$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa File: 326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: Orgc9gFuMUKLGOJ80DWaUCtnWUjeFoUhSLoVG5BGvcs= Subject key identifier: 98:7E:B5:39:CD:99:E7:4F:93:BF:D9:B5:D1:6B:5F:E8:AF:1B:09:03 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 03B0C15FF3A8048B0D8C6511C796FD46B63465A2 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa Signing time: Mon 14 Oct 2024 08:59:55 +0000 ROA not before: Mon 14 Oct 2024 08:54:55 +0000 ROA not after: Mon 13 Oct 2025 08:59:55 +0000 asID: 215147 IP address blocks: 2a06:1283:c115::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b0:c1:5f:f3:a8:04:8b:0d:8c:65:11:c7:96:fd:46:b6:34:65:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Oct 14 08:54:55 2024 GMT Not After : Oct 13 08:59:55 2025 GMT Subject: CN=987EB539CD99E74F93BFD9B5D16B5FE8AF1B0903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:56:d0:51:27:b9:42:7d:8b:fa:e7:92:9b:e2: 03:31:6a:dc:ea:ac:7f:55:e5:de:af:1e:d4:8f:3f: 56:e6:f5:56:40:ed:ed:78:56:3c:6b:cb:57:d4:5f: c0:88:c3:a5:65:97:fc:f6:f2:cb:10:e1:8c:1d:9a: 69:b7:0b:16:5d:0a:0c:87:99:67:1c:03:fd:d0:58: 54:e1:c2:92:9a:5e:b2:7c:08:08:e2:7d:5c:8d:bc: 9c:75:5f:1e:54:fa:6e:12:63:05:46:58:c0:02:d8: d0:56:f6:09:1a:b1:fd:b8:25:1e:23:a2:91:65:0e: 42:48:9f:44:52:46:25:22:2f:57:c3:79:d1:3f:ca: a4:1b:5f:28:99:e8:61:ec:88:74:40:cf:b3:91:c0: 59:75:3a:e0:89:50:de:e5:b8:52:38:61:25:64:29: ac:b9:34:27:55:02:49:aa:8c:a5:35:ed:7b:e4:a3: 2a:ed:2d:a5:77:4c:6e:58:f1:79:26:0d:a3:03:bd: e0:a4:f7:e1:cb:50:1a:1e:23:a6:04:6a:bc:66:1d: 13:b2:f8:6e:bc:b3:c1:22:04:40:5d:a3:0c:72:7c: 9b:5a:ac:82:53:ef:ba:00:9c:23:06:bf:b4:fd:dc: af:d4:56:e1:17:11:2a:1c:ae:85:65:88:3c:c0:fb: 7e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:7E:B5:39:CD:99:E7:4F:93:BF:D9:B5:D1:6B:5F:E8:AF:1B:09:03 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131353a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c115::/48 Signature Algorithm: sha256WithRSAEncryption 52:c7:9d:8b:43:15:1c:08:19:c5:35:75:fe:72:97:5c:b7:e4: 42:91:af:d2:bb:6c:20:ee:71:61:fa:5c:07:c3:97:27:13:44: ba:15:56:f5:d2:45:e5:e4:f8:f4:2e:7a:34:41:2a:25:90:20: b0:48:a6:57:c6:16:ed:06:0a:67:4b:cb:cc:58:de:59:97:2b: 89:34:af:eb:2c:f4:46:b2:3c:a5:dc:e2:b1:90:e1:86:a9:b8: 38:3c:2b:8b:35:eb:d9:a5:f7:d5:f3:61:90:4b:52:b4:22:f3: b3:0c:ab:83:6a:2c:5f:46:66:30:9b:4d:25:25:36:17:ba:ff: 9b:17:fc:77:23:8c:6d:d0:38:20:0b:60:e6:f5:8f:be:ff:d8: 86:de:8f:f9:26:b3:d8:44:52:88:16:a8:db:ec:59:5b:0e:8e: 01:22:f4:db:51:fc:82:63:eb:80:2c:5d:34:ea:9e:8a:c6:d1: 17:b4:e6:a7:af:a5:21:6e:5c:0a:8a:c5:95:50:82:67:06:e9: 9c:a6:59:fd:52:db:29:7b:be:1b:e1:74:a5:57:5e:15:0d:b4: d5:17:89:38:a8:a6:bb:3c:05:4d:cb:70:21:17:b4:53:14:a8: 10:23:dd:e1:b3:09:88:46:c0:9c:44:4f:32:14:26:01:66:1d: 9b:9b:15:18 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUA7DBX/OoBIsNjGURx5b9RrY0ZaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEwMTQwODU0NTVaFw0yNTEwMTMwODU5NTVaMDMxMTAvBgNV BAMTKDk4N0VCNTM5Q0Q5OUU3NEY5M0JGRDlCNUQxNkI1RkU4QUYxQjA5MDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkVtBRJ7lCfYv655Kb4gMxatzq rH9V5d6vHtSPP1bm9VZA7e14Vjxry1fUX8CIw6Vll/z28ssQ4Ywdmmm3CxZdCgyH mWccA/3QWFThwpKaXrJ8CAjifVyNvJx1Xx5U+m4SYwVGWMAC2NBW9gkasf24JR4j opFlDkJIn0RSRiUiL1fDedE/yqQbXyiZ6GHsiHRAz7ORwFl1OuCJUN7luFI4YSVk Kay5NCdVAkmqjKU17XvkoyrtLaV3TG5Y8XkmDaMDveCk9+HLUBoeI6YEarxmHROy +G68s8EiBEBdowxyfJtarIJT77oAnCMGv7T93K/UVuEXESocroVliDzA+34NAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUmH61Oc2Z50+Tv9m10Wtf6K8bCQMwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYzMzEzMTM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg8EVMA0GCSqGSIb3DQEBCwUAA4IBAQBS x52LQxUcCBnFNXX+cpdct+RCka/Su2wg7nFh+lwHw5cnE0S6FVb10kXl5Pj0Lno0 QSolkCCwSKZXxhbtBgpnS8vMWN5ZlyuJNK/rLPRGsjyl3OKxkOGGqbg4PCuLNevZ pffV82GQS1K0IvOzDKuDaixfRmYwm00lJTYXuv+bF/x3I4xt0DggC2Dm9Y++/9iG 3o/5JrPYRFKIFqjb7FlbDo4BIvTbUfyCY+uALF006p6KxtEXtOanr6UhblwKisWV UIJnBumcpln9Utspe74b4XSlV14VDbTVF4k4qKa7PAVNy3AhF7RTFKgQI93hswmI RsCcRE8yFCYBZh2bmxUY -----END CERTIFICATE-----Generated at Fri Nov 22 19:54:50 2024 by rpki-client on console-fra.rpki-client.org