$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: dr3ji63XD+oWk6cRBemGYJyGc/2BAsrYFzshGDdgAQk= Subject key identifier: ED:DF:23:8D:79:1F:92:5A:D9:5F:FF:39:4F:B9:75:FD:55:0E:03:A0 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 0B680534885A0C6519F2C2F10611F43E4A696DA8 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 06 Oct 2024 04:42:55 +0000 ROA not before: Sun 06 Oct 2024 04:37:55 +0000 ROA not after: Sun 05 Oct 2025 04:42:55 +0000 asID: 216089 IP address blocks: 2a07:54c7:4000::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:68:05:34:88:5a:0c:65:19:f2:c2:f1:06:11:f4:3e:4a:69:6d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Oct 6 04:37:55 2024 GMT Not After : Oct 5 04:42:55 2025 GMT Subject: CN=EDDF238D791F925AD95FFF394FB975FD550E03A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:16:14:a3:98:72:83:fe:f2:00:8b:94:d2:6b: 79:92:82:72:65:4c:df:a4:7b:df:7c:f3:a3:69:d7: 82:f3:23:9a:5e:70:fa:cf:a4:f9:a4:d1:42:33:17: a1:85:73:2f:be:a2:b3:80:36:41:01:b5:8b:b5:c7: 44:1a:7c:d9:d8:a9:66:2c:e5:19:19:49:67:7a:49: 07:f5:e3:c5:2d:81:e0:05:88:cb:a3:a3:2c:47:42: 60:2a:5a:76:5e:f5:30:2b:1d:26:68:00:ed:12:14: 51:df:09:c4:02:6b:e3:45:a7:b8:17:22:0e:2b:cc: 10:6c:e9:aa:a6:00:b1:5a:99:9e:02:f3:6a:6c:17: 3d:18:49:15:df:b3:b4:f4:bc:b6:5e:ff:91:b7:3f: fe:24:3a:fa:27:3c:45:ea:32:b3:b0:ac:4b:07:06: 0f:f9:9a:e7:b8:0a:8b:29:72:34:01:d3:52:a4:0f: 69:6b:5a:72:ff:97:b7:c0:b4:4f:3d:78:78:04:71: fe:fc:ec:04:a8:b8:a8:c0:8f:7c:11:f5:4e:20:c7: e5:33:68:6a:0e:da:f5:ea:45:bb:03:b2:0e:1a:61: 4f:f0:ad:56:f7:37:b5:a0:71:10:3d:50:46:7f:33: b4:8b:95:d1:a9:e9:b0:3e:a6:c3:4c:cb:a3:23:5e: cb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DF:23:8D:79:1F:92:5A:D9:5F:FF:39:4F:B9:75:FD:55:0E:03:A0 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4000::/42 Signature Algorithm: sha256WithRSAEncryption 6f:27:2b:5d:92:4b:0d:e5:dc:6c:fd:ff:5b:5e:54:40:d5:65: f8:e8:e7:c9:c4:c8:58:4b:aa:b5:8c:0e:cf:2b:c5:49:78:f0: d2:bb:de:f0:a6:19:20:32:39:5b:db:9a:1a:bb:4e:9b:ee:48: 11:55:55:16:cc:08:64:aa:a4:53:9a:19:bb:1d:04:62:4b:7d: 25:d9:47:88:cf:67:73:20:fb:63:b8:3b:5c:cb:dd:7c:62:d2: 32:46:80:86:d9:41:f2:19:78:7c:ae:e2:c9:02:d9:e9:e2:ce: 4e:9c:59:30:bc:81:a3:0a:ee:be:47:42:8d:21:80:d6:77:65: 05:53:a7:75:80:6a:5a:a0:4e:07:1e:4d:e0:de:46:02:ff:5a: c3:db:54:20:d4:62:25:20:82:bb:64:4b:5d:62:0d:99:2c:cf: 6a:b7:e2:bd:4f:e0:5e:f8:2d:57:a3:a6:0a:ba:6d:16:53:cc: 92:22:0a:97:01:05:36:1e:64:70:82:3b:a5:99:79:01:86:e0: 83:cf:b6:ed:4a:bd:ac:43:e4:3f:6f:d6:3a:81:49:57:df:0e: 31:53:42:31:a2:e0:da:6c:e9:69:61:29:f0:0f:56:4d:20:eb: 6b:9d:01:96:58:62:72:51:7d:ab:27:e1:b2:02:62:24:a7:ac: 2b:73:0c:38 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUC2gFNIhaDGUZ8sLxBhH0PkppbagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yNDEwMDYwNDM3NTVaFw0yNTEwMDUwNDQyNTVaMDMxMTAvBgNV BAMTKEVEREYyMzhENzkxRjkyNUFEOTVGRkYzOTRGQjk3NUZENTUwRTAzQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxFhSjmHKD/vIAi5TSa3mSgnJl TN+ke99886Np14LzI5pecPrPpPmk0UIzF6GFcy++orOANkEBtYu1x0QafNnYqWYs 5RkZSWd6SQf148UtgeAFiMujoyxHQmAqWnZe9TArHSZoAO0SFFHfCcQCa+NFp7gX Ig4rzBBs6aqmALFamZ4C82psFz0YSRXfs7T0vLZe/5G3P/4kOvonPEXqMrOwrEsH Bg/5mue4CospcjQB01KkD2lrWnL/l7fAtE89eHgEcf787ASouKjAj3wR9U4gx+Uz aGoO2vXqRbsDsg4aYU/wrVb3N7WgcRA9UEZ/M7SLldGp6bA+psNMy6MjXssvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU7d8jjXkfklrZX/85T7l1/VUOA6AwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzAzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0AAMA0GCSqGSIb3DQEBCwUAA4IBAQBv JytdkksN5dxs/f9bXlRA1WX46OfJxMhYS6q1jA7PK8VJePDSu97wphkgMjlb25oa u06b7kgRVVUWzAhkqqRTmhm7HQRiS30l2UeIz2dzIPtjuDtcy918YtIyRoCG2UHy GXh8ruLJAtnp4s5OnFkwvIGjCu6+R0KNIYDWd2UFU6d1gGpaoE4HHk3g3kYC/1rD 21Qg1GIlIIK7ZEtdYg2ZLM9qt+K9T+Be+C1Xo6YKum0WU8ySIgqXAQU2HmRwgjul mXkBhuCDz7btSr2sQ+Q/b9Y6gUlX3w4xU0IxouDabOlpYSnwD1ZNIOtrnQGWWGJy UX2rJ+GyAmIkp6wrcww4 -----END CERTIFICATE-----Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org