$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030323a3a2f34382d3438203d3e20323135313437.roa File: 326130363a313238333a383030323a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: dd3FrIdYxmcCZ+0yiqqDqpbbY31J+y6oBOm7qM8H0EU= Subject key identifier: 2A:B2:68:57:70:85:74:37:78:01:9B:4F:29:8F:8E:85:B6:49:89:B7 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 1FFEA2DB8AD9BDEB9E35AB67913D4A9D32623A52 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030323a3a2f34382d3438203d3e20323135313437.roa Signing time: Sat 04 Jan 2025 08:21:20 +0000 ROA not before: Sat 04 Jan 2025 08:16:20 +0000 ROA not after: Sat 03 Jan 2026 08:21:20 +0000 asID: 215147 IP address blocks: 2a06:1283:8002::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Feb 2025 15:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:fe:a2:db:8a:d9:bd:eb:9e:35:ab:67:91:3d:4a:9d:32:62:3a:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Jan 4 08:16:20 2025 GMT Not After : Jan 3 08:21:20 2026 GMT Subject: CN=2AB268577085743778019B4F298F8E85B64989B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d1:b3:82:c2:0f:24:b5:ee:db:d2:44:40:cc: a2:b3:9a:fa:c6:81:a1:74:05:9c:49:0b:8a:73:3d: aa:e8:1e:24:ee:b5:b6:c2:83:5d:b8:55:74:47:43: ee:65:20:13:81:d2:a6:f3:8d:0c:8e:c5:71:bf:40: d9:90:d0:ec:e8:44:62:c7:d5:23:70:e3:d6:07:f2: 40:22:03:42:dd:26:5c:cf:eb:23:88:aa:5b:5b:57: 48:10:d8:07:3e:05:7c:ce:68:46:3e:1a:79:ac:40: d8:c1:78:77:d7:96:35:a4:64:84:0f:4b:fd:ad:a3: 28:81:c7:ee:a2:45:83:43:05:6f:15:7d:bd:4c:5c: f3:0b:eb:ee:d1:8a:b8:c1:10:e0:66:53:c9:72:96: 78:6e:6f:32:9e:1d:65:77:c2:e6:a5:97:5f:a0:90: 45:3c:3a:69:9b:f8:d2:6d:13:64:74:7a:fd:58:ba: a5:df:64:40:90:68:22:51:97:65:c2:83:64:bd:5e: 2f:ca:24:b9:17:50:90:fb:23:0b:36:65:9a:2d:9b: f9:ff:37:62:cc:d1:3e:62:f2:ef:8c:58:f5:6f:4b: 1b:ec:34:04:91:2a:a8:50:bd:b8:a1:3f:c4:79:c2: 16:8c:1e:8d:42:f1:67:58:f9:0f:06:7f:32:e5:12: b3:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B2:68:57:70:85:74:37:78:01:9B:4F:29:8F:8E:85:B6:49:89:B7 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a383030323a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:8002::/48 Signature Algorithm: sha256WithRSAEncryption 98:b6:28:97:79:c4:ce:7d:3a:86:84:17:1a:05:86:d3:a1:da: 1e:bd:88:b8:b9:a0:76:5a:bd:56:1d:93:34:c1:5d:2f:e4:dd: 10:93:4a:49:30:e6:24:81:7e:88:0d:bc:f5:ed:3b:d2:cb:8b: d0:c2:f0:f5:f7:7f:1a:14:9c:1f:a6:19:64:26:0b:1d:9c:75: 91:1a:84:c4:e4:94:46:be:7f:75:2b:df:e9:61:7d:55:51:41: a0:bc:ca:14:9f:ed:0b:6d:ce:4e:e6:b1:92:05:2c:bd:90:e6: b2:cb:b7:36:4e:a8:68:64:ee:4d:9f:ed:ca:ab:77:3a:a0:b8: 1f:43:30:24:98:b7:4f:7a:e1:1e:6b:5c:0b:84:40:5c:ef:1b: 18:1b:cd:54:d9:55:a7:14:50:0a:a2:fe:d3:c6:1b:2c:15:f7: 68:f9:9f:04:77:b0:58:3d:b9:57:99:c6:5c:16:b6:5a:7b:a5: 39:10:25:81:ab:ae:4e:67:42:6e:5a:87:81:ad:f0:66:3b:a8: 6c:f2:81:b9:2b:8f:64:c7:79:d7:70:62:12:e7:3f:c1:44:7f: 52:03:dd:c7:0f:93:d8:31:8e:18:ba:29:a1:db:94:1f:c7:52: 61:84:23:b5:12:b5:48:f0:7a:b8:14:3a:2e:b9:40:0a:cf:3d: aa:a4:2c:db -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUH/6i24rZveueNatnkT1KnTJiOlIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNTAxMDQwODE2MjBaFw0yNjAxMDMwODIxMjBaMDMxMTAvBgNV BAMTKDJBQjI2ODU3NzA4NTc0Mzc3ODAxOUI0RjI5OEY4RTg1QjY0OTg5QjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI0bOCwg8kte7b0kRAzKKzmvrG gaF0BZxJC4pzParoHiTutbbCg124VXRHQ+5lIBOB0qbzjQyOxXG/QNmQ0OzoRGLH 1SNw49YH8kAiA0LdJlzP6yOIqltbV0gQ2Ac+BXzOaEY+GnmsQNjBeHfXljWkZIQP S/2toyiBx+6iRYNDBW8Vfb1MXPML6+7RirjBEOBmU8lylnhubzKeHWV3wuall1+g kEU8Ommb+NJtE2R0ev1YuqXfZECQaCJRl2XCg2S9Xi/KJLkXUJD7Iws2ZZotm/n/ N2LM0T5i8u+MWPVvSxvsNASRKqhQvbihP8R5whaMHo1C8WdY+Q8GfzLlErMdAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUKrJoV3CFdDd4AZtPKY+OhbZJibcwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTM4MzAzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg4ACMA0GCSqGSIb3DQEBCwUAA4IBAQCY tiiXecTOfTqGhBcaBYbTodoevYi4uaB2Wr1WHZM0wV0v5N0Qk0pJMOYkgX6IDbz1 7TvSy4vQwvD1938aFJwfphlkJgsdnHWRGoTE5JRGvn91K9/pYX1VUUGgvMoUn+0L bc5O5rGSBSy9kOayy7c2TqhoZO5Nn+3Kq3c6oLgfQzAkmLdPeuEea1wLhEBc7xsY G81U2VWnFFAKov7TxhssFfdo+Z8Ed7BYPblXmcZcFrZae6U5ECWBq65OZ0JuWoeB rfBmO6hs8oG5K49kx3nXcGIS5z/BRH9SA93HD5PYMY4Yuimh25Qfx1JhhCO1ErVI 8Hq4FDouuUAKzz2qpCzb -----END CERTIFICATE-----Generated at Wed Feb 5 06:03:15 2025 by rpki-client