$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: TznseHfiDZ1jpmhMm2lzqcGBWQrzFxaalzxO12gQ4iQ= Subject key identifier: 76:2F:88:37:8D:B5:12:30:5D:A6:36:76:66:EC:D3:B0:60:56:94:47 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 27EF5D77E462E8DEE5CEE5372E0375D007F37C99 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 06 Oct 2024 04:42:55 +0000 ROA not before: Sun 06 Oct 2024 04:37:55 +0000 ROA not after: Sun 05 Oct 2025 04:42:55 +0000 asID: 216089 IP address blocks: 2a07:54c7:4100::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 13:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ef:5d:77:e4:62:e8:de:e5:ce:e5:37:2e:03:75:d0:07:f3:7c:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Oct 6 04:37:55 2024 GMT Not After : Oct 5 04:42:55 2025 GMT Subject: CN=762F88378DB512305DA6367666ECD3B060569447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1e:b9:cd:a4:17:8d:ed:d7:bf:f4:8e:20:01: dc:fe:e3:5c:ca:75:d7:2d:ba:c6:c6:ed:b5:8e:64: fd:23:dc:6c:60:a6:64:bd:43:99:24:39:5f:aa:66: f6:57:87:b0:dc:7a:72:f2:63:d8:72:c5:07:8a:a7: 5e:de:cf:c8:b5:ed:e8:06:04:4c:bd:14:e7:31:bc: 3c:e0:a5:d3:ba:4f:33:4b:b2:8b:84:ca:19:ff:f0: a9:fd:3b:7f:63:e6:84:b3:be:f5:b6:a8:36:60:8d: a4:c2:ad:77:e3:f9:05:16:56:4b:65:4a:5e:65:08: f1:db:5b:14:99:10:30:85:23:64:4d:1a:7c:04:a0: 8a:5d:28:0a:ee:a1:de:e3:a1:be:f9:08:06:28:af: 28:5c:f1:64:19:2c:a6:4c:05:18:ca:10:c1:40:1d: a0:dc:e7:76:ce:57:b5:fb:87:cf:ee:91:af:ca:57: 6a:97:92:4e:4c:31:03:a3:d0:c4:b7:df:22:9c:46: 94:cb:25:7c:f9:f8:af:f5:69:b9:87:3d:51:da:19: aa:31:33:cb:81:e1:da:13:68:14:51:83:c8:e3:98: 80:88:58:d8:00:55:94:e8:83:c6:df:89:5d:67:16: 6f:f8:79:9c:04:c4:76:27:44:f8:7c:2f:63:90:1e: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2F:88:37:8D:B5:12:30:5D:A6:36:76:66:EC:D3:B0:60:56:94:47 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4100::/42 Signature Algorithm: sha256WithRSAEncryption 96:bc:f9:86:e3:be:40:70:ea:86:fb:37:fa:97:4c:02:52:08: 78:42:d1:f0:c6:43:35:69:14:24:07:94:18:0c:45:07:33:03: e9:33:b6:b7:12:bb:49:7c:4f:e2:52:db:96:3a:cc:68:6c:40: df:91:d6:6e:01:07:d3:cf:a9:73:f6:d9:0d:e7:c7:3c:c5:ad: 51:c0:62:0c:7c:42:23:4b:69:f7:a4:ed:09:b0:5b:cf:87:43: 38:ea:ea:17:fc:30:18:85:92:ba:81:3f:86:62:db:90:6e:73: ee:15:dc:bf:31:40:d0:13:0e:b3:98:8f:d4:85:65:4c:5d:0c: 02:03:0a:b7:a9:21:e1:45:5c:19:9e:99:2a:b0:93:7a:40:46: 1d:ed:65:b2:72:c1:9a:b1:9b:ec:e5:6f:f8:35:7a:e5:d3:78: c8:98:00:f7:95:11:96:30:79:b4:2b:bb:27:3c:30:1c:af:87: a5:c5:10:42:b3:50:0d:22:99:5e:bd:19:8a:8c:de:3d:d5:95: db:3a:18:08:0d:29:62:42:5d:5f:40:e6:62:ca:ee:ff:7d:05: c6:b7:e0:f6:99:e6:1f:2c:80:ea:b7:41:36:b1:74:ee:b5:47: 07:f5:a2:1b:e2:9e:93:53:3b:69:72:25:89:61:34:cf:d0:0c: b6:79:12:fd -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUJ+9dd+Ri6N7lzuU3LgN10AfzfJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yNDEwMDYwNDM3NTVaFw0yNTEwMDUwNDQyNTVaMDMxMTAvBgNV BAMTKDc2MkY4ODM3OERCNTEyMzA1REE2MzY3NjY2RUNEM0IwNjA1Njk0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2HrnNpBeN7de/9I4gAdz+41zK ddctusbG7bWOZP0j3GxgpmS9Q5kkOV+qZvZXh7DcenLyY9hyxQeKp17ez8i17egG BEy9FOcxvDzgpdO6TzNLsouEyhn/8Kn9O39j5oSzvvW2qDZgjaTCrXfj+QUWVktl Sl5lCPHbWxSZEDCFI2RNGnwEoIpdKAruod7job75CAYoryhc8WQZLKZMBRjKEMFA HaDc53bOV7X7h8/uka/KV2qXkk5MMQOj0MS33yKcRpTLJXz5+K/1abmHPVHaGaox M8uB4doTaBRRg8jjmICIWNgAVZTog8bfiV1nFm/4eZwExHYnRPh8L2OQHsHRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUdi+IN421EjBdpjZ2ZuzTsGBWlEcwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzEzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0EAMA0GCSqGSIb3DQEBCwUAA4IBAQCW vPmG475AcOqG+zf6l0wCUgh4QtHwxkM1aRQkB5QYDEUHMwPpM7a3ErtJfE/iUtuW OsxobEDfkdZuAQfTz6lz9tkN58c8xa1RwGIMfEIjS2n3pO0JsFvPh0M46uoX/DAY hZK6gT+GYtuQbnPuFdy/MUDQEw6zmI/UhWVMXQwCAwq3qSHhRVwZnpkqsJN6QEYd 7WWycsGasZvs5W/4NXrl03jImAD3lRGWMHm0K7snPDAcr4elxRBCs1ANIplevRmK jN491ZXbOhgIDSliQl1fQOZiyu7/fQXGt+D2meYfLIDqt0E2sXTutUcH9aIb4p6T UztpciWJYTTP0Ay2eRL9 -----END CERTIFICATE-----Generated at Fri Nov 22 02:40:00 2024 by rpki-client on console-ams.rpki-client.org