$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa File: 326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa (raw, json) Hash identifier: sgJS+9fXpP0N1ynvWikQwztRvYYPuX1aHauJ8WKg3M4= Subject key identifier: E4:D7:52:16:BA:35:D2:82:58:E7:D9:F3:F8:F4:1F:69:23:E2:19:59 Certificate issuer: /CN=9D23854B1F61BA33A429367BF0A898D4E4A9A24C Certificate serial: 54CB609C7A912D19FD5C3DB89B796C4FAF160839 Authority key identifier: 9D:23:85:4B:1F:61:BA:33:A4:29:36:7B:F0:A8:98:D4:E4:A9:A2:4C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa Signing time: Sat 22 Jun 2024 15:46:22 +0000 ROA not before: Sat 22 Jun 2024 15:41:22 +0000 ROA not after: Sat 21 Jun 2025 15:46:22 +0000 asID: 214723 IP address blocks: 2a0a:6044:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.crl rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Nov 2024 23:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:cb:60:9c:7a:91:2d:19:fd:5c:3d:b8:9b:79:6c:4f:af:16:08:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D23854B1F61BA33A429367BF0A898D4E4A9A24C Validity Not Before: Jun 22 15:41:22 2024 GMT Not After : Jun 21 15:46:22 2025 GMT Subject: CN=E4D75216BA35D28258E7D9F3F8F41F6923E21959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7c:e2:66:c4:4a:34:94:8d:a0:07:b0:05:26: a2:cb:b8:d1:22:ee:4e:d0:61:8a:6d:60:c5:dc:71: f7:af:f8:75:a6:d9:5e:5e:9c:0a:c3:99:d0:f3:80: 5d:b3:95:84:cf:38:8f:68:1a:df:95:67:03:0b:a3: f6:d3:25:ac:ff:b9:8d:ff:30:3e:b2:f8:0c:2c:b5: bd:08:36:ab:77:86:29:af:4a:9f:62:c7:e6:bd:51: 43:1e:bc:51:2b:23:82:11:22:51:51:3a:b5:d7:84: be:da:b1:3b:00:f9:a3:df:3f:7c:99:f7:39:0b:39: 4a:09:01:b0:04:d4:5f:05:fc:22:c0:c7:57:bb:e4: 80:c6:0d:01:0b:a5:07:f9:e3:dd:64:ec:9b:4d:64: df:8b:68:53:31:25:e1:3e:6f:b4:81:0d:1b:04:95: 23:99:a8:9c:39:f1:28:c6:4f:60:bc:33:10:7f:a0: ad:48:8f:b6:57:ef:66:a0:20:cd:36:63:34:b3:cf: c4:29:62:37:39:c5:2e:93:9b:b6:bf:04:25:05:ea: 7c:a4:ff:7d:cf:09:ef:0b:d9:01:89:e8:16:c5:7f: 2b:67:f4:f9:7f:aa:b5:12:ca:b9:50:b2:fb:4a:9e: 0b:d1:07:f3:ee:93:bb:20:9b:31:99:ee:64:a7:df: fe:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D7:52:16:BA:35:D2:82:58:E7:D9:F3:F8:F4:1F:69:23:E2:19:59 X509v3 Authority Key Identifier: keyid:9D:23:85:4B:1F:61:BA:33:A4:29:36:7B:F0:A8:98:D4:E4:A9:A2:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/9D23854B1F61BA33A429367BF0A898D4E4A9A24C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d7e4592e-23c0-4ccc-94da-6c95807f83e7/1/326130613a363034343a626130303a3a2f34382d3438203d3e20323134373233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:ba00::/48 Signature Algorithm: sha256WithRSAEncryption c5:0a:ed:17:91:d1:3e:c9:9c:59:00:25:54:1a:c0:54:21:f2: 62:dc:02:08:33:85:4a:19:ad:e6:9d:90:98:f8:bc:19:0f:53: 3d:b4:90:2f:29:70:f8:51:d2:ee:32:19:03:89:c3:bc:48:6e: bb:8e:f4:19:7e:9d:32:c8:a9:7a:14:cc:56:06:b4:09:0a:71: 2f:61:b0:de:5d:a5:43:96:0a:9c:b8:fe:a4:5f:a0:3d:99:a7: 9b:06:e0:79:1d:94:8a:e4:6d:6a:4f:bf:1f:0f:38:3a:bc:db: 46:4d:38:07:54:77:2a:76:83:eb:c8:5c:aa:cb:4a:1a:12:54: cd:77:ad:40:cb:70:ff:bc:cc:5b:b9:9f:09:c1:4d:d0:a4:d5: 22:ce:5f:ac:18:49:d2:bd:84:91:33:9a:69:29:c3:c1:dc:6a: 0d:d8:63:5a:5c:d5:f9:a4:a1:0f:9b:d6:17:17:ab:8c:2b:20: 64:a2:d0:30:f6:a8:03:d1:48:c1:5c:06:7d:23:1a:0b:df:c1: ae:02:7d:74:d7:32:4f:3f:c2:f8:e4:49:bc:2c:19:c8:ae:d2: 17:3b:c3:1c:60:5f:a0:2c:8c:93:de:cf:d8:41:e0:d3:91:2e: 68:37:3b:db:cd:22:7e:60:8e:f5:af:5c:6d:ac:ac:65:1f:ef: b9:a8:6c:de -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUVMtgnHqRLRn9XD24m3lsT68WCDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMzg1NEIxRjYxQkEzM0E0MjkzNjdCRjBBODk4RDRF NEE5QTI0QzAeFw0yNDA2MjIxNTQxMjJaFw0yNTA2MjExNTQ2MjJaMDMxMTAvBgNV BAMTKEU0RDc1MjE2QkEzNUQyODI1OEU3RDlGM0Y4RjQxRjY5MjNFMjE5NTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVfOJmxEo0lI2gB7AFJqLLuNEi 7k7QYYptYMXccfev+HWm2V5enArDmdDzgF2zlYTPOI9oGt+VZwMLo/bTJaz/uY3/ MD6y+Awstb0INqt3himvSp9ix+a9UUMevFErI4IRIlFROrXXhL7asTsA+aPfP3yZ 9zkLOUoJAbAE1F8F/CLAx1e75IDGDQELpQf5491k7JtNZN+LaFMxJeE+b7SBDRsE lSOZqJw58SjGT2C8MxB/oK1Ij7ZX72agIM02YzSzz8QpYjc5xS6Tm7a/BCUF6nyk /33PCe8L2QGJ6BbFfytn9Pl/qrUSyrlQsvtKngvRB/Puk7sgmzGZ7mSn3/4TAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU5NdSFro10oJY59nz+PQfaSPiGVkwHwYDVR0j BBgwFoAUnSOFSx9hujOkKTZ78KiY1OSpokwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDdlNDU5MmUtMjNjMC00Y2NjLTk0ZGEtNmM5NTgwN2Y4 M2U3LzEvOUQyMzg1NEIxRjYxQkEzM0E0MjkzNjdCRjBBODk4RDRFNEE5QTI0Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC85RDIzODU0QjFGNjFCQTMzQTQyOTM2N0JG MEE4OThENEU0QTlBMjRDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kN2U0NTkyZS0yM2MwLTRjY2MtOTRkYS02Yzk1ODA3ZjgzZTcvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjEzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM0MzczMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRLoAMA0GCSqGSIb3DQEBCwUAA4IBAQDF Cu0XkdE+yZxZACVUGsBUIfJi3AIIM4VKGa3mnZCY+LwZD1M9tJAvKXD4UdLuMhkD icO8SG67jvQZfp0yyKl6FMxWBrQJCnEvYbDeXaVDlgqcuP6kX6A9maebBuB5HZSK 5G1qT78fDzg6vNtGTTgHVHcqdoPryFyqy0oaElTNd61Ay3D/vMxbuZ8JwU3QpNUi zl+sGEnSvYSRM5ppKcPB3GoN2GNaXNX5pKEPm9YXF6uMKyBkotAw9qgD0UjBXAZ9 IxoL38GuAn101zJPP8L45Em8LBnIrtIXO8McYF+gLIyT3s/YQeDTkS5oNzvbzSJ+ YI71r1xtrKxlH++5qGze -----END CERTIFICATE-----Generated at Mon Nov 4 13:10:05 2024 by rpki-client on console-fra.rpki-client.org