$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa File: 3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa (raw, json) Hash identifier: 1+lMdnjYdbL4iWHh6STKSM8k3Z78ot5HK73iYhaXx98= Subject key identifier: 3A:C7:E5:A9:24:DA:BD:81:25:3B:01:32:4E:2D:0D:26:7D:E8:A0:E0 Certificate issuer: /CN=47E9555355C6B007AACD5D45BF41E3383E991641 Certificate serial: 23C4829872B6B68DC0C0CA77ABFC87FDD13DBC26 Authority key identifier: 47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41 Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa Signing time: Thu 18 Apr 2024 23:17:37 +0000 ROA not before: Thu 18 Apr 2024 23:12:37 +0000 ROA not after: Thu 17 Apr 2025 23:17:37 +0000 asID: 199518 IP address blocks: 198.180.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.mft rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.mft rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 07:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:c4:82:98:72:b6:b6:8d:c0:c0:ca:77:ab:fc:87:fd:d1:3d:bc:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47E9555355C6B007AACD5D45BF41E3383E991641 Validity Not Before: Apr 18 23:12:37 2024 GMT Not After : Apr 17 23:17:37 2025 GMT Subject: CN=3AC7E5A924DABD81253B01324E2D0D267DE8A0E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:eb:92:83:65:5e:f4:19:ec:68:5e:55:22: 43:da:ee:e0:c8:55:c9:51:76:51:c4:a2:e9:18:8c: eb:db:78:6c:6d:22:10:13:e9:91:ef:94:12:66:11: 7c:d7:77:f6:13:84:60:fb:40:a0:75:9d:df:bc:44: 6d:00:2b:30:0f:b4:eb:5f:28:09:6f:43:ac:81:98: 00:18:69:ca:b1:ff:2e:25:34:93:9d:d2:cb:8c:fa: 57:f0:33:b5:b3:7b:1f:56:24:2c:b5:9e:8a:01:a1: 7e:f9:0f:de:5f:fc:29:61:ff:c2:88:6c:17:86:b0: 7a:80:ca:14:e8:bf:cb:4a:2e:0c:b9:1f:55:18:ad: 47:1b:e2:8c:b5:15:1c:7a:ff:90:32:2b:c1:38:fc: 65:2b:e1:b6:16:45:a3:45:3b:b8:96:af:06:42:15: 27:9b:78:af:52:4e:ac:82:4d:91:d3:3f:78:a6:df: 86:ff:85:b6:f8:b4:d9:41:7d:a1:ad:ef:88:5c:8b: 5c:dc:12:0a:55:13:0c:79:66:6b:e9:4b:1a:94:65: ff:cf:ed:69:b0:6d:96:a2:3c:a2:da:43:75:99:3b: 57:f8:d0:d4:78:ab:16:4b:8a:12:eb:8f:64:d3:9f: bf:99:03:02:e8:27:31:56:55:fe:c1:2d:fe:b2:62: a5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C7:E5:A9:24:DA:BD:81:25:3B:01:32:4E:2D:0D:26:7D:E8:A0:E0 X509v3 Authority Key Identifier: keyid:47:E9:55:53:55:C6:B0:07:AA:CD:5D:45:BF:41:E3:38:3E:99:16:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/47E9555355C6B007AACD5D45BF41E3383E991641.crl Authority Information Access: CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/R-lVU1XGsAeqzV1Fv0HjOD6ZFkE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/4/3139382e3138302e3135312e302f32342d3234203d3e20313939353138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.180.151.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:27:2e:4d:bb:3a:09:e7:76:30:6e:a2:5b:b6:dc:4f:59:2b: 6d:91:cb:1f:a8:6e:14:45:e1:16:3d:7e:94:8d:79:c7:b3:4b: a4:f6:5b:73:e0:75:11:8d:b5:ce:ac:e3:78:55:4a:55:63:0e: 9c:9a:80:8a:c6:5b:5b:83:38:c0:94:23:cf:2b:8e:34:12:8c: ce:91:39:28:38:8c:fb:2a:31:25:7f:90:7b:70:31:4f:06:d0: e6:71:9a:f7:df:c5:3d:ee:d4:96:94:1b:fc:5a:3e:b8:d2:a1: 79:0c:c2:70:79:43:60:67:45:ac:f9:a9:98:7a:33:e1:c0:8d: 9c:b0:6d:99:12:64:e2:64:32:88:a7:18:1f:58:68:84:8b:6b: b8:de:1c:68:42:f6:74:ae:f1:04:02:59:6e:4e:10:e6:51:ce: bf:e2:1c:2a:49:5b:46:fb:69:57:07:00:74:87:57:0c:70:5e: 34:ea:c0:a8:b0:41:33:e9:b7:36:51:b5:85:1b:bf:f2:f1:7c: fe:ba:dd:d5:83:7a:c1:05:39:b7:25:e2:de:84:ee:58:ea:f1: 55:48:89:ae:2e:4c:d3:06:55:32:65:77:65:e7:5e:0f:12:70: c9:75:c1:44:ed:e5:62:8e:1e:0e:df:bd:17:77:34:9d:b2:96: 0b:e7:57:98 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgIUI8SCmHK2to3AwMp3q/yH/dE9vCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDdFOTU1NTM1NUM2QjAwN0FBQ0Q1RDQ1QkY0MUUzMzgz RTk5MTY0MTAeFw0yNDA0MTgyMzEyMzdaFw0yNTA0MTcyMzE3MzdaMDMxMTAvBgNV BAMTKDNBQzdFNUE5MjREQUJEODEyNTNCMDEzMjRFMkQwRDI2N0RFOEEwRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9geuSg2Ve9BnsaF5VIkPa7uDI VclRdlHEoukYjOvbeGxtIhAT6ZHvlBJmEXzXd/YThGD7QKB1nd+8RG0AKzAPtOtf KAlvQ6yBmAAYacqx/y4lNJOd0suM+lfwM7Wzex9WJCy1nooBoX75D95f/Clh/8KI bBeGsHqAyhTov8tKLgy5H1UYrUcb4oy1FRx6/5AyK8E4/GUr4bYWRaNFO7iWrwZC FSebeK9STqyCTZHTP3im34b/hbb4tNlBfaGt74hci1zcEgpVEwx5ZmvpSxqUZf/P 7WmwbZaiPKLaQ3WZO1f40NR4qxZLihLrj2TTn7+ZAwLoJzFWVf7BLf6yYqW3AgMB AAGjggI4MIICNDAdBgNVHQ4EFgQUOsflqSTavYElOwEyTi0NJn3ooOAwHwYDVR0j BBgwFoAUR+lVU1XGsAeqzV1Fv0HjOD6ZFkEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzQvNDdFOTU1NTM1NUM2QjAwN0FBQ0Q1RDQ1QkY0MUUzMzgzRTk5MTY0MS5j cmwwWwYIKwYBBQUHAQEETzBNMEsGCCsGAQUFBzAChj9yc3luYzovL2NhLnJnLm5l dC9ycGtpL1JHbmV0LU9VL1ItbFZVMVhHc0FlcXpWMUZ2MEhqT0Q2WkZrRS5jZXIw gbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5jOi8vcnN5bmMu cGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1 LWJhZDctYjQyODE4Y2Y1MGU4LzQvMzEzOTM4MmUzMTM4MzAyZTMxMzUzMTJlMzAy ZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzkzOTM1MzEzOC5yb2EwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMa0lzAN BgkqhkiG9w0BAQsFAAOCAQEAfycuTbs6Ced2MG6iW7bcT1krbZHLH6huFEXhFj1+ lI15x7NLpPZbc+B1EY21zqzjeFVKVWMOnJqAisZbW4M4wJQjzyuONBKMzpE5KDiM +yoxJX+Qe3AxTwbQ5nGa99/FPe7UlpQb/Fo+uNKheQzCcHlDYGdFrPmpmHoz4cCN nLBtmRJk4mQyiKcYH1hohItruN4caEL2dK7xBAJZbk4Q5lHOv+IcKklbRvtpVwcA dIdXDHBeNOrAqLBBM+m3NlG1hRu/8vF8/rrd1YN6wQU5tyXi3oTuWOrxVUiJri5M 0wZVMmV3ZedeDxJwyXXBRO3lYo4eDt+9F3c0nbKWC+dXmA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:51 2024 by rpki-client on console-fra.rpki-client.org