$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a366665303a3a2f34342d3438203d3e20323134383431.roa File: 326131343a373538313a366665303a3a2f34342d3438203d3e20323134383431.roa (raw, json) Hash identifier: U0rfiUq9YDTkYI4V420VpJi+Erpt4ClH+3f2ybSKabQ= Subject key identifier: FD:D3:DE:23:A1:72:64:61:D7:23:AD:E5:0D:C2:3A:23:F3:B6:91:F0 Certificate issuer: /CN=81E218874C7149A0F1BC56CDBEC9F94BF59C204F Certificate serial: 220A5FF5415B788FC049E1FD757BE41B26227B79 Authority key identifier: 81:E2:18:87:4C:71:49:A0:F1:BC:56:CD:BE:C9:F9:4B:F5:9C:20:4F Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a366665303a3a2f34342d3438203d3e20323134383431.roa Signing time: Thu 30 May 2024 17:13:40 +0000 ROA not before: Thu 30 May 2024 17:08:40 +0000 ROA not after: Thu 29 May 2025 17:13:40 +0000 asID: 214841 IP address blocks: 2a14:7581:6fe0::/44 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.crl rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:0a:5f:f5:41:5b:78:8f:c0:49:e1:fd:75:7b:e4:1b:26:22:7b:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81E218874C7149A0F1BC56CDBEC9F94BF59C204F Validity Not Before: May 30 17:08:40 2024 GMT Not After : May 29 17:13:40 2025 GMT Subject: CN=FDD3DE23A1726461D723ADE50DC23A23F3B691F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a7:fb:2c:fe:e3:dd:36:61:69:d4:17:78:7a: 6f:8c:d3:13:f4:af:15:73:5c:ac:7d:89:6e:7b:b8: c2:bb:58:35:d7:b5:09:df:8f:ae:0b:6d:3c:dc:08: b8:7b:72:47:28:6c:bf:88:40:11:06:e8:20:87:ff: 84:ce:fe:72:14:1f:f6:72:14:7d:c9:6a:c2:7b:17: 59:48:8d:0c:ea:7c:e6:8a:2d:36:13:bb:11:98:36: fe:aa:8f:ab:48:25:74:e6:cd:ab:ef:48:c6:a5:0f: 94:72:da:9d:5f:ec:76:e3:b6:b6:70:99:60:3c:31: de:29:ec:5e:4c:6e:e0:12:40:b0:a7:09:1e:34:84: 8c:03:68:7d:fa:ec:e4:c8:b9:b7:16:50:bd:a4:82: e1:31:71:bc:5a:0d:c8:2e:27:9c:e3:e8:0f:e3:48: 98:ab:0f:12:19:c2:ea:ae:49:94:bd:2a:fa:63:24: 7a:dc:69:26:d7:c1:dd:40:93:21:79:6b:b7:de:3e: af:09:c7:ec:b8:2a:19:56:62:e9:8e:40:4c:1b:ab: 33:b5:e5:95:96:29:e5:59:24:8c:a8:30:96:2e:13: 1c:af:92:2f:e4:e1:6c:a6:33:3e:98:50:b8:83:fb: 67:9e:d7:f1:41:01:5e:6c:49:98:e6:55:73:56:7e: eb:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D3:DE:23:A1:72:64:61:D7:23:AD:E5:0D:C2:3A:23:F3:B6:91:F0 X509v3 Authority Key Identifier: keyid:81:E2:18:87:4C:71:49:A0:F1:BC:56:CD:BE:C9:F9:4B:F5:9C:20:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/81E218874C7149A0F1BC56CDBEC9F94BF59C204F.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/09f71023-9049-4ecb-a8a5-7f08d8ead676/1/326131343a373538313a366665303a3a2f34342d3438203d3e20323134383431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:6fe0::/44 Signature Algorithm: sha256WithRSAEncryption 41:2a:c0:b4:ac:cd:4e:02:31:92:b1:71:f4:8e:f5:30:91:54: 80:fe:17:8d:8d:e6:fe:f5:37:d9:82:ec:f8:ec:e3:6d:02:e3: 4e:53:5f:8f:57:26:19:77:71:0a:13:fd:07:4e:be:54:20:53: 1c:b1:b9:b9:d6:2b:57:1f:a1:e2:66:0d:dc:07:bb:df:da:5a: ab:04:92:31:02:19:9a:db:97:b9:56:3d:20:c4:d5:62:4c:a2: 5f:14:66:28:89:d6:ce:8b:17:b5:d8:76:95:7b:cc:55:8e:50: 33:08:e2:10:d4:52:cd:43:6e:a4:54:9e:0b:9e:ab:35:84:1d: ec:76:d8:ea:b7:21:d4:13:ec:1d:6c:18:52:73:dd:2a:16:64: 72:3a:54:e4:09:2e:d9:d9:b4:23:2c:94:a5:5b:99:e2:b7:59: 43:63:44:d0:45:3d:aa:67:65:23:f4:f5:04:27:19:7f:77:50: 43:f1:39:31:59:e0:8e:3f:4e:fb:59:7e:bc:67:34:69:4a:48: 3d:d6:8d:6c:47:91:12:d7:ec:77:bc:9d:e0:6d:af:dd:5e:95: 78:7b:94:6e:e4:5d:28:78:86:34:1c:82:9b:84:11:d3:f4:4e: 1d:ce:c5:11:80:d2:b9:14:44:d3:60:ad:29:0f:b2:b9:81:7b: 88:6c:c3:59 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUIgpf9UFbeI/ASeH9dXvkGyYie3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODFFMjE4ODc0QzcxNDlBMEYxQkM1NkNEQkVDOUY5NEJG NTlDMjA0RjAeFw0yNDA1MzAxNzA4NDBaFw0yNTA1MjkxNzEzNDBaMDMxMTAvBgNV BAMTKEZERDNERTIzQTE3MjY0NjFENzIzQURFNTBEQzIzQTIzRjNCNjkxRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtp/ss/uPdNmFp1Bd4em+M0xP0 rxVzXKx9iW57uMK7WDXXtQnfj64LbTzcCLh7ckcobL+IQBEG6CCH/4TO/nIUH/Zy FH3JasJ7F1lIjQzqfOaKLTYTuxGYNv6qj6tIJXTmzavvSMalD5Ry2p1f7HbjtrZw mWA8Md4p7F5MbuASQLCnCR40hIwDaH367OTIubcWUL2kguExcbxaDcguJ5zj6A/j SJirDxIZwuquSZS9KvpjJHrcaSbXwd1AkyF5a7fePq8Jx+y4KhlWYumOQEwbqzO1 5ZWWKeVZJIyoMJYuExyvki/k4WymMz6YULiD+2ee1/FBAV5sSZjmVXNWfut/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU/dPeI6FyZGHXI63lDcI6I/O2kfAwHwYDVR0j BBgwFoAUgeIYh0xxSaDxvFbNvsn5S/WcIE8wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDlmNzEwMjMtOTA0OS00ZWNiLWE4YTUtN2YwOGQ4ZWFk Njc2LzEvODFFMjE4ODc0QzcxNDlBMEYxQkM1NkNEQkVDOUY5NEJGNTlDMjA0Ri5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC84MUUyMTg4NzRDNzE0OUEwRjFCQzU2Q0RC RUM5Rjk0QkY1OUMyMDRGLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8wOWY3MTAyMy05MDQ5LTRlY2ItYThhNS03ZjA4ZDhlYWQ2NzYvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTM2NjY2NTMwM2EzYTJmMzQzNDJkMzQzODIwM2QzZTIwMzIz MTM0MzgzNDMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKhR1gW/gMA0GCSqGSIb3DQEBCwUAA4IBAQBB KsC0rM1OAjGSsXH0jvUwkVSA/heNjeb+9TfZguz47ONtAuNOU1+PVyYZd3EKE/0H Tr5UIFMcsbm51itXH6HiZg3cB7vf2lqrBJIxAhma25e5Vj0gxNViTKJfFGYoidbO ixe12HaVe8xVjlAzCOIQ1FLNQ26kVJ4Lnqs1hB3sdtjqtyHUE+wdbBhSc90qFmRy OlTkCS7Z2bQjLJSlW5nit1lDY0TQRT2qZ2Uj9PUEJxl/d1BD8TkxWeCOP077WX68 ZzRpSkg91o1sR5ES1+x3vJ3gba/dXpV4e5Ru5F0oeIY0HIKbhBHT9E4dzsURgNK5 FETTYK0pD7K5gXuIbMNZ -----END CERTIFICATE-----Generated at Thu Nov 21 18:06:08 2024 by rpki-client on console-fra.rpki-client.org