$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653030303a3a2f33362d3438203d3e20323134363433.roa File: 326131343a373538313a653030303a3a2f33362d3438203d3e20323134363433.roa (raw, json) Hash identifier: RI+LiFaHIXOnFBEPUdeAlYMM3jYq6L3GlwEgxFMkdxM= Subject key identifier: D9:3F:FE:F1:83:FF:75:A7:F4:32:52:44:47:C8:3B:88:AD:EF:DB:1F Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Certificate serial: 7E26857AD41B3D011C3C53160DC557687DC0AB49 Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653030303a3a2f33362d3438203d3e20323134363433.roa Signing time: Tue 03 Sep 2024 19:04:00 +0000 ROA not before: Tue 03 Sep 2024 18:59:00 +0000 ROA not after: Tue 02 Sep 2025 19:04:00 +0000 asID: 214643 IP address blocks: 2a14:7581:e000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 06:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:26:85:7a:d4:1b:3d:01:1c:3c:53:16:0d:c5:57:68:7d:c0:ab:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Validity Not Before: Sep 3 18:59:00 2024 GMT Not After : Sep 2 19:04:00 2025 GMT Subject: CN=D93FFEF183FF75A7F432524447C83B88ADEFDB1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:45:31:d4:c1:53:b2:ce:91:51:70:f3:7d:91: 6c:e4:fc:03:0f:22:9d:8e:b5:0c:6e:7d:56:0a:f7: 6c:54:90:b3:2e:00:f8:7f:21:bd:68:1e:60:2b:5f: 4f:c1:f3:b8:a1:56:ea:d7:c4:48:28:73:03:ab:f2: 26:f9:c9:dd:46:5b:26:f9:4e:3a:f8:3f:fb:fa:78: 86:38:5d:bf:4b:0a:98:00:04:c3:4c:33:5e:14:cf: db:10:22:68:fa:a8:e3:ad:d6:bc:c7:77:c1:cf:76: 16:b9:a4:a2:2c:50:04:b8:29:b2:08:f7:aa:f5:e3: be:34:ee:70:31:9c:a5:6b:28:e7:6c:e0:8a:09:ee: 39:34:6b:5b:e3:3c:72:df:a7:a5:4c:45:df:5b:8c: 76:4b:34:9e:ab:e5:1c:2c:78:97:bc:ab:05:12:b7: 69:9e:c3:f9:68:ef:c9:52:39:1c:3c:a7:20:2b:f6: bf:59:33:37:92:57:f5:28:2d:7e:46:7b:ee:23:c9: c3:e0:8b:94:df:76:38:a3:9e:e0:65:2b:06:b7:cb: 0f:54:75:45:62:bc:93:c8:40:d5:00:86:22:f0:4a: ef:bf:42:a8:1d:b6:89:f8:8b:ad:dd:0d:21:c8:46: 0a:e2:1c:ec:33:73:02:c0:fd:2e:9f:a4:ed:6f:0d: 05:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:3F:FE:F1:83:FF:75:A7:F4:32:52:44:47:C8:3B:88:AD:EF:DB:1F X509v3 Authority Key Identifier: keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a653030303a3a2f33362d3438203d3e20323134363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:e000::/36 Signature Algorithm: sha256WithRSAEncryption 54:15:02:36:60:24:ce:fd:81:3a:c5:07:d4:a6:8c:9d:d7:6a: f8:f6:29:34:19:2d:cb:5c:2c:e3:25:15:f4:c2:71:d1:02:b9: 88:5b:ff:33:a9:4b:2d:2c:65:b8:e1:de:ea:a9:64:6d:c4:82: 6d:54:9f:21:4e:ff:b3:26:8e:55:3b:9a:8d:95:14:2f:fb:2a: 66:7d:70:66:9d:40:ae:cb:67:df:b0:49:49:7e:91:cb:60:53: 5f:59:89:ee:ea:6c:18:6a:44:c6:b0:6e:29:85:5f:f9:c8:3c: 24:50:ce:44:c3:fc:ab:b4:37:86:bd:c3:3c:4d:06:8a:4e:55: ff:fd:9e:fc:e8:14:07:5a:c1:0b:26:d8:cb:85:68:1f:7c:4b: f2:83:6d:9d:d0:50:a9:cb:95:59:6a:ab:7f:d5:65:0b:6c:ba: 28:a9:3a:ec:7b:02:0c:07:f4:aa:41:23:6a:e6:b1:38:03:25: 2c:e8:04:e5:14:56:26:a1:7d:ae:b2:a9:2e:1b:58:15:a8:4f: d8:58:e6:c4:fc:9a:22:65:5b:9b:67:16:02:b1:da:3e:45:6b: 3e:fd:82:56:6a:cc:7d:06:6d:8f:c8:45:36:e5:e5:70:a2:d2: 64:63:0e:2b:dd:29:91:c7:18:8c:c1:dc:d8:a9:81:a3:2d:e0: dd:1e:18:d1 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUfiaFetQbPQEcPFMWDcVXaH3Aq0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhB RUY3QUQxQTAeFw0yNDA5MDMxODU5MDBaFw0yNTA5MDIxOTA0MDBaMDMxMTAvBgNV BAMTKEQ5M0ZGRUYxODNGRjc1QTdGNDMyNTI0NDQ3QzgzQjg4QURFRkRCMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8RTHUwVOyzpFRcPN9kWzk/AMP Ip2OtQxufVYK92xUkLMuAPh/Ib1oHmArX0/B87ihVurXxEgocwOr8ib5yd1GWyb5 Tjr4P/v6eIY4Xb9LCpgABMNMM14Uz9sQImj6qOOt1rzHd8HPdha5pKIsUAS4KbII 96r147407nAxnKVrKOds4IoJ7jk0a1vjPHLfp6VMRd9bjHZLNJ6r5RwseJe8qwUS t2mew/lo78lSORw8pyAr9r9ZMzeSV/UoLX5Ge+4jycPgi5TfdjijnuBlKwa3yw9U dUVivJPIQNUAhiLwSu+/Qqgdton4i63dDSHIRgriHOwzcwLA/S6fpO1vDQWjAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU2T/+8YP/daf0MlJER8g7iK3v2x8wHwYDVR0j BBgwFoAU+feiiFzzAS+hOQ07Mln8eK73rRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGI4ZDhiN2QtYzQ4Ni00MjM5LTlkOWYtOGY4ZjVkY2Vk OGQwLzEvRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhBRUY3QUQxQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GOUY3QTI4ODVDRjMwMTJGQTEzOTBEM0Iz MjU5RkM3OEFFRjdBRDFBLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kYjhkOGI3ZC1jNDg2LTQyMzktOWQ5Zi04ZjhmNWRjZWQ4ZDAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY1MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MTM0MzYzNDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1geAwDQYJKoZIhvcNAQELBQADggEBAFQV AjZgJM79gTrFB9SmjJ3Xavj2KTQZLctcLOMlFfTCcdECuYhb/zOpSy0sZbjh3uqp ZG3Egm1UnyFO/7MmjlU7mo2VFC/7KmZ9cGadQK7LZ9+wSUl+kctgU19Zie7qbBhq RMawbimFX/nIPCRQzkTD/Ku0N4a9wzxNBopOVf/9nvzoFAdawQsm2MuFaB98S/KD bZ3QUKnLlVlqq3/VZQtsuiipOux7AgwH9KpBI2rmsTgDJSzoBOUUViahfa6yqS4b WBWoT9hY5sT8miJlW5tnFgKx2j5Faz79glZqzH0GbY/IRTbl5XCi0mRjDivdKZHH GIzB3NipgaMt4N0eGNE= -----END CERTIFICATE-----Generated at Thu Sep 19 09:37:04 2024 by rpki-client on console-ams.rpki-client.org