$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa File: 326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa (raw, json) Hash identifier: yLoPNgxXsGZOGeGwXoeF29sQWCPopI46FmunhhorBcg= Subject key identifier: 5D:F8:19:BC:59:2F:0C:5D:97:D5:75:FB:AF:C5:C5:2A:C6:0E:A8:2E Certificate issuer: /CN=F163E1EE74384430F7A75E7448A376D89DBBE730 Certificate serial: 6740CFAD49383EB05B43A3C50C177E337360C9DB Authority key identifier: F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa Signing time: Mon 30 Sep 2024 16:57:53 +0000 ROA not before: Mon 30 Sep 2024 16:52:53 +0000 ROA not after: Mon 29 Sep 2025 16:57:53 +0000 asID: 214757 IP address blocks: 2a09:54c6:dead::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.crl rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:40:cf:ad:49:38:3e:b0:5b:43:a3:c5:0c:17:7e:33:73:60:c9:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F163E1EE74384430F7A75E7448A376D89DBBE730 Validity Not Before: Sep 30 16:52:53 2024 GMT Not After : Sep 29 16:57:53 2025 GMT Subject: CN=5DF819BC592F0C5D97D575FBAFC5C52AC60EA82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:cb:ae:99:ec:ff:98:bf:49:fe:c1:e9:09: 3d:7d:e4:88:25:9f:1c:c3:18:9b:1e:e8:af:2b:f9: 02:ba:83:38:23:c1:3a:57:a2:1c:c0:95:7e:b9:b2: 25:3e:d2:55:74:b6:41:d9:48:e5:00:7e:c6:aa:59: ef:a1:f6:73:a9:b8:1c:fe:1a:17:90:77:8a:77:0c: 6b:eb:b3:c8:6e:7d:10:60:fa:f4:7f:4e:fd:9a:d8: 95:63:5f:51:d1:1b:b5:72:35:e5:ff:6f:63:fe:28: bc:53:72:e1:99:6f:90:96:37:ff:fc:94:48:58:97: 12:e3:d0:9a:9f:90:1d:cc:5a:c2:db:87:3d:08:38: ab:6a:03:50:55:82:ce:0f:3a:1d:fb:86:2e:ba:7d: 90:be:cb:9e:90:30:aa:dd:e0:f8:2e:41:a7:18:3e: bc:eb:ef:86:bb:ae:41:01:fa:ff:e0:43:9d:84:69: 4a:db:20:30:bf:8d:1a:c8:72:8e:3a:1e:3d:73:53: c7:04:13:96:2f:16:59:8b:56:38:5c:88:d8:be:e0: 3b:88:6b:e0:25:ab:b7:f2:ae:2c:f5:4d:ce:e1:75: 12:e0:9f:94:79:b3:c4:15:b0:7d:d9:b8:e9:46:79: 9d:5b:99:a9:7e:01:99:6e:18:2d:af:be:9b:5c:7c: 5c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F8:19:BC:59:2F:0C:5D:97:D5:75:FB:AF:C5:C5:2A:C6:0E:A8:2E X509v3 Authority Key Identifier: keyid:F1:63:E1:EE:74:38:44:30:F7:A7:5E:74:48:A3:76:D8:9D:BB:E7:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/F163E1EE74384430F7A75E7448A376D89DBBE730.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/F163E1EE74384430F7A75E7448A376D89DBBE730.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6be43d9e-e440-47ae-a7bc-19b7993ccf14/1/326130393a353463363a646561643a3a2f34382d3438203d3e20323134373537.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:dead::/48 Signature Algorithm: sha256WithRSAEncryption 38:8b:26:c7:db:6b:f2:a3:bd:0f:fb:37:2b:fd:5d:4a:dc:70: 41:b1:48:e3:cb:c8:c4:3a:c5:8a:42:4e:d0:80:89:88:b7:9b: 23:6b:36:10:c7:3b:ae:b0:91:30:93:ce:18:67:c8:0a:04:c4: 09:73:7f:58:dc:c8:f4:88:ec:73:2e:61:d4:cf:01:12:f5:56: 56:83:e8:f1:9d:88:6f:65:b1:09:5b:19:64:96:56:dc:c4:4f: 40:b2:69:7f:b0:13:76:c1:40:48:bb:73:3d:37:e4:99:69:c0: 06:0d:1d:72:d6:c7:02:4b:16:be:f9:cb:67:bc:30:b0:43:9b: c4:a7:85:f3:0f:12:f2:17:7b:21:4b:7a:99:9c:6f:6e:c7:1f: 77:27:06:ee:43:59:36:a6:d7:0b:b6:75:de:66:85:8a:92:40: 81:8c:cf:99:e4:aa:9f:35:e8:64:f6:43:3b:02:c4:63:aa:89: 5c:6c:76:8c:99:b3:9f:f7:0f:49:7f:12:dc:ee:ee:b9:5c:18: 9d:e8:52:b2:59:55:de:fc:31:61:5e:d4:43:a3:04:75:29:0b: dc:e0:5c:62:fd:09:dd:e9:68:d0:c6:3e:8d:80:ef:5b:ef:f0: 9a:aa:f7:7e:d3:33:ea:f1:8f:ca:9e:73:b9:bd:8a:13:76:3e: d6:92:92:52 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZ0DPrUk4PrBbQ6PFDBd+M3NgydswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjE2M0UxRUU3NDM4NDQzMEY3QTc1RTc0NDhBMzc2RDg5 REJCRTczMDAeFw0yNDA5MzAxNjUyNTNaFw0yNTA5MjkxNjU3NTNaMDMxMTAvBgNV BAMTKDVERjgxOUJDNTkyRjBDNUQ5N0Q1NzVGQkFGQzVDNTJBQzYwRUE4MkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7Ocuumez/mL9J/sHpCT195Igl nxzDGJse6K8r+QK6gzgjwTpXohzAlX65siU+0lV0tkHZSOUAfsaqWe+h9nOpuBz+ GheQd4p3DGvrs8hufRBg+vR/Tv2a2JVjX1HRG7VyNeX/b2P+KLxTcuGZb5CWN//8 lEhYlxLj0JqfkB3MWsLbhz0IOKtqA1BVgs4POh37hi66fZC+y56QMKrd4PguQacY Przr74a7rkEB+v/gQ52EaUrbIDC/jRrIco46Hj1zU8cEE5YvFlmLVjhciNi+4DuI a+Alq7fyriz1Tc7hdRLgn5R5s8QVsH3ZuOlGeZ1bmal+AZluGC2vvptcfFy1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUXfgZvFkvDF2X1XX7r8XFKsYOqC4wHwYDVR0j BBgwFoAU8WPh7nQ4RDD3p150SKN22J275zAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNmJlNDNkOWUtZTQ0MC00N2FlLWE3YmMtMTliNzk5M2Nj ZjE0LzEvRjE2M0UxRUU3NDM4NDQzMEY3QTc1RTc0NDhBMzc2RDg5REJCRTczMC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9GMTYzRTFFRTc0Mzg0NDMwRjdBNzVFNzQ0 OEEzNzZEODlEQkJFNzMwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS82YmU0M2Q5ZS1lNDQwLTQ3YWUtYTdiYy0xOWI3OTkzY2NmMTQvMS8zMjYxMzAz OTNhMzUzNDYzMzYzYTY0NjU2MTY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczNTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKglUxt6tMA0GCSqGSIb3DQEBCwUAA4IBAQA4 iybH22vyo70P+zcr/V1K3HBBsUjjy8jEOsWKQk7QgImIt5sjazYQxzuusJEwk84Y Z8gKBMQJc39Y3Mj0iOxzLmHUzwES9VZWg+jxnYhvZbEJWxlkllbcxE9Asml/sBN2 wUBIu3M9N+SZacAGDR1y1scCSxa++ctnvDCwQ5vEp4XzDxLyF3shS3qZnG9uxx93 JwbuQ1k2ptcLtnXeZoWKkkCBjM+Z5KqfNehk9kM7AsRjqolcbHaMmbOf9w9JfxLc 7u65XBid6FKyWVXe/DFhXtRDowR1KQvc4Fxi/Qnd6WjQxj6NgO9b7/Caqvd+0zPq 8Y/KnnO5vYoTdj7WkpJS -----END CERTIFICATE-----Generated at Thu Nov 21 13:55:50 2024 by rpki-client on console-fra.rpki-client.org