$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a323a3a2f34382d3438203d3e203236303036.roa File: 326130363a313238373a323a3a2f34382d3438203d3e203236303036.roa (raw, json) Hash identifier: xMjHyR2jjzGKsZBr54akxLyksZAzhwNtCuo7fa289pA= Subject key identifier: 50:EF:90:B4:BD:94:01:AF:FC:AF:5B:F1:AA:E3:68:36:5E:6F:01:3A Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 7DE7E38DF29D400064E5FFED632837217A312717 Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a323a3a2f34382d3438203d3e203236303036.roa Signing time: Mon 11 Nov 2024 01:12:44 +0000 ROA not before: Mon 11 Nov 2024 01:07:44 +0000 ROA not after: Mon 10 Nov 2025 01:12:44 +0000 asID: 26006 IP address blocks: 2a06:1287:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e7:e3:8d:f2:9d:40:00:64:e5:ff:ed:63:28:37:21:7a:31:27:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Nov 11 01:07:44 2024 GMT Not After : Nov 10 01:12:44 2025 GMT Subject: CN=50EF90B4BD9401AFFCAF5BF1AAE368365E6F013A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8e:59:45:f9:84:84:5e:b2:c5:39:4b:d4:41: 6f:43:55:ab:b0:34:50:4b:c4:ce:f3:20:0b:b1:8c: 9e:08:3d:92:57:7b:f6:1f:be:99:cf:27:00:16:78: ef:75:2c:25:2f:32:7a:79:63:29:c7:a3:5a:80:33: 7a:c1:ac:d9:e0:6c:0d:d6:8b:ee:c6:21:f1:08:7c: bf:de:86:7a:9b:d0:fd:39:94:4a:4f:cb:57:72:04: 07:fa:cf:eb:02:be:2a:36:2b:c5:a5:ed:25:be:5d: 0b:0e:df:5e:6c:6c:0b:21:6a:34:e3:bb:7a:de:a7: 45:a9:ee:99:a2:53:c7:da:aa:a2:b5:36:ee:1c:e4: d7:3c:d2:10:e0:bc:23:63:51:8e:5a:01:07:c6:19: 5d:b1:23:79:31:ab:1b:7b:08:da:4d:22:a2:08:e9: f1:c1:cf:0e:26:b1:ba:c0:f0:63:b6:a2:f6:f4:82: 02:80:69:8f:a4:43:f0:73:5c:e1:73:57:b9:9f:98: f7:e1:e8:2a:76:5a:51:79:af:01:93:10:8c:28:5e: a5:ca:7e:40:ea:cc:7a:3c:b5:4e:04:ce:f4:50:57: e8:c1:f2:d0:d3:52:12:96:a5:76:95:4a:f0:c6:0d: c4:5a:33:5a:e2:9f:3d:0a:bf:d6:e9:55:1a:24:f2: b2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:EF:90:B4:BD:94:01:AF:FC:AF:5B:F1:AA:E3:68:36:5E:6F:01:3A X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a323a3a2f34382d3438203d3e203236303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:2::/48 Signature Algorithm: sha256WithRSAEncryption 44:d8:7a:99:75:e1:87:4e:7d:7b:09:20:8d:28:c5:3f:45:51: 59:8b:61:b0:ec:ea:5f:c6:07:76:79:dc:6d:d6:ee:a1:3a:30: 25:f9:12:12:79:98:fe:36:91:df:b6:98:83:9a:d1:7e:4a:ad: 28:0c:4f:46:fb:0c:8f:01:fc:1f:5d:e5:77:5a:2c:f8:05:c2: e0:3e:65:61:38:55:06:99:3f:60:df:15:22:32:91:01:49:f2: ff:b1:cf:cb:8d:66:2d:ed:6b:92:83:c2:5d:4b:e2:9b:ce:f5: 20:a5:d6:a3:39:0a:bc:72:cb:77:41:b1:51:68:07:1e:9a:38: 6d:89:78:5d:08:a5:41:f9:ab:0c:22:7a:4f:85:ea:ad:eb:85: 0c:cf:36:b6:5b:69:c0:12:c1:6a:64:1d:14:d6:ec:e6:fe:16: a9:d4:6f:b2:63:e4:e4:a1:c2:08:d7:d6:23:f8:c6:a1:c4:ba: 1d:f8:d7:78:f1:2f:83:1d:aa:d5:49:bd:41:ce:50:51:53:ac: c2:e1:ff:7d:2f:14:77:fe:50:f4:2d:8d:6e:bc:c1:b6:d5:74: f1:27:8a:4a:3b:19:d2:ac:fd:c2:c2:e5:d5:85:a9:09:dd:19: 55:dd:d2:bf:5f:c2:0d:55:a8:94:06:e2:5e:c3:53:09:56:7d: b2:a8:51:32 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUfefjjfKdQABk5f/tYyg3IXoxJxcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNDExMTEwMTA3NDRaFw0yNTExMTAwMTEyNDRaMDMxMTAvBgNV BAMTKDUwRUY5MEI0QkQ5NDAxQUZGQ0FGNUJGMUFBRTM2ODM2NUU2RjAxM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJjllF+YSEXrLFOUvUQW9DVauw NFBLxM7zIAuxjJ4IPZJXe/YfvpnPJwAWeO91LCUvMnp5YynHo1qAM3rBrNngbA3W i+7GIfEIfL/ehnqb0P05lEpPy1dyBAf6z+sCvio2K8Wl7SW+XQsO315sbAshajTj u3rep0Wp7pmiU8faqqK1Nu4c5Nc80hDgvCNjUY5aAQfGGV2xI3kxqxt7CNpNIqII 6fHBzw4msbrA8GO2ovb0ggKAaY+kQ/BzXOFzV7mfmPfh6Cp2WlF5rwGTEIwoXqXK fkDqzHo8tU4EzvRQV+jB8tDTUhKWpXaVSvDGDcRaM1rinz0Kv9bpVRok8rJPAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUUO+QtL2UAa/8r1vxquNoNl5vATowHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2EzMjNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDMwMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqBhKHAAIwDQYJKoZIhvcNAQELBQADggEBAETYepl14YdOfXsJII0oxT9FUVmL YbDs6l/GB3Z53G3W7qE6MCX5EhJ5mP42kd+2mIOa0X5KrSgMT0b7DI8B/B9d5Xda LPgFwuA+ZWE4VQaZP2DfFSIykQFJ8v+xz8uNZi3ta5KDwl1L4pvO9SCl1qM5Crxy y3dBsVFoBx6aOG2JeF0IpUH5qwwiek+F6q3rhQzPNrZbacASwWpkHRTW7Ob+FqnU b7Jj5OShwgjX1iP4xqHEuh3413jxL4MdqtVJvUHOUFFTrMLh/30vFHf+UPQtjW68 wbbVdPEniko7GdKs/cLC5dWFqQndGVXd0r9fwg1VqJQG4l7DUwlWfbKoUTI= -----END CERTIFICATE-----Generated at Fri Nov 22 05:53:32 2024 by rpki-client on console-fra.rpki-client.org