$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa File: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (raw, json) Hash identifier: qeaOlY52oQQWD5XZjaWGRHEbjpv+jkgNagBU1ZEkBfY= Subject key identifier: 70:88:36:D6:61:A2:50:8A:C6:75:AA:3E:9A:40:1E:2C:CA:63:07:93 Certificate issuer: /CN=5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC Certificate serial: 79E5245BE491EF0A513AE59BCCE736FF9C1553EA Authority key identifier: 5E:B2:E5:DA:D0:C6:99:6D:0A:80:A7:B9:0F:3A:2A:A6:0F:B1:A7:AC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa Signing time: Thu 08 Aug 2024 20:19:02 +0000 ROA not before: Thu 08 Aug 2024 20:14:02 +0000 ROA not after: Thu 07 Aug 2025 20:19:02 +0000 asID: 211431 IP address blocks: 2a13:9644:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.crl rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 16:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e5:24:5b:e4:91:ef:0a:51:3a:e5:9b:cc:e7:36:ff:9c:15:53:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC Validity Not Before: Aug 8 20:14:02 2024 GMT Not After : Aug 7 20:19:02 2025 GMT Subject: CN=708836D661A2508AC675AA3E9A401E2CCA630793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:99:a5:81:d7:e4:0f:1d:70:9b:f7:fa:03:a1: a8:2c:1c:e0:07:4a:42:ed:fd:f0:92:b8:a3:3a:72: d1:77:fc:e3:ef:6a:aa:b6:f5:15:02:aa:f8:8a:5e: 7c:f3:47:56:83:63:c4:84:fa:5b:33:9d:65:6e:73: 8a:97:76:83:33:fa:09:03:f0:27:80:0e:f5:82:cb: fb:07:e2:17:7e:b0:ca:4f:86:ea:0f:59:d7:e6:3e: c0:56:5a:6a:12:01:65:c4:e6:0a:01:67:65:5e:99: 89:11:f5:e2:25:14:70:19:ba:6b:42:31:d6:69:27: c0:c4:2e:3a:c3:40:23:d3:79:50:0c:31:ba:64:cc: a1:06:59:5d:9b:72:ae:09:52:72:29:34:3b:b7:45: c9:58:1d:21:cd:c8:52:41:7c:e7:a5:b4:de:7a:fa: a5:62:76:ff:a7:37:ac:29:dd:3d:52:4a:65:3c:aa: f2:b3:fb:58:28:c7:52:cd:97:d0:8b:f8:84:9b:62: 91:6d:b3:c0:53:0a:13:1d:9a:2a:f3:08:f5:61:3e: 55:6f:4d:a4:89:a1:0b:60:98:40:74:20:f1:fa:b6: 94:04:14:2d:f5:e3:7a:9e:e5:ae:9a:69:02:81:7f: ab:69:55:f0:82:e8:5c:8b:bc:74:97:20:d8:68:de: bc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:88:36:D6:61:A2:50:8A:C6:75:AA:3E:9A:40:1E:2C:CA:63:07:93 X509v3 Authority Key Identifier: keyid:5E:B2:E5:DA:D0:C6:99:6D:0A:80:A7:B9:0F:3A:2A:A6:0F:B1:A7:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c99265ef-22a9-4100-a23d-51a9d9feeb7d/4/326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a13:9644:3000::/40 Signature Algorithm: sha256WithRSAEncryption 7e:f1:38:1f:f8:46:d1:dd:c8:96:d2:bd:4a:cc:21:cf:c5:9c: 94:41:84:46:8c:43:11:ac:4c:d1:9d:00:14:87:09:8c:dc:8d: 67:d7:fb:25:ec:30:fb:ac:96:ec:8f:91:f3:d6:b9:38:da:b0: 52:45:7a:8c:8a:e8:2e:26:d1:48:c0:86:99:4c:01:a0:8c:f6: ab:5e:ec:71:e1:d8:cb:14:cc:63:f6:80:34:47:8a:cc:cd:c3: 93:43:67:17:88:94:26:7d:93:5e:c4:b0:05:e1:c1:b0:96:2b: 4c:44:a6:3e:c6:ca:7b:e9:18:32:73:f5:53:34:58:d3:2c:ad: 0e:34:1a:c3:7c:35:02:e9:fa:67:f7:a6:d5:6b:d8:35:56:e0: 69:ad:dc:c2:82:af:39:e2:76:f2:13:bb:ef:db:a2:c2:d5:21: 60:1f:26:0a:64:d7:c1:3c:b4:39:6b:ca:cd:0e:8d:7c:df:d1: fd:dc:66:06:35:1a:7c:30:a4:ba:ce:31:74:e4:f4:7d:fd:af: b9:08:73:b5:35:43:53:02:75:7a:09:d3:95:6e:4a:82:ae:43: f9:b0:67:bf:a7:20:3d:5d:b3:08:0b:45:ee:68:91:70:ef:5e: 31:1b:0a:82:7f:14:b4:2a:1f:f5:e2:d1:25:5a:76:74:b1:5a: 32:ed:32:b7 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUeeUkW+SR7wpROuWbzOc2/5wVU+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUVCMkU1REFEMEM2OTk2RDBBODBBN0I5MEYzQTJBQTYw RkIxQTdBQzAeFw0yNDA4MDgyMDE0MDJaFw0yNTA4MDcyMDE5MDJaMDMxMTAvBgNV BAMTKDcwODgzNkQ2NjFBMjUwOEFDNjc1QUEzRTlBNDAxRTJDQ0E2MzA3OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKmaWB1+QPHXCb9/oDoagsHOAH SkLt/fCSuKM6ctF3/OPvaqq29RUCqviKXnzzR1aDY8SE+lsznWVuc4qXdoMz+gkD 8CeADvWCy/sH4hd+sMpPhuoPWdfmPsBWWmoSAWXE5goBZ2VemYkR9eIlFHAZumtC MdZpJ8DELjrDQCPTeVAMMbpkzKEGWV2bcq4JUnIpNDu3RclYHSHNyFJBfOeltN56 +qVidv+nN6wp3T1SSmU8qvKz+1gox1LNl9CL+ISbYpFts8BTChMdmirzCPVhPlVv TaSJoQtgmEB0IPH6tpQEFC3143qe5a6aaQKBf6tpVfCC6FyLvHSXINho3rynAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUcIg21mGiUIrGdao+mkAeLMpjB5MwHwYDVR0j BBgwFoAUXrLl2tDGmW0KgKe5Dzoqpg+xp6wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYzk5MjY1ZWYtMjJhOS00MTAwLWEyM2QtNTFhOWQ5ZmVl YjdkLzQvNUVCMkU1REFEMEM2OTk2RDBBODBBN0I5MEYzQTJBQTYwRkIxQTdBQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC81RUIyRTVEQUQwQzY5OTZEMEE4MEE3Qjkw RjNBMkFBNjBGQjFBN0FDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9jOTkyNjVlZi0yMmE5LTQxMDAtYTIzZC01MWE5ZDlmZWViN2QvNC8zMjYxMzEz MzNhMzkzNjM0MzQzYTMzMzAzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MTMxMzQzMzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhOWRDAwDQYJKoZIhvcNAQELBQADggEBAH7x OB/4RtHdyJbSvUrMIc/FnJRBhEaMQxGsTNGdABSHCYzcjWfX+yXsMPusluyPkfPW uTjasFJFeoyK6C4m0UjAhplMAaCM9qte7HHh2MsUzGP2gDRHiszNw5NDZxeIlCZ9 k17EsAXhwbCWK0xEpj7GynvpGDJz9VM0WNMsrQ40GsN8NQLp+mf3ptVr2DVW4Gmt 3MKCrznidvITu+/bosLVIWAfJgpk18E8tDlrys0OjXzf0f3cZgY1GnwwpLrOMXTk 9H39r7kIc7U1Q1MCdXoJ05VuSoKuQ/mwZ7+nID1dswgLRe5okXDvXjEbCoJ/FLQq H/Xi0SVadnSxWjLtMrc= -----END CERTIFICATE-----Generated at Sun Sep 29 02:11:14 2024 by rpki-client on console-ams.rpki-client.org