$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa File: 326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa (raw, json) Hash identifier: pcBpSLX6wjD10TMOktRdBOucXd2A5gfG7C3Lecbh8gI= Subject key identifier: 76:F0:18:1F:BD:23:22:7A:25:EF:91:E9:61:2D:B4:53:EC:0E:1A:81 Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 74E7E9BB250C459E90E173ED5DFCAA74B10EE082 Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa Signing time: Thu 13 Jun 2024 23:15:42 +0000 ROA not before: Thu 13 Jun 2024 23:10:42 +0000 ROA not after: Thu 12 Jun 2025 23:15:42 +0000 asID: 215084 IP address blocks: 2a14:7581:a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jul 2024 14:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:e7:e9:bb:25:0c:45:9e:90:e1:73:ed:5d:fc:aa:74:b1:0e:e0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 13 23:10:42 2024 GMT Not After : Jun 12 23:15:42 2025 GMT Subject: CN=76F0181FBD23227A25EF91E9612DB453EC0E1A81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6b:39:fd:1f:86:63:11:23:b6:c4:0e:84:10: 58:78:bc:81:d3:c0:be:14:c8:18:f7:e1:ed:7a:f9: c4:59:33:f1:db:16:63:33:b1:f5:36:8b:ac:85:9c: 65:bd:c6:db:85:26:4e:e5:57:83:76:c6:0f:5b:12: 7d:e6:28:34:a3:60:89:d6:22:8e:3a:d3:b8:59:49: 4e:c7:6d:25:d8:20:ce:75:17:f3:28:f1:4c:9a:a2: cb:aa:d8:8a:cd:e6:6f:dc:b3:41:d0:25:28:26:78: 04:cf:cd:ae:12:e2:85:33:5a:53:f8:95:a5:33:78: ed:3a:db:29:c8:b5:7c:0e:66:bd:10:87:38:7b:98: d1:2e:17:f0:3b:fc:2c:aa:cc:c8:57:1a:80:5c:78: e0:b4:b9:b1:94:93:3f:03:64:da:0f:eb:60:89:73: 5d:26:2a:22:62:02:07:a7:4c:12:07:de:b4:77:4c: 70:17:97:8b:ac:4a:82:55:76:a2:69:44:10:a5:aa: c5:02:90:df:5d:2d:b2:23:46:87:31:fa:94:01:bc: c7:9c:1f:92:23:91:08:eb:c3:78:30:a5:51:7c:38: ac:0f:4b:53:82:cf:fc:43:b1:58:6d:22:b3:09:61: 0b:cb:1e:6f:6a:c0:2f:3b:bf:2a:98:e9:7e:3b:2f: 78:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F0:18:1F:BD:23:22:7A:25:EF:91:E9:61:2D:B4:53:EC:0E:1A:81 X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6130303a3a2f34302d3430203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:a00::/40 Signature Algorithm: sha256WithRSAEncryption 01:12:6a:c5:2c:01:b1:c1:7b:11:88:cb:a5:64:ad:a1:9a:61: 11:21:73:56:5a:18:a5:0a:13:6b:c4:cc:0f:21:fa:26:c7:3d: 61:51:2f:7e:c3:a6:3f:5c:fd:34:02:70:ea:fe:b8:2e:43:70: 5e:b1:9f:ce:64:6d:53:c8:48:dd:d0:12:f1:13:b5:39:e5:ce: b9:7f:dd:80:5a:30:6b:70:62:42:b6:ea:dd:d4:58:e5:78:e3: 5c:4a:b3:d1:63:0f:13:17:91:60:4b:71:e1:e0:b2:77:b1:bd: 8e:2d:69:77:ed:28:eb:08:a7:cd:35:e5:12:79:74:be:84:49: 95:51:cd:6d:48:48:8d:30:20:8e:ef:8e:7c:b0:83:6c:3f:87: 0d:9e:7f:49:e7:f4:f8:a4:e1:50:82:1e:45:8b:71:f8:d1:ec: 6e:19:26:f8:90:ad:f1:39:51:73:67:50:9e:f4:97:cf:81:08: 32:b3:93:42:7e:b9:9b:df:79:c4:5e:a2:7c:b7:2c:d1:b2:36: 71:4f:13:1a:4d:30:47:c1:f8:2c:32:0d:ae:c8:91:e5:e6:a6: 62:6f:30:d4:0e:f3:b9:80:ac:e2:8f:f4:d6:6a:71:cc:5a:6e: 82:3a:09:32:36:14:29:85:f2:3e:55:1d:41:60:67:f5:72:df: 55:80:b4:4f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUdOfpuyUMRZ6Q4XPtXfyqdLEO4IIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNDA2MTMyMzEwNDJaFw0yNTA2MTIyMzE1NDJaMDMxMTAvBgNV BAMTKDc2RjAxODFGQkQyMzIyN0EyNUVGOTFFOTYxMkRCNDUzRUMwRTFBODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRazn9H4ZjESO2xA6EEFh4vIHT wL4UyBj34e16+cRZM/HbFmMzsfU2i6yFnGW9xtuFJk7lV4N2xg9bEn3mKDSjYInW Io4607hZSU7HbSXYIM51F/Mo8Uyaosuq2IrN5m/cs0HQJSgmeATPza4S4oUzWlP4 laUzeO062ynItXwOZr0Qhzh7mNEuF/A7/CyqzMhXGoBceOC0ubGUkz8DZNoP62CJ c10mKiJiAgenTBIH3rR3THAXl4usSoJVdqJpRBClqsUCkN9dLbIjRocx+pQBvMec H5IjkQjrw3gwpVF8OKwPS1OCz/xDsVhtIrMJYQvLHm9qwC87vyqY6X47L3hJAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUdvAYH70jInol75HpYS20U+wOGoEwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTYxMzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEz NTMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcB BwEB/wQSMBAwDgQCAAIwCAMGACoUdYEKMA0GCSqGSIb3DQEBCwUAA4IBAQABEmrF LAGxwXsRiMulZK2hmmERIXNWWhilChNrxMwPIfomxz1hUS9+w6Y/XP00AnDq/rgu Q3BesZ/OZG1TyEjd0BLxE7U55c65f92AWjBrcGJCturd1FjleONcSrPRYw8TF5Fg S3Hh4LJ3sb2OLWl37SjrCKfNNeUSeXS+hEmVUc1tSEiNMCCO7458sINsP4cNnn9J 5/T4pOFQgh5Fi3H40exuGSb4kK3xOVFzZ1Ce9JfPgQgys5NCfrmb33nEXqJ8tyzR sjZxTxMaTTBHwfgsMg2uyJHl5qZibzDUDvO5gKzij/TWanHMWm6COgkyNhQphfI+ VR1BYGf1ct9VgLRP -----END CERTIFICATE-----Generated at Sun Jun 30 21:55:52 2024 by rpki-client on console-fra.rpki-client.org