a3a2f34382d3438203d3e203236303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:1::/48 Signature Algorithm: sha256WithRSAEncryption 3f:a6:3c:bc:3e:3d:b5:34:fb:95:9e:d7:86:6c:a9:09:9d:10: cb:11:50:d1:f4:28:9c:1a:1d:48:28:1c:11:84:6b:19:c3:45: dd:a2:05:e2:a3:9e:a0:5a:c2:59:6c:3e:5b:0a:25:b6:07:93: 26:4f:64:10:dc:9f:20:05:7b:69:f8:bb:2c:48:13:8f:59:01: de:e5:d4:db:bd:50:10:6e:17:d5:57:8d:df:4b:e7:ba:5e:e3: ae:8e:c6:15:30:c2:f9:74:f2:61:fd:3c:17:3a:12:f0:be:ef: 77:3f:f3:1c:fb:57:36:27:d2:2a:88:85:3e:df:a6:8d:f0:bd: d5:c0:c8:99:da:6f:ae:b3:dc:14:80:9b:e9:52:2c:a2:25:5b: 73:4e:f5:93:e0:46:e3:64:36:9a:e8:71:db:5d:b5:4a:e6:4c: 13:42:9e:2a:53:20:6d:71:af:4e:26:75:da:9e:e6:bb:54:08: 26:8e:08:76:a0:26:6a:93:5d:00:9e:6d:51:54:92:5e:9a:c9: 49:d5:dc:82:23:8c:85:e8:3c:ee:86:56:fa:9f:73:1b:45:2e: 0b:ce:98:36:ab:e1:60:d0:a1:5e:64:93:71:f0:75:38:59:bf: b4:d0:cc:ae:91:7f:8d:3d:4a:52:40:dc:48:2d:8f:15:8a:37: db:44:00:ab -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUP2JCQG1ikIj6gN9WXBaV+/VQvewwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNDExMTEwMTA3MzhaFw0yNTExMTAwMTEyMzhaMDMxMTAvBgNV BAMTKDQ5QUY5RjYzMDY5Mjc3MEM1NjhBNTFGMURGQzk1RjNBMEM0QUQyOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd4s5peBiQtHlyFlI4SPAr8hAr VqKHfyN6fyEAHApCHQMYJKIFBb1ktYhnNLIDhachsuRsBbNukARK714Xmosdq8va dsgQGDYGITzQDV1Ss9WckCfyk0TIBrXr4AIlM0GcIhNq1XjpD9Erv6w/IoiekD/w DzmhaS3nWKUS94byj8oJVNxfKD21nukIb+jEEdHBOoQDjuYbxdH6ZJMOgO52gAtR 0/y05YueNQBJJLvx0jWS/vSD49xj9pb5uyCdKK927r6J5frknAk2maKIFNoiN4xw +GTKvb8S7lvzyJTfnk69g/Wb9tBzh4iQWwlCLxdkH07Vcy9yymG2AYn2R9uPAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUSa+fYwaSdwxWilHx38lfOgxK0pswHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2EzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDMwMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqBhKHAAEwDQYJKoZIhvcNAQELBQADggEBAD+mPLw+PbU0+5We14ZsqQmdEMsR UNH0KJwaHUgoHBGEaxnDRd2iBeKjnqBawllsPlsKJbYHkyZPZBDcnyAFe2n4uyxI E49ZAd7l1Nu9UBBuF9VXjd9L57pe466OxhUwwvl08mH9PBc6EvC+73c/8xz7VzYn 0iqIhT7fpo3wvdXAyJnab66z3BSAm+lSLKIlW3NO9ZPgRuNkNprocdtdtUrmTBNC nipTIG1xr04mddqe5rtUCCaOCHagJmqTXQCebVFUkl6ayUnV3IIjjIXoPO6GVvqf cxtFLgvOmDar4WDQoV5kk3HwdThZv7TQzK6Rf409SlJA3EgtjxWKN9tEAKs= -----END CERTIFICATE-----Generated at Fri Nov 22 04:59:13 2024 by rpki-client on console-ams.rpki-client.org