$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: 7uVwhqsAadqqChMxGIoEku5a+FwNal0nItttyNVzViU= Subject key identifier: 5D:E5:29:DB:71:C1:6D:87:37:B4:E3:7B:F2:74:61:C0:64:30:73:44 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 4A67B19771AC6B0F651B03624AD6CEB1233FCEDC Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:31:26 +0000 ROA not before: Wed 03 Apr 2024 15:26:26 +0000 ROA not after: Wed 02 Apr 2025 15:31:26 +0000 asID: 215364 IP address blocks: 2a14:7581:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:67:b1:97:71:ac:6b:0f:65:1b:03:62:4a:d6:ce:b1:23:3f:ce:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:26:26 2024 GMT Not After : Apr 2 15:31:26 2025 GMT Subject: CN=5DE529DB71C16D8737B4E37BF27461C064307344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:df:9f:22:aa:02:51:da:e3:63:88:0c:f6: 65:e6:78:fd:57:3d:48:56:be:84:0a:fd:28:f2:b1: e1:28:f1:74:0b:5e:86:44:ab:14:af:cf:b6:a5:50: e5:82:47:78:3b:99:ce:f8:1a:58:1c:22:23:97:80: 83:eb:d7:d1:8a:5c:52:f3:93:41:0c:a9:a8:ee:d0: 7e:e8:77:37:57:cd:65:2c:b6:24:51:27:d8:19:2e: 72:7b:c1:68:ce:8b:60:6e:f2:a9:55:38:f5:f6:6d: 14:38:db:57:76:1c:3d:b7:75:1f:f7:72:ea:47:59: e4:9d:4d:c4:a6:3d:9d:6f:b4:cd:d4:1e:13:59:b2: c9:a9:43:f0:b6:60:4a:5a:66:bc:79:e2:da:9e:57: c0:fd:51:50:41:61:ef:04:d6:87:df:dc:7b:97:d7: 05:90:8b:33:b7:b1:61:f9:5e:66:1a:51:d8:29:88: a9:37:1f:57:37:b3:87:1e:d0:e7:ab:38:3d:04:73: 8e:33:e9:76:c9:62:1b:0c:f8:30:91:f3:dc:dc:e1: 8c:ae:61:e5:30:3c:e4:8b:fb:93:c4:38:05:7a:4e: c2:4f:c0:63:ea:0e:e9:c9:9b:49:68:4b:ee:17:ce: ff:51:65:0d:e9:f3:9d:a5:95:08:72:2e:fc:23:6c: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E5:29:DB:71:C1:6D:87:37:B4:E3:7B:F2:74:61:C0:64:30:73:44 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030313a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1001::/48 Signature Algorithm: sha256WithRSAEncryption 8c:fe:3a:7e:fe:e8:59:5e:96:68:79:d4:28:ba:a7:83:6e:87: 37:12:fa:36:16:a5:89:91:be:c9:1e:83:76:5a:43:a6:31:59: f7:11:77:ee:4a:42:bf:2b:b2:61:58:39:7f:c8:ef:c3:68:61: d7:e4:36:06:53:91:6a:eb:6f:53:53:ff:67:e1:81:42:c3:f5: 72:29:54:44:dd:6d:ad:c8:cb:1d:67:82:f0:a1:11:d6:fa:31: 9b:82:c4:3f:c2:63:4b:bc:4d:4c:d5:aa:48:f3:c1:5b:97:40: f2:7e:30:7a:c3:c6:63:8a:bd:3e:82:a2:4e:fe:56:70:cf:36: 90:9d:cc:3b:ec:dd:16:9b:00:9f:92:ed:21:3f:51:38:8c:a2: e4:6b:77:58:73:cb:99:bd:35:48:f0:35:35:a0:c0:e6:7e:38: 3d:b2:75:7e:c6:4f:e3:c6:1f:e1:53:c2:d1:d7:88:5d:db:97: 40:e0:5d:76:64:3a:71:66:01:75:17:5f:c3:be:6b:38:0e:44: e8:0d:0e:a6:ae:c5:56:5c:e8:6a:ac:da:f0:73:3c:48:38:77: 19:ee:c2:ad:3f:81:eb:be:3f:9f:0e:9d:50:83:a9:ec:7c:03: e8:8d:a0:9f:13:f4:03:e4:4b:e2:6d:f1:a4:3a:0e:2f:9b:86: 78:37:71:04 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUSmexl3Gsaw9lGwNiStbOsSM/ztwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI2MjZaFw0yNTA0MDIxNTMxMjZaMDMxMTAvBgNV BAMTKDVERTUyOURCNzFDMTZEODczN0I0RTM3QkYyNzQ2MUMwNjQzMDczNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR3t+fIqoCUdrjY4gM9mXmeP1X PUhWvoQK/SjyseEo8XQLXoZEqxSvz7alUOWCR3g7mc74GlgcIiOXgIPr19GKXFLz k0EMqaju0H7odzdXzWUstiRRJ9gZLnJ7wWjOi2Bu8qlVOPX2bRQ421d2HD23dR/3 cupHWeSdTcSmPZ1vtM3UHhNZssmpQ/C2YEpaZrx54tqeV8D9UVBBYe8E1off3HuX 1wWQizO3sWH5XmYaUdgpiKk3H1c3s4ce0OerOD0Ec44z6XbJYhsM+DCR89zc4Yyu YeUwPOSL+5PEOAV6TsJPwGPqDunJm0loS+4Xzv9RZQ3p852llQhyLvwjbLR/AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUXeUp23HBbYc3tON78nRhwGQwc0QwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRABMA0GCSqGSIb3DQEBCwUAA4IBAQCM /jp+/uhZXpZoedQouqeDboc3Evo2FqWJkb7JHoN2WkOmMVn3EXfuSkK/K7JhWDl/ yO/DaGHX5DYGU5Fq629TU/9n4YFCw/VyKVRE3W2tyMsdZ4LwoRHW+jGbgsQ/wmNL vE1M1apI88Fbl0DyfjB6w8Zjir0+gqJO/lZwzzaQncw77N0WmwCfku0hP1E4jKLk a3dYc8uZvTVI8DU1oMDmfjg9snV+xk/jxh/hU8LR14hd25dA4F12ZDpxZgF1F1/D vms4DkToDQ6mrsVWXOhqrNrwczxIOHcZ7sKtP4Hrvj+fDp1Qg6nsfAPojaCfE/QD 5EvibfGkOg4vm4Z4N3EE -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org