$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa File: 326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa (raw, json) Hash identifier: xH3Y0q1OFsg1fGsH+D7iEfyCGwgR9J7yw8CykPhE0bk= Subject key identifier: 9C:77:81:67:71:8C:EB:95:5A:89:D3:8B:02:36:8A:4F:B5:D8:7C:5C Certificate issuer: /CN=B6366F3DD14AC5399103961C30642E6779892C6C Certificate serial: 2801BB355D79FAB0ED12CAD67084A45FA5862C06 Authority key identifier: B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa Signing time: Tue 29 Oct 2024 07:16:34 +0000 ROA not before: Tue 29 Oct 2024 07:11:34 +0000 ROA not after: Tue 28 Oct 2025 07:16:34 +0000 asID: 215147 IP address blocks: 2a06:1283:c11f::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.mft rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Dec 2024 22:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:01:bb:35:5d:79:fa:b0:ed:12:ca:d6:70:84:a4:5f:a5:86:2c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B6366F3DD14AC5399103961C30642E6779892C6C Validity Not Before: Oct 29 07:11:34 2024 GMT Not After : Oct 28 07:16:34 2025 GMT Subject: CN=9C778167718CEB955A89D38B02368A4FB5D87C5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0d:37:35:67:5c:10:20:30:2e:96:41:96:bc: c5:c6:21:c0:0c:98:cf:25:80:78:53:45:a2:4f:93: d0:7c:fa:b7:74:ad:76:56:88:20:1a:d0:80:c9:c8: c7:bd:2e:c6:a6:3f:97:fe:38:ab:57:09:1b:ed:4f: 09:d6:cb:4c:75:51:93:6c:e3:b7:df:12:6d:cb:8b: 46:f7:c2:61:bc:c2:b7:41:60:f4:10:dc:b5:80:16: 3f:af:42:d1:ee:bd:4b:5f:32:78:35:6d:7c:92:51: 8f:d3:81:d4:68:50:32:0b:f8:6b:0c:bc:48:26:39: 67:dd:8f:1b:74:d5:30:b5:01:84:f4:9f:ce:d9:cc: e0:47:a4:b5:c6:bc:4c:d6:6b:af:29:cf:e9:f6:b0: c3:cb:9f:de:70:af:05:8a:05:1f:38:79:b9:ad:90: 8a:eb:c8:b2:a9:2d:e3:90:0f:32:44:2d:5f:a5:84: 49:0a:b2:b5:d7:99:e0:20:d3:c4:2c:1b:ee:2b:51: d7:f1:b1:b5:6c:96:a4:30:65:a8:91:9e:0d:10:e2: c7:9c:c9:03:9c:d0:63:61:c9:0a:fe:42:19:92:f6: d8:b6:22:93:dc:84:25:fa:b9:7e:29:15:eb:a3:96: d1:2c:64:43:2c:88:19:33:d3:ef:35:67:cb:bb:42: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:77:81:67:71:8C:EB:95:5A:89:D3:8B:02:36:8A:4F:B5:D8:7C:5C X509v3 Authority Key Identifier: keyid:B6:36:6F:3D:D1:4A:C5:39:91:03:96:1C:30:64:2E:67:79:89:2C:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/B6366F3DD14AC5399103961C30642E6779892C6C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/B6366F3DD14AC5399103961C30642E6779892C6C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/68ababbb-f048-4de1-9206-8d40f071808b/2/326130363a313238333a633131663a3a2f34382d3438203d3e20323135313437.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:1283:c11f::/48 Signature Algorithm: sha256WithRSAEncryption 43:3a:f1:40:e6:d4:70:39:0e:e1:4a:84:c9:2d:6d:c3:ce:d4: 9b:ec:9a:40:fe:2e:a3:7a:dd:e9:cc:48:e1:f1:92:c5:64:75: 3e:41:a9:cb:05:ea:7d:25:e4:a5:b8:29:f6:04:49:a3:24:74: 70:07:42:e7:bd:63:da:4a:49:4d:4a:20:90:eb:4f:10:39:40: 28:ce:82:29:cf:ee:66:c8:43:b5:ba:a6:52:84:73:cd:0e:3a: 82:5b:76:95:e5:52:67:37:a7:f8:8d:3f:42:9a:c3:17:15:46: 44:09:7d:81:01:50:b7:2e:fb:e3:3c:9f:ba:80:a9:4f:b8:b9: ef:17:2d:cb:e5:de:00:82:cf:40:f6:86:e4:fc:f5:08:56:3f: c7:36:0e:23:80:d4:92:2a:2e:8d:fc:a9:4d:32:14:56:d2:8c: f1:1a:7c:1d:b6:df:57:d0:0f:4f:f9:1b:ba:dc:e2:af:2f:e8: 41:b3:42:9e:27:9e:ef:cc:84:9f:8c:02:bc:5f:6d:03:26:42: 31:06:f2:09:76:0c:d1:56:70:05:64:98:3d:b7:10:a7:1d:e6: d6:7a:e7:b9:af:a8:d5:00:11:18:ae:11:35:57:93:76:12:bd: 7f:c4:a9:f9:b4:18:94:63:f3:66:b5:57:16:ab:98:ea:fe:ce: 6c:79:c4:51 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKAG7NV15+rDtEsrWcISkX6WGLAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3 OTg5MkM2QzAeFw0yNDEwMjkwNzExMzRaFw0yNTEwMjgwNzE2MzRaMDMxMTAvBgNV BAMTKDlDNzc4MTY3NzE4Q0VCOTU1QTg5RDM4QjAyMzY4QTRGQjVEODdDNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuDTc1Z1wQIDAulkGWvMXGIcAM mM8lgHhTRaJPk9B8+rd0rXZWiCAa0IDJyMe9LsamP5f+OKtXCRvtTwnWy0x1UZNs 47ffEm3Li0b3wmG8wrdBYPQQ3LWAFj+vQtHuvUtfMng1bXySUY/TgdRoUDIL+GsM vEgmOWfdjxt01TC1AYT0n87ZzOBHpLXGvEzWa68pz+n2sMPLn95wrwWKBR84ebmt kIrryLKpLeOQDzJELV+lhEkKsrXXmeAg08QsG+4rUdfxsbVslqQwZaiRng0Q4sec yQOc0GNhyQr+QhmS9ti2IpPchCX6uX4pFeujltEsZEMsiBkz0+81Z8u7Qom1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUnHeBZ3GM65VaidOLAjaKT7XYfFwwHwYDVR0j BBgwFoAUtjZvPdFKxTmRA5YcMGQuZ3mJLGwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjhhYmFiYmItZjA0OC00ZGUxLTkyMDYtOGQ0MGYwNzE4 MDhiLzIvQjYzNjZGM0REMTRBQzUzOTkxMDM5NjFDMzA2NDJFNjc3OTg5MkM2Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yYWY3M2E5Yy0yMDU4LTQz YmItOWFjNi01YWI0MmRmYmY0MDkvMS9CNjM2NkYzREQxNEFDNTM5OTEwMzk2MUMz MDY0MkU2Nzc5ODkyQzZDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82OGFiYWJiYi1mMDQ4LTRkZTEtOTIwNi04ZDQwZjA3MTgwOGIvMi8zMjYxMzAz NjNhMzEzMjM4MzMzYTYzMzEzMTY2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgYSg8EfMA0GCSqGSIb3DQEBCwUAA4IBAQBD OvFA5tRwOQ7hSoTJLW3DztSb7JpA/i6jet3pzEjh8ZLFZHU+QanLBep9JeSluCn2 BEmjJHRwB0LnvWPaSklNSiCQ608QOUAozoIpz+5myEO1uqZShHPNDjqCW3aV5VJn N6f4jT9CmsMXFUZECX2BAVC3LvvjPJ+6gKlPuLnvFy3L5d4Ags9A9obk/PUIVj/H Ng4jgNSSKi6N/KlNMhRW0ozxGnwdtt9X0A9P+Ru63OKvL+hBs0KeJ57vzISfjAK8 X20DJkIxBvIJdgzRVnAFZJg9txCnHebWeue5r6jVABEYrhE1V5N2Er1/xKn5tBiU Y/NmtVcWq5jq/s5secRR -----END CERTIFICATE-----Generated at Tue Dec 3 14:01:02 2024 by rpki-client on console-ams.rpki-client.org