$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa File: 326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa (raw, json) Hash identifier: 5jLn1tYtti5DJK9TqNkdMibH5mGLzDQe1BN0OVxqnag= Subject key identifier: EF:58:28:B9:C8:3D:4D:D7:25:17:64:DC:D0:F4:37:40:EC:12:AC:D5 Certificate issuer: /CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Certificate serial: 59906FCAA83E5B58BC199614B0623C24EF545EDA Authority key identifier: 52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa Signing time: Thu 13 Jun 2024 23:12:48 +0000 ROA not before: Thu 13 Jun 2024 23:07:48 +0000 ROA not after: Thu 12 Jun 2025 23:12:48 +0000 asID: 215084 IP address blocks: 2a14:7581:f20::/44 maxlen: 44 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 01 Jul 2024 14:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:90:6f:ca:a8:3e:5b:58:bc:19:96:14:b0:62:3c:24:ef:54:5e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52285B8754F215EBEAB614DEB86E66DA3B37320C Validity Not Before: Jun 13 23:07:48 2024 GMT Not After : Jun 12 23:12:48 2025 GMT Subject: CN=EF5828B9C83D4DD7251764DCD0F43740EC12ACD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:bf:07:7d:e4:4a:42:b6:cf:bb:35:15:0f: 9d:8e:e8:53:6c:83:e7:1b:f2:24:d9:c2:55:13:55: ce:f1:63:7b:7a:bc:65:22:1a:c9:7e:24:77:d8:2d: 6b:75:80:07:8a:95:ff:82:55:66:7e:c7:f0:bf:ab: ec:fc:87:32:d2:51:ba:ca:49:ab:0a:f7:fb:8d:ab: ad:4f:7a:df:0a:f3:45:56:64:70:03:18:8a:7c:4c: 49:f6:81:1c:30:54:83:38:f1:45:1a:8e:87:82:9f: bc:46:83:28:52:36:10:9a:aa:42:3e:fa:0d:08:2b: c0:31:ea:51:3c:d5:6f:be:a6:46:23:2c:d6:82:ca: ae:11:67:12:fa:ef:2b:bd:48:40:1d:51:39:f3:c9: 9b:53:5d:35:17:13:5d:ce:d5:b7:3b:e0:64:2f:39: 69:cc:d9:b1:7d:8b:d9:84:0b:de:3f:2c:2c:53:06: ec:fb:4d:33:7d:47:11:45:5d:cd:05:b8:09:a3:0a: 02:66:31:d0:0b:09:6a:c7:93:7d:95:63:2c:15:9e: 3a:7a:83:e0:ff:59:4f:d1:e9:d8:85:50:0c:73:0e: e1:a3:8e:41:74:7f:a4:a4:e7:b7:62:e9:63:06:5e: e2:5d:55:0e:05:96:fa:73:7d:c3:3e:57:e7:d2:f5: bf:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:58:28:B9:C8:3D:4D:D7:25:17:64:DC:D0:F4:37:40:EC:12:AC:D5 X509v3 Authority Key Identifier: keyid:52:28:5B:87:54:F2:15:EB:EA:B6:14:DE:B8:6E:66:DA:3B:37:32:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/52285B8754F215EBEAB614DEB86E66DA3B37320C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/52285B8754F215EBEAB614DEB86E66DA3B37320C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/1/326131343a373538313a6632303a3a2f34342d3434203d3e20323135303834.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:f20::/44 Signature Algorithm: sha256WithRSAEncryption 3f:28:50:64:78:fa:93:17:b7:e9:00:0b:76:80:0d:a3:d5:d3: b3:d9:58:dc:ca:91:7c:90:77:c8:3f:77:18:12:a5:03:31:5b: 5a:b9:ea:a5:fe:07:2e:db:f9:4c:6c:e9:2c:35:05:d9:83:29: 18:1b:fd:45:57:ff:d3:9e:ca:1c:51:55:f6:8c:dd:18:ac:79: 90:36:ea:f4:2d:a7:16:12:4c:cf:f0:0f:08:ee:7a:09:d3:6e: f4:f3:2e:97:4b:02:11:1c:de:af:3d:18:91:f9:a7:28:49:84: e8:f0:28:57:82:d9:7e:7c:7a:37:ad:de:e7:18:8b:d1:7f:ff: 41:52:ba:c9:29:7b:80:a7:43:97:64:01:bc:54:39:a7:75:c4: 3b:ca:a1:5f:e0:0b:75:28:04:c7:85:cf:14:cb:90:91:49:0d: 4c:73:b6:fe:bf:a1:7b:83:c1:5d:71:b2:28:83:41:13:89:7d: 86:4f:4c:d3:3d:40:84:6c:95:24:7d:3a:78:f4:62:1a:fc:cf: d9:86:63:58:3e:b4:dd:09:4e:10:81:d1:6b:75:75:6f:a8:fa: b4:18:15:f9:f6:a7:1a:3c:37:16:6e:00:6f:0c:ea:f5:f7:50: cf:3b:2d:9c:aa:8e:b0:4d:8c:bf:37:6f:b2:05:fd:2a:de:53: 31:d8:63:b5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUWZBvyqg+W1i8GZYUsGI8JO9UXtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEz QjM3MzIwQzAeFw0yNDA2MTMyMzA3NDhaFw0yNTA2MTIyMzEyNDhaMDMxMTAvBgNV BAMTKEVGNTgyOEI5QzgzRDRERDcyNTE3NjREQ0QwRjQzNzQwRUMxMkFDRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9078HfeRKQrbPuzUVD52O6FNs g+cb8iTZwlUTVc7xY3t6vGUiGsl+JHfYLWt1gAeKlf+CVWZ+x/C/q+z8hzLSUbrK SasK9/uNq61Pet8K80VWZHADGIp8TEn2gRwwVIM48UUajoeCn7xGgyhSNhCaqkI+ +g0IK8Ax6lE81W++pkYjLNaCyq4RZxL67yu9SEAdUTnzyZtTXTUXE13O1bc74GQv OWnM2bF9i9mEC94/LCxTBuz7TTN9RxFFXc0FuAmjCgJmMdALCWrHk32VYywVnjp6 g+D/WU/R6diFUAxzDuGjjkF0f6Sk57di6WMGXuJdVQ4FlvpzfcM+V+fS9b8nAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU71goucg9TdclF2Tc0PQ3QOwSrNUwHwYDVR0j BBgwFoAUUihbh1TyFevqthTeuG5m2js3MgwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUtNWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2 NDgwLzEvNTIyODVCODc1NEYyMTVFQkVBQjYxNERFQjg2RTY2REEzQjM3MzIwQy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC81MjI4NUI4NzU0RjIxNUVCRUFCNjE0REVC ODZFNjZEQTNCMzczMjBDLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS84ZDVjZDE0ZS01ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTY2MzIzMDNhM2EyZjM0MzQyZDM0MzQyMDNkM2UyMDMyMzEz NTMwMzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHBCoUdYEPIDANBgkqhkiG9w0BAQsFAAOCAQEAPyhQ ZHj6kxe36QALdoANo9XTs9lY3MqRfJB3yD93GBKlAzFbWrnqpf4HLtv5TGzpLDUF 2YMpGBv9RVf/057KHFFV9ozdGKx5kDbq9C2nFhJMz/APCO56CdNu9PMul0sCERze rz0YkfmnKEmE6PAoV4LZfnx6N63e5xiL0X//QVK6ySl7gKdDl2QBvFQ5p3XEO8qh X+ALdSgEx4XPFMuQkUkNTHO2/r+he4PBXXGyKINBE4l9hk9M0z1AhGyVJH06ePRi GvzP2YZjWD603QlOEIHRa3V1b6j6tBgV+fanGjw3Fm4Abwzq9fdQzzstnKqOsE2M vzdvsgX9Kt5TMdhjtQ== -----END CERTIFICATE-----Generated at Sun Jun 30 21:55:52 2024 by rpki-client on console-fra.rpki-client.org