$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a343a3a2f34382d3438203d3e203236303036.roa File: 326130363a313238373a343a3a2f34382d3438203d3e203236303036.roa (raw, json) Hash identifier: Ctd56m2rWeHWuAb0S/ld3PRKI+krAr55ECb4mHWz0ec= Subject key identifier: 70:B5:1B:1C:E2:B9:AF:D5:88:36:A9:A5:0B:F1:20:FD:36:D5:B6:01 Certificate issuer: /CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Certificate serial: 52805F5107B6CB5C073D10975867BE8266B839A9 Authority key identifier: D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a343a3a2f34382d3438203d3e203236303036.roa Signing time: Sun 17 Nov 2024 15:08:25 +0000 ROA not before: Sun 17 Nov 2024 15:03:25 +0000 ROA not after: Sun 16 Nov 2025 15:08:25 +0000 asID: 26006 IP address blocks: 2a06:1287:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 20:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:80:5f:51:07:b6:cb:5c:07:3d:10:97:58:67:be:82:66:b8:39:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D585C965DEAED8ED3ECAAFE189BBA5883899D4DB Validity Not Before: Nov 17 15:03:25 2024 GMT Not After : Nov 16 15:08:25 2025 GMT Subject: CN=70B51B1CE2B9AFD58836A9A50BF120FD36D5B601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a3:4b:32:57:46:d7:a3:ad:dc:89:9e:df:f2: 14:74:6d:67:ae:89:13:3d:35:0e:48:96:6b:23:09: 07:71:8b:0f:c0:67:db:c8:dd:ab:02:c4:2f:81:fe: 5c:16:08:ef:df:75:e6:17:49:09:ae:91:cb:95:ab: da:46:53:3c:0a:8b:2a:4a:0f:38:6c:02:73:24:49: 7e:e6:04:64:4c:da:89:86:0e:f8:74:1b:0a:39:68: 80:a9:37:1e:36:c2:9e:13:61:16:e6:6f:b7:c8:44: 38:62:d4:96:23:e8:6e:d6:e7:28:7c:54:5d:f7:21: 6e:4c:df:20:9a:da:94:32:2e:67:eb:51:11:e0:31: d8:61:1f:f8:6d:49:44:d1:45:b6:25:3a:e0:c1:d1: 4f:aa:ce:d2:21:ed:4d:0c:62:2d:00:b7:c8:bb:99: 8b:47:c8:14:13:dd:a1:9f:c4:3c:b0:c4:cb:b0:fc: 65:8e:cf:b5:42:ac:7d:c9:90:3c:8f:41:20:b4:f0: e6:d4:0c:7a:94:c0:73:0a:26:03:af:9a:5f:f2:aa: ba:c1:3d:5d:3d:0a:dd:70:64:f3:8a:e2:7a:3d:e8: 0c:ff:5b:c8:dc:f1:60:b4:7e:f8:9c:89:53:09:6a: a1:3a:4a:8e:a4:e6:40:28:cd:40:59:27:12:2a:97: c1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B5:1B:1C:E2:B9:AF:D5:88:36:A9:A5:0B:F1:20:FD:36:D5:B6:01 X509v3 Authority Key Identifier: keyid:D5:85:C9:65:DE:AE:D8:ED:3E:CA:AF:E1:89:BB:A5:88:38:99:D4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/D585C965DEAED8ED3ECAAFE189BBA5883899D4DB.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/553623c4-33bd-438a-a93e-018d65c4e837/1/326130363a313238373a343a3a2f34382d3438203d3e203236303036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1287:4::/48 Signature Algorithm: sha256WithRSAEncryption 0e:5d:42:93:f5:94:3b:7e:ba:52:d2:1b:62:57:ad:52:ad:d9: a5:fc:7c:66:57:ab:9c:8e:73:61:ee:7c:e7:a2:f7:5b:46:11: 60:15:89:c9:95:6a:6f:1a:9d:af:3f:05:95:45:b1:ec:f4:c2: 53:66:0b:b6:69:c4:b2:04:d6:79:49:4f:d6:75:b5:23:9c:5f: 26:1f:76:42:23:88:dc:6e:5e:74:e4:0f:5c:c5:53:f7:c0:0f: d8:b9:0e:8f:4a:0a:4b:bc:ce:d7:35:ff:75:b0:e8:87:e6:b0: f2:de:0b:e2:81:a0:58:0c:af:df:a4:4e:96:0b:30:e0:13:ce: ab:a5:90:fd:bc:07:1e:3f:d3:0b:4d:88:ba:80:2c:65:58:39: bc:cb:c9:c8:31:75:64:0b:2f:c6:ca:fb:a5:83:1f:a4:66:12: 1a:a8:bd:ca:a5:fa:5c:ec:cc:47:b2:e0:d8:eb:67:87:21:9e: ab:52:36:ef:23:c3:62:2e:26:ed:56:c1:6c:26:4f:99:24:56: f2:20:1a:2c:9d:cf:c0:58:0a:22:14:29:10:37:f3:b6:5e:fc: 6b:9d:d9:c9:e5:f4:d6:f8:56:03:d9:00:a0:dc:4d:26:e7:29: df:7a:72:ee:5a:f9:b5:0a:a5:1a:d9:27:ba:29:bd:3e:de:e3: c3:b6:72:6b -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgIUUoBfUQe2y1wHPRCXWGe+gma4OakwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgz ODk5RDREQjAeFw0yNDExMTcxNTAzMjVaFw0yNTExMTYxNTA4MjVaMDMxMTAvBgNV BAMTKDcwQjUxQjFDRTJCOUFGRDU4ODM2QTlBNTBCRjEyMEZEMzZENUI2MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqo0syV0bXo63ciZ7f8hR0bWeu iRM9NQ5IlmsjCQdxiw/AZ9vI3asCxC+B/lwWCO/fdeYXSQmukcuVq9pGUzwKiypK DzhsAnMkSX7mBGRM2omGDvh0Gwo5aICpNx42wp4TYRbmb7fIRDhi1JYj6G7W5yh8 VF33IW5M3yCa2pQyLmfrURHgMdhhH/htSUTRRbYlOuDB0U+qztIh7U0MYi0At8i7 mYtHyBQT3aGfxDywxMuw/GWOz7VCrH3JkDyPQSC08ObUDHqUwHMKJgOvml/yqrrB PV09Ct1wZPOK4no96Az/W8jc8WC0fviciVMJaqE6So6k5kAozUBZJxIql8EdAgMB AAGjggJyMIICbjAdBgNVHQ4EFgQUcLUbHOK5r9WINqmlC/Eg/TbVtgEwHwYDVR0j BBgwFoAU1YXJZd6u2O0+yq/hibuliDiZ1NswDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQtMzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRl ODM3LzEvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5RDREQi5j cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1 YzkxYmUzZjlkLzIvRDU4NUM5NjVERUFFRDhFRDNFQ0FBRkUxODlCQkE1ODgzODk5 RDREQi5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvNTUzNjIzYzQt MzNiZC00MzhhLWE5M2UtMDE4ZDY1YzRlODM3LzEvMzI2MTMwMzYzYTMxMzIzODM3 M2EzNDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzMDMwMzYucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAqBhKHAAQwDQYJKoZIhvcNAQELBQADggEBAA5dQpP1lDt+ulLSG2JXrVKt2aX8 fGZXq5yOc2HufOei91tGEWAVicmVam8ana8/BZVFsez0wlNmC7ZpxLIE1nlJT9Z1 tSOcXyYfdkIjiNxuXnTkD1zFU/fAD9i5Do9KCku8ztc1/3Ww6IfmsPLeC+KBoFgM r9+kTpYLMOATzqulkP28Bx4/0wtNiLqALGVYObzLycgxdWQLL8bK+6WDH6RmEhqo vcql+lzszEey4NjrZ4chnqtSNu8jw2IuJu1WwWwmT5kkVvIgGiydz8BYCiIUKRA3 87Ze/Gud2cnl9Nb4VgPZAKDcTSbnKd96cu5a+bUKpRrZJ7opvT7e48O2cms= -----END CERTIFICATE-----Generated at Fri Nov 22 05:53:32 2024 by rpki-client on console-fra.rpki-client.org