$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030323a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030323a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: /qBk/T5gJO6pBRi+9xPDS38VGzly/5UW5EKeZKqXda0= Subject key identifier: 50:3B:6A:87:E6:81:B7:A1:3D:74:EC:53:A5:A9:60:DA:16:E1:BA:B8 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 2ABA740E178875E33A192513FB6CA7820636FA1A Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030323a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 17:42:00 +0000 ROA not before: Wed 03 Apr 2024 17:37:00 +0000 ROA not after: Wed 02 Apr 2025 17:42:00 +0000 asID: 215364 IP address blocks: 2a14:7581:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 25 Nov 2024 12:04:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ba:74:0e:17:88:75:e3:3a:19:25:13:fb:6c:a7:82:06:36:fa:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 17:37:00 2024 GMT Not After : Apr 2 17:42:00 2025 GMT Subject: CN=503B6A87E681B7A13D74EC53A5A960DA16E1BAB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fb:0c:5c:7f:b7:7d:72:9e:54:6b:bb:00:1f: 27:3c:84:0b:66:e7:4e:14:4b:f8:d1:3d:e2:78:a4: c7:e4:30:d4:cd:57:03:ea:d6:af:18:6f:ae:47:58: 93:3b:12:14:5d:50:91:11:ea:01:fd:b2:74:ba:ae: 33:e5:d4:47:f4:e5:a7:43:cd:8d:fb:8e:2b:d0:65: b3:dd:e2:2e:60:42:e4:c4:61:6a:67:fd:4f:9d:88: bf:e7:3a:51:9a:9a:e5:c3:56:4b:6b:2b:ab:fe:c3: c1:30:52:01:83:cf:cb:9b:4b:88:1b:c8:8b:9c:d6: bc:f3:2c:dc:68:d7:56:db:dd:2f:a9:eb:08:50:5c: 10:77:85:d2:e4:5a:3f:84:f7:89:9b:84:6d:34:9f: ac:7d:bb:dc:5b:0f:c9:27:38:f2:bc:bf:3d:49:f6: af:da:e0:90:32:aa:c5:21:1c:d8:03:b0:15:b0:3a: a2:af:6e:2c:4f:60:c9:02:6a:f8:f6:ce:2c:d9:65: b8:0e:8e:67:3b:3b:38:89:b2:68:f1:6c:8e:08:6e: 92:6e:f7:c3:db:24:1f:d6:41:aa:4b:43:25:c8:f0: 84:62:63:53:89:20:32:7a:20:a7:72:bf:f2:66:6c: 3c:f9:60:17:4d:5b:0d:63:f3:72:1d:8f:7e:86:78: 4d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3B:6A:87:E6:81:B7:A1:3D:74:EC:53:A5:A9:60:DA:16:E1:BA:B8 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030323a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1002::/48 Signature Algorithm: sha256WithRSAEncryption 3f:59:fa:3a:c8:46:fc:53:94:59:4b:7a:9a:f0:b6:05:e7:46: 81:78:50:54:a5:2a:38:16:5c:e2:21:03:4e:7f:5b:74:a0:77: 5d:73:79:27:67:7e:3b:f7:0c:19:47:35:d1:f8:4d:4b:14:ae: 12:04:45:ee:18:8f:a8:57:a0:bd:d0:06:c1:4f:a2:0f:a3:59: 90:a8:ed:89:ad:55:dc:f5:c0:ea:e6:dc:05:cf:57:ee:8e:c8: e4:29:33:57:7c:25:29:0f:54:58:34:b5:e5:1a:e8:ce:cf:5b: b8:91:84:d4:3e:aa:be:80:56:a3:26:e4:f7:15:c7:1c:dd:8c: 42:21:70:3a:2c:28:6b:b8:52:bb:e9:2b:7e:a9:51:a1:fe:75: 78:24:aa:5f:e7:45:8e:7a:b8:c2:01:40:2d:91:20:8c:5e:81: ff:b6:8a:51:ec:11:05:d9:c6:b3:9d:a0:b1:1a:35:02:cc:62: 82:9e:81:c3:1f:af:8c:7c:2e:d4:90:a7:ee:c4:96:b5:f7:d7: 12:37:e0:ea:37:8c:6d:9f:53:7e:d2:d6:63:4b:21:36:6e:65: 0e:ee:94:ec:c5:a3:be:ac:97:22:98:28:ea:db:d8:22:4d:42: 07:56:77:bb:37:ba:26:87:ed:50:ce:a8:bb:78:cb:87:77:45: 2d:2d:3b:0b -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUKrp0DheIdeM6GSUT+2ynggY2+howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNzM3MDBaFw0yNTA0MDIxNzQyMDBaMDMxMTAvBgNV BAMTKDUwM0I2QTg3RTY4MUI3QTEzRDc0RUM1M0E1QTk2MERBMTZFMUJBQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl+wxcf7d9cp5Ua7sAHyc8hAtm 504US/jRPeJ4pMfkMNTNVwPq1q8Yb65HWJM7EhRdUJER6gH9snS6rjPl1Ef05adD zY37jivQZbPd4i5gQuTEYWpn/U+diL/nOlGamuXDVktrK6v+w8EwUgGDz8ubS4gb yIuc1rzzLNxo11bb3S+p6whQXBB3hdLkWj+E94mbhG00n6x9u9xbD8knOPK8vz1J 9q/a4JAyqsUhHNgDsBWwOqKvbixPYMkCavj2zizZZbgOjmc7OziJsmjxbI4IbpJu 98PbJB/WQapLQyXI8IRiY1OJIDJ6IKdyv/JmbDz5YBdNWw1j83Idj36GeE1TAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUUDtqh+aBt6E9dOxTpalg2hbhurgwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMyM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRACMA0GCSqGSIb3DQEBCwUAA4IBAQA/ Wfo6yEb8U5RZS3qa8LYF50aBeFBUpSo4FlziIQNOf1t0oHddc3knZ3479wwZRzXR +E1LFK4SBEXuGI+oV6C90AbBT6IPo1mQqO2JrVXc9cDq5twFz1fujsjkKTNXfCUp D1RYNLXlGujOz1u4kYTUPqq+gFajJuT3Fccc3YxCIXA6LChruFK76St+qVGh/nV4 JKpf50WOerjCAUAtkSCMXoH/topR7BEF2caznaCxGjUCzGKCnoHDH6+MfC7UkKfu xJa199cSN+DqN4xtn1N+0tZjSyE2bmUO7pTsxaO+rJcimCjq29giTUIHVne7N7om h+1Qzqi7eMuHd0UtLTsL -----END CERTIFICATE-----Generated at Sun Nov 24 21:02:13 2024 by rpki-client on console-fra.rpki-client.org