$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3438203d3e20323135313437.roa File: 326130363a313238333a383030303a3a2f33362d3438203d3e20323135313437.roa (raw, json) Hash identifier: NwxUM+Bu0lOfXqc/NSfMdy0y0UUCQqdUXqKBNCkgBgQ= Subject key identifier: 70:18:A7:EF:37:74:39:51:D5:85:43:44:E4:10:5A:E1:C5:08:C0:0A Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 53153F309D55D01B550A6C674C5CBA20C4FC99C3 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3438203d3e20323135313437.roa Signing time: Tue 10 Dec 2024 21:16:02 +0000 ROA not before: Tue 10 Dec 2024 21:11:02 +0000 ROA not after: Tue 09 Dec 2025 21:16:02 +0000 asID: 215147 IP address blocks: 2a06:1283:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 15:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:15:3f:30:9d:55:d0:1b:55:0a:6c:67:4c:5c:ba:20:c4:fc:99:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Dec 10 21:11:02 2024 GMT Not After : Dec 9 21:16:02 2025 GMT Subject: CN=7018A7EF37743951D5854344E4105AE1C508C00A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:60:1f:8b:9f:4a:be:d3:55:ed:7e:a8:a2:b7: df:76:0d:c4:d7:38:35:57:af:2a:7d:1b:4e:b3:18: 5d:88:bd:e9:7e:3b:71:7e:9d:31:24:48:b0:2f:9e: 1a:57:87:ef:b8:ed:40:f1:95:c4:33:74:e1:4c:a4: 9e:ca:18:74:67:1d:49:49:1c:12:bc:96:cf:f5:e9: 22:a2:58:00:f5:f4:f5:37:45:37:03:90:bc:04:45: 26:88:f1:6e:4f:a3:aa:83:52:28:a5:dc:54:c1:76: 05:45:e6:50:ef:9f:50:0e:04:c0:d4:56:81:be:f2: df:62:ba:4b:50:d1:78:b9:d5:a1:25:c5:70:9b:45: 0d:41:f1:90:8a:8b:e2:76:a8:49:03:71:7a:55:c6: 9c:b9:9f:7f:80:f1:f1:9d:be:e7:ce:cf:97:54:0e: 4d:83:ab:4a:36:86:ed:d5:71:eb:d4:8a:39:11:38: bd:4d:45:86:56:04:ea:ae:01:17:fc:48:15:80:dd: c5:67:1f:58:a6:a2:7d:02:e1:00:fe:a9:de:40:33: e9:c2:e0:b0:00:28:80:86:cf:bf:6b:fe:98:4c:75: 6f:a1:60:02:6d:f1:c0:aa:5f:bf:d0:6e:cb:6c:d8: 2b:8a:8b:f0:41:ad:12:f7:98:0f:84:10:4c:4a:e7: 4d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:18:A7:EF:37:74:39:51:D5:85:43:44:E4:10:5A:E1:C5:08:C0:0A X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030303a3a2f33362d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8000::/36 Signature Algorithm: sha256WithRSAEncryption 9f:40:0b:40:e2:3c:69:ad:d6:a4:3b:b4:92:bd:c3:0a:48:57: 9c:e1:15:6a:74:45:40:4b:ab:a3:e9:c6:7f:e1:82:ac:95:dd: af:50:ee:1d:e4:5d:e6:8d:f9:82:0a:74:d5:a6:1b:46:99:bd: 77:5d:a9:71:3d:2a:65:97:f4:fe:d2:be:a9:cf:96:a2:0f:95: 29:de:21:19:a4:e1:38:1f:fd:e0:65:67:5e:71:9e:b3:af:bf: bf:55:d4:17:16:93:d3:f7:9f:b5:0e:60:86:ea:1d:6c:57:2f: 74:0c:9e:0d:52:84:c4:14:82:67:68:48:af:f5:28:39:58:6d: fa:bf:19:fc:12:b7:3b:65:1e:4b:0f:31:ba:18:a7:33:2b:39: 18:6a:a0:40:1d:52:92:f9:da:bb:53:aa:6d:04:5b:27:6d:c1: 4f:a6:26:24:90:ef:f8:6f:c0:5e:98:91:28:27:ea:ee:07:45: 70:8d:04:e9:0d:62:a4:35:64:79:36:43:5c:e9:a4:bb:57:71: 6d:2f:31:ec:e3:39:96:bf:4e:b5:cd:9a:80:21:96:26:54:d4: 41:fc:b6:a7:3e:c9:f7:ee:98:f0:0f:0f:f4:c3:e1:08:28:a6: 55:51:2b:4d:8e:b1:29:97:80:f9:c7:31:ea:a3:37:84:90:ea: 00:2f:d2:20 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUUxU/MJ1V0BtVCmxnTFy6IMT8mcMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEyMTAyMTExMDJaFw0yNTEyMDkyMTE2MDJaMDMxMTAvBgNV BAMTKDcwMThBN0VGMzc3NDM5NTFENTg1NDM0NEU0MTA1QUUxQzUwOEMwMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjYB+Ln0q+01Xtfqiit992DcTX ODVXryp9G06zGF2Ivel+O3F+nTEkSLAvnhpXh++47UDxlcQzdOFMpJ7KGHRnHUlJ HBK8ls/16SKiWAD19PU3RTcDkLwERSaI8W5Po6qDUiil3FTBdgVF5lDvn1AOBMDU VoG+8t9iuktQ0Xi51aElxXCbRQ1B8ZCKi+J2qEkDcXpVxpy5n3+A8fGdvufOz5dU Dk2Dq0o2hu3VcevUijkROL1NRYZWBOquARf8SBWA3cVnH1imon0C4QD+qd5AM+nC 4LAAKICGz79r/phMdW+hYAJt8cCqX7/Qbsts2CuKi/BBrRL3mA+EEExK502zAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUcBin7zd0OVHVhUNE5BBa4cUIwAowHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKgYSg4AwDQYJKoZIhvcNAQELBQADggEBAJ9A C0DiPGmt1qQ7tJK9wwpIV5zhFWp0RUBLq6Ppxn/hgqyV3a9Q7h3kXeaN+YIKdNWm G0aZvXddqXE9KmWX9P7SvqnPlqIPlSneIRmk4Tgf/eBlZ15xnrOvv79V1BcWk9P3 n7UOYIbqHWxXL3QMng1ShMQUgmdoSK/1KDlYbfq/GfwStztlHksPMboYpzMrORhq oEAdUpL52rtTqm0EWydtwU+mJiSQ7/hvwF6YkSgn6u4HRXCNBOkNYqQ1ZHk2Q1zp pLtXcW0vMezjOZa/TrXNmoAhliZU1EH8tqc+yffumPAPD/TD4QgoplVRK02OsSmX gPnHMeqjN4SQ6gAv0iA= -----END CERTIFICATE-----Generated at Wed Feb 5 06:06:54 2025 by rpki-client