$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa File: 326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa (raw, json) Hash identifier: UQhdlwi2R1tq4M7mOY7PLw9g6SJ3hn+hPmf4ghbVyJA= Subject key identifier: 9B:6A:E0:95:1B:CB:FE:E6:33:5B:3F:F7:44:62:CA:90:08:6B:65:A1 Certificate issuer: /CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Certificate serial: 0A528A6C7D296377120904291F5A4686297361A7 Authority key identifier: C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa Signing time: Sun 05 Nov 2023 04:02:03 +0000 ROA not before: Sun 05 Nov 2023 03:57:03 +0000 ROA not after: Sun 03 Nov 2024 04:02:03 +0000 asID: 216089 IP address blocks: 2a07:54c7:4100::/42 maxlen: 42 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.mft rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 08 Jun 2024 11:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:52:8a:6c:7d:29:63:77:12:09:04:29:1f:5a:46:86:29:73:61:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3 Validity Not Before: Nov 5 03:57:03 2023 GMT Not After : Nov 3 04:02:03 2024 GMT Subject: CN=9B6AE0951BCBFEE6335B3FF74462CA90086B65A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e8:2b:2c:3a:0e:64:22:0d:e0:eb:8c:da:04: fe:ef:5b:01:61:7f:5d:f3:0e:33:b6:e4:7e:7a:85: 7e:9c:94:09:89:ea:9f:c1:b4:13:d9:a8:0d:92:02: 2f:b8:5c:6a:7e:e0:fc:7e:4a:2d:f2:e4:fa:51:c4: 79:0b:f2:63:de:b7:d0:86:d7:09:f2:c9:39:3f:23: a1:f4:3b:dc:04:24:0f:5e:b6:25:99:b9:18:58:2e: 4c:c9:00:79:21:a9:2b:52:f7:ee:48:36:19:fb:42: 88:a5:c1:1f:cc:3e:d2:2d:06:ed:29:1b:6f:3e:64: f1:5a:75:07:9e:41:52:54:4d:50:f6:0c:e5:31:c0: 1a:91:ac:a4:16:73:81:69:03:aa:c9:41:d0:7d:c1: 2e:09:41:98:e2:9a:8a:fa:54:96:b7:3e:12:f8:18: e8:25:b7:08:bd:4f:36:a9:d0:cd:31:3b:2b:79:5e: ff:6a:4e:57:32:95:4e:91:f7:a6:55:e7:08:05:b6: 72:2e:17:28:0b:ec:04:af:8d:e3:52:e8:fe:14:60: 7b:22:2d:64:bd:cd:e2:7f:a2:41:27:6f:6d:ec:cb: c2:24:fc:b4:7d:5f:d6:fe:ff:71:d3:b9:b1:75:9c: 53:6f:b2:3a:ea:96:3c:2e:73:dc:b2:12:51:71:57: c8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6A:E0:95:1B:CB:FE:E6:33:5B:3F:F7:44:62:CA:90:08:6B:65:A1 X509v3 Authority Key Identifier: keyid:C3:08:5C:3C:31:F2:D4:5E:DE:2A:7F:FB:B1:96:5B:BF:15:4E:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/C3085C3C31F2D45EDE2A7FFBB1965BBF154E69B3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bcbbf0bf-a2e0-42a4-8293-711496eb66d2/1/326130373a353463373a343130303a3a2f34322d3432203d3e20323136303839.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a07:54c7:4100::/42 Signature Algorithm: sha256WithRSAEncryption 0f:5c:18:c6:17:fe:14:8e:dc:01:72:3b:4d:e2:e6:0b:bf:6d: 32:7b:54:a3:da:36:53:bb:2f:63:50:f6:0c:a1:7b:4f:44:f1: 15:26:b4:65:0c:5c:7e:78:7c:35:c6:d9:58:90:1d:2e:99:3d: 89:df:27:37:69:ac:cf:63:7f:96:0e:c0:90:a4:5f:e1:2f:ae: 9d:a6:4b:a4:9e:26:f5:b8:19:81:16:39:8f:70:d1:a8:d8:a5: 9d:b4:b3:22:3e:e1:8c:4f:1d:41:c0:27:07:68:c5:c3:b2:8c: f2:a3:1a:f7:65:02:11:62:96:5e:55:b6:45:2a:f6:26:9f:38: b1:12:f4:ef:da:0f:3c:47:b7:9f:ce:8d:7c:d8:8c:8e:f5:1d: ad:1f:15:87:7a:77:c5:9e:d5:61:26:24:ac:71:0e:e9:15:f2: d5:33:5a:46:03:8f:bb:06:e3:66:2e:bb:d0:3f:70:9c:98:9b: 20:f6:cd:fd:3d:21:dc:58:26:28:6b:9b:fa:a6:55:1f:31:9b: 6f:a5:24:81:07:54:16:49:60:43:45:01:b9:f1:32:53:4c:60: 94:70:4b:35:91:21:fa:16:8f:b6:b6:8e:48:ca:c9:f1:11:c1: 09:e6:14:17:d8:35:bc:d4:77:8a:4e:41:b8:5b:be:f5:c2:29: b3:9a:5f:ed -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUClKKbH0pY3cSCQQpH1pGhilzYacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYx NTRFNjlCMzAeFw0yMzExMDUwMzU3MDNaFw0yNDExMDMwNDAyMDNaMDMxMTAvBgNV BAMTKDlCNkFFMDk1MUJDQkZFRTYzMzVCM0ZGNzQ0NjJDQTkwMDg2QjY1QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT6CssOg5kIg3g64zaBP7vWwFh f13zDjO25H56hX6clAmJ6p/BtBPZqA2SAi+4XGp+4Px+Si3y5PpRxHkL8mPet9CG 1wnyyTk/I6H0O9wEJA9etiWZuRhYLkzJAHkhqStS9+5INhn7QoilwR/MPtItBu0p G28+ZPFadQeeQVJUTVD2DOUxwBqRrKQWc4FpA6rJQdB9wS4JQZjimor6VJa3PhL4 GOgltwi9Tzap0M0xOyt5Xv9qTlcylU6R96ZV5wgFtnIuFygL7ASvjeNS6P4UYHsi LWS9zeJ/okEnb23sy8Ik/LR9X9b+/3HTubF1nFNvsjrqljwuc9yyElFxV8gxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUm2rglRvL/uYzWz/3RGLKkAhrZaEwHwYDVR0j BBgwFoAUwwhcPDHy1F7eKn/7sZZbvxVOabMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmNiYmYwYmYtYTJlMC00MmE0LTgyOTMtNzExNDk2ZWI2 NmQyLzEvQzMwODVDM0MzMUYyRDQ1RURFMkE3RkZCQjE5NjVCQkYxNTRFNjlCMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00MTliLTRk YjUtYmJkMy01Y2NhNjMzY2FlM2YvMC9DMzA4NUMzQzMxRjJENDVFREUyQTdGRkJC MTk2NUJCRjE1NEU2OUIzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9iY2JiZjBiZi1hMmUwLTQyYTQtODI5My03MTE0OTZlYjY2ZDIvMS8zMjYxMzAz NzNhMzUzNDYzMzczYTM0MzEzMDMwM2EzYTJmMzQzMjJkMzQzMjIwM2QzZTIwMzIz MTM2MzAzODM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcGKgdUx0EAMA0GCSqGSIb3DQEBCwUAA4IBAQAP XBjGF/4UjtwBcjtN4uYLv20ye1Sj2jZTuy9jUPYMoXtPRPEVJrRlDFx+eHw1xtlY kB0umT2J3yc3aazPY3+WDsCQpF/hL66dpkuknib1uBmBFjmPcNGo2KWdtLMiPuGM Tx1BwCcHaMXDsozyoxr3ZQIRYpZeVbZFKvYmnzixEvTv2g88R7efzo182IyO9R2t HxWHenfFntVhJiSscQ7pFfLVM1pGA4+7BuNmLrvQP3CcmJsg9s39PSHcWCYoa5v6 plUfMZtvpSSBB1QWSWBDRQG58TJTTGCUcEs1kSH6Fo+2to5IysnxEcEJ5hQX2DW8 1HeKTkG4W771wimzml/t -----END CERTIFICATE-----Generated at Fri Jun 7 18:16:41 2024 by rpki-client on console-ams.rpki-client.org