$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: 3fuuePzO+gd2KQC3A/GseUTsp1RqcYzkcPDSA/Bp670= Subject key identifier: DF:3B:70:9E:C3:37:18:1E:A3:E3:0D:62:DC:46:02:88:A9:22:BF:9F Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 0FACDF794073F5B5B856E93B6DA1CE9A31922E00 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 05 Nov 2023 04:01:37 +0000 ROA not before: Sun 05 Nov 2023 03:56:37 +0000 ROA not after: Sun 03 Nov 2024 04:01:37 +0000 asID: 216089 IP address blocks: 2a07:54c7:40c0::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 07 Jun 2024 21:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ac:df:79:40:73:f5:b5:b8:56:e9:3b:6d:a1:ce:9a:31:92:2e:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Nov 5 03:56:37 2023 GMT Not After : Nov 3 04:01:37 2024 GMT Subject: CN=DF3B709EC337181EA3E30D62DC460288A922BF9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:5a:16:55:2d:17:4f:84:7a:af:45:63:c9: 9e:73:90:ad:56:ad:84:2b:59:a8:69:cc:8b:b1:67: 9a:57:e5:fc:0e:02:d1:c9:ef:c4:2e:01:05:99:b0: a4:8e:9c:8b:51:1e:0f:a6:5d:c3:84:f3:e4:0a:ee: ad:c4:58:b3:3d:7e:95:c4:d6:e8:9b:41:24:26:37: d9:43:23:47:fd:72:d6:b7:8b:1d:7d:b6:5c:0b:37: 8b:b6:ce:0a:be:8d:d7:56:d5:43:22:06:00:51:f7: 6a:92:a5:7c:3c:8d:4b:60:30:34:e1:41:d5:58:3b: 2a:7f:ca:55:98:a6:05:54:8d:9c:33:ac:c2:fb:f5: 14:3c:ff:bb:bb:0a:4b:2f:b7:51:d2:0f:b7:93:79: a2:31:5e:79:21:17:69:5c:25:6d:d7:19:cc:90:2b: 36:87:d7:17:78:27:77:f6:9a:07:79:9d:ca:9c:34: 9b:09:fc:a1:3f:62:89:53:da:a9:10:bd:c9:47:53: 2b:ce:0a:bf:b2:68:7a:ae:c6:c2:58:13:64:d3:5b: e8:79:5f:46:2e:e3:d8:b1:d4:e6:7e:ee:c2:14:9a: d0:df:ab:2a:37:fa:20:5a:d1:d2:d5:7d:c7:2a:cc: ea:eb:4f:15:14:b4:41:66:52:16:05:e2:df:7d:ca: a1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3B:70:9E:C3:37:18:1E:A3:E3:0D:62:DC:46:02:88:A9:22:BF:9F X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343063303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:40c0::/42 Signature Algorithm: sha256WithRSAEncryption ad:09:f4:13:2b:c8:51:bb:ce:cb:cc:ba:8f:f1:4f:d4:f4:58: 25:eb:60:1b:9c:ee:43:4a:a4:1f:10:91:5d:0a:c6:03:f3:dc: f9:0b:9b:da:c7:8d:1d:b9:1c:60:e7:3c:7a:a6:55:aa:47:52: fa:07:6a:87:52:be:c5:2b:ef:51:00:6b:c5:3b:68:8b:1c:df: 68:a9:4f:8f:ab:9e:25:9d:52:35:12:45:27:c3:b1:19:d0:db: a9:c5:7d:b1:ee:60:eb:82:2f:19:bf:99:1d:2d:bb:c0:d4:5d: 96:44:73:a0:17:c1:bf:99:c9:24:e0:79:36:93:c0:b4:4e:92: f8:f1:92:c8:3a:29:93:9e:a5:b4:1c:61:75:d4:a7:00:2d:aa: c1:6a:e0:3f:8d:73:9a:fc:7c:8d:40:87:bd:99:e3:7b:52:0d: 2b:72:76:a2:cb:57:e2:ef:b2:45:70:8a:f0:fe:df:4b:ba:e8: 4b:cc:43:b5:7e:b4:c5:b9:35:71:aa:ae:99:f7:40:19:39:ac: a4:d2:b8:38:e6:11:64:fb:e1:ab:25:76:f8:8b:e2:1a:c7:d1: 73:a1:90:c5:d4:ec:be:3a:d1:0f:80:07:b3:0e:d2:eb:b5:da: 4e:9c:6d:b8:53:e0:9f:3a:b2:08:9a:4c:ce:0a:df:4e:0e:f0: fc:da:90:9e -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUD6zfeUBz9bW4Vuk7baHOmjGSLgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yMzExMDUwMzU2MzdaFw0yNDExMDMwNDAxMzdaMDMxMTAvBgNV BAMTKERGM0I3MDlFQzMzNzE4MUVBM0UzMEQ2MkRDNDYwMjg4QTkyMkJGOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPL1oWVS0XT4R6r0VjyZ5zkK1W rYQrWahpzIuxZ5pX5fwOAtHJ78QuAQWZsKSOnItRHg+mXcOE8+QK7q3EWLM9fpXE 1uibQSQmN9lDI0f9cta3ix19tlwLN4u2zgq+jddW1UMiBgBR92qSpXw8jUtgMDTh QdVYOyp/ylWYpgVUjZwzrML79RQ8/7u7Cksvt1HSD7eTeaIxXnkhF2lcJW3XGcyQ KzaH1xd4J3f2mgd5ncqcNJsJ/KE/YolT2qkQvclHUyvOCr+yaHquxsJYE2TTW+h5 X0Yu49ix1OZ+7sIUmtDfqyo3+iBa0dLVfccqzOrrTxUUtEFmUhYF4t99yqFbAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU3ztwnsM3GB6j4w1i3EYCiKkiv58wHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzA2MzMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0DAMA0GCSqGSIb3DQEBCwUAA4IBAQCt CfQTK8hRu87LzLqP8U/U9Fgl62AbnO5DSqQfEJFdCsYD89z5C5vax40duRxg5zx6 plWqR1L6B2qHUr7FK+9RAGvFO2iLHN9oqU+Pq54lnVI1EkUnw7EZ0NupxX2x7mDr gi8Zv5kdLbvA1F2WRHOgF8G/mckk4Hk2k8C0TpL48ZLIOimTnqW0HGF11KcALarB auA/jXOa/HyNQIe9meN7Ug0rcnaiy1fi77JFcIrw/t9LuuhLzEO1frTFuTVxqq6Z 90AZOayk0rg45hFk++GrJXb4i+Iax9FzoZDF1Oy+OtEPgAezDtLrtdpOnG24U+Cf OrIImkzOCt9ODvD82pCe -----END CERTIFICATE-----Generated at Fri Jun 7 14:45:25 2024 by rpki-client on console-fra.rpki-client.org