$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a333a3a2f34382d3438203d3e203236303036.roa File: 326130363a313238373a333a3a2f34382d3438203d3e203236303036.roa (raw, json) Hash identifier: w5l+CabII55oIdXWCx1z3Pe4YPAruD0IwV5kDPe/Izw= Subject key identifier: 74:59:C0:73:0B:B9:17:D1:4D:59:00:A5:AA:ED:4D:F2:FC:18:87:06 Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 0A56F8D155C5E601276074192B2F3439260B516E Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a333a3a2f34382d3438203d3e203236303036.roa Signing time: Tue 12 Nov 2024 02:29:58 +0000 ROA not before: Tue 12 Nov 2024 02:24:58 +0000 ROA not after: Tue 11 Nov 2025 02:29:58 +0000 asID: 26006 IP address blocks: 2a06:1287:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 21:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:56:f8:d1:55:c5:e6:01:27:60:74:19:2b:2f:34:39:26:0b:51:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Nov 12 02:24:58 2024 GMT Not After : Nov 11 02:29:58 2025 GMT Subject: CN=7459C0730BB917D14D5900A5AAED4DF2FC188706 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:eb:3d:15:6e:31:b2:17:78:4c:a8:ea:af:0b: 86:b2:7f:a9:0e:0b:fa:6a:50:58:a1:18:d4:67:93: 38:00:24:dd:00:69:92:89:74:52:fe:4a:02:50:51: d6:74:e2:b6:b4:8d:09:37:7f:60:c2:2a:39:d5:26: ae:43:e2:d6:da:c4:4d:5b:de:01:07:42:16:1a:e3: 05:7f:d5:df:a9:ee:e2:02:65:f3:a5:bf:05:c5:05: ef:8a:e9:28:30:6c:aa:5d:5a:13:3d:01:1f:bc:56: 98:1b:98:f5:35:df:2d:3a:83:0f:2c:dd:b1:35:8c: 0d:81:b0:97:bd:56:ff:77:f9:50:0a:93:ad:08:0d: 5c:2b:f6:dc:fe:1e:3b:31:f3:2c:86:7a:64:4a:eb: ca:9c:4b:c7:da:a4:b6:3a:ba:07:fb:5c:89:8a:87: 49:62:d1:5b:38:79:91:60:25:3b:d0:2f:65:3e:dd: 85:16:cf:d6:62:0a:f4:87:13:31:c1:d6:42:0f:62: 52:29:3f:c2:d3:8e:2d:3f:e9:2f:0b:59:bd:55:7d: a7:01:80:fe:56:06:ba:7b:f4:c3:c9:d3:90:83:b4: db:2d:ed:39:86:50:72:49:53:e0:21:2a:ed:a1:57: 32:eb:7e:93:8c:ac:c4:cb:5d:3a:86:5c:1d:d7:ca: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:59:C0:73:0B:B9:17:D1:4D:59:00:A5:AA:ED:4D:F2:FC:18:87:06 X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a333a3a2f34382d3438203d3e203236303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:3::/48 Signature Algorithm: sha256WithRSAEncryption 49:17:58:f1:b3:91:15:f4:16:91:9a:dd:8d:5c:a9:4f:a2:4d: 2c:fb:91:90:af:31:e7:0b:4f:94:d4:77:0c:d4:71:85:07:40: f2:a3:9a:06:18:04:10:07:86:c3:d4:89:e0:08:f2:7b:67:03: 7f:db:cf:d9:43:13:51:58:0b:e8:81:a5:2a:35:fe:3a:03:87: 0b:eb:77:18:d5:e5:35:d5:da:bc:f0:e3:ff:6e:2a:35:ab:7a: cb:fd:1e:94:28:89:8d:cf:37:34:cd:5d:a8:0d:31:83:e7:d9: 60:36:f6:47:5a:c5:74:99:0b:40:78:7f:b6:02:b8:64:3e:8c: 31:3d:08:5c:95:9b:07:ef:5c:ca:bb:3e:3d:9e:90:36:b6:41: 33:19:21:cd:2c:2b:9a:a3:98:46:fe:47:44:48:2a:b8:16:66: db:8e:e9:dd:60:4b:fc:cc:9f:01:86:ab:b2:af:b4:6a:19:22: 0a:e3:ec:8f:90:88:2c:86:ca:c5:2f:68:34:64:bb:46:5c:5c: 81:a8:f3:8f:d0:16:7f:d6:7f:5f:f4:07:c9:99:ce:7a:67:c7: 26:c8:6e:8a:37:a2:b4:e6:78:78:f5:3e:dc:0b:9f:da:f9:3d: 8a:37:40:69:9d:9d:1f:ce:c2:56:b1:de:f3:3f:9a:69:66:e2: a6:13:f4:3a -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUClb40VXF5gEnYHQZKy80OSYLUW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNDExMTIwMjI0NThaFw0yNTExMTEwMjI5NThaMDMxMTAvBgNV BAMTKDc0NTlDMDczMEJCOTE3RDE0RDU5MDBBNUFBRUQ0REYyRkMxODg3MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDo6z0VbjGyF3hMqOqvC4ayf6kO C/pqUFihGNRnkzgAJN0AaZKJdFL+SgJQUdZ04ra0jQk3f2DCKjnVJq5D4tbaxE1b 3gEHQhYa4wV/1d+p7uICZfOlvwXFBe+K6SgwbKpdWhM9AR+8VpgbmPU13y06gw8s 3bE1jA2BsJe9Vv93+VAKk60IDVwr9tz+Hjsx8yyGemRK68qcS8fapLY6ugf7XImK h0li0Vs4eZFgJTvQL2U+3YUWz9ZiCvSHEzHB1kIPYlIpP8LTji0/6S8LWb1VfacB gP5WBrp79MPJ05CDtNst7TmGUHJJU+AhKu2hVzLrfpOMrMTLXTqGXB3Xyi9nAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUdFnAcwu5F9FNWQClqu1N8vwYhwYwHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2EzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDMwMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqBhKHAAMwDQYJKoZIhvcNAQELBQADggEBAEkXWPGzkRX0FpGa3Y1cqU+iTSz7 kZCvMecLT5TUdwzUcYUHQPKjmgYYBBAHhsPUieAI8ntnA3/bz9lDE1FYC+iBpSo1 /joDhwvrdxjV5TXV2rzw4/9uKjWresv9HpQoiY3PNzTNXagNMYPn2WA29kdaxXSZ C0B4f7YCuGQ+jDE9CFyVmwfvXMq7Pj2ekDa2QTMZIc0sK5qjmEb+R0RIKrgWZtuO 6d1gS/zMnwGGq7KvtGoZIgrj7I+QiCyGysUvaDRku0ZcXIGo84/QFn/Wf1/0B8mZ znpnxybIboo3orTmeHj1PtwLn9r5PYo3QGmdnR/Owlax3vM/mmlm4qYT9Do= -----END CERTIFICATE-----Generated at Mon Nov 25 06:09:05 2024 by rpki-client on console-fra.rpki-client.org