$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030343a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030343a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: WmHcoYM4GAKVm7KY7iMe5NKGc7oylUktzoboJYAjRDU= Subject key identifier: 8D:C9:8C:E4:AE:BF:7B:C0:A3:7F:9E:C3:6B:9E:81:15:68:EA:A3:40 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 7868174DECF5A792ADB0BEC83B5DB37D9E422876 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030343a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:32:16 +0000 ROA not before: Wed 03 Apr 2024 15:27:16 +0000 ROA not after: Wed 02 Apr 2025 15:32:16 +0000 asID: 215364 IP address blocks: 2a14:7581:1004::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:68:17:4d:ec:f5:a7:92:ad:b0:be:c8:3b:5d:b3:7d:9e:42:28:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:27:16 2024 GMT Not After : Apr 2 15:32:16 2025 GMT Subject: CN=8DC98CE4AEBF7BC0A37F9EC36B9E811568EAA340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:c9:bb:49:ce:1e:83:2b:03:7f:5d:2b:48: 21:b4:46:c3:3f:49:77:15:c4:e3:59:e4:3c:e7:3a: 16:9a:22:4d:2f:38:44:48:2e:b9:5c:36:04:02:3b: 81:1b:db:ef:31:b2:14:a5:f1:a8:60:01:bc:9e:6a: 70:07:a3:8e:d4:9c:78:66:a8:f9:ec:a0:ba:cc:16: fc:82:ad:4e:2b:10:47:28:ff:e4:db:cf:f4:43:66: 48:c4:c5:e6:89:cd:d5:46:59:5b:04:ba:df:02:09: 6e:3e:bd:67:22:4e:48:f1:d4:1f:c9:66:25:69:77: 7b:d5:e6:f1:d1:a3:87:44:03:bb:83:e2:ef:cd:5e: ce:ce:4a:02:5d:2a:39:6c:92:dd:c6:02:35:1c:d6: 79:ea:3a:e5:1f:eb:79:6d:ab:71:00:8e:1b:64:d5: 7d:9e:05:c9:12:28:46:d7:cc:b7:a3:23:42:7b:0a: 70:c1:25:10:cb:94:94:60:46:2b:52:f7:9e:06:ba: f7:55:61:8c:cd:9f:35:ad:0a:5f:80:e5:91:f9:5a: 98:0b:05:38:e9:6a:cd:57:a1:66:b5:52:e3:15:0a: cd:ec:81:8a:d0:71:11:79:76:9c:41:38:e7:04:49: f3:41:cd:45:b2:a8:77:00:96:e5:b3:b0:5d:c3:54: 41:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C9:8C:E4:AE:BF:7B:C0:A3:7F:9E:C3:6B:9E:81:15:68:EA:A3:40 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030343a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1004::/48 Signature Algorithm: sha256WithRSAEncryption a4:96:3d:37:16:62:65:6a:a2:25:8c:61:fd:ca:f2:46:96:19: 3d:ac:fe:c6:c0:a9:58:e1:5e:16:ce:b2:6b:44:b1:58:f0:5b: 0d:35:b2:f4:5a:af:f9:37:83:65:af:b1:d0:11:34:bd:71:fe: b3:ac:ef:4a:4d:2b:e5:a5:06:5a:07:fb:16:8d:52:69:82:a8: 67:ee:d0:84:11:bc:df:3c:dd:7b:1d:80:6a:8e:de:79:f3:01: 28:98:09:39:a9:4b:fa:ee:18:a0:1c:e6:a6:19:20:c2:b6:3a: 78:74:a4:a1:cb:c9:73:f7:b9:06:ab:90:c6:d2:3e:22:82:02: b6:33:0b:90:c4:a4:79:9c:43:96:ce:7d:84:36:1e:d5:36:ab: 32:3b:26:ca:19:e2:21:ae:a6:06:f4:02:4f:94:1f:2a:bb:9f: ec:8f:a8:64:10:8c:6c:ac:b1:d8:6a:93:3d:f3:f1:92:fa:75: 93:92:56:2c:ea:f9:83:8b:3c:4b:8a:1a:8c:fb:fa:cd:91:85: 68:82:10:6a:99:1c:e3:ca:9b:ef:f5:4d:89:0d:09:33:76:a2: 18:4f:4c:fb:76:3f:70:17:71:0a:7b:fd:e0:aa:10:f9:ea:cf: 9a:fa:1b:c5:76:80:b2:b8:38:20:1e:d1:48:92:bc:56:de:b6: 3e:71:f4:e2 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUeGgXTez1p5KtsL7IO12zfZ5CKHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI3MTZaFw0yNTA0MDIxNTMyMTZaMDMxMTAvBgNV BAMTKDhEQzk4Q0U0QUVCRjdCQzBBMzdGOUVDMzZCOUU4MTE1NjhFQUEzNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJcm7Sc4egysDf10rSCG0RsM/ SXcVxONZ5DznOhaaIk0vOERILrlcNgQCO4Eb2+8xshSl8ahgAbyeanAHo47UnHhm qPnsoLrMFvyCrU4rEEco/+Tbz/RDZkjExeaJzdVGWVsEut8CCW4+vWciTkjx1B/J ZiVpd3vV5vHRo4dEA7uD4u/NXs7OSgJdKjlskt3GAjUc1nnqOuUf63ltq3EAjhtk 1X2eBckSKEbXzLejI0J7CnDBJRDLlJRgRitS954GuvdVYYzNnzWtCl+A5ZH5WpgL BTjpas1XoWa1UuMVCs3sgYrQcRF5dpxBOOcESfNBzUWyqHcAluWzsF3DVEGRAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUjcmM5K6/e8Cjf57Da56BFWjqo0AwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM0M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAEMA0GCSqGSIb3DQEBCwUAA4IBAQCk lj03FmJlaqIljGH9yvJGlhk9rP7GwKlY4V4WzrJrRLFY8FsNNbL0Wq/5N4Nlr7HQ ETS9cf6zrO9KTSvlpQZaB/sWjVJpgqhn7tCEEbzfPN17HYBqjt558wEomAk5qUv6 7higHOamGSDCtjp4dKShy8lz97kGq5DG0j4iggK2MwuQxKR5nEOWzn2ENh7VNqsy OybKGeIhrqYG9AJPlB8qu5/sj6hkEIxsrLHYapM98/GS+nWTklYs6vmDizxLihqM +/rNkYVoghBqmRzjypvv9U2JDQkzdqIYT0z7dj9wF3EKe/3gqhD56s+a+hvFdoCy uDggHtFIkrxW3rY+cfTi -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org