$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653033303a3a2f34342d3434203d3e20323134333132.roa File: 326130393a353463363a653033303a3a2f34342d3434203d3e20323134333132.roa (raw, json) Hash identifier: OMLxawB1xmOwyYzzaxrzvsbpaF4yCrkAPYh03b8qAjc= Subject key identifier: C1:7B:96:88:76:EB:DA:8C:21:29:84:5D:8E:1D:E6:BD:C6:F0:50:06 Certificate issuer: /CN=1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40 Certificate serial: 2FE7FFF8C75607E91CC61FB76102730AA11D4F50 Authority key identifier: 1D:A3:1F:62:E9:7F:E6:A2:A3:8D:8F:39:84:FE:D6:E3:13:D1:BC:40 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653033303a3a2f34342d3434203d3e20323134333132.roa Signing time: Wed 11 Sep 2024 23:07:40 +0000 ROA not before: Wed 11 Sep 2024 23:02:40 +0000 ROA not after: Wed 10 Sep 2025 23:07:40 +0000 asID: 214312 IP address blocks: 2a09:54c6:e030::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.crl rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:e7:ff:f8:c7:56:07:e9:1c:c6:1f:b7:61:02:73:0a:a1:1d:4f:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40 Validity Not Before: Sep 11 23:02:40 2024 GMT Not After : Sep 10 23:07:40 2025 GMT Subject: CN=C17B968876EBDA8C2129845D8E1DE6BDC6F05006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bd:c0:f0:d0:4a:bf:6a:97:02:88:39:ba:a2: fa:d1:95:90:c1:6f:28:94:14:bb:60:54:9c:76:25: b2:0b:36:64:6c:2c:61:20:7e:01:1b:82:f3:c2:84: 18:68:77:7a:09:47:c6:a4:c8:63:07:04:82:01:a6: ae:d8:bf:f3:69:17:0d:c7:83:5a:9c:1f:5a:aa:7a: ff:03:be:5a:45:a6:87:e2:91:04:da:df:9e:7f:54: cb:5b:17:9c:b5:ef:52:82:7a:e0:16:cb:21:88:e4: c5:d3:63:49:8f:4e:4e:ca:8e:f1:43:4c:fb:e3:1b: 5f:4c:41:ec:d8:10:29:b1:e0:2a:1b:25:81:c9:f7: f2:a0:ce:89:b3:3e:b6:f3:2b:6b:b7:d7:2c:ad:45: 90:54:ea:00:c3:74:de:2a:c0:38:29:59:88:70:c1: 74:55:2a:ad:b9:53:3e:30:1a:c1:5c:d1:72:d6:8c: 42:64:38:37:a7:f0:b2:ce:5a:1f:cf:e0:d8:95:73: 58:fe:72:aa:fe:9b:93:22:19:62:8d:d5:8c:a8:af: db:81:df:07:45:80:76:58:ed:a9:54:82:19:56:c5: e3:d4:6b:0d:20:5e:05:27:6e:71:cc:2e:c1:c8:77: ec:ce:3b:fa:5b:79:d1:e7:a7:c0:1a:98:13:56:a6: 25:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7B:96:88:76:EB:DA:8C:21:29:84:5D:8E:1D:E6:BD:C6:F0:50:06 X509v3 Authority Key Identifier: keyid:1D:A3:1F:62:E9:7F:E6:A2:A3:8D:8F:39:84:FE:D6:E3:13:D1:BC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1DA31F62E97FE6A2A38D8F3984FED6E313D1BC40.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9566443b-dff4-4d13-bb81-72c8630d6df6/1/326130393a353463363a653033303a3a2f34342d3434203d3e20323134333132.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a09:54c6:e030::/44 Signature Algorithm: sha256WithRSAEncryption 34:df:3b:7f:9c:d0:fc:1e:9d:b8:44:52:4a:fb:92:5a:70:40: bf:c7:c8:d8:e9:13:bb:ce:ef:7b:72:02:f8:dc:8a:51:15:0b: b6:b4:60:7a:02:02:5b:08:b0:a8:75:06:5e:21:9a:a9:2b:11: 48:d9:57:7d:9a:72:ed:13:29:ae:51:69:c1:b8:11:c8:31:26: 48:7d:55:b9:07:aa:fa:fc:bd:e3:35:d5:83:a5:da:b5:6b:87: 78:cc:11:48:75:5c:78:85:fe:7e:bb:88:c2:65:b3:cf:c7:21: 8c:70:14:83:c7:54:58:bd:d4:1f:30:4b:0f:f1:96:a8:cf:a3: a4:2c:6e:74:dd:19:75:b6:de:0b:88:c3:81:c8:3c:aa:69:cf: 33:c0:4f:ed:8e:6d:a5:26:48:f1:e3:82:92:56:b5:49:3a:e5: 3e:27:84:f7:ba:b8:78:38:95:a1:e2:0e:5e:cf:de:ca:40:f9: 7f:0f:a2:66:ca:8e:ce:36:5a:ee:11:b7:05:a9:27:09:fe:e8: 52:6e:94:c9:09:89:a2:ae:a6:34:56:28:89:41:e2:52:82:de: 4b:04:d4:51:4a:b8:90:c4:bb:4f:00:96:d1:85:6c:b3:e4:7f: 83:23:aa:a9:8a:20:c4:a8:44:5c:e2:da:ed:25:4b:52:79:0f: 11:31:ee:f4 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUL+f/+MdWB+kcxh+3YQJzCqEdT1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMURBMzFGNjJFOTdGRTZBMkEzOEQ4RjM5ODRGRUQ2RTMx M0QxQkM0MDAeFw0yNDA5MTEyMzAyNDBaFw0yNTA5MTAyMzA3NDBaMDMxMTAvBgNV BAMTKEMxN0I5Njg4NzZFQkRBOEMyMTI5ODQ1RDhFMURFNkJEQzZGMDUwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDvcDw0Eq/apcCiDm6ovrRlZDB byiUFLtgVJx2JbILNmRsLGEgfgEbgvPChBhod3oJR8akyGMHBIIBpq7Yv/NpFw3H g1qcH1qqev8DvlpFpofikQTa355/VMtbF5y171KCeuAWyyGI5MXTY0mPTk7KjvFD TPvjG19MQezYECmx4CobJYHJ9/KgzomzPrbzK2u31yytRZBU6gDDdN4qwDgpWYhw wXRVKq25Uz4wGsFc0XLWjEJkODen8LLOWh/P4NiVc1j+cqr+m5MiGWKN1Yyor9uB 3wdFgHZY7alUghlWxePUaw0gXgUnbnHMLsHId+zOO/pbedHnp8AamBNWpiUpAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUwXuWiHbr2owhKYRdjh3mvcbwUAYwHwYDVR0j BBgwFoAUHaMfYul/5qKjjY85hP7W4xPRvEAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOTU2NjQ0M2ItZGZmNC00ZDEzLWJiODEtNzJjODYzMGQ2 ZGY2LzEvMURBMzFGNjJFOTdGRTZBMkEzOEQ4RjM5ODRGRUQ2RTMxM0QxQkM0MC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC8xREEzMUY2MkU5N0ZFNkEyQTM4RDhGMzk4 NEZFRDZFMzEzRDFCQzQwLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS85NTY2NDQzYi1kZmY0LTRkMTMtYmI4MS03MmM4NjMwZDZkZjYvMS8zMjYxMzAz OTNhMzUzNDYzMzYzYTY1MzAzMzMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM0MzMzMTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKglUxuAwMA0GCSqGSIb3DQEBCwUAA4IBAQA0 3zt/nND8Hp24RFJK+5JacEC/x8jY6RO7zu97cgL43IpRFQu2tGB6AgJbCLCodQZe IZqpKxFI2Vd9mnLtEymuUWnBuBHIMSZIfVW5B6r6/L3jNdWDpdq1a4d4zBFIdVx4 hf5+u4jCZbPPxyGMcBSDx1RYvdQfMEsP8Zaoz6OkLG503Rl1tt4LiMOByDyqac8z wE/tjm2lJkjx44KSVrVJOuU+J4T3urh4OJWh4g5ez97KQPl/D6Jmyo7ONlruEbcF qScJ/uhSbpTJCYmirqY0ViiJQeJSgt5LBNRRSriQxLtPAJbRhWyz5H+DI6qpiiDE qERc4trtJUtSeQ8RMe70 -----END CERTIFICATE-----Generated at Thu Sep 19 10:53:22 2024 by rpki-client on console-fra.rpki-client.org