$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: IEkqCo1PYtZIgJs8hjaJOZoqli4MCs+0wVtFiuHrMRQ= Subject key identifier: 8F:3D:21:DC:A4:8E:EB:68:CB:1C:0D:B4:20:46:34:C2:18:61:10:6E Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 024568CC8C5AB66959CE2E3A844137A7EF30F6B0 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 06 Oct 2024 04:42:55 +0000 ROA not before: Sun 06 Oct 2024 04:37:55 +0000 ROA not after: Sun 05 Oct 2025 04:42:55 +0000 asID: 216089 IP address blocks: 2a07:54c7:40c0::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:45:68:cc:8c:5a:b6:69:59:ce:2e:3a:84:41:37:a7:ef:30:f6:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Oct 6 04:37:55 2024 GMT Not After : Oct 5 04:42:55 2025 GMT Subject: CN=8F3D21DCA48EEB68CB1C0DB4204634C21861106E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6c:1b:07:78:21:37:ff:d3:0c:0e:e6:cc:fc: d5:5b:d6:f8:4b:a5:31:2d:e6:e8:51:3e:be:4a:e6: 0d:3c:b2:65:48:35:96:4e:5f:20:51:79:83:f6:ec: 20:36:b9:00:39:d8:a9:2c:a8:69:44:55:30:f3:09: 00:a2:12:91:07:08:6c:3d:0a:15:f8:2d:bc:89:4c: f5:e8:13:54:88:3f:73:00:63:c6:d8:87:6c:54:39: 00:30:08:52:92:6d:2e:da:51:c4:91:ac:8c:91:1e: ca:90:61:2f:63:5f:9d:26:7d:98:59:8d:f8:ae:01: 17:5c:78:a8:2e:df:46:91:ac:f4:d6:2a:77:0e:92: 02:aa:d2:23:98:71:a6:04:58:05:4b:0a:3e:32:23: 81:34:6e:4f:5f:e5:1c:b0:a7:1a:78:6b:9b:a3:d7: bd:c2:96:22:3d:78:e6:c6:12:01:13:49:3a:fd:c8: 09:a2:30:d2:fe:b5:b4:2e:e9:e2:1f:df:1b:e0:54: 75:6d:cd:57:b3:bb:5c:d8:d3:36:f9:8c:bd:95:1c: 8f:b9:31:9d:ba:b1:56:24:9f:b4:64:79:99:79:ed: 5d:59:80:24:b0:36:85:6a:aa:c4:02:79:a5:94:d5: 70:55:a5:ff:0e:53:de:27:ae:db:01:8d:6f:96:a4: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3D:21:DC:A4:8E:EB:68:CB:1C:0D:B4:20:46:34:C2:18:61:10:6E X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:40c0::/42 Signature Algorithm: sha256WithRSAEncryption 28:ee:ad:ae:f0:45:07:87:3b:88:bf:60:f3:d5:92:68:6e:a3: 23:98:f1:0b:9e:72:77:74:e0:b1:58:65:70:32:b2:d6:55:c2: d3:9d:cb:e2:f3:e0:0b:41:98:a8:cf:7b:38:c4:62:07:83:ee: 0b:23:77:7e:ba:80:0f:be:47:43:86:9e:1e:19:82:11:44:99: 8f:4a:20:e5:b5:5b:91:0d:e3:4f:c3:b2:9a:41:73:e3:a2:a4: 46:99:8a:4d:03:e7:7d:98:00:aa:5e:84:12:6b:77:41:87:30: 77:81:d6:79:de:43:2c:09:81:a2:02:4f:3a:87:49:a6:d0:53: c3:51:97:97:be:2a:79:b9:2a:f9:d6:e0:21:4d:6b:a2:d7:f5: 0c:ed:10:ef:65:c0:22:8f:1e:83:0e:3c:73:45:84:32:17:14: 47:76:db:7d:da:de:67:56:a7:3a:9c:ae:8c:09:6f:a5:61:e4: b1:b1:74:dd:5b:87:b8:cf:f6:9e:28:1a:1c:a6:b0:03:fa:73: f7:c6:ce:f0:2d:df:b1:de:29:e1:ef:50:96:23:b0:19:f8:68: b1:4a:c6:e6:bb:e4:15:c0:b8:80:c3:ae:0b:fd:35:a8:a7:6a: 40:27:05:44:db:1e:65:71:9b:f3:ee:b0:8a:98:e9:25:1f:d3: 8a:bb:1c:51 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUAkVozIxatmlZzi46hEE3p+8w9rAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yNDEwMDYwNDM3NTVaFw0yNTEwMDUwNDQyNTVaMDMxMTAvBgNV BAMTKDhGM0QyMURDQTQ4RUVCNjhDQjFDMERCNDIwNDYzNEMyMTg2MTEwNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6bBsHeCE3/9MMDubM/NVb1vhL pTEt5uhRPr5K5g08smVINZZOXyBReYP27CA2uQA52KksqGlEVTDzCQCiEpEHCGw9 ChX4LbyJTPXoE1SIP3MAY8bYh2xUOQAwCFKSbS7aUcSRrIyRHsqQYS9jX50mfZhZ jfiuARdceKgu30aRrPTWKncOkgKq0iOYcaYEWAVLCj4yI4E0bk9f5Rywpxp4a5uj 173CliI9eObGEgETSTr9yAmiMNL+tbQu6eIf3xvgVHVtzVezu1zY0zb5jL2VHI+5 MZ26sVYkn7RkeZl57V1ZgCSwNoVqqsQCeaWU1XBVpf8OU94nrtsBjW+WpKPZAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUjz0h3KSO62jLHA20IEY0whhhEG4wHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzA2MzMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0DAMA0GCSqGSIb3DQEBCwUAA4IBAQAo 7q2u8EUHhzuIv2Dz1ZJobqMjmPELnnJ3dOCxWGVwMrLWVcLTncvi8+ALQZioz3s4 xGIHg+4LI3d+uoAPvkdDhp4eGYIRRJmPSiDltVuRDeNPw7KaQXPjoqRGmYpNA+d9 mACqXoQSa3dBhzB3gdZ53kMsCYGiAk86h0mm0FPDUZeXvip5uSr51uAhTWui1/UM 7RDvZcAijx6DDjxzRYQyFxRHdtt92t5nVqc6nK6MCW+lYeSxsXTdW4e4z/aeKBoc prAD+nP3xs7wLd+x3inh71CWI7AZ+GixSsbmu+QVwLiAw64L/TWop2pAJwVE2x5l cZvz7rCKmOklH9OKuxxR -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:50 2024 by rpki-client on console-fra.rpki-client.org