$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa File: 326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa (raw, json) Hash identifier: zxhwJ8BRHSfhv2IzHdjrBBfqb2fcq5amMTROJBgH6K8= Subject key identifier: 58:F7:2B:A7:BB:71:75:04:D7:E7:9E:53:DE:EF:B8:22:F1:29:A5:1F Certificate issuer: /CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Certificate serial: 611754B1A5FAC8F656CC46F72437EF3F57B39682 Authority key identifier: 8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa Signing time: Sat 15 Jun 2024 01:29:54 +0000 ROA not before: Sat 15 Jun 2024 01:24:54 +0000 ROA not after: Sat 14 Jun 2025 01:29:54 +0000 asID: 216375 IP address blocks: 2a14:7581:4555::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:17:54:b1:a5:fa:c8:f6:56:cc:46:f7:24:37:ef:3f:57:b3:96:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C Validity Not Before: Jun 15 01:24:54 2024 GMT Not After : Jun 14 01:29:54 2025 GMT Subject: CN=58F72BA7BB717504D7E79E53DEEFB822F129A51F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b1:83:3c:e2:7d:a0:e6:e6:16:33:34:0e:3e: f0:d6:78:73:da:f6:00:49:df:95:f0:20:84:40:d3: c3:74:26:7b:1b:e6:f2:36:12:05:77:bf:5f:22:96: 42:c1:61:ce:d4:d9:7d:1d:72:c8:fd:cf:03:fe:13: 45:1b:a3:0f:1e:b2:67:66:02:23:d5:e9:af:9f:30: 1d:63:aa:c3:ae:67:d3:be:26:cc:7b:de:49:21:41: 46:a8:c1:19:a9:e1:7a:dc:47:a0:75:50:78:88:13: 0a:6a:da:78:d0:33:dc:93:51:67:93:81:55:3e:2a: ec:2a:76:58:b6:e2:22:89:62:3b:b5:2c:e8:57:f7: ce:be:5e:92:07:36:46:4e:58:e7:dd:d1:78:bb:bc: 6b:3b:64:34:85:78:db:ed:b1:bd:28:04:55:8f:72: 91:a1:09:ef:66:58:08:16:c5:9b:d9:ba:40:88:fa: 05:46:cd:93:21:5b:a7:f6:57:72:e8:c4:25:a1:0e: 7a:2b:61:4c:b2:c0:03:74:6f:f7:c3:27:dd:40:5b: 94:c6:d7:66:b9:b6:fd:54:b2:65:8d:71:81:d1:01: 54:b6:03:07:99:4f:ce:c3:3a:4a:26:b6:ff:03:bf: 7d:93:f6:d8:97:56:a0:80:d2:6d:48:f4:d8:20:9d: 73:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F7:2B:A7:BB:71:75:04:D7:E7:9E:53:DE:EF:B8:22:F1:29:A5:1F X509v3 Authority Key Identifier: keyid:8E:07:D3:1C:64:52:F7:A6:B2:4E:63:CD:DC:49:0E:12:E0:AF:B3:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/8E07D31C6452F7A6B24E63CDDC490E12E0AFB38C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/4/326131343a373538313a343535353a3a2f34382d3438203d3e20323136333735.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:4555::/48 Signature Algorithm: sha256WithRSAEncryption 65:b5:e6:bb:00:7a:33:ce:5e:be:2e:d9:52:c0:0a:45:da:48: 7b:3c:10:5d:30:ce:62:79:80:71:ae:86:6f:66:3c:a9:9d:23: f9:cc:7f:8b:3f:7d:92:a5:50:64:07:d8:76:97:c3:19:65:d7: 1d:c8:c1:75:50:8e:f6:9f:6a:22:e5:14:05:2f:9a:86:d4:3c: 79:01:2a:c4:53:89:9c:4f:5a:3f:5f:0b:0f:75:c4:d5:30:4f: a6:6e:80:96:26:57:39:b8:04:87:47:83:9d:56:6c:16:27:73: 40:4c:10:36:88:70:1b:8b:b9:68:60:26:e7:6e:8b:f8:57:2f: 78:55:0c:ea:c2:75:f2:4a:5e:43:d7:ab:80:fe:4c:3f:24:81: 1a:e4:83:18:82:ab:5a:c7:9c:54:bb:a3:16:f8:b5:df:c0:a8: 32:b0:a6:38:95:db:7a:3e:d3:33:90:5f:15:cc:e8:c1:0c:b4: 69:0e:44:4d:a5:35:81:1d:c5:ae:f5:a8:4d:7a:f2:48:c8:a4: 56:00:aa:9e:0e:f3:71:83:59:a4:44:8a:d7:f5:a6:9f:b3:5f: 0b:25:a7:81:aa:fa:bc:86:20:c1:22:97:48:8a:69:74:9c:e6: be:31:a9:51:ef:2d:c0:cf:5d:95:f9:ef:18:0e:5b:b9:3a:ca: 21:56:2e:95 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUYRdUsaX6yPZWzEb3JDfvP1ezloIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJF MEFGQjM4QzAeFw0yNDA2MTUwMTI0NTRaFw0yNTA2MTQwMTI5NTRaMDMxMTAvBgNV BAMTKDU4RjcyQkE3QkI3MTc1MDREN0U3OUU1M0RFRUZCODIyRjEyOUE1MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQsYM84n2g5uYWMzQOPvDWeHPa 9gBJ35XwIIRA08N0Jnsb5vI2EgV3v18ilkLBYc7U2X0dcsj9zwP+E0Ubow8esmdm AiPV6a+fMB1jqsOuZ9O+Jsx73kkhQUaowRmp4XrcR6B1UHiIEwpq2njQM9yTUWeT gVU+Kuwqdli24iKJYju1LOhX986+XpIHNkZOWOfd0Xi7vGs7ZDSFeNvtsb0oBFWP cpGhCe9mWAgWxZvZukCI+gVGzZMhW6f2V3LoxCWhDnorYUyywAN0b/fDJ91AW5TG 12a5tv1UsmWNcYHRAVS2AweZT87DOkomtv8Dv32T9tiXVqCA0m1I9NggnXOPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUWPcrp7txdQTX555T3u+4IvEppR8wHwYDVR0j BBgwFoAUjgfTHGRS96ayTmPN3EkOEuCvs4wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzQvOEUwN0QzMUM2NDUyRjdBNkIyNEU2M0NEREM0OTBFMTJFMEFGQjM4Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84RTA3RDMxQzY0NTJGN0E2QjI0RTYzQ0RE QzQ5MEUxMkUwQUZCMzhDLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8zMTFlNDdjNC0wMmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNC8zMjYxMzEz NDNhMzczNTM4MzEzYTM0MzUzNTM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM2MzMzNzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gUVVMA0GCSqGSIb3DQEBCwUAA4IBAQBl tea7AHozzl6+LtlSwApF2kh7PBBdMM5ieYBxroZvZjypnSP5zH+LP32SpVBkB9h2 l8MZZdcdyMF1UI72n2oi5RQFL5qG1Dx5ASrEU4mcT1o/XwsPdcTVME+mboCWJlc5 uASHR4OdVmwWJ3NATBA2iHAbi7loYCbnbov4Vy94VQzqwnXySl5D16uA/kw/JIEa 5IMYgqtax5xUu6MW+LXfwKgysKY4ldt6PtMzkF8VzOjBDLRpDkRNpTWBHcWu9ahN evJIyKRWAKqeDvNxg1mkRIrX9aafs18LJaeBqvq8hiDBIpdIiml0nOa+MalR7y3A z12V+e8YDlu5OsohVi6V -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:03 2024 by rpki-client on console-fra.rpki-client.org