$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030643a3a2f34382d3438203d3e20323136313133.roa File: 326131343a316563373a663030643a3a2f34382d3438203d3e20323136313133.roa (raw, json) Hash identifier: rbrpPmQJM8CtEojDNFo6qYDdS2iBWGJ3bQvdSC2Gswo= Subject key identifier: 5D:6B:46:61:C8:BA:63:4B:F2:A5:FB:94:68:D4:68:2A:56:04:5E:98 Certificate issuer: /CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Certificate serial: 727AFA2CC0DCCEE8D7ECC5FA6ACD5342F7D991F6 Authority key identifier: 1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030643a3a2f34382d3438203d3e20323136313133.roa Signing time: Sun 21 Apr 2024 21:00:22 +0000 ROA not before: Sun 21 Apr 2024 20:55:22 +0000 ROA not after: Sun 20 Apr 2025 21:00:22 +0000 asID: 216113 IP address blocks: 2a14:1ec7:f00d::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 23:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:7a:fa:2c:c0:dc:ce:e8:d7:ec:c5:fa:6a:cd:53:42:f7:d9:91:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71 Validity Not Before: Apr 21 20:55:22 2024 GMT Not After : Apr 20 21:00:22 2025 GMT Subject: CN=5D6B4661C8BA634BF2A5FB9468D4682A56045E98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:ee:15:26:70:63:05:bb:60:92:1c:0d:54: dc:90:48:06:9f:d3:7e:18:71:b4:19:0b:09:32:e5: b5:89:4f:8f:a4:63:60:80:80:b4:cd:72:c0:dd:d1: 63:72:b3:79:c7:c5:bc:a0:b8:61:94:a8:79:c6:ee: f3:6b:35:c3:fc:27:df:10:86:b1:aa:81:db:ba:a4: e1:60:ee:e0:11:d1:2a:10:e8:cb:49:b1:54:9f:b0: fd:67:4a:f5:90:fb:2d:59:ee:43:db:47:bc:55:cc: cf:dd:3a:4f:f0:57:38:9a:33:70:6d:15:28:07:ef: f0:3d:69:eb:7f:c6:46:06:b3:c4:15:70:3d:65:a5: aa:62:b6:2b:57:96:9a:b8:d4:6d:b8:19:b8:58:1d: 34:c7:82:d5:be:d0:15:27:e9:92:09:5f:5a:16:67: 22:0e:5b:11:0a:95:db:e8:16:f9:d4:16:66:4c:12: 71:83:71:52:f8:be:36:4d:9e:80:fa:4c:05:6d:3d: 3f:08:38:5b:39:90:0c:56:90:d7:58:d1:1a:12:5c: 12:79:20:f3:3b:39:62:62:68:f7:54:ad:1d:cc:f0: f6:fa:f1:f8:a1:5b:74:f0:37:34:8b:ee:39:9e:a6: 08:89:a0:b9:3f:27:90:f4:b2:9d:94:b1:c8:ff:65: d9:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6B:46:61:C8:BA:63:4B:F2:A5:FB:94:68:D4:68:2A:56:04:5E:98 X509v3 Authority Key Identifier: keyid:1D:BD:1D:47:FD:8E:45:74:C8:42:17:43:C9:CC:5F:0E:F8:3E:0E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/1DBD1D47FD8E4574C8421743C9CC5F0EF83E0E71.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/71476d62-9cfa-4871-a2d9-fadf5781c11b/2/326131343a316563373a663030643a3a2f34382d3438203d3e20323136313133.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec7:f00d::/48 Signature Algorithm: sha256WithRSAEncryption 02:6f:97:3a:99:f1:a1:db:e9:67:2f:a0:11:f4:59:fd:40:bf: 36:80:b2:fe:b2:d4:27:e9:9e:9c:0f:c4:4c:4f:f9:01:95:03: 03:d7:f6:ed:6c:1b:74:c3:6a:e9:34:0f:b6:ca:f9:6c:c0:4f: 92:28:0e:cb:78:e3:8d:32:14:7a:b0:03:e4:2d:bf:56:4a:ea: f6:43:b7:56:02:38:0b:42:d5:36:a5:b3:b6:0c:38:3a:1d:bc: 4b:3a:f9:f8:dd:8e:e8:b8:b6:6d:0d:c0:ce:a0:4f:b5:b1:8d: 8d:28:74:76:77:12:ad:1c:ba:4a:a7:42:8a:53:59:fb:39:be: 70:68:07:19:03:fa:5c:07:19:a6:90:c4:52:08:c6:20:e0:b1: 37:3c:dd:56:a0:07:7b:32:28:e2:93:20:f9:bf:21:0f:ea:4b: 8e:8c:1e:54:d2:86:47:43:2e:70:2d:c1:d2:ba:f9:7b:26:52: 4b:2e:3f:88:72:10:46:63:66:b0:6a:8b:cb:3f:87:b8:0e:fe: b2:ff:d3:2f:d1:08:70:a1:ae:6f:04:5b:60:62:f9:2d:5f:3f: 6d:be:e4:a1:7e:57:a2:21:9e:89:83:92:76:29:55:64:f8:0f: ad:60:b3:1b:66:c7:04:96:7a:94:16:78:e1:28:ec:8c:f6:12: 37:5a:95:16 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUcnr6LMDczujX7MX6as1TQvfZkfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVG ODNFMEU3MTAeFw0yNDA0MjEyMDU1MjJaFw0yNTA0MjAyMTAwMjJaMDMxMTAvBgNV BAMTKDVENkI0NjYxQzhCQTYzNEJGMkE1RkI5NDY4RDQ2ODJBNTYwNDVFOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7O4VJnBjBbtgkhwNVNyQSAaf 034YcbQZCwky5bWJT4+kY2CAgLTNcsDd0WNys3nHxbyguGGUqHnG7vNrNcP8J98Q hrGqgdu6pOFg7uAR0SoQ6MtJsVSfsP1nSvWQ+y1Z7kPbR7xVzM/dOk/wVziaM3Bt FSgH7/A9aet/xkYGs8QVcD1lpapititXlpq41G24GbhYHTTHgtW+0BUn6ZIJX1oW ZyIOWxEKldvoFvnUFmZMEnGDcVL4vjZNnoD6TAVtPT8IOFs5kAxWkNdY0RoSXBJ5 IPM7OWJiaPdUrR3M8Pb68fihW3TwNzSL7jmepgiJoLk/J5D0sp2Uscj/ZdkpAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUXWtGYci6Y0vypfuUaNRoKlYEXpgwHwYDVR0j BBgwFoAUHb0dR/2ORXTIQhdDycxfDvg+DnEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE0NzZkNjItOWNmYS00ODcxLWEyZDktZmFkZjU3ODFj MTFiLzIvMURCRDFENDdGRDhFNDU3NEM4NDIxNzQzQzlDQzVGMEVGODNFMEU3MS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8xREJEMUQ0N0ZEOEU0NTc0Qzg0MjE3NDND OUNDNUYwRUY4M0UwRTcxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS83MTQ3NmQ2Mi05Y2ZhLTQ4NzEtYTJkOS1mYWRmNTc4MWMxMWIvMi8zMjYxMzEz NDNhMzE2NTYzMzczYTY2MzAzMDY0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzEzMTMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhQex/ANMA0GCSqGSIb3DQEBCwUAA4IBAQAC b5c6mfGh2+lnL6AR9Fn9QL82gLL+stQn6Z6cD8RMT/kBlQMD1/btbBt0w2rpNA+2 yvlswE+SKA7LeOONMhR6sAPkLb9WSur2Q7dWAjgLQtU2pbO2DDg6HbxLOvn43Y7o uLZtDcDOoE+1sY2NKHR2dxKtHLpKp0KKU1n7Ob5waAcZA/pcBxmmkMRSCMYg4LE3 PN1WoAd7MijikyD5vyEP6kuOjB5U0oZHQy5wLcHSuvl7JlJLLj+IchBGY2awaovL P4e4Dv6y/9Mv0Qhwoa5vBFtgYvktXz9tvuShfleiIZ6Jg5J2KVVk+A+tYLMbZscE lnqUFnjhKOyM9hI3WpUW -----END CERTIFICATE-----Generated at Mon Nov 25 16:44:06 2024 by rpki-client on console-fra.rpki-client.org