$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/326130613a363034343a626230323a3a2f34382d3438203d3e20323135393536.roa File: 326130613a363034343a626230323a3a2f34382d3438203d3e20323135393536.roa (raw, json) Hash identifier: qjoqtSLCEAh/EMx/ZVPrXIqIRMAP4KT47cVp/WFTCbc= Subject key identifier: 2B:85:29:51:3D:76:AD:FA:E1:49:2E:E0:A1:DB:D8:0B:A5:AC:67:48 Certificate issuer: /CN=1303BB8808F766B73D5473CFA7B884E98BCFE97D Certificate serial: 5D65AE8EBDE11338B0956AE4FC6AD59177EF0342 Authority key identifier: 13:03:BB:88:08:F7:66:B7:3D:54:73:CF:A7:B8:84:E9:8B:CF:E9:7D Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1303BB8808F766B73D5473CFA7B884E98BCFE97D.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/326130613a363034343a626230323a3a2f34382d3438203d3e20323135393536.roa Signing time: Fri 12 Jul 2024 15:13:15 +0000 ROA not before: Fri 12 Jul 2024 15:08:15 +0000 ROA not after: Fri 11 Jul 2025 15:13:15 +0000 asID: 215956 IP address blocks: 2a0a:6044:bb02::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/1303BB8808F766B73D5473CFA7B884E98BCFE97D.crl rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/1303BB8808F766B73D5473CFA7B884E98BCFE97D.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1303BB8808F766B73D5473CFA7B884E98BCFE97D.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 20 Sep 2024 07:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:65:ae:8e:bd:e1:13:38:b0:95:6a:e4:fc:6a:d5:91:77:ef:03:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1303BB8808F766B73D5473CFA7B884E98BCFE97D Validity Not Before: Jul 12 15:08:15 2024 GMT Not After : Jul 11 15:13:15 2025 GMT Subject: CN=2B8529513D76ADFAE1492EE0A1DBD80BA5AC6748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:06:22:b9:48:35:47:6f:45:68:97:b8:24: 78:0d:df:8f:f5:4c:7c:92:91:e7:2b:3f:93:eb:4b: 51:c6:80:5f:c4:97:b0:e5:98:a3:a4:30:ca:b5:ba: c0:15:42:83:d6:74:0a:50:dd:15:07:13:5c:9d:a6: 8a:43:87:d5:51:fa:12:f3:c7:99:a8:1e:75:f8:1f: 0e:95:32:58:92:ff:2d:22:ef:78:91:b2:a0:fd:2c: 04:14:76:8b:0c:53:57:6f:85:bc:a0:58:c3:93:5f: 8d:c1:c0:11:32:b8:32:93:43:75:7d:54:fe:3d:c9: 5f:04:55:ae:50:8a:e2:d8:58:db:b8:dd:88:1b:4a: 84:8a:c0:20:df:f4:cc:79:20:e5:b1:5d:77:eb:32: c0:16:66:e1:a5:0e:07:e6:ea:71:58:ea:1c:b4:d2: 35:3a:14:cd:ac:d7:7c:04:be:d8:f1:4d:41:04:a6: 0d:75:d8:ea:29:5c:79:f9:ab:08:06:d2:f1:f1:03: 79:45:16:b6:0d:17:f2:13:5c:96:ff:4a:e3:79:62: 00:f7:18:d4:40:c5:85:a6:d7:a6:36:25:de:31:a2: 48:a4:44:97:4b:84:65:c4:97:3c:2a:c1:2f:e8:a1: 0b:e9:7e:c3:00:c2:5b:50:75:1b:df:65:1c:75:a2: 83:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:85:29:51:3D:76:AD:FA:E1:49:2E:E0:A1:DB:D8:0B:A5:AC:67:48 X509v3 Authority Key Identifier: keyid:13:03:BB:88:08:F7:66:B7:3D:54:73:CF:A7:B8:84:E9:8B:CF:E9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/1303BB8808F766B73D5473CFA7B884E98BCFE97D.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/1303BB8808F766B73D5473CFA7B884E98BCFE97D.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ebf04c7c-f82d-471d-85ad-98c65de1c912/1/326130613a363034343a626230323a3a2f34382d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:bb02::/48 Signature Algorithm: sha256WithRSAEncryption 80:73:8a:fa:f2:26:a2:a4:99:5b:ca:4d:1d:f4:00:eb:1b:8c: ff:eb:c3:fa:7b:39:92:12:77:68:7f:27:57:e9:20:e3:dc:3d: 84:7b:ef:4c:4a:ed:ff:b9:02:4c:eb:48:0c:53:85:3c:38:5b: 20:3a:44:ee:48:ef:f7:7e:fa:0a:d0:f8:55:55:9c:c4:fb:e0: f8:27:4b:5b:fd:66:f0:77:03:14:8a:6b:3c:7d:a9:3c:02:63: fb:cc:65:7b:12:b1:83:be:60:98:25:47:da:27:e4:dd:04:68: eb:12:e1:cc:2b:6c:82:19:22:f2:79:7d:26:4a:1f:21:2a:d9: 80:3f:af:1e:d7:66:92:c5:5d:48:3b:de:7e:d0:7a:9b:0b:13: 6b:79:36:87:e9:0f:7f:b8:cd:dc:3f:46:72:3e:5a:07:b6:29: 86:dd:7e:65:22:19:a4:a6:89:bd:00:d6:05:38:c2:c3:80:bc: eb:fc:ba:0e:59:52:43:d9:cb:ce:f4:e1:ac:c2:ae:13:85:22: 8a:9a:b1:e7:34:80:6f:ad:e5:71:dd:09:7e:82:87:b9:ed:92: d5:a6:11:a4:69:8a:48:6a:0e:f3:d2:61:a0:8f:90:3f:25:d3: e0:77:36:26:37:de:a8:ab:4e:58:61:56:ab:fd:16:fd:60:2c: ff:e9:b7:1a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUXWWujr3hEziwlWrk/GrVkXfvA0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTMwM0JCODgwOEY3NjZCNzNENTQ3M0NGQTdCODg0RTk4 QkNGRTk3RDAeFw0yNDA3MTIxNTA4MTVaFw0yNTA3MTExNTEzMTVaMDMxMTAvBgNV BAMTKDJCODUyOTUxM0Q3NkFERkFFMTQ5MkVFMEExREJEODBCQTVBQzY3NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4CgYiuUg1R29FaJe4JHgN34/1 THySkecrP5PrS1HGgF/El7DlmKOkMMq1usAVQoPWdApQ3RUHE1ydpopDh9VR+hLz x5moHnX4Hw6VMliS/y0i73iRsqD9LAQUdosMU1dvhbygWMOTX43BwBEyuDKTQ3V9 VP49yV8EVa5QiuLYWNu43YgbSoSKwCDf9Mx5IOWxXXfrMsAWZuGlDgfm6nFY6hy0 0jU6FM2s13wEvtjxTUEEpg112OopXHn5qwgG0vHxA3lFFrYNF/ITXJb/SuN5YgD3 GNRAxYWm16Y2Jd4xokikRJdLhGXElzwqwS/ooQvpfsMAwltQdRvfZRx1ooMrAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUK4UpUT12rfrhSS7godvYC6WsZ0gwHwYDVR0j BBgwFoAUEwO7iAj3Zrc9VHPPp7iE6YvP6X0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZWJmMDRjN2MtZjgyZC00NzFkLTg1YWQtOThjNjVkZTFj OTEyLzEvMTMwM0JCODgwOEY3NjZCNzNENTQ3M0NGQTdCODg0RTk4QkNGRTk3RC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC8xMzAzQkI4ODA4Rjc2NkI3M0Q1NDczQ0ZB N0I4ODRFOThCQ0ZFOTdELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9lYmYwNGM3Yy1mODJkLTQ3MWQtODVhZC05OGM2NWRlMWM5MTIvMS8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYyNjIzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKgpgRLsCMA0GCSqGSIb3DQEBCwUAA4IBAQCA c4r68iaipJlbyk0d9ADrG4z/68P6ezmSEndofydX6SDj3D2Ee+9MSu3/uQJM60gM U4U8OFsgOkTuSO/3fvoK0PhVVZzE++D4J0tb/WbwdwMUims8fak8AmP7zGV7ErGD vmCYJUfaJ+TdBGjrEuHMK2yCGSLyeX0mSh8hKtmAP68e12aSxV1IO95+0HqbCxNr eTaH6Q9/uM3cP0ZyPloHtimG3X5lIhmkpom9ANYFOMLDgLzr/LoOWVJD2cvO9OGs wq4ThSKKmrHnNIBvreVx3Ql+goe57ZLVphGkaYpIag7z0mGgj5A/JdPgdzYmN96o q05YYVar/Rb9YCz/6bca -----END CERTIFICATE-----Generated at Thu Sep 19 17:07:50 2024 by rpki-client on console-fra.rpki-client.org