$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323230303a3a2f34302d3438203d3e20343031333836.roa File: 326131343a373538313a323230303a3a2f34302d3438203d3e20343031333836.roa (raw, json) Hash identifier: c/qZXsWdlg+ZE0JHy4NCaqmVmDrAWgLnRDl1pGQHvnw= Subject key identifier: E3:F5:1D:8A:B9:24:63:57:82:9F:0D:52:D2:90:D2:D4:B8:D9:26:70 Certificate issuer: /CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Certificate serial: 695FCFE68625A4233D4FE777F14D35EED1224D21 Authority key identifier: AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323230303a3a2f34302d3438203d3e20343031333836.roa Signing time: Sat 12 Oct 2024 17:25:09 +0000 ROA not before: Sat 12 Oct 2024 17:20:09 +0000 ROA not after: Sat 11 Oct 2025 17:25:09 +0000 asID: 401386 IP address blocks: 2a14:7581:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:5f:cf:e6:86:25:a4:23:3d:4f:e7:77:f1:4d:35:ee:d1:22:4d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Validity Not Before: Oct 12 17:20:09 2024 GMT Not After : Oct 11 17:25:09 2025 GMT Subject: CN=E3F51D8AB9246357829F0D52D290D2D4B8D92670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:e7:22:15:c9:a7:d6:de:61:7f:ed:3e:83: 4d:ae:7d:15:f5:bb:58:56:29:11:b4:34:91:9c:70: 09:f6:6c:d4:12:64:c3:27:0a:23:b2:b5:e6:e5:d7: 75:f8:2f:a1:4b:50:f4:03:69:11:b8:53:8c:4d:71: 05:e4:db:4f:fd:b7:bd:a1:df:40:e6:0c:54:1a:9f: fd:e9:88:26:09:51:37:60:c7:c7:ee:a5:02:bf:68: c4:59:1e:eb:8a:58:bf:df:5d:c1:0d:54:14:48:71: ea:90:76:2a:2b:b7:01:2a:df:b4:d8:19:16:7c:d7: 93:b9:8e:17:93:a6:a0:15:f6:ec:ac:aa:83:48:56: 19:ee:ae:19:91:ec:72:2a:a9:f8:cc:00:d1:00:80: ff:11:7b:53:c7:ac:38:ed:a2:14:34:57:d8:b0:4f: 91:a9:09:fe:36:30:41:75:10:7f:b9:5c:83:e1:d3: e5:1c:9e:f7:30:96:8d:ed:05:7a:04:f5:ce:aa:6e: 67:14:81:65:9b:5a:06:8a:93:94:8a:e3:f8:9a:c6: d1:3e:b6:a5:7e:b5:ae:5e:f9:af:7e:a2:d6:de:0e: 51:4a:3e:7c:ca:10:52:41:8f:c4:73:c9:eb:6f:40: 67:81:01:ca:26:b2:4f:d8:39:26:4e:8b:b3:64:19: f5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F5:1D:8A:B9:24:63:57:82:9F:0D:52:D2:90:D2:D4:B8:D9:26:70 X509v3 Authority Key Identifier: keyid:AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323230303a3a2f34302d3438203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2200::/40 Signature Algorithm: sha256WithRSAEncryption 15:76:84:8d:ab:c6:3b:fa:4c:2a:38:27:0e:6a:05:f8:d7:d1: a6:c2:88:8c:4d:c0:7f:97:41:6f:17:dc:62:35:bf:87:20:3e: a5:c4:0c:ae:97:00:e4:3e:3f:55:d6:35:07:b4:42:0d:79:96: 56:cf:06:56:5a:1a:b3:ce:30:53:8a:bb:68:0a:33:a0:67:af: ee:3a:2e:09:d3:04:eb:62:ae:c4:99:91:0b:b1:c9:03:bf:5a: 3b:05:ab:2d:de:a2:5a:28:8d:20:c9:79:00:dd:ea:64:5b:19: a7:12:a2:1d:51:27:b2:ec:60:12:b3:2c:83:28:fb:f0:26:be: 45:43:8f:f8:ee:74:0e:aa:25:72:ba:14:f4:fb:2c:87:2b:ea: 25:f2:4c:fc:94:54:95:9d:93:56:a3:f1:0e:6e:19:09:70:8e: ab:97:17:75:74:c9:72:b5:d6:8c:19:57:db:77:cc:b0:e6:db: d2:db:d4:36:ab:61:e0:b4:e1:5f:5f:90:a4:e6:9f:1c:6b:17: f3:0d:01:3d:c4:6a:2b:29:ed:7e:e6:a8:70:19:0a:5a:46:6f: a3:52:95:d8:ac:84:b7:31:1e:66:7f:b3:7f:5b:61:89:6a:a6: db:cd:28:53:d4:c1:93:9a:9b:ad:fc:bd:ff:42:ce:01:67:83: 0a:10:9e:47 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUaV/P5oYlpCM9T+d38U017tEiTSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0 NjA4OUFGRDAeFw0yNDEwMTIxNzIwMDlaFw0yNTEwMTExNzI1MDlaMDMxMTAvBgNV BAMTKEUzRjUxRDhBQjkyNDYzNTc4MjlGMEQ1MkQyOTBEMkQ0QjhEOTI2NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9o+ciFcmn1t5hf+0+g02ufRX1 u1hWKRG0NJGccAn2bNQSZMMnCiOytebl13X4L6FLUPQDaRG4U4xNcQXk20/9t72h 30DmDFQan/3piCYJUTdgx8fupQK/aMRZHuuKWL/fXcENVBRIceqQdiortwEq37TY GRZ815O5jheTpqAV9uysqoNIVhnurhmR7HIqqfjMANEAgP8Re1PHrDjtohQ0V9iw T5GpCf42MEF1EH+5XIPh0+Ucnvcwlo3tBXoE9c6qbmcUgWWbWgaKk5SK4/iaxtE+ tqV+ta5e+a9+otbeDlFKPnzKEFJBj8RzyetvQGeBAcomsk/YOSZOi7NkGfUVAgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU4/UdirkkY1eCnw1S0pDS1LjZJnAwHwYDVR0j BBgwFoAUrt7T3ssdqKTmquZyboBVMEYImv0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTI1NDk5NDMtNjQ1Ny00NWUwLWE1NGYtYzE5MzA4MTVi NmY3LzAvQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0NjA4OUFGRC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BRURFRDNERUNCMURBOEE0RTZBQUU2NzI2 RTgwNTUzMDQ2MDg5QUZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xMjU0OTk0My02NDU3LTQ1ZTAtYTU0Zi1jMTkzMDgxNWI2ZjcvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzIzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzQz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSIwDQYJKoZIhvcNAQELBQADggEBABV2 hI2rxjv6TCo4Jw5qBfjX0abCiIxNwH+XQW8X3GI1v4cgPqXEDK6XAOQ+P1XWNQe0 Qg15llbPBlZaGrPOMFOKu2gKM6Bnr+46LgnTBOtirsSZkQuxyQO/WjsFqy3eoloo jSDJeQDd6mRbGacSoh1RJ7LsYBKzLIMo+/AmvkVDj/judA6qJXK6FPT7LIcr6iXy TPyUVJWdk1aj8Q5uGQlwjquXF3V0yXK11owZV9t3zLDm29Lb1DarYeC04V9fkKTm nxxrF/MNAT3Eaisp7X7mqHAZClpGb6NSldishLcxHmZ/s39bYYlqptvNKFPUwZOa m638vf9CzgFngwoQnkc= -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:19 2024 by rpki-client on console-fra.rpki-client.org