$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa File: 326131343a316563313a3a2f33322d3332203d3e203438373030.roa (raw, json) Hash identifier: W4camszVXGn7Ri/sxMMWE4JNxTYk5QT9tVo/DlSSiBA= Subject key identifier: 56:DD:D0:A1:9B:E7:6C:E9:2C:80:8A:9F:95:19:3F:43:B9:12:35:33 Certificate issuer: /CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Certificate serial: 3FB8BFFFAC5116C25935043A14638B5F1A383A9A Authority key identifier: 20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa Signing time: Tue 17 Sep 2024 18:08:01 +0000 ROA not before: Tue 17 Sep 2024 18:03:01 +0000 ROA not after: Tue 16 Sep 2025 18:08:01 +0000 asID: 48700 IP address blocks: 2a14:1ec1::/32 maxlen: 32 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.mft rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.crl rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/3134EE987E08D8B5583FEEF621A03150C4F35434.mft rsync://rpki.ripe.net/repository/DEFAULT/MTTumH4I2LVYP-72IaAxUMTzVDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 14:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b8:bf:ff:ac:51:16:c2:59:35:04:3a:14:63:8b:5f:1a:38:3a:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20F69C4C146138CB0121C4C4CBB39876F4ABDEC6 Validity Not Before: Sep 17 18:03:01 2024 GMT Not After : Sep 16 18:08:01 2025 GMT Subject: CN=56DDD0A19BE76CE92C808A9F95193F43B9123533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:d1:0f:52:f3:16:ce:70:5a:6e:e1:b8:95: c3:76:4d:0a:0d:38:dd:6f:73:d3:14:7a:5f:1d:34: 38:19:d6:e5:31:0f:dc:25:48:ff:bc:46:4e:7c:34: 66:d3:2d:fe:3a:c0:d4:0e:de:0e:9d:55:fb:ff:33: a6:2b:7b:cf:58:19:60:38:b1:b0:17:93:b3:24:96: 72:0a:23:af:fe:47:b0:2f:ed:e4:30:45:e7:29:16: cc:cf:9f:b6:a3:78:e9:af:fe:40:51:3c:b6:19:90: 8b:dd:b6:6b:55:c3:c0:0a:03:d7:b1:66:78:4c:c5: 19:28:b2:db:cb:4a:02:0a:18:f1:7b:c3:19:52:65: 98:4a:ad:a2:04:dd:56:1f:24:fd:78:47:d9:f5:02: 71:de:98:9c:97:89:c3:15:1e:27:75:ed:f0:cf:f9: 47:88:d9:6d:50:52:12:4c:58:1e:aa:53:e2:11:ed: d4:32:1b:70:5a:9d:6a:3d:2c:9c:68:27:9c:c2:96: fe:37:e4:69:61:9e:84:71:99:60:00:30:ec:bb:84: ce:1e:5b:bf:6c:9e:3f:32:c4:2b:fe:ad:90:e7:b2: a2:a3:76:d3:0a:c0:29:0c:e8:dc:d9:c6:30:70:c1: 1b:84:a3:d2:37:aa:a1:f0:84:0c:95:b2:48:0a:05: b5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DD:D0:A1:9B:E7:6C:E9:2C:80:8A:9F:95:19:3F:43:B9:12:35:33 X509v3 Authority Key Identifier: keyid:20:F6:9C:4C:14:61:38:CB:01:21:C4:C4:CB:B3:98:76:F4:AB:DE:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/1a3bb93f-98a4-4c7e-a0e1-8057a4f086c9/0/20F69C4C146138CB0121C4C4CBB39876F4ABDEC6.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/0/326131343a316563313a3a2f33322d3332203d3e203438373030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:1ec1::/32 Signature Algorithm: sha256WithRSAEncryption 43:9e:21:0b:fd:e5:83:e6:48:d4:da:83:fb:38:21:06:4e:2c: 31:f7:e1:c1:fd:b0:e4:ca:28:55:50:93:db:f7:0d:8a:5e:38: 1f:3f:83:12:5f:a6:70:91:5a:c2:10:70:8f:06:28:89:f2:ca: 62:4b:68:4b:c1:08:cd:d6:e5:b7:ae:e0:d8:db:b6:f6:16:86: fa:bc:d4:30:51:fa:50:11:19:a7:7f:72:21:69:ff:4c:95:9b: 87:d5:42:7a:27:37:df:e3:2f:6d:d6:df:13:46:30:1b:fe:d4: b6:4c:18:76:63:9d:12:8c:a5:cf:02:4d:0b:bc:10:70:51:69: 3b:42:52:8e:0f:84:dd:c4:66:31:38:35:eb:9b:66:93:79:c7: 07:91:46:35:a4:6b:25:65:d2:93:2c:9a:48:97:fc:64:50:53: 2d:14:24:79:2b:f3:c8:86:dc:cf:07:f8:a6:50:ea:a2:22:6e: 43:e4:0b:ff:d2:d0:d0:3c:46:65:f0:81:ed:24:38:b1:23:5c: 7c:6c:7d:22:e2:fc:c6:ff:80:e2:72:81:a2:1f:66:64:86:85: b0:c4:2e:6d:72:9c:4a:d0:14:d7:8b:c9:fc:1b:91:90:82:e8: a6:58:f8:3a:21:cc:f8:9e:df:f7:f6:8d:a8:04:dc:53:cf:ae: 31:58:bc:3a -----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgIUP7i//6xRFsJZNQQ6FGOLXxo4OpowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZG NEFCREVDNjAeFw0yNDA5MTcxODAzMDFaFw0yNTA5MTYxODA4MDFaMDMxMTAvBgNV BAMTKDU2REREMEExOUJFNzZDRTkyQzgwOEE5Rjk1MTkzRjQzQjkxMjM1MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtndEPUvMWznBabuG4lcN2TQoN ON1vc9MUel8dNDgZ1uUxD9wlSP+8Rk58NGbTLf46wNQO3g6dVfv/M6Yre89YGWA4 sbAXk7MklnIKI6/+R7Av7eQwRecpFszPn7ajeOmv/kBRPLYZkIvdtmtVw8AKA9ex ZnhMxRkostvLSgIKGPF7wxlSZZhKraIE3VYfJP14R9n1AnHemJyXicMVHid17fDP +UeI2W1QUhJMWB6qU+IR7dQyG3BanWo9LJxoJ5zClv435GlhnoRxmWAAMOy7hM4e W79snj8yxCv+rZDnsqKjdtMKwCkM6NzZxjBwwRuEo9I3qqHwhAyVskgKBbUnAgMB AAGjggJ3MIICczAdBgNVHQ4EFgQUVt3QoZvnbOksgIqflRk/Q7kSNTMwHwYDVR0j BBgwFoAUIPacTBRhOMsBIcTEy7OYdvSr3sYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmFmNzNhOWMtMjA1OC00M2JiLTlhYzYtNWFiNDJkZmJm NDA5LzAvMjBGNjlDNEMxNDYxMzhDQjAxMjFDNEM0Q0JCMzk4NzZGNEFCREVDNi5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xYTNiYjkzZi05OGE0LTRj N2UtYTBlMS04MDU3YTRmMDg2YzkvMC8yMEY2OUM0QzE0NjEzOENCMDEyMUM0QzRD QkIzOTg3NkY0QUJERUM2LmNlcjCBqwYIKwYBBQUHAQsEgZ4wgZswgZgGCCsGAQUF BzALhoGLcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yYWY3M2E5Yy0yMDU4LTQzYmItOWFjNi01YWI0MmRmYmY0MDkvMC8zMjYxMzEz NDNhMzE2NTYzMzEzYTNhMmYzMzMyMmQzMzMyMjAzZDNlMjAzNDM4MzczMDMwLnJv YTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAKhQewTANBgkqhkiG9w0BAQsFAAOCAQEAQ54hC/3lg+ZI1NqD+zgh Bk4sMffhwf2w5MooVVCT2/cNil44Hz+DEl+mcJFawhBwjwYoifLKYktoS8EIzdbl t67g2Nu29haG+rzUMFH6UBEZp39yIWn/TJWbh9VCeic33+MvbdbfE0YwG/7UtkwY dmOdEoylzwJNC7wQcFFpO0JSjg+E3cRmMTg165tmk3nHB5FGNaRrJWXSkyyaSJf8 ZFBTLRQkeSvzyIbczwf4plDqoiJuQ+QL/9LQ0DxGZfCB7SQ4sSNcfGx9IuL8xv+A 4nKBoh9mZIaFsMQubXKcStAU14vJ/BuRkILoplj4OiHM+J7f9/aNqATcU8+uMVi8 Og== -----END CERTIFICATE-----Generated at Sat Sep 28 21:05:37 2024 by rpki-client on console-ams.rpki-client.org