$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030353a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030353a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: lhr8ve21c4m85IdOso/VW3xCy9A/oZIxXplIRIBLaIM= Subject key identifier: F7:9A:AE:F7:67:E7:F5:7E:91:E3:3D:ED:C4:4F:A2:9B:A3:2E:51:DA Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 06B18880860A008392EDB5557B39A37FDE6CA20F Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030353a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:32:45 +0000 ROA not before: Wed 03 Apr 2024 15:27:45 +0000 ROA not after: Wed 02 Apr 2025 15:32:45 +0000 asID: 215364 IP address blocks: 2a14:7581:1005::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b1:88:80:86:0a:00:83:92:ed:b5:55:7b:39:a3:7f:de:6c:a2:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:27:45 2024 GMT Not After : Apr 2 15:32:45 2025 GMT Subject: CN=F79AAEF767E7F57E91E33DEDC44FA29BA32E51DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a6:6e:8f:55:2a:a8:57:44:df:09:85:eb:ae: b3:83:41:3e:81:09:13:24:07:76:88:81:28:15:ed: dc:18:8d:75:54:7b:c5:24:e0:ba:ed:f0:7c:ef:e6: 14:eb:5d:d1:70:d1:20:41:7b:b5:75:5d:38:64:4d: b8:92:16:06:8b:ee:2b:d2:19:aa:04:4b:6b:c3:4c: e3:95:5e:a1:f6:29:74:e9:15:d0:49:62:d1:eb:65: 2c:d1:a6:ce:a0:a9:a7:3a:17:16:bb:da:23:dc:46: 47:0b:53:91:e2:69:49:c8:5e:5b:94:a2:3c:c1:c2: 53:27:56:32:af:87:fb:79:e3:a6:54:02:12:fb:08: 0b:ac:2e:3e:3c:ee:d7:8e:64:3f:51:53:ea:45:de: 10:65:d1:15:e8:00:43:5d:7d:2f:c4:2e:c8:90:7a: b5:bc:0a:8b:47:b5:5f:51:a8:f5:63:49:06:09:45: 25:9e:77:80:0c:b5:3d:b3:e0:82:9d:28:13:da:64: 69:e4:99:a4:ce:99:c5:44:f4:98:50:07:3a:1f:e4: a9:d9:3f:8b:ec:81:11:eb:05:5b:14:37:23:f8:0e: 1a:e5:ef:03:05:c9:67:35:cc:98:18:00:0a:cd:15: 4a:d6:62:3d:38:d5:fb:ae:f1:7f:b7:00:98:b6:50: 48:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:9A:AE:F7:67:E7:F5:7E:91:E3:3D:ED:C4:4F:A2:9B:A3:2E:51:DA X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030353a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1005::/48 Signature Algorithm: sha256WithRSAEncryption b6:5c:86:d0:54:ff:59:2d:b6:a7:89:77:68:f9:8a:ba:18:06: 00:4b:ae:4b:53:74:74:78:08:25:fc:a9:ca:c5:4b:1f:be:12: e8:d6:4c:c1:4f:f0:73:0d:51:3f:06:c1:a1:ee:9c:ce:07:3f: 04:88:11:75:9f:9d:23:e5:ab:b6:52:90:fe:54:50:e0:0b:64: b6:2b:36:fb:5b:fa:9a:ae:f8:93:c8:60:bb:4f:a8:6a:d2:90: cf:80:7c:71:e8:34:ef:b9:1e:dd:7c:87:54:db:51:21:2f:58: bc:39:7b:65:9f:3c:39:01:3f:32:c7:6d:04:bc:a3:d0:de:61: 17:a2:d7:d1:7b:c4:b3:63:82:a9:a1:de:3e:3e:38:56:34:e4: 2d:a4:b5:3d:f5:41:08:fe:91:b6:59:41:43:5c:83:c4:ca:a8: da:b1:15:a2:ba:fd:c2:6d:87:f5:5a:c8:cd:a7:ea:83:27:77: 70:4a:7c:b9:3e:1c:c1:47:13:6b:fa:f5:64:a2:9a:ae:33:63: 7d:69:81:8f:6a:5a:2e:42:b2:eb:25:24:e7:e4:88:a9:de:8f: 28:fc:d5:a1:90:6b:23:ab:f2:08:fe:4d:44:16:e2:fc:2b:cd: e4:dc:4e:e1:89:27:0e:0f:0f:29:9d:28:b4:cd:ab:10:c2:c7: 44:93:56:31 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUBrGIgIYKAIOS7bVVezmjf95sog8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI3NDVaFw0yNTA0MDIxNTMyNDVaMDMxMTAvBgNV BAMTKEY3OUFBRUY3NjdFN0Y1N0U5MUUzM0RFREM0NEZBMjlCQTMyRTUxREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrpm6PVSqoV0TfCYXrrrODQT6B CRMkB3aIgSgV7dwYjXVUe8Uk4Lrt8Hzv5hTrXdFw0SBBe7V1XThkTbiSFgaL7ivS GaoES2vDTOOVXqH2KXTpFdBJYtHrZSzRps6gqac6Fxa72iPcRkcLU5HiaUnIXluU ojzBwlMnVjKvh/t546ZUAhL7CAusLj487teOZD9RU+pF3hBl0RXoAENdfS/ELsiQ erW8CotHtV9RqPVjSQYJRSWed4AMtT2z4IKdKBPaZGnkmaTOmcVE9JhQBzof5KnZ P4vsgRHrBVsUNyP4Dhrl7wMFyWc1zJgYAArNFUrWYj041fuu8X+3AJi2UEjXAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQU95qu92fn9X6R4z3txE+im6MuUdowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM1M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAFMA0GCSqGSIb3DQEBCwUAA4IBAQC2 XIbQVP9ZLbaniXdo+Yq6GAYAS65LU3R0eAgl/KnKxUsfvhLo1kzBT/BzDVE/BsGh 7pzOBz8EiBF1n50j5au2UpD+VFDgC2S2Kzb7W/qarviTyGC7T6hq0pDPgHxx6DTv uR7dfIdU21EhL1i8OXtlnzw5AT8yx20EvKPQ3mEXotfRe8SzY4Kpod4+PjhWNOQt pLU99UEI/pG2WUFDXIPEyqjasRWiuv3CbYf1WsjNp+qDJ3dwSny5PhzBRxNr+vVk opquM2N9aYGPalouQrLrJSTn5Iip3o8o/NWhkGsjq/II/k1EFuL8K83k3E7hiScO Dw8pnSi0zasQwsdEk1Yx -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org