$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa File: 326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: HtzF+kJTNi0m78dwf6o+YjRx7KKLmaVlGFtx/57Y0Fs= Subject key identifier: 33:ED:EA:4F:25:AF:D7:A1:A7:B4:46:FE:A0:FB:1E:EE:AF:A6:F3:B3 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 126F23D57D8A1F22B869AFBA4704D3F61CC96536 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa Signing time: Mon 14 Oct 2024 08:59:22 +0000 ROA not before: Mon 14 Oct 2024 08:54:22 +0000 ROA not after: Mon 13 Oct 2025 08:59:22 +0000 asID: 215147 IP address blocks: 2a06:1283:c111::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6f:23:d5:7d:8a:1f:22:b8:69:af:ba:47:04:d3:f6:1c:c9:65:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Oct 14 08:54:22 2024 GMT Not After : Oct 13 08:59:22 2025 GMT Subject: CN=33EDEA4F25AFD7A1A7B446FEA0FB1EEEAFA6F3B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:6a:54:8b:9a:fd:90:70:ef:52:ea:8e:e8:4b: 59:cf:c7:c8:c4:7e:98:6b:4c:eb:e6:52:95:0f:c6: 75:2d:da:70:75:2a:2e:d1:a6:21:8a:ce:be:0d:ca: 06:39:39:d7:66:28:68:4a:b6:56:a9:1a:26:dc:91: 6d:27:36:9f:ca:4f:a7:dd:84:77:37:01:bc:33:92: ba:fc:93:4e:28:83:3b:fd:a3:00:58:21:75:59:6a: 24:c8:1e:9f:a8:8f:c5:c8:6f:3d:39:35:9b:63:9b: 88:4f:8a:e4:14:d5:bb:18:11:21:6c:c5:f0:df:33: 29:84:e6:32:f2:3d:dc:c5:b8:4a:cf:9b:45:22:2d: 1f:f3:1d:a3:dc:9f:4c:03:6b:12:e4:98:33:a6:1d: 16:99:35:02:28:10:53:83:e1:f3:5b:c5:b3:ab:cb: ad:ff:06:af:93:9e:70:54:e1:3f:8f:f1:a4:27:e9: c7:8b:8a:4e:69:cf:e6:07:0c:c3:65:0f:64:6e:5c: ae:71:ef:6d:78:0b:a6:43:45:88:2f:5f:cb:ee:96: 57:4a:b9:f1:07:1a:6f:cf:a4:bd:76:85:48:55:c2: 26:e6:42:46:11:05:2a:fd:4f:dc:58:7e:93:18:51: fe:40:b2:f6:67:9c:6a:ec:10:3a:64:51:0c:6a:76: 7c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:ED:EA:4F:25:AF:D7:A1:A7:B4:46:FE:A0:FB:1E:EE:AF:A6:F3:B3 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131313a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c111::/48 Signature Algorithm: sha256WithRSAEncryption 33:9a:17:60:f8:33:37:f9:b9:b7:ad:26:10:26:f0:38:66:28: 5f:2d:f4:a2:e9:9f:ad:c8:90:10:f1:16:30:68:a3:4e:23:5d: 81:53:0e:45:d2:79:81:fe:59:30:da:59:9b:bc:5a:ac:77:af: b6:85:33:9c:2f:8a:4c:22:73:14:3b:a7:92:17:be:cc:f0:66: 33:48:e7:c1:81:39:91:ba:16:4e:ae:a8:03:bb:f9:69:29:e6: 9d:04:ae:ce:6e:7a:06:05:3f:c2:55:db:bd:cb:6a:4d:d7:de: 5d:b1:75:2c:b5:72:c4:47:e1:c7:01:7f:0c:04:a0:72:89:e5: a3:eb:ce:bd:5a:e5:16:1d:88:fe:e8:f0:78:10:66:ee:5a:f4: 00:23:4d:22:af:33:77:f3:04:f8:26:92:19:4c:01:15:01:07: 80:72:77:c1:97:b1:69:ff:fa:cf:20:bc:e1:32:0b:66:6d:49: 9f:b0:64:b4:ac:dc:63:f8:ca:a3:f9:80:55:6b:f9:02:0d:b5: f8:95:2c:85:a4:05:31:4c:1b:97:99:e6:cd:35:64:c9:7a:55: 99:de:c8:f9:37:3e:99:61:be:71:e4:97:13:cc:8c:e7:88:d7: 31:39:16:35:c9:39:3b:85:7e:6f:45:ef:de:54:60:34:54:56: ca:1e:43:54 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEm8j1X2KHyK4aa+6RwTT9hzJZTYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEwMTQwODU0MjJaFw0yNTEwMTMwODU5MjJaMDMxMTAvBgNV BAMTKDMzRURFQTRGMjVBRkQ3QTFBN0I0NDZGRUEwRkIxRUVFQUZBNkYzQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCMalSLmv2QcO9S6o7oS1nPx8jE fphrTOvmUpUPxnUt2nB1Ki7RpiGKzr4NygY5OddmKGhKtlapGibckW0nNp/KT6fd hHc3Abwzkrr8k04ogzv9owBYIXVZaiTIHp+oj8XIbz05NZtjm4hPiuQU1bsYESFs xfDfMymE5jLyPdzFuErPm0UiLR/zHaPcn0wDaxLkmDOmHRaZNQIoEFOD4fNbxbOr y63/Bq+TnnBU4T+P8aQn6ceLik5pz+YHDMNlD2RuXK5x7214C6ZDRYgvX8vulldK ufEHGm/PpL12hUhVwibmQkYRBSr9T9xYfpMYUf5AsvZnnGrsEDpkUQxqdnyVAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUM+3qTyWv16GntEb+oPse7q+m87MwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYzMzEzMTMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg8ERMA0GCSqGSIb3DQEBCwUAA4IBAQAz mhdg+DM3+bm3rSYQJvA4ZihfLfSi6Z+tyJAQ8RYwaKNOI12BUw5F0nmB/lkw2lmb vFqsd6+2hTOcL4pMInMUO6eSF77M8GYzSOfBgTmRuhZOrqgDu/lpKeadBK7ObnoG BT/CVdu9y2pN195dsXUstXLER+HHAX8MBKByieWj6869WuUWHYj+6PB4EGbuWvQA I00irzN38wT4JpIZTAEVAQeAcnfBl7Fp//rPILzhMgtmbUmfsGS0rNxj+Mqj+YBV a/kCDbX4lSyFpAUxTBuXmebNNWTJelWZ3sj5Nz6ZYb5x5JcTzIzniNcxORY1yTk7 hX5vRe/eVGA0VFbKHkNU -----END CERTIFICATE-----Generated at Thu Nov 21 05:41:47 2024 by rpki-client on console-fra.rpki-client.org