$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa File: 326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa (raw, json) Hash identifier: jNX1edO3NoBKPchWeescD+9QVzaj0+EJNOj2vK8tYok= Subject key identifier: C1:F1:DB:66:C6:10:F9:67:C0:D2:0F:EB:77:65:46:36:6E:AB:D8:41 Certificate issuer: /CN=D7D838DED871774D2E875C9CB99B810DC1B38301 Certificate serial: 2A07DAFAC951D777D130B35B81A9FB311013BACD Authority key identifier: D7:D8:38:DE:D8:71:77:4D:2E:87:5C:9C:B9:9B:81:0D:C1:B3:83:01 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/D7D838DED871774D2E875C9CB99B810DC1B38301.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa Signing time: Sun 28 Apr 2024 23:46:41 +0000 ROA not before: Sun 28 Apr 2024 23:41:41 +0000 ROA not after: Sun 27 Apr 2025 23:46:41 +0000 asID: 215956 IP address blocks: 2a0a:6044:a510::/46 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/D7D838DED871774D2E875C9CB99B810DC1B38301.crl rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/D7D838DED871774D2E875C9CB99B810DC1B38301.mft rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/D7D838DED871774D2E875C9CB99B810DC1B38301.cer rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 02 Jun 2024 07:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:07:da:fa:c9:51:d7:77:d1:30:b3:5b:81:a9:fb:31:10:13:ba:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7D838DED871774D2E875C9CB99B810DC1B38301 Validity Not Before: Apr 28 23:41:41 2024 GMT Not After : Apr 27 23:46:41 2025 GMT Subject: CN=C1F1DB66C610F967C0D20FEB776546366EABD841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b0:0c:b2:31:b4:70:dd:83:e9:66:73:d8:75: d5:a6:47:8e:2c:6b:7a:75:e4:87:3a:cd:98:d5:73: 46:12:2c:d3:9c:cf:d8:ae:70:53:4e:32:e4:cf:56: 21:bc:1b:1b:11:69:5f:1b:dd:ee:e9:65:9b:19:77: 4d:df:b4:d3:ef:40:27:f6:ca:bf:72:d4:9a:11:8c: e8:b8:5e:ef:99:9b:d7:2b:32:ca:aa:f0:49:88:75: 6d:a7:45:31:bd:02:10:c4:ef:56:cb:49:13:22:39: 51:50:a5:a7:3e:3f:4b:47:bf:27:ff:35:55:6c:af: 4d:97:19:38:31:57:55:57:a0:23:f9:84:a4:d3:e6: 17:ff:e7:f1:00:36:16:75:0b:26:43:12:27:77:4f: 64:9b:5b:41:b7:f6:f8:37:33:89:aa:26:89:c2:7f: b8:dd:fa:d4:f7:43:62:7b:28:3d:d3:69:05:4c:a1: 05:67:58:96:ee:1e:e8:3f:68:81:0a:07:6b:a1:e8: b4:73:ba:3a:15:33:88:5c:c2:94:3a:31:b9:04:4e: 87:e9:0d:ff:5d:00:30:62:3e:9f:6e:a4:98:1c:fc: 61:4f:7b:c2:30:9e:a3:81:aa:5f:29:0a:4f:f7:bf: b4:fd:f0:f9:f0:d5:dc:0b:50:5f:43:0a:b6:94:bf: 7e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:F1:DB:66:C6:10:F9:67:C0:D2:0F:EB:77:65:46:36:6E:AB:D8:41 X509v3 Authority Key Identifier: keyid:D7:D8:38:DE:D8:71:77:4D:2E:87:5C:9C:B9:9B:81:0D:C1:B3:83:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/D7D838DED871774D2E875C9CB99B810DC1B38301.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/D7D838DED871774D2E875C9CB99B810DC1B38301.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/0/326130613a363034343a613531303a3a2f34362d3438203d3e20323135393536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6044:a510::/46 Signature Algorithm: sha256WithRSAEncryption 82:a8:83:18:49:ca:e6:ee:de:fd:52:62:b0:01:ce:66:18:a4: 0f:d6:04:34:43:50:23:c9:08:71:99:2e:d9:d7:4c:10:8b:b5: 90:c1:51:cb:c8:7e:80:43:74:5e:89:1c:47:5b:23:11:de:7d: 37:35:e0:01:89:37:9c:78:6c:10:1b:54:83:d6:fe:91:a6:e3: 8f:52:f5:cc:75:35:06:ee:c0:e8:15:41:cc:4b:62:9e:79:28: e1:91:63:9c:11:2b:98:2f:98:91:2e:9f:bb:27:71:2e:f3:e3: d4:f6:45:a1:55:25:22:f0:15:51:6e:6d:bb:20:b6:e6:58:73: 23:59:7d:3f:11:fb:66:20:70:a7:6a:8c:f4:72:a3:27:34:e3: 59:7a:6d:84:4a:02:e6:a8:69:a5:1e:8b:bc:b2:51:07:e7:7a: 07:2b:45:10:f0:b4:4f:58:d4:2a:e4:ee:79:b5:b9:d2:cc:45: bc:f5:51:18:d1:ea:74:0d:ce:95:0e:84:18:4e:aa:5b:90:52: 12:d7:b0:da:79:60:84:73:70:45:67:ff:69:5d:e8:2c:9d:ab: 17:0e:d6:e8:50:38:da:8c:b8:5c:85:01:eb:ad:e0:ad:d5:46: b2:41:62:2f:26:96:18:8b:f8:ff:e2:f8:24:37:a8:3b:97:f9: b8:80:fe:f5 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKgfa+slR13fRMLNbgan7MRATus0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdEODM4REVEODcxNzc0RDJFODc1QzlDQjk5QjgxMERD MUIzODMwMTAeFw0yNDA0MjgyMzQxNDFaFw0yNTA0MjcyMzQ2NDFaMDMxMTAvBgNV BAMTKEMxRjFEQjY2QzYxMEY5NjdDMEQyMEZFQjc3NjU0NjM2NkVBQkQ4NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfsAyyMbRw3YPpZnPYddWmR44s a3p15Ic6zZjVc0YSLNOcz9iucFNOMuTPViG8GxsRaV8b3e7pZZsZd03ftNPvQCf2 yr9y1JoRjOi4Xu+Zm9crMsqq8EmIdW2nRTG9AhDE71bLSRMiOVFQpac+P0tHvyf/ NVVsr02XGTgxV1VXoCP5hKTT5hf/5/EANhZ1CyZDEid3T2SbW0G39vg3M4mqJonC f7jd+tT3Q2J7KD3TaQVMoQVnWJbuHug/aIEKB2uh6LRzujoVM4hcwpQ6MbkETofp Df9dADBiPp9upJgc/GFPe8IwnqOBql8pCk/3v7T98Pnw1dwLUF9DCraUv34bAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUwfHbZsYQ+WfA0g/rd2VGNm6r2EEwHwYDVR0j BBgwFoAU19g43thxd00uh1ycuZuBDcGzgwEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmM2MTVlYmQtNWMyOC00MzM0LThkMmMtZWMzMTU4YWZk YzhjLzAvRDdEODM4REVEODcxNzc0RDJFODc1QzlDQjk5QjgxMERDMUIzODMwMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMjUzZDk3My1kNWJmLTQ1 NDEtYmNjMS0yNzY1NDNhMjVjN2QvMC9EN0Q4MzhERUQ4NzE3NzREMkU4NzVDOUNC OTlCODEwREMxQjM4MzAxLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9mYzYxNWViZC01YzI4LTQzMzQtOGQyYy1lYzMxNThhZmRjOGMvMC8zMjYxMzA2 MTNhMzYzMDM0MzQzYTYxMzUzMTMwM2EzYTJmMzQzNjJkMzQzODIwM2QzZTIwMzIz MTM1MzkzNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcCKgpgRKUQMA0GCSqGSIb3DQEBCwUAA4IBAQCC qIMYScrm7t79UmKwAc5mGKQP1gQ0Q1AjyQhxmS7Z10wQi7WQwVHLyH6AQ3ReiRxH WyMR3n03NeABiTeceGwQG1SD1v6RpuOPUvXMdTUG7sDoFUHMS2KeeSjhkWOcESuY L5iRLp+7J3Eu8+PU9kWhVSUi8BVRbm27ILbmWHMjWX0/EftmIHCnaoz0cqMnNONZ em2ESgLmqGmlHou8slEH53oHK0UQ8LRPWNQq5O55tbnSzEW89VEY0ep0Dc6VDoQY TqpbkFIS17DaeWCEc3BFZ/9pXegsnasXDtboUDjajLhchQHrreCt1UayQWIvJpYY i/j/4vgkN6g7l/m4gP71 -----END CERTIFICATE-----Generated at Sat Jun 1 19:28:59 2024 by rpki-client on console-fra.rpki-client.org