$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393130303a3a2f34302d3438203d3e20323031333836.roa File: 326131343a373538303a393130303a3a2f34302d3438203d3e20323031333836.roa (raw, json) Hash identifier: HGfpWKFgSmhSbJJ0S3ZdUrJxu8/156bUgg5vlqYKRis= Subject key identifier: 2E:6B:DE:49:16:45:EC:BF:20:7F:3E:EB:D1:CD:F6:DD:22:84:42:E7 Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Certificate serial: 4B9A70D0BFCB2D7C540B63405D604EE121E4A08E Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393130303a3a2f34302d3438203d3e20323031333836.roa Signing time: Mon 14 Oct 2024 14:57:06 +0000 ROA not before: Mon 14 Oct 2024 14:52:06 +0000 ROA not after: Mon 13 Oct 2025 14:57:06 +0000 asID: 201386 IP address blocks: 2a14:7580:9100::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9a:70:d0:bf:cb:2d:7c:54:0b:63:40:5d:60:4e:e1:21:e4:a0:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Validity Not Before: Oct 14 14:52:06 2024 GMT Not After : Oct 13 14:57:06 2025 GMT Subject: CN=2E6BDE491645ECBF207F3EEBD1CDF6DD228442E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6f:4a:99:0c:4f:d4:70:bf:c2:7c:ac:b9:87: 36:df:87:1f:3d:90:39:d8:f2:b5:32:6e:98:f1:78: d2:13:82:77:a0:aa:d9:e2:f1:b5:37:ff:e5:7c:e5: 81:26:94:2c:71:c9:3d:78:64:21:85:67:b1:6c:82: f5:8e:7d:40:15:8a:2d:6e:0f:0e:4e:89:4e:21:7d: a1:f2:77:df:dd:4b:ea:a7:51:95:2d:2e:78:94:bc: d8:76:c3:e0:d0:38:7d:5b:be:c1:79:bf:2d:f6:b5: 41:2e:52:ee:9b:13:f4:cc:ab:b6:16:be:95:fa:66: 1d:61:ce:6e:5e:61:d5:7c:bf:61:56:52:6e:46:7c: 4f:b0:79:d4:28:ff:05:e7:5c:11:0f:49:6f:ba:ca: a0:9a:d0:48:53:fd:bd:62:ed:72:73:78:c0:90:6b: 0c:78:9c:c9:41:13:32:c0:ba:e1:c3:6f:f4:b4:6e: 59:17:45:5b:1d:85:d9:13:99:5e:e2:0d:82:d7:ba: 63:fb:63:19:a5:ab:1e:c8:f9:31:91:99:3e:21:70: 1f:4b:18:5a:0f:59:ed:fd:bb:5f:29:e8:5e:21:dd: 33:32:f7:27:66:2a:30:4a:33:bc:8c:c6:2a:56:59: c1:2e:84:2c:96:7a:a5:52:90:ce:a8:a9:72:f0:5e: 16:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6B:DE:49:16:45:EC:BF:20:7F:3E:EB:D1:CD:F6:DD:22:84:42:E7 X509v3 Authority Key Identifier: keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393130303a3a2f34302d3438203d3e20323031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:9100::/40 Signature Algorithm: sha256WithRSAEncryption b4:d3:ac:42:9c:a3:fa:42:e4:e3:6a:6a:7c:6f:c6:5c:31:20: 6f:f1:9a:6d:35:c5:9e:7b:90:09:4e:7f:03:71:99:a1:12:b6: 9a:49:3b:bd:d4:d5:f3:7a:49:55:af:de:2d:ef:8f:6e:3f:90: 7a:5e:01:f7:4c:b4:51:95:44:a5:19:45:46:84:fb:8a:af:31: 00:56:df:37:c5:dc:1a:aa:c5:bb:e2:18:4b:50:c8:38:33:63: 17:e1:00:7b:63:2c:fb:33:38:58:a5:bd:fd:9b:3a:38:ae:3a: d9:9c:af:a3:07:ce:35:92:83:9c:85:8b:b4:2d:44:b4:b0:be: 0d:c5:2d:af:4c:02:6a:11:54:3f:74:cc:46:8d:1e:4c:7c:e7: e0:dc:1c:bf:2b:94:28:31:36:7a:c4:56:c6:32:a4:2b:78:2f: 74:fb:02:72:d8:49:e9:ce:e6:14:28:c0:de:6e:9c:86:b2:26: 30:fb:d2:6d:37:a6:e5:00:ba:38:0e:40:c2:5b:5a:6c:b3:3a: 40:a7:9c:c6:b6:75:03:a2:81:1a:f2:69:8f:cb:9e:3a:5a:9a: 50:b0:fc:c9:38:ae:ca:62:96:85:7c:b2:14:77:d0:bf:3a:96: 83:4b:63:ff:67:e3:ab:41:88:6e:48:d3:17:a2:99:30:ea:ae: d4:dd:62:e6 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUS5pw0L/LLXxUC2NAXWBO4SHkoI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhB RUY3QUQxQTAeFw0yNDEwMTQxNDUyMDZaFw0yNTEwMTMxNDU3MDZaMDMxMTAvBgNV BAMTKDJFNkJERTQ5MTY0NUVDQkYyMDdGM0VFQkQxQ0RGNkREMjI4NDQyRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFb0qZDE/UcL/CfKy5hzbfhx89 kDnY8rUybpjxeNITgnegqtni8bU3/+V85YEmlCxxyT14ZCGFZ7FsgvWOfUAVii1u Dw5OiU4hfaHyd9/dS+qnUZUtLniUvNh2w+DQOH1bvsF5vy32tUEuUu6bE/TMq7YW vpX6Zh1hzm5eYdV8v2FWUm5GfE+wedQo/wXnXBEPSW+6yqCa0EhT/b1i7XJzeMCQ awx4nMlBEzLAuuHDb/S0blkXRVsdhdkTmV7iDYLXumP7Yxmlqx7I+TGRmT4hcB9L GFoPWe39u18p6F4h3TMy9ydmKjBKM7yMxipWWcEuhCyWeqVSkM6oqXLwXhZNAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQULmveSRZF7L8gfz7r0c323SKEQucwHwYDVR0j BBgwFoAU+feiiFzzAS+hOQ07Mln8eK73rRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGI4ZDhiN2QtYzQ4Ni00MjM5LTlkOWYtOGY4ZjVkY2Vk OGQwLzEvRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhBRUY3QUQxQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GOUY3QTI4ODVDRjMwMTJGQTEzOTBEM0Iz MjU5RkM3OEFFRjdBRDFBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kYjhkOGI3ZC1jNDg2LTQyMzktOWQ5Zi04ZjhmNWRjZWQ4ZDAvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzEzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzIz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gJEwDQYJKoZIhvcNAQELBQADggEBALTT rEKco/pC5ONqanxvxlwxIG/xmm01xZ57kAlOfwNxmaEStppJO73U1fN6SVWv3i3v j24/kHpeAfdMtFGVRKUZRUaE+4qvMQBW3zfF3BqqxbviGEtQyDgzYxfhAHtjLPsz OFilvf2bOjiuOtmcr6MHzjWSg5yFi7QtRLSwvg3FLa9MAmoRVD90zEaNHkx85+Dc HL8rlCgxNnrEVsYypCt4L3T7AnLYSenO5hQowN5unIayJjD70m03puUAujgOQMJb WmyzOkCnnMa2dQOigRryaY/LnjpamlCw/Mk4rspiloV8shR30L86loNLY/9n46tB iG5I0xeimTDqrtTdYuY= -----END CERTIFICATE-----Generated at Fri Nov 22 05:53:33 2024 by rpki-client on console-fra.rpki-client.org