$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa File: 326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa (raw, json) Hash identifier: B29AvyCcHF6Ey+hbokvxYTeaXKEiFIqZzdkHp/0ApbE= Subject key identifier: 3A:1E:EE:D0:33:34:46:55:15:42:D8:64:0E:B9:A2:B5:E2:03:9D:CA Certificate issuer: /CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51 Certificate serial: 539620C79E23442EAA59D2FA8A2FF50E66D3C829 Authority key identifier: 34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51 Authority info access: rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa Signing time: Mon 29 Jan 2024 13:50:40 +0000 ROA not before: Mon 29 Jan 2024 13:45:40 +0000 ROA not after: Mon 27 Jan 2025 13:50:40 +0000 asID: 0 IP address blocks: 2a12:dd47:84fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.crl rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.mft rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 14:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:96:20:c7:9e:23:44:2e:aa:59:d2:fa:8a:2f:f5:0e:66:d3:c8:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34E6AAC74193FE34C57CB5F562608EE1E50DAD51 Validity Not Before: Jan 29 13:45:40 2024 GMT Not After : Jan 27 13:50:40 2025 GMT Subject: CN=3A1EEED0333446551542D8640EB9A2B5E2039DCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:14:43:32:df:0c:c4:be:82:71:7a:26:19:05: 10:c8:3f:a7:3d:0e:99:87:90:ad:6f:f3:92:de:4d: 0f:d2:5b:12:36:63:e4:75:02:49:8e:5f:27:e4:45: 5e:18:3e:8b:4b:ce:59:28:e8:cb:88:3c:40:76:de: 55:cc:d5:0e:0d:8c:76:92:33:77:e8:9d:29:5e:25: 7c:ca:c2:68:1c:c4:e2:41:11:e6:c4:95:b1:72:60: 37:a3:7e:ac:6d:6b:07:38:be:05:a4:ab:08:81:8d: 5a:be:b9:1a:76:08:82:cb:4c:69:ec:9a:64:24:90: f3:f0:f5:24:f7:ff:f0:30:63:36:6d:76:52:b3:c5: 00:06:d6:5a:1f:e0:34:6a:f1:a2:34:ac:60:91:fa: 14:0b:b9:52:d0:bd:b2:e0:8c:29:28:7c:46:1c:0d: b2:16:c6:a3:f8:b1:d6:e8:6e:90:fc:ff:6f:2a:76: 7e:44:75:07:a4:73:b1:b1:3d:fd:ac:f1:2f:31:3b: 5a:52:56:d2:fa:95:7a:5e:31:c6:98:33:6c:38:0b: bb:fe:56:20:eb:97:52:6d:e8:d5:ba:d4:78:89:24: 59:29:fc:47:6a:32:06:c1:ca:8f:dd:23:41:89:67: 20:61:3b:6a:2c:b5:9a:5c:05:85:7b:6f:fa:8f:25: 2e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1E:EE:D0:33:34:46:55:15:42:D8:64:0E:B9:A2:B5:E2:03:9D:CA X509v3 Authority Key Identifier: keyid:34:E6:AA:C7:41:93:FE:34:C5:7C:B5:F5:62:60:8E:E1:E5:0D:AD:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.crl Authority Information Access: CA Issuers - URI:rsync://rpki.co/repo/AS945/1/34E6AAC74193FE34C57CB5F562608EE1E50DAD51.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/1bf8e977-7278-46cf-abd1-99cd1fd2be4e/6/326131323a646434373a383466653a3a2f34382d3438203d3e2030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a12:dd47:84fe::/48 Signature Algorithm: sha256WithRSAEncryption 08:04:2b:69:ef:2a:4c:36:af:09:74:e2:c5:45:b1:69:63:a5: b6:b8:f3:96:43:73:21:d7:0a:c2:41:f9:a6:84:01:de:2f:0c: 0c:cd:47:87:61:37:e5:26:a1:76:c6:6b:ae:99:f5:71:0a:b7: 0d:90:28:c4:bb:bf:9a:46:e7:89:6a:f2:0b:36:c0:d1:58:3e: 28:ad:78:b8:21:0a:47:a9:2e:84:ee:0b:0a:d2:09:3c:8d:75: ce:7e:67:ca:9d:4f:c1:3d:aa:fc:50:9e:76:35:79:4b:a2:07: fa:f0:8d:ae:a8:9e:47:37:4b:22:23:66:9b:0f:92:b2:4e:fa: 8e:7a:bc:9e:10:51:e3:43:f9:f7:73:80:8d:b2:15:a8:90:6d: 39:ce:3b:98:d2:4a:66:e4:8a:85:9f:34:09:a1:83:48:3b:85: b8:4a:06:af:78:16:86:02:27:52:ba:70:05:d0:65:df:2d:51: 46:92:d5:a9:de:15:1c:fe:d6:51:97:8d:5e:b8:1c:c7:85:16: f6:8c:68:62:f6:dd:86:e9:c0:30:cd:0e:cb:6a:18:75:11:2f: 27:5c:41:77:58:09:65:02:d7:06:79:bf:7a:ec:22:0d:0a:f6: 65:9f:55:91:80:9f:21:e7:ef:83:c3:6d:99:a4:04:9c:93:b1: 80:82:6f:f3 -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUU5Ygx54jRC6qWdL6ii/1DmbTyCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzRFNkFBQzc0MTkzRkUzNEM1N0NCNUY1NjI2MDhFRTFF NTBEQUQ1MTAeFw0yNDAxMjkxMzQ1NDBaFw0yNTAxMjcxMzUwNDBaMDMxMTAvBgNV BAMTKDNBMUVFRUQwMzMzNDQ2NTUxNTQyRDg2NDBFQjlBMkI1RTIwMzlEQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgFEMy3wzEvoJxeiYZBRDIP6c9 DpmHkK1v85LeTQ/SWxI2Y+R1AkmOXyfkRV4YPotLzlko6MuIPEB23lXM1Q4NjHaS M3fonSleJXzKwmgcxOJBEebElbFyYDejfqxtawc4vgWkqwiBjVq+uRp2CILLTGns mmQkkPPw9ST3//AwYzZtdlKzxQAG1lof4DRq8aI0rGCR+hQLuVLQvbLgjCkofEYc DbIWxqP4sdbobpD8/28qdn5EdQekc7GxPf2s8S8xO1pSVtL6lXpeMcaYM2w4C7v+ ViDrl1Jt6NW61HiJJFkp/EdqMgbByo/dI0GJZyBhO2ostZpcBYV7b/qPJS6rAgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUOh7u0DM0RlUVQthkDrmiteIDncowHwYDVR0j BBgwFoAUNOaqx0GT/jTFfLX1YmCO4eUNrVEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMWJmOGU5NzctNzI3OC00NmNmLWFiZDEtOTljZDFmZDJi ZTRlLzYvMzRFNkFBQzc0MTkzRkUzNEM1N0NCNUY1NjI2MDhFRTFFNTBEQUQ1MS5j cmwwZQYIKwYBBQUHAQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL3Jwa2kuY28v cmVwby9BUzk0NS8xLzM0RTZBQUM3NDE5M0ZFMzRDNTdDQjVGNTYyNjA4RUUxRTUw REFENTEuY2VyMIGtBggrBgEFBQcBCwSBoDCBnTCBmgYIKwYBBQUHMAuGgY1yc3lu YzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzFiZjhlOTc3 LTcyNzgtNDZjZi1hYmQxLTk5Y2QxZmQyYmU0ZS82LzMyNjEzMTMyM2E2NDY0MzQz NzNhMzgzNDY2NjUzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMC5yb2EwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH ACoS3UeE/jANBgkqhkiG9w0BAQsFAAOCAQEACAQrae8qTDavCXTixUWxaWOltrjz lkNzIdcKwkH5poQB3i8MDM1Hh2E35SahdsZrrpn1cQq3DZAoxLu/mkbniWryCzbA 0Vg+KK14uCEKR6kuhO4LCtIJPI11zn5nyp1PwT2q/FCedjV5S6IH+vCNrqieRzdL IiNmmw+Ssk76jnq8nhBR40P593OAjbIVqJBtOc47mNJKZuSKhZ80CaGDSDuFuEoG r3gWhgInUrpwBdBl3y1RRpLVqd4VHP7WUZeNXrgcx4UW9oxoYvbdhunAMM0Oy2oY dREvJ1xBd1gJZQLXBnm/euwiDQr2ZZ9VkYCfIefvg8NtmaQEnJOxgIJv8w== -----END CERTIFICATE-----Generated at Fri Apr 26 00:05:01 2024 by rpki-client on console-fra.rpki-client.org