$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa File: 326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa (raw, json) Hash identifier: PwTOdInX8jGTOU+HBgW02JZ5oGPI5sexF+ALnzj1oTQ= Subject key identifier: 38:D2:57:D8:10:41:D2:9F:94:79:AA:15:7C:89:E8:A4:F3:CC:EC:3F Certificate issuer: /CN=6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A Certificate serial: 10A97F694BC9A7AD1859089B6DF0DC1C780E013F Authority key identifier: 6B:70:A7:1E:22:E3:4D:AB:7D:A3:61:F2:FE:D9:F9:1A:48:49:DE:4A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa Signing time: Fri 11 Oct 2024 13:17:55 +0000 ROA not before: Fri 11 Oct 2024 13:12:55 +0000 ROA not after: Fri 10 Oct 2025 13:17:55 +0000 asID: 214323 IP address blocks: 2a0a:6044:7901::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.crl rsync://rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a9:7f:69:4b:c9:a7:ad:18:59:08:9b:6d:f0:dc:1c:78:0e:01:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A Validity Not Before: Oct 11 13:12:55 2024 GMT Not After : Oct 10 13:17:55 2025 GMT Subject: CN=38D257D81041D29F9479AA157C89E8A4F3CCEC3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:76:ca:ad:85:5c:96:08:c9:4f:46:82:50:a8: bd:53:0b:e3:6e:54:4f:c1:df:41:2c:8f:1d:1f:01: b5:b7:61:7a:15:52:2c:40:0c:56:eb:b9:28:bc:5a: 55:68:c8:a8:f6:36:7a:63:5c:b8:69:09:d8:eb:36: ad:29:02:e4:22:30:4d:fe:2f:26:65:16:9b:0a:18: b8:8b:ad:16:6f:e5:94:fa:03:4d:63:2c:a1:68:fd: 02:d2:5a:35:19:bb:ef:50:4c:bb:b2:63:c5:f7:80: 04:5e:37:71:8b:42:30:98:8f:9e:56:a6:8d:42:e8: db:77:18:a2:e5:7f:f8:31:d5:e2:82:03:fa:f1:a9: f6:65:9c:e9:db:76:f1:23:a7:7c:9b:d6:56:cd:ef: 25:4e:30:38:b1:7f:09:99:b5:4a:a5:2d:b3:f3:0b: 16:cd:5e:c3:4f:78:56:3d:8d:68:96:8d:b8:c1:1a: 35:b2:1a:01:45:d9:18:5a:8f:50:43:26:08:fc:13: 68:de:94:06:f4:de:26:11:f9:54:8f:20:23:8b:e1: ca:f4:4f:ac:64:e6:37:b9:44:31:fc:bd:d7:81:f2: df:8f:5e:af:9a:22:6e:1f:92:18:aa:38:d9:28:2e: 01:45:51:ef:ab:5c:17:65:39:b0:ff:8a:eb:f3:c3: 0b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D2:57:D8:10:41:D2:9F:94:79:AA:15:7C:89:E8:A4:F3:CC:EC:3F X509v3 Authority Key Identifier: keyid:6B:70:A7:1E:22:E3:4D:AB:7D:A3:61:F2:FE:D9:F9:1A:48:49:DE:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/6B70A71E22E34DAB7DA361F2FED9F91A4849DE4A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65839fbd-327e-4fce-8a3e-53ff8f0c460e/0/326130613a363034343a373930313a3a2f34382d3438203d3e20323134333233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7901::/48 Signature Algorithm: sha256WithRSAEncryption 22:c8:b6:af:ff:eb:58:33:e5:04:64:54:85:72:c3:ef:78:e0: 06:69:76:dc:26:4f:70:07:92:f9:20:ab:19:2a:61:83:76:29: b9:61:d6:b0:5c:b1:f8:17:4a:94:b2:df:50:c9:75:10:e6:85: e1:85:cf:45:ea:99:b1:dd:5d:81:40:20:ae:87:91:58:1a:04: bf:5b:0c:ff:dc:cb:e4:92:d4:fb:53:78:59:a9:f3:94:d3:66: 85:7a:23:7e:ca:4a:b7:a6:2a:30:92:f0:4c:c8:6f:cb:91:c9: ca:b6:24:39:07:22:66:9c:d7:d8:96:c7:ce:5f:82:fa:7c:7c: 03:f8:49:f7:2c:e7:21:9b:33:58:f4:11:3f:e1:49:de:76:f5: 7e:84:28:1b:8c:85:08:3a:c5:8a:c7:a8:7f:63:87:c8:64:87: 78:93:0e:15:97:9e:6d:75:ee:77:be:97:8d:99:b1:fd:08:e8: c6:24:02:eb:cd:41:a0:85:20:26:bf:f6:97:c5:29:f3:c1:7b: e0:96:91:c2:60:64:15:b1:60:19:08:1e:46:42:12:99:35:ce: 08:3d:46:c0:18:1b:bf:4c:b5:28:9b:62:c0:4a:82:ae:aa:65: 8a:cc:57:38:c4:2e:c4:76:c2:41:c9:b1:91:6e:92:00:85:0b: a4:8f:7f:68 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEKl/aUvJp60YWQibbfDcHHgOAT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkI3MEE3MUUyMkUzNERBQjdEQTM2MUYyRkVEOUY5MUE0 ODQ5REU0QTAeFw0yNDEwMTExMzEyNTVaFw0yNTEwMTAxMzE3NTVaMDMxMTAvBgNV BAMTKDM4RDI1N0Q4MTA0MUQyOUY5NDc5QUExNTdDODlFOEE0RjNDQ0VDM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7dsqthVyWCMlPRoJQqL1TC+Nu VE/B30Esjx0fAbW3YXoVUixADFbruSi8WlVoyKj2NnpjXLhpCdjrNq0pAuQiME3+ LyZlFpsKGLiLrRZv5ZT6A01jLKFo/QLSWjUZu+9QTLuyY8X3gAReN3GLQjCYj55W po1C6Nt3GKLlf/gx1eKCA/rxqfZlnOnbdvEjp3yb1lbN7yVOMDixfwmZtUqlLbPz CxbNXsNPeFY9jWiWjbjBGjWyGgFF2Rhaj1BDJgj8E2jelAb03iYR+VSPICOL4cr0 T6xk5je5RDH8vdeB8t+PXq+aIm4fkhiqONkoLgFFUe+rXBdlObD/iuvzwws/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUONJX2BBB0p+UeaoVfInopPPM7D8wHwYDVR0j BBgwFoAUa3CnHiLjTat9o2Hy/tn5GkhJ3kowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjU4MzlmYmQtMzI3ZS00ZmNlLThhM2UtNTNmZjhmMGM0 NjBlLzAvNkI3MEE3MUUyMkUzNERBQjdEQTM2MUYyRkVEOUY5MUE0ODQ5REU0QS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC82QjcwQTcxRTIyRTM0REFCN0RBMzYxRjJG RUQ5RjkxQTQ4NDlERTRBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82NTgzOWZiZC0zMjdlLTRmY2UtOGEzZS01M2ZmOGYwYzQ2MGUvMC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3MzkzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzMzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRHkBMA0GCSqGSIb3DQEBCwUAA4IBAQAi yLav/+tYM+UEZFSFcsPveOAGaXbcJk9wB5L5IKsZKmGDdim5YdawXLH4F0qUst9Q yXUQ5oXhhc9F6pmx3V2BQCCuh5FYGgS/Wwz/3MvkktT7U3hZqfOU02aFeiN+ykq3 piowkvBMyG/LkcnKtiQ5ByJmnNfYlsfOX4L6fHwD+En3LOchmzNY9BE/4UnedvV+ hCgbjIUIOsWKx6h/Y4fIZId4kw4Vl55tde53vpeNmbH9COjGJALrzUGghSAmv/aX xSnzwXvglpHCYGQVsWAZCB5GQhKZNc4IPUbAGBu/TLUom2LASoKuqmWKzFc4xC7E dsJBybGRbpIAhQukj39o -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org