$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa File: 326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa (raw, json) Hash identifier: dkdgGpTFzB+TyQTDERH6xsYtfQzPeSXEoyv2ETUcz60= Subject key identifier: 19:9A:32:4B:23:97:90:16:B6:5E:14:11:29:17:5D:99:27:26:77:39 Certificate issuer: /CN=E48ABA5D969C9C557913482E3064E3BC626018E3 Certificate serial: 3FA93F2C12F22D416CF8A2F63CE9570153C93146 Authority key identifier: E4:8A:BA:5D:96:9C:9C:55:79:13:48:2E:30:64:E3:BC:62:60:18:E3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa Signing time: Sat 21 Sep 2024 13:48:08 +0000 ROA not before: Sat 21 Sep 2024 13:43:08 +0000 ROA not after: Sat 20 Sep 2025 13:48:08 +0000 asID: 214510 IP address blocks: 2a0a:6044:7d20::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a9:3f:2c:12:f2:2d:41:6c:f8:a2:f6:3c:e9:57:01:53:c9:31:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48ABA5D969C9C557913482E3064E3BC626018E3 Validity Not Before: Sep 21 13:43:08 2024 GMT Not After : Sep 20 13:48:08 2025 GMT Subject: CN=199A324B23979016B65E141129175D9927267739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9f:85:01:7b:a3:47:41:ce:7e:90:16:27:c0: 94:5c:ac:c9:0b:39:ba:e9:12:1b:14:4e:03:68:44: cc:81:cf:d7:e0:d2:b4:a7:9b:e5:6d:49:91:70:36: ef:d4:f2:3d:25:d8:f0:89:0c:7a:ee:1f:a4:67:6c: b7:7a:e0:2d:b3:8b:3e:b4:c8:66:38:9a:b5:e6:69: 02:cb:51:49:4b:13:0f:f9:03:eb:40:89:c6:81:e6: 34:c1:29:e5:48:de:d6:54:60:48:16:32:55:78:2d: 29:19:a1:af:7e:3d:31:e9:34:46:7a:a0:02:3c:dd: b4:72:6c:e7:fb:e5:1b:f6:85:14:f7:4e:bf:b8:c7: 7a:1a:e8:7e:07:af:ea:7f:6b:a0:67:30:bc:76:55: 8c:12:5d:9c:92:01:b0:9f:f6:29:ab:f9:bd:5c:c8: 7d:79:57:b1:c9:33:96:a1:93:d1:35:0d:89:08:37: 8a:bf:20:59:8d:2e:f5:a1:a9:00:93:5c:25:18:9b: 2e:18:cb:4d:fc:03:71:fd:da:bb:5b:2e:11:b7:60: b0:c9:24:b9:68:b2:19:8e:e9:7d:58:cb:0f:45:e7: b9:a2:2d:3e:fb:81:b0:92:6f:5e:fa:7f:11:38:f2: 23:7d:50:db:6c:20:4c:a1:86:e7:89:7a:bf:29:3b: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:9A:32:4B:23:97:90:16:B6:5E:14:11:29:17:5D:99:27:26:77:39 X509v3 Authority Key Identifier: keyid:E4:8A:BA:5D:96:9C:9C:55:79:13:48:2E:30:64:E3:BC:62:60:18:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432303a3a2f34382d3438203d3e20323134353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7d20::/48 Signature Algorithm: sha256WithRSAEncryption 85:56:db:10:6b:b8:25:38:14:2f:c2:13:81:d4:1d:da:12:7c: 43:b0:4f:62:c8:1b:ab:a4:68:1b:25:f3:ea:a5:c5:be:fb:c6: 1c:4d:a7:2d:2f:cf:c4:f5:36:49:75:72:e9:49:00:05:c6:6c: 92:e7:91:e6:d6:c2:80:b3:06:c8:71:e3:ef:b1:ea:51:52:f9: 73:29:a9:36:02:c3:8f:76:d9:5a:54:7f:59:d2:de:c2:f6:14: 1a:bb:7e:ba:3b:5d:3a:aa:c8:d1:ab:7e:f4:aa:af:85:10:b3: 1b:fa:47:14:a3:a3:5c:1a:b7:75:f9:2c:0a:7d:a8:42:b6:d3: 6b:5e:d2:cf:63:18:ef:d4:a8:fe:d0:ca:5b:64:69:b2:d9:52: 36:ef:88:90:9e:ba:f6:0b:dd:64:a7:3e:15:47:51:bf:3a:bf: c3:92:38:e9:59:22:7e:8b:fe:92:c2:cb:5f:99:23:2c:46:b5: de:b5:74:b1:dd:7c:13:f4:46:30:51:69:41:63:77:0f:b1:fc: ff:46:b5:6a:d6:c9:0c:f7:87:31:a1:46:c7:7c:e5:92:92:39: 2d:b7:7c:76:e6:9d:3d:fc:f3:3c:e9:f0:80:f5:ea:a9:fb:14: 82:44:d6:44:d9:4f:0e:42:d5:61:af:06:93:b0:df:e7:1a:f3: 69:5a:33:ca -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUP6k/LBLyLUFs+KL2POlXAVPJMUYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4QUJBNUQ5NjlDOUM1NTc5MTM0ODJFMzA2NEUzQkM2 MjYwMThFMzAeFw0yNDA5MjExMzQzMDhaFw0yNTA5MjAxMzQ4MDhaMDMxMTAvBgNV BAMTKDE5OUEzMjRCMjM5NzkwMTZCNjVFMTQxMTI5MTc1RDk5MjcyNjc3MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxn4UBe6NHQc5+kBYnwJRcrMkL ObrpEhsUTgNoRMyBz9fg0rSnm+VtSZFwNu/U8j0l2PCJDHruH6RnbLd64C2ziz60 yGY4mrXmaQLLUUlLEw/5A+tAicaB5jTBKeVI3tZUYEgWMlV4LSkZoa9+PTHpNEZ6 oAI83bRybOf75Rv2hRT3Tr+4x3oa6H4Hr+p/a6BnMLx2VYwSXZySAbCf9imr+b1c yH15V7HJM5ahk9E1DYkIN4q/IFmNLvWhqQCTXCUYmy4Yy038A3H92rtbLhG3YLDJ JLloshmO6X1Yyw9F57miLT77gbCSb176fxE48iN9UNtsIEyhhueJer8pO1atAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUGZoySyOXkBa2XhQRKRddmScmdzkwHwYDVR0j BBgwFoAU5Iq6XZacnFV5E0guMGTjvGJgGOMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlMzAyZTYtODgxZS00ZDkzLWFlM2UtOWI3Yzk3YTli OWQwLzEvRTQ4QUJBNUQ5NjlDOUM1NTc5MTM0ODJFMzA2NEUzQkM2MjYwMThFMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9FNDhBQkE1RDk2OUM5QzU1NzkxMzQ4MkUz MDY0RTNCQzYyNjAxOEUzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2UzMDJlNi04ODFlLTRkOTMtYWUzZS05YjdjOTdhOWI5ZDAvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjQzMjMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRH0gMA0GCSqGSIb3DQEBCwUAA4IBAQCF VtsQa7glOBQvwhOB1B3aEnxDsE9iyBurpGgbJfPqpcW++8YcTactL8/E9TZJdXLp SQAFxmyS55Hm1sKAswbIcePvsepRUvlzKak2AsOPdtlaVH9Z0t7C9hQau366O106 qsjRq370qq+FELMb+kcUo6NcGrd1+SwKfahCttNrXtLPYxjv1Kj+0MpbZGmy2VI2 74iQnrr2C91kpz4VR1G/Or/DkjjpWSJ+i/6SwstfmSMsRrXetXSx3XwT9EYwUWlB Y3cPsfz/RrVq1skM94cxoUbHfOWSkjktt3x25p09/PM86fCA9eqp+xSCRNZE2U8O QtVhrwaTsN/nGvNpWjPK -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:51 2024 by rpki-client on console-fra.rpki-client.org