$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa File: 326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa (raw, json) Hash identifier: BgYqorJS3JMSFw9edwIe+WRFHvfHgPoI33vzwRUQxGM= Subject key identifier: A1:9E:EC:82:61:3F:1E:ED:7D:7C:69:16:F7:B6:5E:F9:D8:70:40:63 Certificate issuer: /CN=81E218874C7149A0F1BC56CDBEC9F94BF59C204F Certificate serial: 0DB2F6396FAF3E2CFE75296266F8C7882E18339E Authority key identifier: 81:E2:18:87:4C:71:49:A0:F1:BC:56:CD:BE:C9:F9:4B:F5:9C:20:4F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa Signing time: Fri 05 Apr 2024 13:19:23 +0000 ROA not before: Fri 05 Apr 2024 13:14:23 +0000 ROA not after: Fri 04 Apr 2025 13:19:23 +0000 asID: 204844 IP address blocks: 2a14:7581:6000::/36 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.crl rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b2:f6:39:6f:af:3e:2c:fe:75:29:62:66:f8:c7:88:2e:18:33:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81E218874C7149A0F1BC56CDBEC9F94BF59C204F Validity Not Before: Apr 5 13:14:23 2024 GMT Not After : Apr 4 13:19:23 2025 GMT Subject: CN=A19EEC82613F1EED7D7C6916F7B65EF9D8704063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:f2:e8:29:97:c3:d5:54:2b:1e:31:8d:2a: 23:0f:9a:31:91:56:c7:63:d4:58:2c:58:d4:2e:4a: f6:ab:08:30:4c:7e:68:99:3c:ab:08:83:90:66:53: 1b:fc:e2:c1:fc:52:83:5c:76:a0:f6:24:f3:14:cc: 70:34:fd:a9:32:c2:89:b6:3d:a6:ce:fa:60:c5:ac: cb:6b:b2:59:b0:69:ed:59:75:5f:3c:d9:ad:69:4c: 72:61:f6:3f:74:60:ad:e9:7e:90:e6:1b:68:87:59: 6e:a3:f0:80:f8:6c:6e:c6:cf:21:d0:cc:43:64:2a: a8:6a:d8:b6:24:33:d3:62:2d:3a:99:81:e5:40:49: 14:88:ab:d9:d8:1f:73:38:9b:3d:55:4b:95:d8:01: dc:c3:4e:a8:bc:8e:fd:c2:9c:0d:43:93:cd:16:9a: 83:22:4e:28:b4:d4:4d:5a:66:b9:eb:d5:d9:a5:67: a4:78:42:07:c3:20:4c:1e:1d:16:8e:39:71:e0:79: 92:f8:26:31:d3:96:a7:b0:05:d9:7c:28:17:86:f4: f5:16:26:d3:aa:08:5a:26:c9:89:ec:36:87:d2:86: 81:55:81:ea:f9:51:bc:46:ce:f9:d3:d9:24:dc:b2: 99:a2:9f:e3:d4:45:de:40:2f:5c:d2:e7:cf:7d:27: 2f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9E:EC:82:61:3F:1E:ED:7D:7C:69:16:F7:B6:5E:F9:D8:70:40:63 X509v3 Authority Key Identifier: keyid:81:E2:18:87:4C:71:49:A0:F1:BC:56:CD:BE:C9:F9:4B:F5:9C:20:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a363030303a3a2f33362d3438203d3e20323034383434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6000::/36 Signature Algorithm: sha256WithRSAEncryption 18:d6:87:a6:63:94:86:71:be:13:52:ea:ea:76:dc:2f:14:aa: 33:1f:7b:09:b1:de:c4:24:1e:2e:8c:d1:ab:78:19:7d:a5:2d: 9f:45:05:ad:1b:2d:31:5b:89:fd:c1:b5:06:d1:90:f9:d7:b9: c1:e0:e5:39:77:d9:0f:40:65:97:58:48:38:7a:e0:1e:11:9b: 65:57:3e:49:71:9a:e3:64:c0:fe:fd:63:1f:46:6b:9b:84:80: 72:27:3f:38:38:ca:a4:61:05:6f:c5:8e:fa:30:ca:ab:34:44: 82:8a:af:43:4b:00:9d:42:d9:ff:4f:54:88:c5:07:ee:13:d1: 55:59:d5:d7:fb:7c:e8:04:b0:de:af:61:2e:12:9e:fc:9a:6c: 1b:26:36:24:28:60:2b:19:5f:40:2c:64:b0:53:e5:a3:b0:6f: e5:88:3e:68:c1:97:0e:71:90:3f:c3:a3:22:f7:64:08:74:ee: 25:61:78:d8:94:00:95:0f:eb:70:a0:aa:e1:4f:21:a2:54:d4: 6f:83:26:0d:d2:6b:1c:7d:14:4e:e8:d6:bf:d2:09:f7:18:d5: 58:28:37:a6:6e:a4:1c:94:a4:31:c1:b4:ba:ce:d5:1e:8b:35: f5:68:c9:9d:96:02:37:a9:08:7e:7f:9c:07:fc:a3:0e:07:35: 50:a6:38:ea -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUDbL2OW+vPiz+dSliZvjHiC4YM54wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFFMjE4ODc0QzcxNDlBMEYxQkM1NkNEQkVDOUY5NEJG NTlDMjA0RjAeFw0yNDA0MDUxMzE0MjNaFw0yNTA0MDQxMzE5MjNaMDMxMTAvBgNV BAMTKEExOUVFQzgyNjEzRjFFRUQ3RDdDNjkxNkY3QjY1RUY5RDg3MDQwNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy5fLoKZfD1VQrHjGNKiMPmjGR Vsdj1FgsWNQuSvarCDBMfmiZPKsIg5BmUxv84sH8UoNcdqD2JPMUzHA0/akywom2 PabO+mDFrMtrslmwae1ZdV882a1pTHJh9j90YK3pfpDmG2iHWW6j8ID4bG7GzyHQ zENkKqhq2LYkM9NiLTqZgeVASRSIq9nYH3M4mz1VS5XYAdzDTqi8jv3CnA1Dk80W moMiTii01E1aZrnr1dmlZ6R4QgfDIEweHRaOOXHgeZL4JjHTlqewBdl8KBeG9PUW JtOqCFomyYnsNofShoFVger5UbxGzvnT2STcspmin+PURd5AL1zS5899Jy8ZAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQUoZ7sgmE/Hu19fGkW97Ze+dhwQGMwHwYDVR0j BBgwFoAUgeIYh0xxSaDxvFbNvsn5S/WcIE8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDlmNzEwMjMtOTA0OS00ZWNiLWE4YTUtN2YwOGQ4ZWFk Njc2LzEvODFFMjE4ODc0QzcxNDlBMEYxQkM1NkNEQkVDOUY5NEJGNTlDMjA0Ri5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84MUUyMTg4NzRDNzE0OUEwRjFCQzU2Q0RC RUM5Rjk0QkY1OUMyMDRGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOWY3MTAyMy05MDQ5LTRlY2ItYThhNS03ZjA4ZDhlYWQ2NzYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM2MzAzMDMwM2EzYTJmMzMzNjJkMzQzODIwM2QzZTIwMzIz MDM0MzgzNDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYEKhR1gWAwDQYJKoZIhvcNAQELBQADggEBABjW h6ZjlIZxvhNS6up23C8UqjMfewmx3sQkHi6M0at4GX2lLZ9FBa0bLTFbif3BtQbR kPnXucHg5Tl32Q9AZZdYSDh64B4Rm2VXPklxmuNkwP79Yx9Ga5uEgHInPzg4yqRh BW/Fjvowyqs0RIKKr0NLAJ1C2f9PVIjFB+4T0VVZ1df7fOgEsN6vYS4SnvyabBsm NiQoYCsZX0AsZLBT5aOwb+WIPmjBlw5xkD/DoyL3ZAh07iVheNiUAJUP63CgquFP IaJU1G+DJg3Saxx9FE7o1r/SCfcY1VgoN6ZupByUpDHBtLrO1R6LNfVoyZ2WAjep CH5/nAf8ow4HNVCmOOo= -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org