$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa File: 326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa (raw, json) Hash identifier: oRKMLvHS215EkQ1BfQ7ODboxSPqhfEeLodlN+AtmdPM= Subject key identifier: 1B:A7:00:36:19:78:84:37:69:C7:E1:7B:2B:11:5C:C1:27:CC:7E:72 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 5380BD97888B77DDE824F7105FBD9A75CD815AAC Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa Signing time: Fri 20 Sep 2024 16:28:42 +0000 ROA not before: Fri 20 Sep 2024 16:23:42 +0000 ROA not after: Fri 19 Sep 2025 16:28:42 +0000 asID: 215147 IP address blocks: 2a06:1283:8000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:80:bd:97:88:8b:77:dd:e8:24:f7:10:5f:bd:9a:75:cd:81:5a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Sep 20 16:23:42 2024 GMT Not After : Sep 19 16:28:42 2025 GMT Subject: CN=1BA700361978843769C7E17B2B115CC127CC7E72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1f:b8:6a:b8:85:21:35:86:7b:19:6a:be:de: e1:9b:35:b7:e2:ba:75:c0:b7:c1:d5:92:4d:77:04: 9a:bf:35:ea:8c:f0:29:e9:c2:00:40:1f:8a:cd:f3: 92:9c:f6:2e:54:82:c5:08:b6:ea:6c:f6:a0:08:c7: dc:bb:2a:da:54:12:e4:8a:bf:34:41:d9:1e:6f:8f: f6:5d:5a:68:aa:4c:00:8c:fa:aa:40:6c:fd:6f:8c: 32:3d:64:c9:fa:78:54:90:8e:3a:6a:85:88:67:9e: 5a:e2:cb:62:98:55:68:0c:7b:93:81:69:2a:e3:88: d4:dc:c2:96:e2:4f:66:70:9e:48:05:5e:6b:4c:46: b7:80:e9:da:6a:86:97:1f:13:1e:6b:e5:b2:d1:2b: 2a:bf:60:18:4f:5e:9c:1b:23:47:80:41:9e:12:92: 4f:44:42:ab:d0:ea:f1:11:78:d1:f5:0e:40:7e:24: a8:49:09:ad:aa:5b:ed:98:5f:0a:3f:d3:7d:15:f4: 3c:35:2b:62:a7:3f:e9:79:c2:17:c3:f4:8a:25:0a: 4b:61:4d:00:a8:68:06:ba:ba:ad:e9:78:59:f5:47: 4f:8f:4a:67:ba:15:88:75:35:18:8a:d9:a8:8a:72: 5d:66:6d:56:7b:38:20:b0:91:7a:ca:39:7b:86:2f: c7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A7:00:36:19:78:84:37:69:C7:E1:7B:2B:11:5C:C1:27:CC:7E:72 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3336203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8000::/36 Signature Algorithm: sha256WithRSAEncryption 76:b2:8b:61:ec:86:e6:d7:42:7f:ca:e2:6c:fc:88:8e:6a:f6: d2:be:92:e8:e0:ca:3b:c7:e5:6c:ac:ae:71:ba:41:bc:8c:66: 85:56:56:e2:ad:a0:bb:c2:fd:9c:5b:95:6e:75:70:fd:cd:c6: 15:c5:62:03:95:c1:b4:21:fb:37:09:5b:0e:12:f6:54:fe:f5: fc:8e:26:d8:89:92:7d:17:9a:97:26:ea:62:2f:0c:97:32:47: 46:5f:c9:2b:05:d5:68:53:5e:95:68:4e:0a:71:fb:bb:ed:a1: 52:f1:20:0c:5e:9f:c2:8d:a8:85:87:80:4d:f8:37:40:bb:59: 50:28:92:8b:ec:b9:19:9e:cc:cc:82:6c:0a:70:f5:94:23:d4: 89:84:05:79:6f:19:ce:e3:3b:9d:49:25:16:19:73:aa:17:6b: 54:6c:1f:68:02:17:15:67:e2:d2:ba:a9:56:ec:ed:fe:43:eb: 01:2f:00:d8:a7:f6:63:ed:eb:25:e3:85:d4:fd:bc:cb:f4:06: ea:a4:fa:4a:3b:40:de:7e:2c:04:ce:cc:dc:33:c2:9a:7e:71: af:9a:ba:a5:d0:75:60:84:7e:66:fe:d1:c3:89:75:75:6f:e5: b2:19:7a:3c:90:09:7b:da:fb:ff:1e:f5:ab:39:f8:2b:88:ab: 2a:3c:a9:95 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUU4C9l4iLd93oJPcQX72adc2BWqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDA5MjAxNjIzNDJaFw0yNTA5MTkxNjI4NDJaMDMxMTAvBgNV BAMTKDFCQTcwMDM2MTk3ODg0Mzc2OUM3RTE3QjJCMTE1Q0MxMjdDQzdFNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIH7hquIUhNYZ7GWq+3uGbNbfi unXAt8HVkk13BJq/NeqM8CnpwgBAH4rN85Kc9i5UgsUItups9qAIx9y7KtpUEuSK vzRB2R5vj/ZdWmiqTACM+qpAbP1vjDI9ZMn6eFSQjjpqhYhnnlriy2KYVWgMe5OB aSrjiNTcwpbiT2ZwnkgFXmtMRreA6dpqhpcfEx5r5bLRKyq/YBhPXpwbI0eAQZ4S kk9EQqvQ6vEReNH1DkB+JKhJCa2qW+2YXwo/030V9Dw1K2KnP+l5whfD9IolCkth TQCoaAa6uq3peFn1R0+PSme6FYh1NRiK2aiKcl1mbVZ7OCCwkXrKOXuGL8fNAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUG6cANhl4hDdpx+F7KxFcwSfMfnIwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgYSg4AwDQYJKoZIhvcNAQELBQADggEBAHay i2HshubXQn/K4mz8iI5q9tK+kujgyjvH5WysrnG6QbyMZoVWVuKtoLvC/ZxblW51 cP3NxhXFYgOVwbQh+zcJWw4S9lT+9fyOJtiJkn0Xmpcm6mIvDJcyR0ZfySsF1WhT XpVoTgpx+7vtoVLxIAxen8KNqIWHgE34N0C7WVAokovsuRmezMyCbApw9ZQj1ImE BXlvGc7jO51JJRYZc6oXa1RsH2gCFxVn4tK6qVbs7f5D6wEvANin9mPt6yXjhdT9 vMv0Buqk+ko7QN5+LATOzNwzwpp+ca+auqXQdWCEfmb+0cOJdXVv5bIZejyQCXva +/8e9as5+CuIqyo8qZU= -----END CERTIFICATE-----Generated at Fri Nov 22 20:34:55 2024 by rpki-client on console-ams.rpki-client.org