$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: UE42rKpq9wH73Kvw9acnqi7+31xbw7dsW8S/VgC1X+0= Subject key identifier: 24:5C:2A:98:49:A8:CD:A2:30:BE:97:BF:D7:CC:E0:7D:39:77:29:99 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 677CC343FB980E72B81BCDAD767B49D679B9E424 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:08:12 +0000 ROA not before: Wed 03 Apr 2024 15:03:12 +0000 ROA not after: Wed 02 Apr 2025 15:08:12 +0000 asID: 215364 IP address blocks: 2a14:7581:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7c:c3:43:fb:98:0e:72:b8:1b:cd:ad:76:7b:49:d6:79:b9:e4:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:03:12 2024 GMT Not After : Apr 2 15:08:12 2025 GMT Subject: CN=245C2A9849A8CDA230BE97BFD7CCE07D39772999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:bd:1a:63:90:3e:db:df:38:4c:f5:f6:64: 19:bc:f1:1f:50:77:0a:e3:26:b7:8d:ed:2e:f9:c5: 4e:2c:f5:3c:72:64:c9:4b:b7:f8:c9:bd:d0:a9:e4: 0a:42:ce:33:b4:fa:dd:39:01:21:c9:88:e9:18:2f: 3a:de:de:3a:58:65:6d:67:0e:78:ab:03:9d:05:45: 50:e2:d2:4c:1e:7e:f4:b6:aa:5b:db:6f:ed:13:27: e7:8e:39:8b:b7:b2:74:92:6a:e6:12:60:7e:37:04: 94:21:5f:16:24:2a:33:31:fb:19:f1:03:35:d0:1a: 88:64:64:69:52:96:d2:9a:dd:13:1d:9e:cb:46:d7: 57:37:87:24:ea:ed:ec:05:df:b3:d6:c5:4b:49:96: a6:86:d3:f0:69:3b:b1:19:d8:1f:e8:09:8f:20:bb: c9:d2:87:b4:84:8c:f8:5f:c7:72:56:eb:75:3d:71: 8c:4b:fe:56:34:41:7c:5b:2b:8d:ec:80:f2:d7:17: 42:32:84:a1:31:b4:f2:08:06:2b:54:6a:23:8f:9d: 47:a6:c2:1d:f6:a7:3e:ee:32:ea:fb:dd:43:49:1c: 6a:89:6e:c4:16:44:f6:14:e0:4c:70:5c:34:5c:5a: af:e1:d3:ca:e3:90:7f:ee:75:0b:6d:a5:d3:d8:80: 7e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:5C:2A:98:49:A8:CD:A2:30:BE:97:BF:D7:CC:E0:7D:39:77:29:99 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030303a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1000::/48 Signature Algorithm: sha256WithRSAEncryption 6d:ee:d1:10:24:41:f0:ea:a5:9d:78:f5:66:a3:6d:79:ec:41: 36:ea:d5:cb:b3:11:c7:15:76:9f:55:11:77:15:b4:69:e6:aa: ab:f0:65:04:63:b5:b6:f8:ad:6c:f8:b3:29:87:16:8e:40:69: 0c:4f:f6:8b:18:8e:4a:52:8b:15:5b:16:15:66:55:bb:7b:e6: cf:95:6e:66:c1:ce:8d:00:eb:4a:19:7f:3e:11:19:86:1c:d8: 1c:9d:2b:16:a4:3c:48:c6:62:5b:38:de:00:99:fd:be:e9:e5: c1:e8:5f:38:23:c9:ba:35:db:4c:d4:63:71:b9:4b:f1:67:38: 28:7b:fd:c3:f9:27:21:19:05:a8:c5:e9:96:57:03:9c:2c:e3: 22:22:2f:79:49:00:75:7f:8d:57:de:69:d9:11:f3:a2:c8:29: ad:db:81:fe:39:98:4c:66:bb:a9:cd:ea:67:18:ea:e9:e4:2e: fb:70:d5:d5:10:66:70:0f:e5:fc:07:5c:77:7e:80:a9:70:63: 9d:3a:ae:5d:08:01:32:a8:82:bd:a8:a7:03:2c:6d:fe:ec:30: 26:7d:67:1d:ea:bb:61:79:df:2d:d6:d5:31:10:ef:01:89:53: bc:a7:4f:9e:8c:8d:9d:56:44:a5:b2:d5:25:d5:fd:a3:ef:7c: 6a:be:82:4d -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZ3zDQ/uYDnK4G82tdntJ1nm55CQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTAzMTJaFw0yNTA0MDIxNTA4MTJaMDMxMTAvBgNV BAMTKDI0NUMyQTk4NDlBOENEQTIzMEJFOTdCRkQ3Q0NFMDdEMzk3NzI5OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi470aY5A+2984TPX2ZBm88R9Q dwrjJreN7S75xU4s9TxyZMlLt/jJvdCp5ApCzjO0+t05ASHJiOkYLzre3jpYZW1n DnirA50FRVDi0kwefvS2qlvbb+0TJ+eOOYu3snSSauYSYH43BJQhXxYkKjMx+xnx AzXQGohkZGlSltKa3RMdnstG11c3hyTq7ewF37PWxUtJlqaG0/BpO7EZ2B/oCY8g u8nSh7SEjPhfx3JW63U9cYxL/lY0QXxbK43sgPLXF0IyhKExtPIIBitUaiOPnUem wh32pz7uMur73UNJHGqJbsQWRPYU4ExwXDRcWq/h08rjkH/udQttpdPYgH69AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUJFwqmEmozaIwvpe/18zgfTl3KZkwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAAMA0GCSqGSIb3DQEBCwUAA4IBAQBt 7tEQJEHw6qWdePVmo2157EE26tXLsxHHFXafVRF3FbRp5qqr8GUEY7W2+K1s+LMp hxaOQGkMT/aLGI5KUosVWxYVZlW7e+bPlW5mwc6NAOtKGX8+ERmGHNgcnSsWpDxI xmJbON4Amf2+6eXB6F84I8m6NdtM1GNxuUvxZzgoe/3D+SchGQWoxemWVwOcLOMi Ii95SQB1f41X3mnZEfOiyCmt24H+OZhMZrupzepnGOrp5C77cNXVEGZwD+X8B1x3 foCpcGOdOq5dCAEyqIK9qKcDLG3+7DAmfWcd6rthed8t1tUxEO8BiVO8p0+ejI2d VkSlstUl1f2j73xqvoJN -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org