$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a326630303a3a2f34382d3438203d3e20343031333836.roa File: 326131343a373538313a326630303a3a2f34382d3438203d3e20343031333836.roa (raw, json) Hash identifier: 7sk2Ui8iUGiNtQSw6OQmWTzStQX343fbQaxKHt8024Y= Subject key identifier: 9E:D4:DA:FC:42:FE:B5:E1:1D:26:31:73:3F:E7:87:BB:3E:77:B8:F6 Certificate issuer: /CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Certificate serial: 64336F11F992FAA83095F48D2A4E3A895FC4D0BC Authority key identifier: AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a326630303a3a2f34382d3438203d3e20343031333836.roa Signing time: Thu 07 Nov 2024 13:29:00 +0000 ROA not before: Thu 07 Nov 2024 13:24:00 +0000 ROA not after: Thu 06 Nov 2025 13:29:00 +0000 asID: 401386 IP address blocks: 2a14:7581:2f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:33:6f:11:f9:92:fa:a8:30:95:f4:8d:2a:4e:3a:89:5f:c4:d0:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDED3DECB1DA8A4E6AAE6726E80553046089AFD Validity Not Before: Nov 7 13:24:00 2024 GMT Not After : Nov 6 13:29:00 2025 GMT Subject: CN=9ED4DAFC42FEB5E11D2631733FE787BB3E77B8F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7a:72:a8:08:19:2b:1a:33:f7:70:b2:6e:af: 3b:d7:09:58:d7:ac:c9:06:7e:08:24:b0:81:d3:2e: 62:e9:4e:d4:f3:91:17:50:6b:41:19:94:2f:d0:93: 3c:1a:5d:25:01:13:0e:5b:53:ee:6c:b7:66:60:bc: 66:71:02:b5:52:16:16:c5:28:3e:f8:15:2d:33:f7: d5:98:e7:10:f9:a5:be:85:0a:be:81:c3:db:21:42: e3:83:3d:99:03:2f:b0:61:b1:29:11:6a:76:24:b6: 21:a9:72:20:c1:25:6e:fc:24:7d:7e:30:b6:23:a3: 29:5c:90:6f:72:69:b4:cb:79:58:ea:7a:8b:00:ae: e3:d4:4e:4b:ba:a0:2a:3b:3a:c0:39:49:4e:ea:94: 6e:1f:4c:87:25:7c:9f:a9:d9:32:9f:f9:b2:ca:9c: 0e:7f:0c:1d:ba:49:8d:aa:91:b9:fd:20:01:df:b3: 65:7b:b7:29:46:96:5d:62:99:7f:76:dd:68:58:92: 5c:0e:d0:11:8a:5a:ca:91:7e:65:2a:b6:2e:55:1f: d1:2b:7a:bb:91:d1:2e:13:c0:79:74:01:33:91:dc: ae:4a:c2:60:4d:46:78:e7:88:3a:81:c4:5e:e5:c4: 1f:ff:ea:b0:97:46:ba:1b:35:ba:43:d8:2e:30:af: 48:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D4:DA:FC:42:FE:B5:E1:1D:26:31:73:3F:E7:87:BB:3E:77:B8:F6 X509v3 Authority Key Identifier: keyid:AE:DE:D3:DE:CB:1D:A8:A4:E6:AA:E6:72:6E:80:55:30:46:08:9A:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/AEDED3DECB1DA8A4E6AAE6726E80553046089AFD.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/12549943-6457-45e0-a54f-c1930815b6f7/0/326131343a373538313a326630303a3a2f34382d3438203d3e20343031333836.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2f00::/48 Signature Algorithm: sha256WithRSAEncryption 0b:bf:ed:6b:c7:1e:58:f4:e8:e3:37:d5:2a:e4:95:0b:92:e6: bb:1f:99:95:b7:47:11:08:87:3b:52:1d:ff:8a:e5:09:41:73: 57:7c:f1:ab:e3:26:a1:db:f7:59:2b:f4:dc:4f:dd:e9:69:ec: 20:40:5f:cb:b0:7a:20:77:09:a8:63:02:81:0a:7b:1b:f3:39: 61:0c:3f:3b:2b:e4:f4:2d:d6:7a:0f:b6:92:ee:ea:54:33:77: 33:20:d5:5f:c0:4c:43:4b:c3:72:97:28:72:10:76:cd:da:54: a2:9b:6d:44:37:3e:0d:a5:25:70:c3:df:5c:a3:56:db:b7:b3: 06:01:43:70:00:d7:bd:04:48:c3:30:c6:8e:57:87:fd:fb:ee: 1b:05:bf:8d:60:b9:59:0a:39:5f:48:91:cd:66:6e:7d:d4:66: 8f:b0:5a:ff:06:74:96:f2:73:ce:4b:65:6c:50:34:32:e3:70: 58:72:e2:89:60:7c:e4:01:2c:93:49:ac:8e:5b:94:5a:f3:4d: 35:fa:ff:a9:4c:39:4e:c9:95:69:34:27:12:29:ee:f9:91:1e: 3e:0f:cc:ac:db:36:5f:4d:41:71:8f:1a:43:d2:b2:d5:8b:92: 3f:31:03:d1:8f:03:76:24:ae:4e:96:68:08:40:7d:f7:1d:e5: 3a:23:35:05 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZDNvEfmS+qgwlfSNKk46iV/E0LwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0 NjA4OUFGRDAeFw0yNDExMDcxMzI0MDBaFw0yNTExMDYxMzI5MDBaMDMxMTAvBgNV BAMTKDlFRDREQUZDNDJGRUI1RTExRDI2MzE3MzNGRTc4N0JCM0U3N0I4RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUenKoCBkrGjP3cLJurzvXCVjX rMkGfggksIHTLmLpTtTzkRdQa0EZlC/QkzwaXSUBEw5bU+5st2ZgvGZxArVSFhbF KD74FS0z99WY5xD5pb6FCr6Bw9shQuODPZkDL7BhsSkRanYktiGpciDBJW78JH1+ MLYjoylckG9yabTLeVjqeosAruPUTku6oCo7OsA5SU7qlG4fTIclfJ+p2TKf+bLK nA5/DB26SY2qkbn9IAHfs2V7tylGll1imX923WhYklwO0BGKWsqRfmUqti5VH9Er eruR0S4TwHl0ATOR3K5KwmBNRnjniDqBxF7lxB//6rCXRrobNbpD2C4wr0gPAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUntTa/EL+teEdJjFzP+eHuz53uPYwHwYDVR0j BBgwFoAUrt7T3ssdqKTmquZyboBVMEYImv0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTI1NDk5NDMtNjQ1Ny00NWUwLWE1NGYtYzE5MzA4MTVi NmY3LzAvQUVERUQzREVDQjFEQThBNEU2QUFFNjcyNkU4MDU1MzA0NjA4OUFGRC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9BRURFRDNERUNCMURBOEE0RTZBQUU2NzI2 RTgwNTUzMDQ2MDg5QUZELmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8xMjU0OTk0My02NDU3LTQ1ZTAtYTU0Zi1jMTkzMDgxNWI2ZjcvMC8zMjYxMzEz NDNhMzczNTM4MzEzYTMyNjYzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzQz MDMxMzMzODM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gS8AMA0GCSqGSIb3DQEBCwUAA4IBAQAL v+1rxx5Y9OjjN9Uq5JULkua7H5mVt0cRCIc7Uh3/iuUJQXNXfPGr4yah2/dZK/Tc T93paewgQF/LsHogdwmoYwKBCnsb8zlhDD87K+T0LdZ6D7aS7upUM3czINVfwExD S8NylyhyEHbN2lSim21ENz4NpSVww99co1bbt7MGAUNwANe9BEjDMMaOV4f9++4b Bb+NYLlZCjlfSJHNZm591GaPsFr/BnSW8nPOS2VsUDQy43BYcuKJYHzkASyTSayO W5Ra8001+v+pTDlOyZVpNCcSKe75kR4+D8ys2zZfTUFxjxpD0rLVi5I/MQPRjwN2 JK5OlmgIQH33HeU6IzUF -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:19 2024 by rpki-client on console-fra.rpki-client.org