$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: MVfYB+A9qNwZCvH/L1dZhh1kqpoWNKwbu822BdWjQ/0= Subject key identifier: 17:5D:A2:64:E3:DC:0D:D9:17:D7:14:FE:6C:CF:0D:F7:AB:FC:09:48 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 6817C10F1153936DA56072A288B48CD9EBE56146 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 05 Nov 2023 04:01:23 +0000 ROA not before: Sun 05 Nov 2023 03:56:23 +0000 ROA not after: Sun 03 Nov 2024 04:01:23 +0000 asID: 216089 IP address blocks: 2a07:54c7:4080::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 08 Jun 2024 11:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:17:c1:0f:11:53:93:6d:a5:60:72:a2:88:b4:8c:d9:eb:e5:61:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Nov 5 03:56:23 2023 GMT Not After : Nov 3 04:01:23 2024 GMT Subject: CN=175DA264E3DC0DD917D714FE6CCF0DF7ABFC0948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:94:0c:cf:21:cb:b7:b5:a7:12:15:a2:cf:97: 10:ba:86:c6:65:cc:e0:81:bd:f3:22:28:51:29:14: 0c:41:eb:32:29:5e:ad:81:c7:c1:65:84:06:66:c3: 4f:0d:db:47:01:2f:76:32:70:07:dd:c6:78:a4:51: 5a:4e:5b:d6:2a:2a:5a:02:9a:3e:6e:62:11:c1:6d: 5c:39:76:55:46:b3:54:31:6e:48:2e:d5:fe:d9:03: f1:d5:ec:3e:a6:b2:aa:42:2f:c3:ba:5d:b0:83:1e: 5b:7b:c3:e6:e4:c9:9d:ea:78:bb:f6:f5:21:41:bd: 2b:45:7b:a7:92:bb:e4:61:e9:6d:21:7e:be:7a:9c: fc:0c:88:f5:01:7b:ad:72:2d:45:2a:58:74:90:05: 75:16:3e:97:a9:20:dd:46:80:3f:2c:6b:87:9d:21: ef:02:1e:96:58:c1:1a:da:3c:1d:1c:c2:66:64:0f: db:8b:55:13:d0:4f:71:d1:0e:a9:4a:7b:1e:20:cd: 43:08:5a:09:10:97:87:73:6c:9c:05:cc:16:8d:03: ad:72:8a:8e:29:10:f4:d5:ca:4f:cf:03:65:c3:54: 64:13:2c:1b:95:5f:da:b3:49:8e:e0:2b:08:c3:96: d7:7c:f1:eb:08:34:40:bc:50:13:b3:23:2a:57:30: 9c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5D:A2:64:E3:DC:0D:D9:17:D7:14:FE:6C:CF:0D:F7:AB:FC:09:48 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4080::/42 Signature Algorithm: sha256WithRSAEncryption 7c:ad:fd:e4:cc:86:f7:9a:58:e7:2d:9c:ce:bf:36:bf:d8:91: ca:2c:4a:35:03:9d:51:11:77:8a:69:5e:16:9b:62:ce:23:28: 01:5a:c7:92:55:16:6d:e5:84:17:92:d4:f9:a6:a3:47:68:e1: 55:f5:f7:7c:21:ff:bc:8f:6e:6e:88:9d:45:cf:a2:96:78:4b: 78:17:f4:33:9a:b6:b7:78:64:88:eb:e7:0a:85:9f:30:ff:3d: ef:f1:5a:c7:c8:f7:3e:c1:76:2d:6a:53:11:48:41:29:83:04: 3e:ff:70:b6:4e:bf:df:4c:d3:8c:a1:d7:4a:99:0b:20:1a:d4: 92:29:81:e0:3e:3f:c4:61:0a:e7:59:63:61:20:f2:7e:82:87: e5:65:58:e7:d0:a4:8c:16:dd:e9:a2:05:a4:f7:b0:7a:ae:27: bb:0b:8c:03:de:c8:16:fd:7d:4c:40:4a:d3:d7:2f:56:df:ab: 5a:6c:76:c0:36:98:9f:c3:3c:56:b7:0b:00:c3:d6:72:54:e2: 03:11:4a:c8:4e:0e:10:4b:32:16:3f:1a:2e:3d:de:8f:03:9c: 0f:1e:ba:8d:3e:90:fc:07:28:fc:bd:6a:60:9b:f3:45:f6:9a: 0f:24:e8:55:a4:ef:53:22:7b:39:9c:8c:2a:c4:ad:87:e5:98: bc:96:94:48 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUaBfBDxFTk22lYHKiiLSM2evlYUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yMzExMDUwMzU2MjNaFw0yNDExMDMwNDAxMjNaMDMxMTAvBgNV BAMTKDE3NURBMjY0RTNEQzBERDkxN0Q3MTRGRTZDQ0YwREY3QUJGQzA5NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJlAzPIcu3tacSFaLPlxC6hsZl zOCBvfMiKFEpFAxB6zIpXq2Bx8FlhAZmw08N20cBL3YycAfdxnikUVpOW9YqKloC mj5uYhHBbVw5dlVGs1Qxbkgu1f7ZA/HV7D6msqpCL8O6XbCDHlt7w+bkyZ3qeLv2 9SFBvStFe6eSu+Rh6W0hfr56nPwMiPUBe61yLUUqWHSQBXUWPpepIN1GgD8sa4ed Ie8CHpZYwRraPB0cwmZkD9uLVRPQT3HRDqlKex4gzUMIWgkQl4dzbJwFzBaNA61y io4pEPTVyk/PA2XDVGQTLBuVX9qzSY7gKwjDltd88esINEC8UBOzIypXMJzfAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUF12iZOPcDdkX1xT+bM8N96v8CUgwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzAzODMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0CAMA0GCSqGSIb3DQEBCwUAA4IBAQB8 rf3kzIb3mljnLZzOvza/2JHKLEo1A51REXeKaV4Wm2LOIygBWseSVRZt5YQXktT5 pqNHaOFV9fd8If+8j25uiJ1Fz6KWeEt4F/Qzmra3eGSI6+cKhZ8w/z3v8VrHyPc+ wXYtalMRSEEpgwQ+/3C2Tr/fTNOModdKmQsgGtSSKYHgPj/EYQrnWWNhIPJ+gofl ZVjn0KSMFt3pogWk97B6rie7C4wD3sgW/X1MQErT1y9W36tabHbANpifwzxWtwsA w9ZyVOIDEUrITg4QSzIWPxouPd6PA5wPHrqNPpD8Byj8vWpgm/NF9poPJOhVpO9T Ins5nIwqxK2H5Zi8lpRI -----END CERTIFICATE-----Generated at Fri Jun 7 18:16:41 2024 by rpki-client on console-ams.rpki-client.org