$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa File: 326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa (raw, json) Hash identifier: HyYHfx1MgCUEhcTUaE2Kq/F6UKvZ4UUcmqjIYCfCvBo= Subject key identifier: 8C:21:A2:64:2A:6B:B1:07:7A:05:26:6F:DD:9A:8E:70:52:59:A4:9A Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 63BE7723EDBD2E7C623A015B3CA826D78C125CCE Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa Signing time: Tue 10 Dec 2024 21:29:49 +0000 ROA not before: Tue 10 Dec 2024 21:24:49 +0000 ROA not after: Tue 09 Dec 2025 21:29:49 +0000 asID: 213915 IP address blocks: 2a06:1283:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 27 Dec 2024 02:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:be:77:23:ed:bd:2e:7c:62:3a:01:5b:3c:a8:26:d7:8c:12:5c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Dec 10 21:24:49 2024 GMT Not After : Dec 9 21:29:49 2025 GMT Subject: CN=8C21A2642A6BB1077A05266FDD9A8E705259A49A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1b:c2:af:62:31:17:0d:aa:b1:6f:99:cb:93: 9c:10:4a:60:38:96:0f:79:30:f3:3c:4d:c0:6b:eb: 8a:98:79:17:5c:d9:0a:d7:37:43:11:91:53:f8:5b: 53:a3:40:77:e2:94:9a:f6:75:bd:1b:b7:de:e1:d8: ed:6b:90:95:3b:79:97:f9:cb:ba:d9:7b:31:6d:29: b5:15:10:3a:f9:d3:51:b4:2e:31:b4:9c:9b:13:b0: 3a:cb:06:35:4b:a2:6e:35:c5:43:8c:94:01:00:25: b8:52:b6:e2:e4:69:f1:fd:ee:9a:3a:42:fa:91:fc: e2:3d:21:37:32:51:64:dd:39:6f:74:92:6b:5e:26: 78:a5:d3:67:c5:ba:e1:10:fe:c0:86:78:97:1e:a0: f1:b4:ea:d4:dd:ad:76:8e:df:47:3c:ad:1a:57:9b: 01:9f:7e:4d:42:55:26:91:1e:93:47:bd:9e:1d:66: e2:84:19:01:e9:a8:81:a9:e5:de:b0:88:9a:2f:d5: 39:68:ae:c8:db:e4:fd:be:18:16:19:28:1a:51:16: 0d:d9:34:e6:c8:bf:f7:98:b2:38:e0:90:20:0a:f3: c9:37:b6:76:55:70:a0:c2:90:01:0c:94:c5:38:b9: 98:bb:0a:dc:2a:d0:32:d7:17:20:e6:cf:3e:fc:c7: e3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:21:A2:64:2A:6B:B1:07:7A:05:26:6F:DD:9A:8E:70:52:59:A4:9A X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030313a3a2f34382d3438203d3e20323133393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8001::/48 Signature Algorithm: sha256WithRSAEncryption 34:8d:fb:8d:06:bc:43:c1:ea:e0:ef:aa:63:3a:0d:34:a5:47: be:fa:4d:22:c9:cd:3c:3f:ca:36:a3:15:2b:50:fb:25:8f:c4: 29:f8:e9:3c:86:d3:9d:75:a0:b4:a2:ff:56:f1:9d:71:ad:26: 06:43:c3:73:9a:9f:98:0d:87:30:72:9f:7d:0f:fd:04:8a:1d: 24:78:89:da:bc:6b:21:92:21:61:93:ef:3b:b0:ef:8c:5b:82: 24:95:18:c7:26:97:a9:f3:a1:6a:b2:da:2b:2b:e7:fa:9a:40: 3b:c3:37:65:42:94:ff:c8:aa:97:e6:4d:ea:91:68:97:f5:d7: df:5b:62:e5:b4:b2:ca:d5:f8:4f:66:2d:f9:f6:70:c5:af:6b: bc:00:53:97:2f:12:b0:ee:9f:b1:76:1e:27:77:c1:3d:45:51: fb:bb:7a:e2:86:a6:b7:73:c6:ed:2b:15:c2:a9:ad:37:a1:76: 7b:10:4e:fc:00:ce:b8:38:e9:2c:2c:de:34:1e:59:8e:ba:f6: f6:20:0f:90:73:64:f6:f9:9b:aa:6d:72:03:e3:4f:f1:a1:34: 13:9c:d8:ee:ef:77:a4:40:28:16:44:d0:e6:74:ac:d0:bc:5d: 48:53:9f:c7:7d:ee:4e:2a:dd:87:ac:e7:fe:f8:52:9f:9e:73: 8e:97:51:da -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUY753I+29LnxiOgFbPKgm14wSXM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEyMTAyMTI0NDlaFw0yNTEyMDkyMTI5NDlaMDMxMTAvBgNV BAMTKDhDMjFBMjY0MkE2QkIxMDc3QTA1MjY2RkREOUE4RTcwNTI1OUE0OUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaG8KvYjEXDaqxb5nLk5wQSmA4 lg95MPM8TcBr64qYeRdc2QrXN0MRkVP4W1OjQHfilJr2db0bt97h2O1rkJU7eZf5 y7rZezFtKbUVEDr501G0LjG0nJsTsDrLBjVLom41xUOMlAEAJbhStuLkafH97po6 QvqR/OI9ITcyUWTdOW90kmteJnil02fFuuEQ/sCGeJceoPG06tTdrXaO30c8rRpX mwGffk1CVSaRHpNHvZ4dZuKEGQHpqIGp5d6wiJov1Tlorsjb5P2+GBYZKBpRFg3Z NObIv/eYsjjgkCAK88k3tnZVcKDCkAEMlMU4uZi7Ctwq0DLXFyDmzz78x+P7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUjCGiZCprsQd6BSZv3ZqOcFJZpJowHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzAzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTMzMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg4ABMA0GCSqGSIb3DQEBCwUAA4IBAQA0 jfuNBrxDwerg76pjOg00pUe++k0iyc08P8o2oxUrUPslj8Qp+Ok8htOddaC0ov9W 8Z1xrSYGQ8Nzmp+YDYcwcp99D/0Eih0keInavGshkiFhk+87sO+MW4IklRjHJpep 86FqstorK+f6mkA7wzdlQpT/yKqX5k3qkWiX9dffW2LltLLK1fhPZi359nDFr2u8 AFOXLxKw7p+xdh4nd8E9RVH7u3rihqa3c8btKxXCqa03oXZ7EE78AM64OOksLN40 HlmOuvb2IA+Qc2T2+ZuqbXID40/xoTQTnNju73ekQCgWRNDmdKzQvF1IU5/Hfe5O Kt2HrOf++FKfnnOOl1Ha -----END CERTIFICATE-----Generated at Thu Dec 26 09:09:23 2024 by rpki-client on console-ams.rpki-client.org