$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653031303a3a2f34342d3434203d3e20323134333132.roa File: 326130393a353463363a653031303a3a2f34342d3434203d3e20323134333132.roa (raw, json) Hash identifier: alxWCzgy00Vc03XX7FGaPk0N+ZCnvqe4AJjGe4j7trY= Subject key identifier: 5B:5C:42:9D:73:F4:78:7D:0A:97:B9:5A:B5:14:5B:5D:3C:FC:75:F2 Certificate issuer: /CN=1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40 Certificate serial: 349B20905B0EC7EB9A2DC5FD82C6FF06F7039E64 Authority key identifier: 1D:A3:1F:62:E9:7F:E6:A2:A3:8D:8F:39:84:FE:D6:E3:13:D1:BC:40 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653031303a3a2f34342d3434203d3e20323134333132.roa Signing time: Mon 09 Sep 2024 21:48:44 +0000 ROA not before: Mon 09 Sep 2024 21:43:44 +0000 ROA not after: Mon 08 Sep 2025 21:48:44 +0000 asID: 214312 IP address blocks: 2a09:54c6:e010::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.crl rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9b:20:90:5b:0e:c7:eb:9a:2d:c5:fd:82:c6:ff:06:f7:03:9e:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40 Validity Not Before: Sep 9 21:43:44 2024 GMT Not After : Sep 8 21:48:44 2025 GMT Subject: CN=5B5C429D73F4787D0A97B95AB5145B5D3CFC75F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c5:86:7f:6e:27:ff:97:02:ed:45:69:bd:19: 97:7b:78:06:e5:a0:9d:35:b8:52:5b:f7:32:a9:10: e3:8b:91:92:6e:dd:2f:2b:35:91:32:65:86:a0:ff: 4f:d3:c9:09:d9:12:17:f2:d1:b1:37:b9:c7:dc:c1: 0e:f5:19:5a:9d:7c:ce:71:1b:fe:08:e1:02:da:66: 15:86:69:ea:a4:3e:1e:6a:0c:f9:12:65:bf:fb:90: b3:d5:07:f7:2b:db:e2:53:9c:26:ff:43:fb:e1:e7: f7:79:7d:0c:61:fb:b0:4e:d9:44:fb:1d:27:d8:cc: 3d:b0:87:4e:68:29:3b:63:ae:96:f8:80:6d:aa:5b: 43:1a:1f:e7:95:55:7e:9a:77:d1:fb:cf:f4:29:ae: 53:01:df:a3:a6:38:bc:a0:0f:1d:da:2e:42:5b:07: fb:29:b8:c9:05:63:f2:08:9a:dd:ef:59:3b:d1:df: 1b:ff:e0:5f:c4:e4:67:cb:82:34:da:e5:0b:70:0d: 8d:9c:52:65:da:38:d1:eb:8c:cd:2b:9a:a0:74:ee: ac:b2:31:7a:7c:da:0b:bc:40:bb:62:b6:6b:24:ef: f5:01:5a:f0:ed:49:05:4a:4d:0e:4e:e3:fb:cb:b7: 7f:c3:4e:08:bf:73:c4:ca:be:bd:a2:0a:21:e7:ef: 29:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:5C:42:9D:73:F4:78:7D:0A:97:B9:5A:B5:14:5B:5D:3C:FC:75:F2 X509v3 Authority Key Identifier: keyid:1D:A3:1F:62:E9:7F:E6:A2:A3:8D:8F:39:84:FE:D6:E3:13:D1:BC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653031303a3a2f34342d3434203d3e20323134333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:e010::/44 Signature Algorithm: sha256WithRSAEncryption 6e:77:87:b3:3a:7a:e6:00:01:7a:fb:de:e3:db:b0:83:2f:9a: 9e:50:bd:74:65:ee:3a:fd:77:5e:6c:05:4b:7c:f1:4e:9b:2d: ef:f6:b2:ea:0f:e5:48:77:48:6f:68:74:8a:c9:b8:af:58:03: 50:4c:ed:90:65:e9:73:af:80:6c:28:6f:1e:f7:03:b7:98:9f: 6e:1e:3d:01:73:3a:4b:29:74:b6:03:52:12:ca:10:fe:04:82: e0:43:d1:50:47:e6:7a:e0:05:39:bc:a0:00:98:02:bb:0d:29: 10:a9:85:dd:95:f0:51:d5:13:44:d1:2a:e1:cc:13:39:1d:28: f2:53:23:07:81:48:ec:01:8f:1b:a9:10:8b:7b:e3:d7:a5:d6: f3:18:fd:b7:b0:a3:03:e0:17:fa:ff:a2:01:4b:68:64:3d:ab: 97:51:b7:be:e5:b0:63:92:64:55:c7:3b:e7:9a:cd:3c:91:86: 49:ec:81:ca:2f:13:5d:fa:dc:96:04:6e:fd:8f:83:e0:dc:96: 11:1d:71:55:cb:75:ac:59:32:95:34:55:59:b6:54:7f:95:af: df:2e:43:c4:62:cd:14:32:b0:d4:8f:eb:25:d8:04:dc:ec:e2: a0:fd:f7:2b:b1:d0:a3:f3:f5:74:dc:8c:a8:b2:bb:5f:b5:93: 46:69:5e:45 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUNJsgkFsOx+uaLcX9gsb/BvcDnmQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURBMzFGNjJFOTdGRTZBMkEzOEQ4RjM5ODRGRUQ2RTMx M0QxQkM0MDAeFw0yNDA5MDkyMTQzNDRaFw0yNTA5MDgyMTQ4NDRaMDMxMTAvBgNV BAMTKDVCNUM0MjlENzNGNDc4N0QwQTk3Qjk1QUI1MTQ1QjVEM0NGQzc1RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZxYZ/bif/lwLtRWm9GZd7eAbl oJ01uFJb9zKpEOOLkZJu3S8rNZEyZYag/0/TyQnZEhfy0bE3ucfcwQ71GVqdfM5x G/4I4QLaZhWGaeqkPh5qDPkSZb/7kLPVB/cr2+JTnCb/Q/vh5/d5fQxh+7BO2UT7 HSfYzD2wh05oKTtjrpb4gG2qW0MaH+eVVX6ad9H7z/QprlMB36OmOLygDx3aLkJb B/spuMkFY/IImt3vWTvR3xv/4F/E5GfLgjTa5QtwDY2cUmXaONHrjM0rmqB07qyy MXp82gu8QLtitmsk7/UBWvDtSQVKTQ5O4/vLt3/DTgi/c8TKvr2iCiHn7yk3AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUW1xCnXP0eH0Kl7latRRbXTz8dfIwHwYDVR0j BBgwFoAUHaMfYul/5qKjjY85hP7W4xPRvEAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTU2NjQ0M2ItZGZmNC00ZDEzLWJiODEtNzJjODYzMGQ2 ZGY2LzEvMURBMzFGNjJFOTdGRTZBMkEzOEQ4RjM5ODRGRUQ2RTMxM0QxQkM0MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC8xREEzMUY2MkU5N0ZFNkEyQTM4RDhGMzk4 NEZFRDZFMzEzRDFCQzQwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85NTY2NDQzYi1kZmY0LTRkMTMtYmI4MS03MmM4NjMwZDZkZjYvMS8zMjYxMzAz OTNhMzUzNDYzMzYzYTY1MzAzMTMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM0MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKglUxuAQMA0GCSqGSIb3DQEBCwUAA4IBAQBu d4ezOnrmAAF6+97j27CDL5qeUL10Ze46/XdebAVLfPFOmy3v9rLqD+VId0hvaHSK ybivWANQTO2QZelzr4BsKG8e9wO3mJ9uHj0BczpLKXS2A1ISyhD+BILgQ9FQR+Z6 4AU5vKAAmAK7DSkQqYXdlfBR1RNE0SrhzBM5HSjyUyMHgUjsAY8bqRCLe+PXpdbz GP23sKMD4Bf6/6IBS2hkPauXUbe+5bBjkmRVxzvnms08kYZJ7IHKLxNd+tyWBG79 j4Pg3JYRHXFVy3WsWTKVNFVZtlR/la/fLkPEYs0UMrDUj+sl2ATc7OKg/fcrsdCj 8/V03IyosrtftZNGaV5F -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org