$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432313a3a2f34382d3438203d3e20323134353130.roa File: 326130613a363034343a376432313a3a2f34382d3438203d3e20323134353130.roa (raw, json) Hash identifier: Z0q4IqeDnKf03Cx2Ufs4PIfRoaRQOHDXqy5m2GCN7tc= Subject key identifier: F6:2A:F6:44:F5:F1:EA:A9:EC:1D:11:D2:FC:58:0F:A5:8E:23:F2:24 Certificate issuer: /CN=E48ABA5D969C9C557913482E3064E3BC626018E3 Certificate serial: 14534911FCCD1DF84B0A838855792AF2A30DD0DB Authority key identifier: E4:8A:BA:5D:96:9C:9C:55:79:13:48:2E:30:64:E3:BC:62:60:18:E3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432313a3a2f34382d3438203d3e20323134353130.roa Signing time: Sat 21 Sep 2024 14:17:08 +0000 ROA not before: Sat 21 Sep 2024 14:12:08 +0000 ROA not after: Sat 20 Sep 2025 14:17:08 +0000 asID: 214510 IP address blocks: 2a0a:6044:7d21::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 16:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:53:49:11:fc:cd:1d:f8:4b:0a:83:88:55:79:2a:f2:a3:0d:d0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E48ABA5D969C9C557913482E3064E3BC626018E3 Validity Not Before: Sep 21 14:12:08 2024 GMT Not After : Sep 20 14:17:08 2025 GMT Subject: CN=F62AF644F5F1EAA9EC1D11D2FC580FA58E23F224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:58:7e:f9:ac:d6:f8:e0:1e:8d:e3:ff:6f:3a: 37:c1:51:9f:cb:5e:96:8b:45:88:71:64:70:76:37: b8:b7:06:79:f9:a5:c5:c5:08:58:cb:d8:61:a1:a6: 35:9e:46:af:53:fe:a9:b2:37:bf:20:97:19:2e:7c: 59:97:d9:eb:c7:40:f6:89:08:cc:d7:c1:52:2c:2d: cb:32:ed:7a:b8:f0:ac:4f:f9:ad:ec:1d:47:08:a1: df:47:f7:95:d5:87:b8:04:44:8f:32:4b:db:88:9a: f9:dc:11:18:e4:cf:66:2a:e5:ee:0c:5d:99:bf:b7: 26:b3:bc:00:dd:52:b4:1a:55:5b:4b:5f:91:bc:a5: 5a:c1:07:bd:3d:af:49:a9:f4:81:18:36:07:30:8d: d8:8d:f9:99:69:47:88:ab:2c:5a:da:a2:96:39:36: 18:46:70:61:1b:d5:ae:10:a0:03:dc:53:97:c9:e6: 93:67:9d:64:23:d0:68:e8:b7:b2:75:58:ee:05:10: 0b:eb:cc:5a:e8:0e:05:0c:9e:9c:bd:93:3c:07:57: 59:d3:58:18:c3:8a:6a:62:0a:93:dc:0d:e3:1c:ef: 94:bf:82:25:54:bb:5b:0e:ff:c4:c0:4a:5d:a5:d0: 7c:b2:aa:9e:65:6a:c7:db:cd:66:25:e2:b0:72:c9: 85:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2A:F6:44:F5:F1:EA:A9:EC:1D:11:D2:FC:58:0F:A5:8E:23:F2:24 X509v3 Authority Key Identifier: keyid:E4:8A:BA:5D:96:9C:9C:55:79:13:48:2E:30:64:E3:BC:62:60:18:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/E48ABA5D969C9C557913482E3064E3BC626018E3.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/E48ABA5D969C9C557913482E3064E3BC626018E3.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e302e6-881e-4d93-ae3e-9b7c97a9b9d0/1/326130613a363034343a376432313a3a2f34382d3438203d3e20323134353130.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:7d21::/48 Signature Algorithm: sha256WithRSAEncryption 94:87:05:00:f4:46:17:ca:36:8c:51:1f:07:b9:90:a7:a3:d1: ec:c9:b7:9d:ed:2a:8d:dd:43:44:6f:7b:c2:83:86:c2:19:ce: 69:8a:64:53:04:12:9a:46:01:ff:7e:43:bc:90:d0:97:d2:7d: 56:1c:82:7c:35:8f:5a:bf:4e:37:76:ec:cf:1a:92:7a:af:ea: 65:9c:32:bd:c0:c6:e6:c0:e8:4c:00:59:d5:52:4a:9e:b9:43: 3b:d5:0a:35:5c:ce:74:6a:2d:03:51:34:fd:c6:a1:f0:39:37: 55:c3:d5:ac:96:82:cf:f9:45:bf:f5:39:68:4c:91:76:0e:53: 8f:8f:3b:3a:00:47:d9:c6:ee:3f:af:54:a4:3b:a1:66:d0:28: 17:b6:64:99:7e:b0:ff:4d:e1:67:cc:98:24:4a:2e:7d:2a:b4: 6e:d9:36:24:9e:4f:6c:a3:10:6e:8d:ff:d7:67:6a:4b:56:1b: 88:cf:10:28:57:65:60:3a:64:32:5d:25:14:56:af:09:60:fb: df:24:2c:13:da:67:3f:bb:88:14:f4:75:89:64:33:18:0d:0b: 03:65:e2:db:9a:b6:62:46:a3:1d:09:9b:08:b1:e6:45:27:a7: af:12:9a:9d:fd:85:53:bf:f8:56:3e:34:be:e8:57:54:45:4a: a8:5e:f9:b9 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUFFNJEfzNHfhLCoOIVXkq8qMN0NswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTQ4QUJBNUQ5NjlDOUM1NTc5MTM0ODJFMzA2NEUzQkM2 MjYwMThFMzAeFw0yNDA5MjExNDEyMDhaFw0yNTA5MjAxNDE3MDhaMDMxMTAvBgNV BAMTKEY2MkFGNjQ0RjVGMUVBQTlFQzFEMTFEMkZDNTgwRkE1OEUyM0YyMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEWH75rNb44B6N4/9vOjfBUZ/L XpaLRYhxZHB2N7i3Bnn5pcXFCFjL2GGhpjWeRq9T/qmyN78glxkufFmX2evHQPaJ CMzXwVIsLcsy7Xq48KxP+a3sHUcIod9H95XVh7gERI8yS9uImvncERjkz2Yq5e4M XZm/tyazvADdUrQaVVtLX5G8pVrBB709r0mp9IEYNgcwjdiN+ZlpR4irLFraopY5 NhhGcGEb1a4QoAPcU5fJ5pNnnWQj0Gjot7J1WO4FEAvrzFroDgUMnpy9kzwHV1nT WBjDimpiCpPcDeMc75S/giVUu1sO/8TASl2l0Hyyqp5lasfbzWYl4rByyYWlAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU9ir2RPXx6qnsHRHS/FgPpY4j8iQwHwYDVR0j BBgwFoAU5Iq6XZacnFV5E0guMGTjvGJgGOMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlMzAyZTYtODgxZS00ZDkzLWFlM2UtOWI3Yzk3YTli OWQwLzEvRTQ4QUJBNUQ5NjlDOUM1NTc5MTM0ODJFMzA2NEUzQkM2MjYwMThFMy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9FNDhBQkE1RDk2OUM5QzU1NzkxMzQ4MkUz MDY0RTNCQzYyNjAxOEUzLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2UzMDJlNi04ODFlLTRkOTMtYWUzZS05YjdjOTdhOWI5ZDAvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTM3NjQzMjMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzUzMTMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRH0hMA0GCSqGSIb3DQEBCwUAA4IBAQCU hwUA9EYXyjaMUR8HuZCno9Hsybed7SqN3UNEb3vCg4bCGc5pimRTBBKaRgH/fkO8 kNCX0n1WHIJ8NY9av043duzPGpJ6r+plnDK9wMbmwOhMAFnVUkqeuUM71Qo1XM50 ai0DUTT9xqHwOTdVw9WsloLP+UW/9TloTJF2DlOPjzs6AEfZxu4/r1SkO6Fm0CgX tmSZfrD/TeFnzJgkSi59KrRu2TYknk9soxBujf/XZ2pLVhuIzxAoV2VgOmQyXSUU Vq8JYPvfJCwT2mc/u4gU9HWJZDMYDQsDZeLbmrZiRqMdCZsIseZFJ6evEpqd/YVT v/hWPjS+6FdURUqoXvm5 -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:51 2024 by rpki-client on console-fra.rpki-client.org