$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a643030303a3a2f33362d3336203d3e20323134373537.roa File: 326130393a353463363a643030303a3a2f33362d3336203d3e20323134373537.roa (raw, json) Hash identifier: eTpxi4h7rVQD9UjYSq64NlM2hMV5MKioIPMyRsUsYAg= Subject key identifier: 0C:AD:19:6D:B3:E9:85:D3:50:CA:55:6F:7D:1E:BA:EC:43:59:81:BB Certificate issuer: /CN=F163E1EE74384430F7A75E7448A376D89DBBE730 Certificate serial: 0B84E48F19D4E2016060C606F7A93C28240B39E5 Authority key identifier: F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a643030303a3a2f33362d3336203d3e20323134373537.roa Signing time: Thu 14 Nov 2024 18:25:47 +0000 ROA not before: Thu 14 Nov 2024 18:20:47 +0000 ROA not after: Thu 13 Nov 2025 18:25:47 +0000 asID: 214757 IP address blocks: 2a09:54c6:d000::/36 maxlen: 36 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.crl rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:84:e4:8f:19:d4:e2:01:60:60:c6:06:f7:a9:3c:28:24:0b:39:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F163E1EE74384430F7A75E7448A376D89DBBE730 Validity Not Before: Nov 14 18:20:47 2024 GMT Not After : Nov 13 18:25:47 2025 GMT Subject: CN=0CAD196DB3E985D350CA556F7D1EBAEC435981BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f3:a7:92:cb:a6:35:3e:51:4d:33:22:73:93: 6c:fd:70:c9:07:f5:13:99:95:99:49:ca:a3:02:48: 2f:9b:04:70:d2:4c:6c:86:f0:3d:e1:77:28:2c:df: 51:78:54:1f:16:dd:45:cd:38:28:fa:d9:40:46:20: 90:5e:47:bc:fa:77:09:2c:fa:2f:b7:7e:ed:ce:7d: 18:6e:7c:54:c0:75:de:26:64:d6:b5:65:56:e9:a0: cb:7a:91:30:5c:89:94:66:c2:06:41:62:78:cd:e8: c4:3a:94:f2:58:c5:91:8f:d8:17:a8:54:f8:68:76: 85:e3:4c:d0:7a:5a:6d:9f:12:0d:e5:76:5e:e8:9f: 1b:a7:6e:34:7d:33:3b:b8:7f:0a:9e:29:55:89:3b: 49:9f:b8:d9:fb:88:32:31:13:f7:26:7e:2d:6c:ec: 99:27:a4:7d:c1:56:0c:99:61:5f:46:93:44:ec:71: 5d:af:b9:80:46:ca:1c:68:62:a3:3f:5a:c7:59:10: 2d:4d:98:fe:a5:63:12:d5:40:a6:29:ca:32:82:e8: d0:52:55:34:78:db:51:96:e0:64:64:d5:8d:0e:49: 65:25:f1:7b:d0:77:71:c5:c8:93:75:44:81:31:3e: e8:2b:b6:3a:f0:1c:1a:c4:cf:9a:2c:01:ec:11:f3: ab:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:AD:19:6D:B3:E9:85:D3:50:CA:55:6F:7D:1E:BA:EC:43:59:81:BB X509v3 Authority Key Identifier: keyid:F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a643030303a3a2f33362d3336203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:d000::/36 Signature Algorithm: sha256WithRSAEncryption 77:84:0e:ee:f9:18:c1:94:13:f9:eb:2a:50:8a:70:d3:92:12: 6a:ee:b4:8e:52:d0:54:58:2b:5f:29:69:5d:04:6d:5f:76:f5: a1:90:1b:13:ab:36:de:74:67:41:91:94:27:71:54:b5:24:34: 3e:41:71:21:0f:24:07:6a:49:64:25:07:5f:67:d5:69:5c:f1: 63:e0:4b:4d:5b:e2:2f:c5:74:bf:bb:6f:d5:43:6d:31:c1:4b: a2:a4:3c:45:10:b8:bf:ca:03:e2:37:9f:81:d1:26:4d:6a:01: 50:71:16:17:a4:36:5c:97:6e:f4:70:cf:a8:d7:87:57:e1:61: 42:f3:fb:e1:90:2a:e4:2f:6b:2d:e5:c5:91:21:02:95:fc:e7: b9:e2:3b:71:89:a4:34:7f:67:e4:07:77:4a:80:ac:fa:22:5c: c7:ee:51:8e:2e:01:a8:78:5a:1f:56:85:87:01:ee:6d:57:af: 01:09:81:27:04:5c:7b:05:cd:45:8b:35:ba:ba:81:d4:50:58: 05:13:db:9d:66:8a:59:ca:0c:76:3e:f3:44:d5:e9:8e:44:24: 4d:0d:61:8e:78:43:b5:43:f4:27:fd:95:d2:5a:4a:f2:68:7c: 82:a4:dc:ea:d0:92:df:dc:35:cb:15:30:8c:a1:8e:37:e1:3e: bd:e0:42:2e -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUC4TkjxnU4gFgYMYG96k8KCQLOeUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE2M0UxRUU3NDM4NDQzMEY3QTc1RTc0NDhBMzc2RDg5 REJCRTczMDAeFw0yNDExMTQxODIwNDdaFw0yNTExMTMxODI1NDdaMDMxMTAvBgNV BAMTKDBDQUQxOTZEQjNFOTg1RDM1MENBNTU2RjdEMUVCQUVDNDM1OTgxQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ86eSy6Y1PlFNMyJzk2z9cMkH 9ROZlZlJyqMCSC+bBHDSTGyG8D3hdygs31F4VB8W3UXNOCj62UBGIJBeR7z6dwks +i+3fu3OfRhufFTAdd4mZNa1ZVbpoMt6kTBciZRmwgZBYnjN6MQ6lPJYxZGP2Beo VPhodoXjTNB6Wm2fEg3ldl7onxunbjR9Mzu4fwqeKVWJO0mfuNn7iDIxE/cmfi1s 7JknpH3BVgyZYV9Gk0TscV2vuYBGyhxoYqM/WsdZEC1NmP6lYxLVQKYpyjKC6NBS VTR421GW4GRk1Y0OSWUl8XvQd3HFyJN1RIExPugrtjrwHBrEz5osAewR86vxAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUDK0ZbbPphdNQylVvfR667ENZgbswHwYDVR0j BBgwFoAU8WPh7nQ4RDD3p150SKN22J275zAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNmJlNDNkOWUtZTQ0MC00N2FlLWE3YmMtMTliNzk5M2Nj ZjE0LzEvRjE2M0UxRUU3NDM4NDQzMEY3QTc1RTc0NDhBMzc2RDg5REJCRTczMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9GMTYzRTFFRTc0Mzg0NDMwRjdBNzVFNzQ0 OEEzNzZEODlEQkJFNzMwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82YmU0M2Q5ZS1lNDQwLTQ3YWUtYTdiYy0xOWI3OTkzY2NmMTQvMS8zMjYxMzAz OTNhMzUzNDYzMzYzYTY0MzAzMDMwM2EzYTJmMzMzNjJkMzMzNjIwM2QzZTIwMzIz MTM0MzczNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKglUxtAwDQYJKoZIhvcNAQELBQADggEBAHeE Du75GMGUE/nrKlCKcNOSEmrutI5S0FRYK18paV0EbV929aGQGxOrNt50Z0GRlCdx VLUkND5BcSEPJAdqSWQlB19n1Wlc8WPgS01b4i/FdL+7b9VDbTHBS6KkPEUQuL/K A+I3n4HRJk1qAVBxFhekNlyXbvRwz6jXh1fhYULz++GQKuQvay3lxZEhApX857ni O3GJpDR/Z+QHd0qArPoiXMfuUY4uAah4Wh9WhYcB7m1XrwEJgScEXHsFzUWLNbq6 gdRQWAUT251milnKDHY+80TV6Y5EJE0NYY54Q7VD9Cf9ldJaSvJofIKk3OrQkt/c NcsVMIyhjjfhPr3gQi4= -----END CERTIFICATE-----Generated at Thu Nov 21 13:55:50 2024 by rpki-client on console-fra.rpki-client.org