$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343034303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343034303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: qPVhlGUPjHIOWP/5yRh1nX5yknvRUgXVZrwqIGwcG6o= Subject key identifier: 97:95:1D:14:85:85:A0:43:58:D9:87:6E:F4:09:DB:8C:02:B3:CC:29 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 53F565A262AC12234AAC2E7D26008B1C7EDDBACB Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343034303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 06 Oct 2024 04:42:55 +0000 ROA not before: Sun 06 Oct 2024 04:37:55 +0000 ROA not after: Sun 05 Oct 2025 04:42:55 +0000 asID: 216089 IP address blocks: 2a07:54c7:4040::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:f5:65:a2:62:ac:12:23:4a:ac:2e:7d:26:00:8b:1c:7e:dd:ba:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Oct 6 04:37:55 2024 GMT Not After : Oct 5 04:42:55 2025 GMT Subject: CN=97951D148585A04358D9876EF409DB8C02B3CC29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:97:6d:e8:59:80:a4:63:4d:4d:cb:fa:cd: 89:f8:62:4a:66:32:43:48:60:24:81:81:d6:a7:66: a5:74:f0:8b:36:e1:3d:b5:c5:92:6d:5c:28:a2:70: 75:1f:7d:b0:c7:a5:fe:f3:5a:90:63:db:8d:95:8f: 22:0a:4c:02:d3:41:a4:be:95:48:0d:c6:f2:02:3d: 55:1c:21:2a:e4:1b:70:26:23:ba:bf:78:15:1f:af: 49:ac:8e:5c:45:0a:9c:37:c2:e2:cb:67:6e:7c:09: b7:c9:9d:d7:8a:a4:06:bc:85:6b:39:63:0f:b6:fb: 28:e2:9c:cb:9a:a5:6a:a3:99:14:aa:6e:ad:34:b7: ce:91:2b:f7:60:51:cf:5e:93:18:7e:82:fc:6d:3c: da:33:72:58:de:f0:5c:e8:ef:cf:6f:e5:f5:5f:87: 29:f7:56:4e:68:bc:ff:f1:b5:3c:5a:e7:7b:11:7a: 56:fe:9d:55:8f:e6:ea:29:e8:98:96:42:2e:32:ae: 17:d8:47:bd:08:31:83:09:2e:5c:de:4e:f9:fb:d5: 3d:2d:fc:9e:64:ec:a6:6b:86:b6:04:b1:6b:c1:87: ab:81:2f:34:43:82:ac:4f:30:73:e8:50:3d:31:73: c3:b0:f0:3e:ab:26:a3:fb:36:f3:7a:7f:d0:2f:e5: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:95:1D:14:85:85:A0:43:58:D9:87:6E:F4:09:DB:8C:02:B3:CC:29 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343034303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4040::/42 Signature Algorithm: sha256WithRSAEncryption 31:d0:65:5f:be:8c:85:25:9d:99:b5:fb:10:bf:60:60:8c:fa: 3f:b5:1c:f3:55:53:ef:ed:6d:89:75:a2:0c:cd:17:77:15:f3: 4a:55:66:8e:df:d8:90:93:cf:0d:f7:bb:b3:bb:93:57:9b:78: ce:e1:a5:37:c0:b3:7e:c8:81:a9:fd:b9:f2:15:d9:ee:d1:43: c4:e1:1f:3a:1c:7b:2b:f6:c5:7a:3b:2e:2a:ce:6f:0a:f7:db: 52:be:32:a1:12:a5:31:d7:57:08:c8:61:9e:23:64:04:98:a9: ff:f6:93:64:b9:a9:32:93:c3:a3:ba:1b:5f:d2:0e:bc:03:7e: d6:ca:d9:9d:0b:fb:96:ff:16:8e:50:b2:d3:7e:86:01:07:58: 96:46:45:7e:5f:d3:63:9c:df:9f:b0:16:c7:5d:1d:f8:8d:a1: 70:66:a2:a6:37:01:ab:44:70:5a:9b:31:1f:80:18:0a:ee:0c: e7:87:39:c2:fa:98:08:78:3f:79:06:1f:ea:5e:c1:31:d6:22: 75:f4:55:9e:68:1c:80:d4:f9:c4:01:46:11:c6:cc:0a:a0:4c: cb:d5:99:41:d6:9a:2a:76:f3:d2:bb:7c:e5:ed:08:a3:3f:9d: fd:1e:c0:6d:83:98:aa:5a:90:cd:7c:99:fb:ed:8e:0b:c1:e6: d7:99:77:16 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUU/VlomKsEiNKrC59JgCLHH7dusswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yNDEwMDYwNDM3NTVaFw0yNTEwMDUwNDQyNTVaMDMxMTAvBgNV BAMTKDk3OTUxRDE0ODU4NUEwNDM1OEQ5ODc2RUY0MDlEQjhDMDJCM0NDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQLpdt6FmApGNNTcv6zYn4Ykpm MkNIYCSBgdanZqV08Is24T21xZJtXCiicHUffbDHpf7zWpBj242VjyIKTALTQaS+ lUgNxvICPVUcISrkG3AmI7q/eBUfr0msjlxFCpw3wuLLZ258CbfJndeKpAa8hWs5 Yw+2+yjinMuapWqjmRSqbq00t86RK/dgUc9ekxh+gvxtPNozclje8Fzo789v5fVf hyn3Vk5ovP/xtTxa53sRelb+nVWP5uop6JiWQi4yrhfYR70IMYMJLlzeTvn71T0t /J5k7KZrhrYEsWvBh6uBLzRDgqxPMHPoUD0xc8Ow8D6rJqP7NvN6f9Av5Wy7AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUl5UdFIWFoENY2Ydu9AnbjAKzzCkwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzAzNDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0BAMA0GCSqGSIb3DQEBCwUAA4IBAQAx 0GVfvoyFJZ2ZtfsQv2BgjPo/tRzzVVPv7W2JdaIMzRd3FfNKVWaO39iQk88N97uz u5NXm3jO4aU3wLN+yIGp/bnyFdnu0UPE4R86HHsr9sV6Oy4qzm8K99tSvjKhEqUx 11cIyGGeI2QEmKn/9pNkuakyk8Ojuhtf0g68A37WytmdC/uW/xaOULLTfoYBB1iW RkV+X9NjnN+fsBbHXR34jaFwZqKmNwGrRHBamzEfgBgK7gznhznC+pgIeD95Bh/q XsEx1iJ19FWeaByA1PnEAUYRxswKoEzL1ZlB1poqdvPSu3zl7QijP539HsBtg5iq WpDNfJn77Y4LwebXmXcW -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:50 2024 by rpki-client on console-fra.rpki-client.org