$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: PSK/VnPkC0Wx84ZfxyLpC5q9DAlNnqbxnoS1F86zKXo= Subject key identifier: 11:FD:F8:01:61:1E:8E:70:75:1A:92:E8:5F:36:B9:85:3C:AD:EE:CC Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 634A3207928EFEA8A1F4A00B109AE792418B9E4D Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 06 Oct 2024 04:42:55 +0000 ROA not before: Sun 06 Oct 2024 04:37:55 +0000 ROA not after: Sun 05 Oct 2025 04:42:55 +0000 asID: 216089 IP address blocks: 2a07:54c7:4080::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:4a:32:07:92:8e:fe:a8:a1:f4:a0:0b:10:9a:e7:92:41:8b:9e:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Oct 6 04:37:55 2024 GMT Not After : Oct 5 04:42:55 2025 GMT Subject: CN=11FDF801611E8E70751A92E85F36B9853CADEECC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:73:01:64:af:b3:ca:5d:53:0f:53:36:6b: 79:0e:53:7e:b0:51:df:b0:67:1d:38:15:41:72:ec: 5e:90:aa:a9:e0:e5:d8:7d:64:55:30:08:75:bd:f3: 67:d3:c0:fc:3a:54:22:1c:df:cf:f7:f5:e6:27:ef: c4:62:5b:b8:b1:d2:13:e6:96:2c:ae:52:de:f5:b5: 64:0b:d5:20:bc:7c:34:3e:33:90:a6:84:f2:83:8a: 84:96:b7:09:60:43:d0:78:7e:47:b6:24:c6:a5:34: 6a:29:7b:1f:51:95:62:08:47:11:3b:21:c8:a8:9f: bc:b5:84:3e:3b:60:01:44:94:05:0d:e1:c3:aa:38: c5:2a:f8:5e:5b:01:4b:06:91:a2:7a:e5:4d:0a:97: dc:67:b4:6f:27:1a:ba:69:d9:7c:3c:8d:20:e9:97: 27:21:63:48:52:5f:38:f9:2a:e7:cf:a8:f1:91:ed: d6:42:04:92:40:ba:62:f5:ad:8b:97:bd:c4:c2:d7: 68:74:92:19:00:b5:78:f9:5d:bb:16:1c:3c:fb:87: 0c:13:74:6c:e5:5f:ea:3d:05:cd:72:af:76:65:15: 81:2e:5b:08:16:31:d1:01:fd:aa:df:9c:b9:ac:6a: 77:10:07:b7:6f:be:57:f6:85:df:a2:b8:ec:8e:79: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FD:F8:01:61:1E:8E:70:75:1A:92:E8:5F:36:B9:85:3C:AD:EE:CC X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343038303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4080::/42 Signature Algorithm: sha256WithRSAEncryption c1:30:44:53:2b:b1:ea:25:76:5d:0a:12:6d:5d:a9:de:47:22: 0a:0b:61:8a:7a:be:5e:8c:6d:c5:3c:1a:00:52:de:9b:49:a9: 50:1b:12:73:58:ec:99:08:4d:f1:82:eb:ab:47:ff:c1:f1:ce: 8c:c1:1a:71:ec:d9:72:0c:af:ea:6f:7d:e6:2c:35:46:df:14: 72:cd:d5:a0:a6:65:33:fa:d6:fe:bf:11:f3:5e:14:04:f3:92: 31:88:b6:94:1f:72:49:6f:8b:1a:8d:c5:7a:05:38:79:35:0e: 4e:1a:0c:2a:3b:37:52:22:c9:a7:50:ac:66:26:0a:db:37:c5: 4e:42:16:51:39:45:bc:36:01:63:b2:ad:15:8d:c8:36:05:e7: 6c:7e:aa:94:34:d6:98:3f:7f:49:0a:74:bd:61:9f:82:c7:87: 3d:d4:a3:a9:45:97:50:7d:f8:0e:53:30:4e:e7:e9:6c:71:7e: 27:db:46:18:f0:61:44:9d:dc:d2:fe:be:bb:c3:e5:34:6f:26: 08:53:b0:fe:2a:01:92:c5:8b:43:01:70:d3:b3:72:25:02:5c: da:a5:83:18:a6:e8:a7:9e:0d:01:ac:a9:2e:41:8e:df:46:6a: f2:89:34:6d:b8:d7:62:8f:42:9e:4e:16:2a:2c:c8:61:d3:76: f6:75:72:af -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUY0oyB5KO/qih9KALEJrnkkGLnk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yNDEwMDYwNDM3NTVaFw0yNTEwMDUwNDQyNTVaMDMxMTAvBgNV BAMTKDExRkRGODAxNjExRThFNzA3NTFBOTJFODVGMzZCOTg1M0NBREVFQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6v3MBZK+zyl1TD1M2a3kOU36w Ud+wZx04FUFy7F6Qqqng5dh9ZFUwCHW982fTwPw6VCIc38/39eYn78RiW7ix0hPm liyuUt71tWQL1SC8fDQ+M5CmhPKDioSWtwlgQ9B4fke2JMalNGopex9RlWIIRxE7 Icion7y1hD47YAFElAUN4cOqOMUq+F5bAUsGkaJ65U0Kl9xntG8nGrpp2Xw8jSDp lychY0hSXzj5KufPqPGR7dZCBJJAumL1rYuXvcTC12h0khkAtXj5XbsWHDz7hwwT dGzlX+o9Bc1yr3ZlFYEuWwgWMdEB/arfnLmsancQB7dvvlf2hd+iuOyOeZhLAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUEf34AWEejnB1GpLoXza5hTyt7swwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzAzODMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0CAMA0GCSqGSIb3DQEBCwUAA4IBAQDB MERTK7HqJXZdChJtXaneRyIKC2GKer5ejG3FPBoAUt6bSalQGxJzWOyZCE3xguur R//B8c6MwRpx7NlyDK/qb33mLDVG3xRyzdWgpmUz+tb+vxHzXhQE85IxiLaUH3JJ b4sajcV6BTh5NQ5OGgwqOzdSIsmnUKxmJgrbN8VOQhZROUW8NgFjsq0Vjcg2Beds fqqUNNaYP39JCnS9YZ+Cx4c91KOpRZdQffgOUzBO5+lscX4n20YY8GFEndzS/r67 w+U0byYIU7D+KgGSxYtDAXDTs3IlAlzapYMYpuinng0BrKkuQY7fRmryiTRtuNdi j0KeThYqLMhh03b2dXKv -----END CERTIFICATE-----Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org