$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/326131343a373538313a396632303a3a2f34342d3434203d3e20323135323838.roa File: 326131343a373538313a396632303a3a2f34342d3434203d3e20323135323838.roa (raw, json) Hash identifier: liZtkDCXL4DmjNQ78r1O/4djDEbWR26m7nKfEkWRmh4= Subject key identifier: 22:A0:F4:49:30:52:EA:1E:8D:AA:6D:B2:B5:39:32:CD:5B:07:18:56 Certificate issuer: /CN=4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6 Certificate serial: 3290855793B5300A502ECD7455DE3997E3DA1C3D Authority key identifier: 40:50:A1:7B:AE:1C:5F:37:63:D4:5A:38:DC:FE:AC:E0:FE:22:2B:D6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/326131343a373538313a396632303a3a2f34342d3434203d3e20323135323838.roa Signing time: Fri 22 Nov 2024 07:03:44 +0000 ROA not before: Fri 22 Nov 2024 06:58:44 +0000 ROA not after: Fri 21 Nov 2025 07:03:44 +0000 asID: 215288 IP address blocks: 2a14:7581:9f20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.crl rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:90:85:57:93:b5:30:0a:50:2e:cd:74:55:de:39:97:e3:da:1c:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6 Validity Not Before: Nov 22 06:58:44 2024 GMT Not After : Nov 21 07:03:44 2025 GMT Subject: CN=22A0F4493052EA1E8DAA6DB2B53932CD5B071856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9b:e9:03:d3:58:cb:57:81:89:96:32:f5:46: aa:69:6f:79:7d:f2:ee:72:46:1c:4e:36:f3:01:3e: 5d:68:28:d2:3a:e8:5d:c6:0f:5b:ae:5a:bd:2a:5f: 90:fc:3d:12:0d:54:b1:58:6c:e5:2f:4e:96:31:3b: a3:4f:ec:fa:29:3e:33:ca:96:fc:ac:b7:07:16:8f: 72:b6:76:6a:19:ea:64:13:e9:80:7c:50:99:63:0c: 26:18:64:41:02:10:08:90:4a:bf:54:63:4e:ee:6a: 1f:79:d8:65:37:29:1a:34:43:15:87:e1:dd:2f:f1: bc:f3:85:a0:fb:c4:c2:3c:65:9e:ee:e9:e8:f5:dd: 8a:e0:0d:eb:59:d5:01:3e:a6:f5:65:27:15:40:72: f9:67:ca:6f:4d:60:d6:f6:4e:b2:9c:0f:90:9a:cc: aa:28:9f:dc:89:03:24:61:97:ab:e1:54:24:e4:17: 18:cc:e0:53:6e:bd:c9:10:22:f8:f9:9d:4e:2d:97: a0:56:d6:67:c6:b1:ba:6d:88:a5:e6:de:7c:10:9c: 71:56:bf:ed:11:dc:fd:c2:df:cc:f5:0d:a3:73:14: b6:e4:8e:85:2f:e4:7a:e3:4f:b9:7a:0f:07:60:ee: bf:fa:ef:dc:75:d7:41:36:ca:38:af:0a:8a:af:40: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A0:F4:49:30:52:EA:1E:8D:AA:6D:B2:B5:39:32:CD:5B:07:18:56 X509v3 Authority Key Identifier: keyid:40:50:A1:7B:AE:1C:5F:37:63:D4:5A:38:DC:FE:AC:E0:FE:22:2B:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/4050A17BAE1C5F3763D45A38DCFEACE0FE222BD6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c86b65b1-45e9-4fb2-adc5-87ba711e21b7/1/326131343a373538313a396632303a3a2f34342d3434203d3e20323135323838.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:9f20::/44 Signature Algorithm: sha256WithRSAEncryption 34:3e:29:90:2d:fa:21:b1:bc:b4:78:ab:15:fd:5d:b1:37:16: 33:43:00:43:35:75:b3:03:08:bf:54:37:c4:cb:3f:cb:c9:b8: 03:5d:55:69:5b:7e:b8:84:0e:64:82:9a:08:64:5f:b5:7d:c5: 19:38:d3:5d:51:c2:98:b9:8c:4a:0c:6f:3d:9a:2b:92:78:90: 9a:20:90:70:72:7c:10:85:d1:88:02:98:13:4a:53:20:14:72: 7c:62:c2:63:8a:fc:4c:71:56:10:64:91:58:4c:fd:9b:64:21: 76:17:5d:f0:6d:f5:9d:75:6e:b6:6a:6e:55:f8:8c:1f:ae:78: 99:e1:52:77:42:c1:46:31:c9:29:41:37:89:72:95:79:51:6f: 34:98:2c:6b:dd:5c:9f:46:59:93:14:a8:f9:02:3e:0a:3c:b1: 6a:a4:a1:f3:f4:e3:39:30:49:a1:f4:37:b4:4f:e5:3a:ab:fa: 68:f9:77:4e:4a:60:67:95:46:52:04:14:ae:b3:9f:82:72:0e: 03:75:16:48:1c:88:a4:53:a3:49:a1:57:0b:5a:ec:5a:61:70: 4e:03:e3:b2:5f:dd:6f:53:3f:02:19:8e:7c:58:9c:07:c8:f7: ba:51:96:f5:0d:b8:55:66:3a:2d:6f:11:0d:aa:2d:13:bf:65: 9a:be:cc:29 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUMpCFV5O1MApQLs10Vd45l+PaHD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA1MEExN0JBRTFDNUYzNzYzRDQ1QTM4RENGRUFDRTBG RTIyMkJENjAeFw0yNDExMjIwNjU4NDRaFw0yNTExMjEwNzAzNDRaMDMxMTAvBgNV BAMTKDIyQTBGNDQ5MzA1MkVBMUU4REFBNkRCMkI1MzkzMkNENUIwNzE4NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCum+kD01jLV4GJljL1Rqppb3l9 8u5yRhxONvMBPl1oKNI66F3GD1uuWr0qX5D8PRINVLFYbOUvTpYxO6NP7PopPjPK lvystwcWj3K2dmoZ6mQT6YB8UJljDCYYZEECEAiQSr9UY07uah952GU3KRo0QxWH 4d0v8bzzhaD7xMI8ZZ7u6ej13YrgDetZ1QE+pvVlJxVAcvlnym9NYNb2TrKcD5Ca zKoon9yJAyRhl6vhVCTkFxjM4FNuvckQIvj5nU4tl6BW1mfGsbptiKXm3nwQnHFW v+0R3P3C38z1DaNzFLbkjoUv5HrjT7l6Dwdg7r/679x110E2yjivCoqvQGzRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUIqD0STBS6h6Nqm2ytTkyzVsHGFYwHwYDVR0j BBgwFoAUQFChe64cXzdj1Fo43P6s4P4iK9YwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzg2YjY1YjEtNDVlOS00ZmIyLWFkYzUtODdiYTcxMWUy MWI3LzEvNDA1MEExN0JBRTFDNUYzNzYzRDQ1QTM4RENGRUFDRTBGRTIyMkJENi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC80MDUwQTE3QkFFMUM1RjM3NjNENDVBMzhE Q0ZFQUNFMEZFMjIyQkQ2LmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jODZiNjViMS00NWU5LTRmYjItYWRjNS04N2JhNzExZTIxYjcvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM5NjYzMjMwM2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzIz MTM1MzIzODM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gZ8gMA0GCSqGSIb3DQEBCwUAA4IBAQA0 PimQLfohsby0eKsV/V2xNxYzQwBDNXWzAwi/VDfEyz/LybgDXVVpW364hA5kgpoI ZF+1fcUZONNdUcKYuYxKDG89miuSeJCaIJBwcnwQhdGIApgTSlMgFHJ8YsJjivxM cVYQZJFYTP2bZCF2F13wbfWddW62am5V+IwfrniZ4VJ3QsFGMckpQTeJcpV5UW80 mCxr3VyfRlmTFKj5Aj4KPLFqpKHz9OM5MEmh9De0T+U6q/po+XdOSmBnlUZSBBSu s5+Ccg4DdRZIHIikU6NJoVcLWuxaYXBOA+OyX91vUz8CGY58WJwHyPe6UZb1DbhV ZjotbxENqi0Tv2Wavswp -----END CERTIFICATE-----Generated at Fri Nov 22 08:14:20 2024 by rpki-client on console-ams.rpki-client.org