$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323330303a3a2f34302d3438203d3e20343031333836.roa File: 326131343a373538313a323330303a3a2f34302d3438203d3e20343031333836.roa (raw, json) Hash identifier: onBa8ZiCWb4eekbZmQytVfWJEs00Qm7PkwuehyBq+70= Subject key identifier: F1:72:46:CF:05:08:D7:DC:DD:8E:A9:C8:71:2E:E6:2A:47:13:3F:EF Certificate issuer: /CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Certificate serial: 690EEADDE22F0963DC3611646F6B3DF881919026 Authority key identifier: AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323330303a3a2f34302d3438203d3e20343031333836.roa Signing time: Sat 12 Oct 2024 17:25:33 +0000 ROA not before: Sat 12 Oct 2024 17:20:33 +0000 ROA not after: Sat 11 Oct 2025 17:25:33 +0000 asID: 401386 IP address blocks: 2a14:7581:2300::/40 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0e:ea:dd:e2:2f:09:63:dc:36:11:64:6f:6b:3d:f8:81:91:90:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Validity Not Before: Oct 12 17:20:33 2024 GMT Not After : Oct 11 17:25:33 2025 GMT Subject: CN=F17246CF0508D7DCDD8EA9C8712EE62A47133FEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:7d:06:61:32:17:87:60:e8:4d:f8:e3:0b:8f: b7:f1:36:95:a1:b6:23:49:b3:78:fb:62:40:0e:33: 28:9d:c1:47:16:63:c8:b3:db:f4:f0:ae:06:31:c3: b5:62:78:af:07:64:61:a2:4c:d6:16:24:2e:00:d7: 6e:38:be:0f:f2:d3:25:e6:9e:b4:7c:f6:7b:df:48: a9:66:ee:b7:c7:b7:71:7f:e9:1e:e3:60:ec:f8:e2: 25:b7:7d:2a:e9:04:9d:9b:46:59:3d:b7:e0:e9:be: 62:6c:97:81:1e:7c:33:ef:66:38:5c:27:ab:62:96: 1e:4e:df:91:6b:c3:3c:f0:7c:e3:41:65:bc:6a:5a: 8a:b6:1c:b2:7a:d7:55:bc:ec:cd:05:ad:7b:db:06: 38:b5:03:8e:64:0c:04:bd:44:42:2c:d5:36:e5:34: 3c:31:06:8e:6d:a4:88:11:c5:1f:82:df:89:64:f0: 50:45:7b:93:48:da:f6:a7:ce:38:4a:49:17:f4:b2: f2:0e:17:33:8d:f2:ce:58:bd:0e:9f:ff:ab:44:cc: d1:d5:4c:a8:2e:83:8e:e6:1e:2e:eb:82:6b:9f:59: 9c:c3:c8:5c:86:66:5d:de:4b:56:3a:89:a8:54:4b: 2e:ad:86:68:6a:21:06:f4:9b:6a:72:1b:ce:19:6c: 00:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:72:46:CF:05:08:D7:DC:DD:8E:A9:C8:71:2E:E6:2A:47:13:3F:EF X509v3 Authority Key Identifier: keyid:AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a323330303a3a2f34302d3438203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2300::/40 Signature Algorithm: sha256WithRSAEncryption 78:89:84:7d:9f:d9:23:b9:a0:34:cd:26:9c:74:9e:ae:52:c4: 1f:ee:b5:05:20:13:a4:fc:40:f9:98:6f:4d:00:79:a6:32:bf: 9e:a7:4e:4e:c0:c0:27:9e:a5:3b:62:96:87:c6:b3:84:92:c4: d7:4c:7b:7c:f6:e8:3e:f2:0c:74:44:a4:c4:41:b1:15:a9:36: f9:8a:1d:59:82:6f:69:07:13:fd:16:12:13:18:f8:cc:9c:07: 25:18:09:0d:6f:e5:ae:84:a9:f3:cc:1c:d5:2c:cf:65:44:4d: f2:82:f1:dd:e1:19:4c:fd:f8:58:35:7f:33:86:12:3d:9a:81: bd:0f:47:09:f0:ae:db:a5:f6:df:61:66:fc:37:19:7b:b6:91: b2:28:55:2d:be:19:5d:c6:f6:3b:c5:b1:31:7c:12:a2:b9:a1: 7b:f9:69:fb:f9:ef:93:d4:ca:26:92:ae:69:28:2e:57:88:cb: 2d:58:0f:21:9a:ac:4e:05:bc:cf:74:73:06:6e:1d:11:27:2f: 19:b4:22:89:53:77:96:07:3e:df:87:f1:79:a6:74:f6:21:96: 66:3c:0f:e0:32:d9:8a:49:4b:77:bb:97:cf:a9:8e:39:78:77: 64:65:84:f9:cd:1a:46:c4:7a:ba:fa:53:b1:f3:42:c9:92:cb: 0e:b8:27:4d -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgIUaQ7q3eIvCWPcNhFkb2s9+IGRkCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0 NjA4OUFGRDAeFw0yNDEwMTIxNzIwMzNaFw0yNTEwMTExNzI1MzNaMDMxMTAvBgNV BAMTKEYxNzI0NkNGMDUwOEQ3RENERDhFQTlDODcxMkVFNjJBNDcxMzNGRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOfQZhMheHYOhN+OMLj7fxNpWh tiNJs3j7YkAOMyidwUcWY8iz2/TwrgYxw7VieK8HZGGiTNYWJC4A1244vg/y0yXm nrR89nvfSKlm7rfHt3F/6R7jYOz44iW3fSrpBJ2bRlk9t+DpvmJsl4EefDPvZjhc J6tilh5O35FrwzzwfONBZbxqWoq2HLJ611W87M0FrXvbBji1A45kDAS9REIs1Tbl NDwxBo5tpIgRxR+C34lk8FBFe5NI2vanzjhKSRf0svIOFzON8s5YvQ6f/6tEzNHV TKgug47mHi7rgmufWZzDyFyGZl3eS1Y6iahUSy6thmhqIQb0m2pyG84ZbAB1AgMB AAGjggKEMIICgDAdBgNVHQ4EFgQU8XJGzwUI19zdjqnIcS7mKkcTP+8wHwYDVR0j BBgwFoAUrt7T3ssdqKTmquZyboBVMEYImv0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTI1NDk5NDMtNjQ1Ny00NWUwLWE1NGYtYzE5MzA4MTVi NmY3LzAvQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0NjA4OUFGRC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BRURFRDNERUNCMURBOEE0RTZBQUU2NzI2 RTgwNTUzMDQ2MDg5QUZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xMjU0OTk0My02NDU3LTQ1ZTAtYTU0Zi1jMTkzMDgxNWI2ZjcvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzMzMDMwM2EzYTJmMzQzMDJkMzQzODIwM2QzZTIwMzQz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKhR1gSMwDQYJKoZIhvcNAQELBQADggEBAHiJ hH2f2SO5oDTNJpx0nq5SxB/utQUgE6T8QPmYb00AeaYyv56nTk7AwCeepTtilofG s4SSxNdMe3z26D7yDHREpMRBsRWpNvmKHVmCb2kHE/0WEhMY+MycByUYCQ1v5a6E qfPMHNUsz2VETfKC8d3hGUz9+Fg1fzOGEj2agb0PRwnwrtul9t9hZvw3GXu2kbIo VS2+GV3G9jvFsTF8EqK5oXv5afv575PUyiaSrmkoLleIyy1YDyGarE4FvM90cwZu HREnLxm0IolTd5YHPt+H8XmmdPYhlmY8D+Ay2YpJS3e7l8+pjjl4d2RlhPnNGkbE err6U7HzQsmSyw64J00= -----END CERTIFICATE-----Generated at Fri Nov 22 04:59:12 2024 by rpki-client on console-ams.rpki-client.org