$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343534303a3a2f34342d3438203d3e203434383137.roa File: 326131343a373538313a343534303a3a2f34342d3438203d3e203434383137.roa (raw, json) Hash identifier: IFxu47mX+KW2yr5BPkyWwe9T/nmoVdlGCmb5Yjhy+6o= Subject key identifier: 4B:A3:83:2F:81:DC:46:F5:CA:EE:25:92:D5:2F:06:91:6C:B5:41:2E Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 55008FB1DBACCEC92A302F235D690D53252F8E8E Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343534303a3a2f34342d3438203d3e203434383137.roa Signing time: Fri 14 Jun 2024 16:32:45 +0000 ROA not before: Fri 14 Jun 2024 16:27:45 +0000 ROA not after: Fri 13 Jun 2025 16:32:45 +0000 asID: 44817 IP address blocks: 2a14:7581:4540::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:00:8f:b1:db:ac:ce:c9:2a:30:2f:23:5d:69:0d:53:25:2f:8e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jun 14 16:27:45 2024 GMT Not After : Jun 13 16:32:45 2025 GMT Subject: CN=4BA3832F81DC46F5CAEE2592D52F06916CB5412E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:77:86:c8:29:68:bf:c7:67:15:17:df:c8:d4: af:ba:8f:52:9a:8a:be:7c:69:e5:30:0c:08:47:3d: d9:8d:25:61:d0:f7:06:e4:f9:9a:75:87:7b:11:90: b1:4e:10:ba:35:6d:49:95:33:fe:7a:dc:8c:0c:14: 5d:58:c3:da:66:ea:67:c4:4f:fa:13:f7:da:88:68: 55:a5:7e:33:83:0f:90:9a:3a:25:d4:fb:65:46:9f: 49:d0:68:69:1a:a9:3d:ca:4a:c8:68:87:05:a6:c3: ce:97:bf:d5:8e:eb:68:12:01:67:97:02:da:f0:8b: 31:5c:fc:5b:19:55:6c:a0:90:e9:33:56:79:08:99: 25:9d:dd:4c:79:3d:17:54:63:1d:d4:38:42:71:81: 0a:0a:4e:a0:9c:f0:09:00:82:a0:8a:07:b3:3b:b6: 20:12:4e:9f:3b:c7:df:da:c1:7c:0f:1f:6a:f5:d0: e3:b6:0d:62:30:70:8e:92:1b:b9:95:45:e6:e9:bb: 25:03:78:da:f7:4c:44:aa:40:e8:35:e0:72:fa:05: 90:f4:ed:1b:cc:a1:e6:07:f9:71:c4:d7:b7:d3:0a: 66:ca:b5:e4:71:63:f8:07:2d:98:9e:b2:4b:0b:c0: b9:8a:73:bf:71:11:6c:ec:c9:90:3a:f0:a8:84:bf: 09:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A3:83:2F:81:DC:46:F5:CA:EE:25:92:D5:2F:06:91:6C:B5:41:2E X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343534303a3a2f34342d3438203d3e203434383137.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4540::/44 Signature Algorithm: sha256WithRSAEncryption 10:83:9c:5e:94:f6:ea:bc:12:79:04:1a:53:a8:f4:d8:6b:ee: 81:d6:ae:5d:cf:80:03:8f:6c:9a:eb:ce:99:8f:1c:a4:0f:f9: c5:96:82:0b:b4:1a:67:dd:af:64:16:7b:a5:bb:45:72:f9:3e: b1:d5:b5:1f:35:3c:6f:0f:e6:a5:94:a3:9f:ad:d3:42:0e:0a: 21:eb:bb:66:84:6b:44:11:08:ec:ba:e6:a0:12:42:ff:26:3e: fe:ea:33:32:33:b6:7e:2e:99:a7:fd:64:51:c4:df:a3:6f:45: 53:6a:77:d3:f0:27:11:6d:6a:de:8e:6d:a2:b9:b4:0b:11:f0: 16:62:be:9b:68:6d:bd:06:7c:ab:8a:05:a5:c4:a6:02:34:b2: 5b:1f:07:f5:79:96:5c:4b:eb:d8:65:f2:80:01:d3:5d:9b:5b: a8:77:21:c2:5f:91:5b:d9:2f:75:4a:9a:d6:f3:10:5e:35:48: 16:83:bf:43:30:9f:f7:41:97:ad:f3:56:07:08:f7:96:fa:5d: 09:83:6a:18:62:a0:0d:9b:47:f9:07:46:f4:e0:9b:7c:35:5e: 0f:90:15:ba:63:e2:90:b1:6d:a5:21:dc:55:92:b3:3e:87:45: ed:56:56:30:df:4b:8d:ed:f5:81:62:64:39:97:7f:b0:4f:ac: 90:35:44:7f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUVQCPsduszskqMC8jXWkNUyUvjo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDA2MTQxNjI3NDVaFw0yNTA2MTMxNjMyNDVaMDMxMTAvBgNV BAMTKDRCQTM4MzJGODFEQzQ2RjVDQUVFMjU5MkQ1MkYwNjkxNkNCNTQxMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtd4bIKWi/x2cVF9/I1K+6j1Ka ir58aeUwDAhHPdmNJWHQ9wbk+Zp1h3sRkLFOELo1bUmVM/563IwMFF1Yw9pm6mfE T/oT99qIaFWlfjODD5CaOiXU+2VGn0nQaGkaqT3KSshohwWmw86Xv9WO62gSAWeX AtrwizFc/FsZVWygkOkzVnkImSWd3Ux5PRdUYx3UOEJxgQoKTqCc8AkAgqCKB7M7 tiASTp87x9/awXwPH2r10OO2DWIwcI6SG7mVRebpuyUDeNr3TESqQOg14HL6BZD0 7RvMoeYH+XHE17fTCmbKteRxY/gHLZiesksLwLmKc79xEWzsyZA68KiEvwlHAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQUS6ODL4HcRvXK7iWS1S8GkWy1QS4wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzUzNDMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzQz NDM4MzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYFFQDANBgkqhkiG9w0BAQsFAAOCAQEAEIOc XpT26rwSeQQaU6j02GvugdauXc+AA49smuvOmY8cpA/5xZaCC7QaZ92vZBZ7pbtF cvk+sdW1HzU8bw/mpZSjn63TQg4KIeu7ZoRrRBEI7LrmoBJC/yY+/uozMjO2fi6Z p/1kUcTfo29FU2p30/AnEW1q3o5torm0CxHwFmK+m2htvQZ8q4oFpcSmAjSyWx8H 9XmWXEvr2GXygAHTXZtbqHchwl+RW9kvdUqa1vMQXjVIFoO/QzCf90GXrfNWBwj3 lvpdCYNqGGKgDZtH+QdG9OCbfDVeD5AVumPikLFtpSHcVZKzPodF7VZWMN9Lje31 gWJkOZd/sE+skDVEfw== -----END CERTIFICATE-----Generated at Fri Sep 27 23:53:00 2024 by rpki-client on console-ams.rpki-client.org