$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: xMP2ePsvPUNtazUgW+zl7IfTZvyTOccdKuR7wyisLUA= Subject key identifier: 2F:0C:43:E7:35:4D:E6:EB:42:A4:F9:B6:16:2B:22:69:7A:EC:F9:BE Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 6BDAFE13692337E320F216D968BA3B50F2D244F5 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:32:01 +0000 ROA not before: Wed 03 Apr 2024 15:27:01 +0000 ROA not after: Wed 02 Apr 2025 15:32:01 +0000 asID: 215364 IP address blocks: 2a14:7581:1003::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:da:fe:13:69:23:37:e3:20:f2:16:d9:68:ba:3b:50:f2:d2:44:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:27:01 2024 GMT Not After : Apr 2 15:32:01 2025 GMT Subject: CN=2F0C43E7354DE6EB42A4F9B6162B22697AECF9BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1e:0b:de:ce:47:8c:c1:52:19:63:a2:e1:ed: 18:d0:80:d0:7b:78:35:72:b9:61:cc:d1:1b:6c:e7: e3:be:f6:97:82:13:57:1d:fa:1f:37:19:a6:36:41: b4:93:29:31:40:25:f0:3f:20:d2:b8:a2:9c:78:d4: f3:60:20:69:50:12:90:4f:a9:c0:dc:d8:55:f3:d1: 52:12:ee:ac:d7:e3:9b:28:1e:c7:29:e7:8e:5f:3d: 69:05:bd:3c:ce:54:1c:4f:0f:7a:f3:64:7b:77:51: c2:53:d8:91:8b:c7:0d:a7:36:16:90:a4:a6:e0:7c: 64:0b:61:df:85:d3:a1:94:32:5a:a1:e1:b0:c2:e0: 03:80:21:36:06:cd:bd:be:22:fe:a7:b1:af:89:68: 38:66:f5:f6:f2:bb:be:d5:9a:a6:e7:c2:1c:ca:43: 89:c7:ea:8e:5d:61:19:02:47:aa:e7:cf:3f:6b:8c: a5:7b:da:db:c5:1f:66:5f:94:a8:e1:81:25:c5:c7: 25:ae:70:02:32:42:0d:17:b5:a5:d6:94:53:7c:b4: e4:e3:f6:3c:a1:79:72:74:af:1d:d7:56:17:78:ff: ae:3f:94:3a:33:62:f0:2e:3a:25:57:39:32:e8:fa: 6d:7a:9e:ca:22:ab:68:ff:0f:0e:56:b3:9e:d3:49: 49:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0C:43:E7:35:4D:E6:EB:42:A4:F9:B6:16:2B:22:69:7A:EC:F9:BE X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030333a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1003::/48 Signature Algorithm: sha256WithRSAEncryption 14:8d:13:ed:79:f1:07:ce:c7:f0:4f:46:b0:ca:e5:7b:00:6c: 13:a9:50:43:db:37:9a:a1:d8:41:4c:e2:5c:c2:84:ae:c6:de: 81:e9:d8:a4:6b:04:4b:05:54:51:2d:0b:b5:73:ba:0b:af:e9: f3:13:e2:53:63:86:c6:f3:24:84:c6:a8:64:ec:f8:52:4a:51: 22:f2:8e:21:75:bf:4c:0c:a5:4d:53:54:ed:65:e0:bb:73:5b: fd:43:42:ab:14:70:89:90:9e:3a:d6:e0:10:34:61:48:81:34: bb:6a:56:0e:df:42:b7:38:03:83:15:d5:35:01:2d:13:8a:75: 12:db:cc:45:71:d5:d9:ca:f2:b9:c7:55:68:2d:d8:16:63:1c: ac:52:c6:2b:58:d8:94:61:96:58:64:6f:ee:e2:c0:71:c2:6d: 63:64:30:3b:7d:1a:aa:b7:4d:f9:93:18:bd:b5:22:ea:aa:d5: b7:4f:10:12:20:25:1a:36:6a:b7:96:d0:ed:cd:2c:26:a2:43: 65:63:00:d9:f3:fa:77:75:18:14:c8:d0:b0:e7:51:65:9e:31: 20:80:d2:24:c8:66:ad:e9:0b:8a:d9:e7:97:93:7d:09:90:60: fb:19:74:59:5f:1e:da:ed:87:16:6f:76:36:c3:01:22:52:fd: db:1d:e2:66 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUa9r+E2kjN+Mg8hbZaLo7UPLSRPUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI3MDFaFw0yNTA0MDIxNTMyMDFaMDMxMTAvBgNV BAMTKDJGMEM0M0U3MzU0REU2RUI0MkE0RjlCNjE2MkIyMjY5N0FFQ0Y5QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtHgvezkeMwVIZY6Lh7RjQgNB7 eDVyuWHM0Rts5+O+9peCE1cd+h83GaY2QbSTKTFAJfA/INK4opx41PNgIGlQEpBP qcDc2FXz0VIS7qzX45soHscp545fPWkFvTzOVBxPD3rzZHt3UcJT2JGLxw2nNhaQ pKbgfGQLYd+F06GUMlqh4bDC4AOAITYGzb2+Iv6nsa+JaDhm9fbyu77VmqbnwhzK Q4nH6o5dYRkCR6rnzz9rjKV72tvFH2ZflKjhgSXFxyWucAIyQg0XtaXWlFN8tOTj 9jyheXJ0rx3XVhd4/64/lDozYvAuOiVXOTLo+m16nsoiq2j/Dw5Ws57TSUmvAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQULwxD5zVN5utCpPm2FisiaXrs+b4wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDMzM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRADMA0GCSqGSIb3DQEBCwUAA4IBAQAU jRPtefEHzsfwT0awyuV7AGwTqVBD2zeaodhBTOJcwoSuxt6B6dikawRLBVRRLQu1 c7oLr+nzE+JTY4bG8ySExqhk7PhSSlEi8o4hdb9MDKVNU1TtZeC7c1v9Q0KrFHCJ kJ461uAQNGFIgTS7alYO30K3OAODFdU1AS0TinUS28xFcdXZyvK5x1VoLdgWYxys UsYrWNiUYZZYZG/u4sBxwm1jZDA7fRqqt035kxi9tSLqqtW3TxASICUaNmq3ltDt zSwmokNlYwDZ8/p3dRgUyNCw51FlnjEggNIkyGat6QuK2eeXk30JkGD7GXRZXx7a 7YcWb3Y2wwEiUv3bHeJm -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:39 2024 by rpki-client on console-fra.rpki-client.org