$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa File: 326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa (raw, json) Hash identifier: DonXVIIRwXFtMDsb9sdBklqAYfI9iT73LuaaHDDwZzQ= Subject key identifier: 33:5C:0F:D8:93:04:D6:67:30:00:27:75:B2:05:C0:CA:70:1D:3F:6E Certificate issuer: /CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Certificate serial: B2F6BB759C86F47EA09C343C1076039755A4F8 Authority key identifier: F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa Signing time: Tue 25 Jun 2024 09:47:27 +0000 ROA not before: Tue 25 Jun 2024 09:42:27 +0000 ROA not after: Tue 24 Jun 2025 09:47:27 +0000 asID: 214643 IP address blocks: 2a14:7581:ffd::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 06:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b2:f6:bb:75:9c:86:f4:7e:a0:9c:34:3c:10:76:03:97:55:a4:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A Validity Not Before: Jun 25 09:42:27 2024 GMT Not After : Jun 24 09:47:27 2025 GMT Subject: CN=335C0FD89304D66730002775B205C0CA701D3F6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:31:6b:79:16:32:27:d5:7d:7d:30:20:7a:f7: 5c:05:bd:cb:e4:b5:6f:e2:3e:2c:13:78:b7:0e:5a: ca:46:4d:3c:85:0c:dd:83:31:6f:1d:e0:c1:4c:92: 19:72:7b:96:f1:9f:15:dc:0c:3b:6c:73:66:63:7c: 65:83:c5:99:64:d6:1e:42:13:af:9a:e0:07:d4:a7: ba:57:6b:e3:97:33:86:b4:0e:d2:ee:76:38:2a:d1: 9d:16:bb:c6:fa:ea:3e:40:d6:95:b3:3e:43:0e:10: d0:54:7d:11:2c:05:22:9b:bf:d7:52:c1:88:99:cd: 14:45:c5:56:7a:6a:8d:da:f6:f5:9a:cb:29:4d:4f: 15:24:32:5c:f0:3c:72:5c:74:f4:19:28:97:ab:cc: f2:be:81:5f:ee:5d:f8:1c:64:79:c2:27:d8:91:75: 86:58:38:6e:16:92:0f:de:ec:ef:36:7f:cb:7f:34: d8:65:ae:93:be:3e:23:24:39:ba:7c:bc:0b:eb:c6: 32:42:6f:7a:2d:de:d3:fe:4f:6a:89:54:ba:c5:d5: ca:cc:dc:1e:6a:1e:e5:af:0b:20:67:e1:14:ac:0f: 92:f0:03:29:f6:5a:d3:51:9f:09:81:ed:ee:15:06: 88:cd:ca:02:86:0b:75:fd:86:43:88:ae:2d:94:c4: ab:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5C:0F:D8:93:04:D6:67:30:00:27:75:B2:05:C0:CA:70:1D:3F:6E X509v3 Authority Key Identifier: keyid:F9:F7:A2:88:5C:F3:01:2F:A1:39:0D:3B:32:59:FC:78:AE:F7:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F9F7A2885CF3012FA1390D3B3259FC78AEF7AD1A.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/db8d8b7d-c486-4239-9d9f-8f8f5dced8d0/1/326131343a373538313a6666643a3a2f34382d3438203d3e20323134363433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:ffd::/48 Signature Algorithm: sha256WithRSAEncryption 16:d7:18:11:89:de:7d:81:12:f0:c8:84:ad:04:20:4f:7a:77: 74:d8:c1:9d:84:8c:24:41:d3:a6:25:a3:8f:15:d5:62:04:b2: 3c:68:45:50:a5:77:ff:1a:8d:03:b6:96:bd:79:c9:c3:17:87: c0:b6:5a:b6:3f:df:dd:fc:38:0c:ea:4a:f2:ef:00:5a:b7:99: 3a:bc:be:a8:e3:c3:f2:67:a8:1c:29:f0:f5:25:14:da:88:d9: b4:94:5d:52:ab:e4:3a:4a:13:11:bb:d5:bd:9d:22:98:59:32: 34:69:a7:ee:49:84:bb:e1:05:86:23:ad:a1:07:27:c3:c5:24: 2f:dc:a1:a4:e4:96:9c:3f:66:84:5c:d3:5a:4a:0c:a7:b8:e5: ef:f7:85:ec:a4:86:77:df:ee:7e:0e:3f:b1:55:c4:54:96:d9: 19:32:95:6a:24:20:63:06:b5:cb:06:51:5e:0c:77:37:98:cb: 27:fc:8a:38:42:76:a0:2f:3f:c5:f8:0f:2d:c8:08:ce:d8:db: b2:5e:9f:b3:47:3a:07:4b:79:87:98:ee:d6:06:6a:f9:ae:47: 62:f3:3d:b7:5a:56:91:8e:7e:56:27:2c:2b:05:ce:18:bf:0b: 08:dc:ff:3e:71:cc:ff:15:d1:0e:75:d5:77:3c:d4:95:7f:2f: 41:61:37:ca -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUALL2u3WchvR+oJw0PBB2A5dVpPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhB RUY3QUQxQTAeFw0yNDA2MjUwOTQyMjdaFw0yNTA2MjQwOTQ3MjdaMDMxMTAvBgNV BAMTKDMzNUMwRkQ4OTMwNEQ2NjczMDAwMjc3NUIyMDVDMENBNzAxRDNGNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVMWt5FjIn1X19MCB691wFvcvk tW/iPiwTeLcOWspGTTyFDN2DMW8d4MFMkhlye5bxnxXcDDtsc2ZjfGWDxZlk1h5C E6+a4AfUp7pXa+OXM4a0DtLudjgq0Z0Wu8b66j5A1pWzPkMOENBUfREsBSKbv9dS wYiZzRRFxVZ6ao3a9vWayylNTxUkMlzwPHJcdPQZKJerzPK+gV/uXfgcZHnCJ9iR dYZYOG4Wkg/e7O82f8t/NNhlrpO+PiMkObp8vAvrxjJCb3ot3tP+T2qJVLrF1crM 3B5qHuWvCyBn4RSsD5LwAyn2WtNRnwmB7e4VBojNygKGC3X9hkOIri2UxKvbAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUM1wP2JME1mcwACd1sgXAynAdP24wHwYDVR0j BBgwFoAU+feiiFzzAS+hOQ07Mln8eK73rRowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGI4ZDhiN2QtYzQ4Ni00MjM5LTlkOWYtOGY4ZjVkY2Vk OGQwLzEvRjlGN0EyODg1Q0YzMDEyRkExMzkwRDNCMzI1OUZDNzhBRUY3QUQxQS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GOUY3QTI4ODVDRjMwMTJGQTEzOTBEM0Iz MjU5RkM3OEFFRjdBRDFBLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9kYjhkOGI3ZC1jNDg2LTQyMzktOWQ5Zi04ZjhmNWRjZWQ4ZDAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY2NjY2NDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NDM2MzQzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEP/TANBgkqhkiG9w0BAQsFAAOCAQEAFtcY EYnefYES8MiErQQgT3p3dNjBnYSMJEHTpiWjjxXVYgSyPGhFUKV3/xqNA7aWvXnJ wxeHwLZatj/f3fw4DOpK8u8AWreZOry+qOPD8meoHCnw9SUU2ojZtJRdUqvkOkoT EbvVvZ0imFkyNGmn7kmEu+EFhiOtoQcnw8UkL9yhpOSWnD9mhFzTWkoMp7jl7/eF 7KSGd9/ufg4/sVXEVJbZGTKVaiQgYwa1ywZRXgx3N5jLJ/yKOEJ2oC8/xfgPLcgI ztjbsl6fs0c6B0t5h5ju1gZq+a5HYvM9t1pWkY5+VicsKwXOGL8LCNz/PnHM/xXR DnXVdzzUlX8vQWE3yg== -----END CERTIFICATE-----Generated at Thu Sep 19 09:22:46 2024 by rpki-client on console-fra.rpki-client.org