$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393230303a3a2f34302d3438203d3e20313430393135.roa File: 326131343a373538303a393230303a3a2f34302d3438203d3e20313430393135.roa (raw, json) Hash identifier: n6lsjVYHHKKKPmzUm98edFKQEZTX7R3BteBSBE3ZmTg= Subject key identifier: 07:C0:F2:37:E2:D6:3D:0C:CB:DC:A0:DC:96:67:49:B3:57:4B:DD:23 Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Certificate serial: 592B20634CBA6B98FD4EBAA5108DE3AD5E75D2DA Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393230303a3a2f34302d3438203d3e20313430393135.roa Signing time: Fri 18 Oct 2024 13:30:39 +0000 ROA not before: Fri 18 Oct 2024 13:25:39 +0000 ROA not after: Fri 17 Oct 2025 13:30:39 +0000 asID: 140915 IP address blocks: 2a14:7580:9200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:2b:20:63:4c:ba:6b:98:fd:4e:ba:a5:10:8d:e3:ad:5e:75:d2:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Validity Not Before: Oct 18 13:25:39 2024 GMT Not After : Oct 17 13:30:39 2025 GMT Subject: CN=07C0F237E2D63D0CCBDCA0DC966749B3574BDD23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:de:6d:43:b2:10:23:b4:27:33:75:d9:71:84: 1f:cd:9e:18:94:7c:05:27:4d:7e:d8:db:65:87:cd: 13:32:88:f3:e3:68:0d:cb:fc:f6:f8:e1:b5:53:36: 4b:86:a7:76:ff:6c:d5:8d:58:ec:6d:52:0e:43:ac: 98:b7:4e:e4:f3:c1:7a:ce:cd:81:0f:2c:dd:ae:a6: 48:34:87:eb:b0:5c:29:63:e7:b7:f2:5b:d2:8a:51: cd:52:a6:ac:e9:6d:7d:bf:5f:8d:b3:68:6b:53:06: 10:50:04:e8:f8:de:bd:d6:3e:10:7f:0a:ab:3f:1d: 1e:44:f5:33:19:e4:6b:d7:7a:a5:07:23:be:45:38: 86:d0:e7:9d:d7:32:85:23:47:ea:6d:fa:ba:6f:d8: 5e:20:7c:3b:93:7d:4f:cb:60:f3:ed:f3:2d:e3:00: 80:78:e5:a7:ea:ce:bf:56:a1:bc:0e:2a:1e:38:ca: a8:bc:1c:59:d8:68:1d:1b:bb:0b:57:1f:4c:d6:c5: 58:7e:10:5c:65:62:af:47:2c:e9:c7:df:e2:98:7c: d0:e5:af:ad:9f:75:60:d9:ad:8b:33:c5:7e:19:21: 20:3e:43:7b:60:28:64:52:3b:b9:88:78:3d:04:44: c5:8c:93:68:82:fd:09:4e:f8:e3:2e:09:63:2c:c1: 70:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C0:F2:37:E2:D6:3D:0C:CB:DC:A0:DC:96:67:49:B3:57:4B:DD:23 X509v3 Authority Key Identifier: keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538303a393230303a3a2f34302d3438203d3e20313430393135.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7580:9200::/40 Signature Algorithm: sha256WithRSAEncryption 46:5e:a2:68:4c:f9:f9:e4:59:5f:42:53:43:57:24:17:82:46: 4c:94:22:68:a1:66:28:31:c6:4e:59:b6:55:48:64:78:9f:f5: 87:3f:9e:dc:86:65:a5:e5:52:7c:49:4d:43:14:4c:65:af:79: 26:76:48:2e:b1:33:75:11:1f:b7:b2:a5:49:d4:73:3b:1f:0b: cf:db:6e:5d:38:8a:fe:1f:55:66:18:ce:62:10:9d:40:d3:0f: ef:f0:80:a2:e3:c8:52:a7:f6:c8:9e:a3:59:f1:54:e2:29:78: 92:e5:73:c8:99:68:a9:6f:52:bf:c4:70:12:2e:40:7a:e2:a1: 1e:f6:33:2a:0e:79:10:48:0b:b4:72:fc:69:fc:d7:a4:40:46: 7e:6b:cf:96:b9:ff:b3:21:d0:24:26:3b:54:ec:db:9d:8a:a2: 69:97:9b:44:9e:e0:40:ed:30:d5:6e:55:ee:d2:43:7a:24:08: 7a:6f:fc:83:d0:f2:98:ba:d7:94:5a:fb:5b:86:e6:ba:2a:1f: 80:e0:36:b2:eb:5a:9c:d4:0f:01:ed:53:38:27:38:05:7e:44: 3c:8a:cc:d1:65:70:e8:c4:3b:98:6d:7e:bc:28:62:74:47:10: 9f:64:46:94:ae:c9:91:9e:4a:79:09:c2:16:bf:9e:12:22:0d: 5e:ee:57:e5 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUWSsgY0y6a5j9TrqlEI3jrV510towDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhB RUY3QUQxQTAeFw0yNDEwMTgxMzI1MzlaFw0yNTEwMTcxMzMwMzlaMDMxMTAvBgNV BAMTKDA3QzBGMjM3RTJENjNEMENDQkRDQTBEQzk2Njc0OUIzNTc0QkREMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCO3m1DshAjtCczddlxhB/NnhiU fAUnTX7Y22WHzRMyiPPjaA3L/Pb44bVTNkuGp3b/bNWNWOxtUg5DrJi3TuTzwXrO zYEPLN2upkg0h+uwXClj57fyW9KKUc1SpqzpbX2/X42zaGtTBhBQBOj43r3WPhB/ Cqs/HR5E9TMZ5GvXeqUHI75FOIbQ553XMoUjR+pt+rpv2F4gfDuTfU/LYPPt8y3j AIB45afqzr9WobwOKh44yqi8HFnYaB0buwtXH0zWxVh+EFxlYq9HLOnH3+KYfNDl r62fdWDZrYszxX4ZISA+Q3tgKGRSO7mIeD0ERMWMk2iC/QlO+OMuCWMswXDbAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUB8DyN+LWPQzL3KDclmdJs1dL3SMwHwYDVR0j BBgwFoAU+feiiFzzAS+hOQ07Mln8eK73rRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGI4ZDhiN2QtYzQ4Ni00MjM5LTlkOWYtOGY4ZjVkY2Vk OGQwLzEvRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhBRUY3QUQxQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GOUY3QTI4ODVDRjMwMTJGQTEzOTBEM0Iz MjU5RkM3OEFFRjdBRDFBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kYjhkOGI3ZC1jNDg2LTQyMzktOWQ5Zi04ZjhmNWRjZWQ4ZDAvMS8zMjYxMzEz NDNhMzczNTM4MzAzYTM5MzIzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzEz NDMwMzkzMTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gJIwDQYJKoZIhvcNAQELBQADggEBAEZe omhM+fnkWV9CU0NXJBeCRkyUImihZigxxk5ZtlVIZHif9Yc/ntyGZaXlUnxJTUMU TGWveSZ2SC6xM3URH7eypUnUczsfC8/bbl04iv4fVWYYzmIQnUDTD+/wgKLjyFKn 9sieo1nxVOIpeJLlc8iZaKlvUr/EcBIuQHrioR72MyoOeRBIC7Ry/Gn816RARn5r z5a5/7Mh0CQmO1Ts252KommXm0Se4EDtMNVuVe7SQ3okCHpv/IPQ8pi615Ra+1uG 5roqH4DgNrLrWpzUDwHtUzgnOAV+RDyKzNFlcOjEO5htfrwoYnRHEJ9kRpSuyZGe SnkJwha/nhIiDV7uV+U= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:51 2024 by rpki-client on console-ams.rpki-client.org