$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: ArdkIfiBJGccdrCL4mekpC9PSP+RZzB4l9GNS6UuwLA= Subject key identifier: 0A:12:7F:EA:BA:8F:51:CE:15:69:11:79:9F:CE:DB:9E:62:BA:24:B6 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 37B7AE2B0F64044F1CFCC7F3F09ACA9FEC6C2260 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 05 Nov 2023 04:00:37 +0000 ROA not before: Sun 05 Nov 2023 03:55:37 +0000 ROA not after: Sun 03 Nov 2024 04:00:37 +0000 asID: 216089 IP address blocks: 2a07:54c7:4000::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 08 Jun 2024 11:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:b7:ae:2b:0f:64:04:4f:1c:fc:c7:f3:f0:9a:ca:9f:ec:6c:22:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Nov 5 03:55:37 2023 GMT Not After : Nov 3 04:00:37 2024 GMT Subject: CN=0A127FEABA8F51CE156911799FCEDB9E62BA24B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fa:78:fd:ee:55:ea:cc:f2:53:46:6c:05:82: 99:81:d8:0f:62:71:88:55:28:61:80:6a:63:7b:6a: 00:4c:19:77:78:61:20:6a:49:d4:77:98:9b:0b:3a: de:f1:d4:df:22:f5:7e:d8:f4:41:0a:bd:4b:77:1a: 5d:e7:e9:2b:ec:d5:f4:06:a4:59:76:f2:1b:09:c3: 5c:a7:12:cb:b7:16:3f:9c:2c:58:94:70:b3:d8:b3: 93:ac:b0:a8:c0:e1:e8:72:b9:37:9a:df:2d:ce:77: 8e:dc:ba:5b:b5:0e:e2:9d:67:c7:48:45:4b:a6:51: 08:68:30:e9:c1:1a:71:26:38:d1:99:51:dc:43:d9: d5:a7:51:20:7f:af:00:94:6f:7d:d8:cc:2a:09:c4: aa:bc:ed:9b:eb:60:95:e0:ec:ed:8a:2c:b2:b5:56: 9b:76:13:4c:fc:1b:3d:24:f4:80:21:58:4a:19:b7: 71:7f:e5:5d:44:91:89:1a:0b:3f:9b:d3:98:29:27: 37:23:8f:26:a4:31:4e:73:af:1d:8e:ee:c8:fc:e3: e4:59:62:fe:87:7e:8c:79:98:f2:ac:82:83:ff:64: d4:41:aa:a1:9a:d6:2b:1c:ca:a1:89:ac:76:2d:e7: d7:e4:1b:2b:98:4f:86:3c:68:d5:63:96:d6:96:e2: 4c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:12:7F:EA:BA:8F:51:CE:15:69:11:79:9F:CE:DB:9E:62:BA:24:B6 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343030303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4000::/42 Signature Algorithm: sha256WithRSAEncryption a4:03:28:84:9d:a5:2a:18:28:75:3f:69:da:06:6b:07:8c:8f: 4e:6b:99:bb:38:24:e3:44:d8:20:da:a5:a0:29:c4:03:2b:16: cc:1d:bc:3b:bd:92:59:8d:79:d6:44:1e:7b:cf:ff:d1:e6:4f: ef:12:95:2b:35:cd:c7:44:52:72:ec:73:e5:91:e3:29:c5:79: be:81:a6:ee:34:da:2c:54:f0:5c:35:78:bf:f7:32:7a:4f:60: ba:83:84:a9:b8:e9:1d:dd:3c:d6:a2:c7:29:94:65:9a:d6:a6: ff:1b:01:e1:1d:fc:25:13:9e:fe:82:98:be:fa:ed:7d:67:5a: b6:2a:f2:d6:7a:e5:49:b2:88:4f:54:e1:d1:5e:98:35:35:ac: 24:b6:b4:0c:ff:8b:f9:ed:d2:ff:e8:1b:5c:3a:57:ad:9b:90: 9d:1c:f9:0e:5b:a8:07:ed:f0:e4:f2:42:f9:e1:ea:75:57:33: 1e:00:bc:8e:ec:6a:0a:f3:99:7d:b9:71:b3:ca:3e:fd:07:66: 7c:6c:28:0a:15:df:87:b2:a4:63:59:f6:68:f8:80:da:42:01: fb:c4:d1:e8:12:1a:6e:44:14:c6:47:d0:67:cb:f7:0e:6f:09: 91:78:c8:3a:1f:e4:35:67:13:50:ed:a8:d5:5a:69:22:3c:b0: d3:0e:3c:44 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUN7euKw9kBE8c/Mfz8JrKn+xsImAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yMzExMDUwMzU1MzdaFw0yNDExMDMwNDAwMzdaMDMxMTAvBgNV BAMTKDBBMTI3RkVBQkE4RjUxQ0UxNTY5MTE3OTlGQ0VEQjlFNjJCQTI0QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ+nj97lXqzPJTRmwFgpmB2A9i cYhVKGGAamN7agBMGXd4YSBqSdR3mJsLOt7x1N8i9X7Y9EEKvUt3Gl3n6Svs1fQG pFl28hsJw1ynEsu3Fj+cLFiUcLPYs5OssKjA4ehyuTea3y3Od47culu1DuKdZ8dI RUumUQhoMOnBGnEmONGZUdxD2dWnUSB/rwCUb33YzCoJxKq87ZvrYJXg7O2KLLK1 Vpt2E0z8Gz0k9IAhWEoZt3F/5V1EkYkaCz+b05gpJzcjjyakMU5zrx2O7sj84+RZ Yv6Hfox5mPKsgoP/ZNRBqqGa1iscyqGJrHYt59fkGyuYT4Y8aNVjltaW4kx5AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUChJ/6rqPUc4VaRF5n87bnmK6JLYwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzAzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0AAMA0GCSqGSIb3DQEBCwUAA4IBAQCk AyiEnaUqGCh1P2naBmsHjI9Oa5m7OCTjRNgg2qWgKcQDKxbMHbw7vZJZjXnWRB57 z//R5k/vEpUrNc3HRFJy7HPlkeMpxXm+gabuNNosVPBcNXi/9zJ6T2C6g4SpuOkd 3TzWoscplGWa1qb/GwHhHfwlE57+gpi++u19Z1q2KvLWeuVJsohPVOHRXpg1Nawk trQM/4v57dL/6BtcOletm5CdHPkOW6gH7fDk8kL54ep1VzMeALyO7GoK85l9uXGz yj79B2Z8bCgKFd+HsqRjWfZo+IDaQgH7xNHoEhpuRBTGR9Bny/cObwmReMg6H+Q1 ZxNQ7ajVWmkiPLDTDjxE -----END CERTIFICATE-----Generated at Fri Jun 7 18:16:41 2024 by rpki-client on console-ams.rpki-client.org