$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131363a3a2f34382d3438203d3e20323135313437.roa File: 326130363a313238333a633131363a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: BThZWMGMFjg3MJu7S7C+AtvRZyMfJqlv6DgVdVD7dKE= Subject key identifier: 03:B4:41:93:14:99:A7:1C:CD:BD:AD:E7:2D:32:5A:ED:EC:A0:49:C7 Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 3A237B3A620FC68974A3C607623A38CFFF2F68E3 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131363a3a2f34382d3438203d3e20323135313437.roa Signing time: Mon 14 Oct 2024 09:00:02 +0000 ROA not before: Mon 14 Oct 2024 08:55:02 +0000 ROA not after: Mon 13 Oct 2025 09:00:02 +0000 asID: 215147 IP address blocks: 2a06:1283:c116::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:23:7b:3a:62:0f:c6:89:74:a3:c6:07:62:3a:38:cf:ff:2f:68:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Oct 14 08:55:02 2024 GMT Not After : Oct 13 09:00:02 2025 GMT Subject: CN=03B441931499A71CCDBDADE72D325AEDECA049C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:68:97:f3:d9:07:af:97:f7:85:3a:2c:a6:2a: 16:d8:94:f2:64:41:1f:54:48:14:14:bf:e0:67:32: 32:21:04:66:6c:b7:16:74:e0:08:71:c7:5e:db:ed: a8:39:f6:ad:b0:90:37:e7:ea:43:b2:43:4a:e4:a9: 5e:fd:ba:51:37:0a:e8:57:a0:e6:4a:52:c9:15:da: ba:62:45:e2:1c:96:25:50:d3:33:20:99:31:81:45: cc:5d:55:47:fa:74:14:8b:78:05:43:f4:b2:46:95: 4a:35:b6:67:0a:ea:dd:d4:77:93:bb:2a:33:61:d5: 3c:d3:54:ea:f5:1c:bf:08:b8:dc:81:94:66:e5:12: eb:82:0a:e7:93:93:39:64:71:f9:ff:87:33:49:8a: 31:12:ba:fa:73:97:e2:59:59:44:35:99:5c:ed:9e: ff:73:43:aa:98:b7:28:df:aa:74:48:ed:1c:9b:0f: 60:c6:cc:93:bf:f9:e3:84:fa:48:62:46:53:7a:34: 31:26:3c:a1:d1:b1:fa:00:92:58:0c:10:ac:bb:e2: 2e:4b:a0:9f:92:da:f0:7c:a6:d6:55:40:bc:46:2a: 2a:b5:5e:59:c0:cb:2c:c6:e9:9b:ce:f2:0a:c9:02: 5a:1c:eb:cf:9b:de:2a:57:e5:7f:2d:c5:37:83:f2: 68:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B4:41:93:14:99:A7:1C:CD:BD:AD:E7:2D:32:5A:ED:EC:A0:49:C7 X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131363a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c116::/48 Signature Algorithm: sha256WithRSAEncryption 7b:d5:41:50:dc:f3:1f:48:64:ae:bd:e4:82:86:ae:2f:bc:65: dc:0d:13:b2:13:e9:8c:1e:c1:44:1b:7e:d4:dc:f2:ba:aa:3e: 77:c2:e8:ef:aa:30:60:08:a8:98:15:b4:d0:32:c6:00:31:f5: 86:2f:58:37:13:88:73:ac:2f:ef:d3:1d:81:da:22:08:88:d0: a9:8f:c4:f8:70:e5:17:66:9b:e3:67:1b:87:08:15:43:b3:61: 97:80:68:a5:e1:1d:37:64:7e:c2:88:bc:ca:fa:8c:f5:ca:d9: ae:b8:d8:07:94:50:3d:de:8f:bc:c8:96:b9:ad:1b:2c:d8:d9: ef:07:b5:4a:76:f7:13:af:d9:0c:55:ed:4c:cd:ef:91:57:ac: 3a:9a:0f:87:b1:49:1a:ff:66:fa:1c:bf:ba:fd:93:7c:30:62: 53:39:32:f6:b7:e9:d2:ad:a2:89:5f:d0:a8:39:58:6a:c0:c1: 9e:20:4e:da:52:57:9a:8f:02:7c:90:58:90:26:60:09:36:7b: 0a:61:38:00:2f:f1:a8:d4:1e:10:b4:d7:9b:2f:ea:0a:dc:64: 4f:39:8a:89:72:cb:a1:ac:4d:15:9f:42:3b:14:80:8f:09:a8: 78:b5:69:20:f8:ad:e3:ed:bb:4a:f7:9a:6f:59:c1:e3:38:59: 0d:14:e0:b6 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUOiN7OmIPxol0o8YHYjo4z/8vaOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEwMTQwODU1MDJaFw0yNTEwMTMwOTAwMDJaMDMxMTAvBgNV BAMTKDAzQjQ0MTkzMTQ5OUE3MUNDREJEQURFNzJEMzI1QUVERUNBMDQ5QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFaJfz2Qevl/eFOiymKhbYlPJk QR9USBQUv+BnMjIhBGZstxZ04Ahxx17b7ag59q2wkDfn6kOyQ0rkqV79ulE3CuhX oOZKUskV2rpiReIcliVQ0zMgmTGBRcxdVUf6dBSLeAVD9LJGlUo1tmcK6t3Ud5O7 KjNh1TzTVOr1HL8IuNyBlGblEuuCCueTkzlkcfn/hzNJijESuvpzl+JZWUQ1mVzt nv9zQ6qYtyjfqnRI7RybD2DGzJO/+eOE+khiRlN6NDEmPKHRsfoAklgMEKy74i5L oJ+S2vB8ptZVQLxGKiq1XlnAyyzG6ZvO8grJAloc68+b3ipX5X8txTeD8mjBAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUA7RBkxSZpxzNva3nLTJa7eygSccwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYzMzEzMTM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg8EWMA0GCSqGSIb3DQEBCwUAA4IBAQB7 1UFQ3PMfSGSuveSChq4vvGXcDROyE+mMHsFEG37U3PK6qj53wujvqjBgCKiYFbTQ MsYAMfWGL1g3E4hzrC/v0x2B2iIIiNCpj8T4cOUXZpvjZxuHCBVDs2GXgGil4R03 ZH7CiLzK+oz1ytmuuNgHlFA93o+8yJa5rRss2NnvB7VKdvcTr9kMVe1Mze+RV6w6 mg+HsUka/2b6HL+6/ZN8MGJTOTL2t+nSraKJX9CoOVhqwMGeIE7aUleajwJ8kFiQ JmAJNnsKYTgAL/Go1B4QtNebL+oK3GRPOYqJcsuhrE0Vn0I7FICPCah4tWkg+K3j 7btK95pvWcHjOFkNFOC2 -----END CERTIFICATE-----Generated at Fri Nov 22 20:34:55 2024 by rpki-client on console-ams.rpki-client.org