$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: XgOhSPwJGtuXpftOGrViDTdNoAcy51wGiTqscd/JRik= Subject key identifier: B1:6D:9A:E6:5B:F1:98:74:71:21:96:9A:1F:89:AA:5D:FB:0E:9F:7B Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 721252B5DF520B5AF3E9238AFCAEEC45F1DFC2C6 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:33:06 +0000 ROA not before: Wed 03 Apr 2024 15:28:06 +0000 ROA not after: Wed 02 Apr 2025 15:33:06 +0000 asID: 215364 IP address blocks: 2a14:7581:1006::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:12:52:b5:df:52:0b:5a:f3:e9:23:8a:fc:ae:ec:45:f1:df:c2:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:28:06 2024 GMT Not After : Apr 2 15:33:06 2025 GMT Subject: CN=B16D9AE65BF198747121969A1F89AA5DFB0E9F7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b9:6c:05:68:fa:6d:f4:f2:31:58:10:5a:85: 24:c0:ba:47:24:31:9a:eb:74:e1:f2:94:45:24:ed: f7:8b:6e:5e:d8:0e:be:c6:69:a9:4b:a2:42:6c:e1: 8a:83:04:6c:f5:68:e5:4f:a6:b5:ec:18:06:a4:7b: 7d:f1:88:66:d6:70:2f:17:03:f8:63:6b:5a:ee:a2: 71:92:5d:3e:15:da:f9:58:4b:f0:5d:3a:a2:c2:c2: 1d:d1:f1:5c:37:1e:46:d2:9d:38:c5:c9:99:e8:8f: 17:00:c4:59:18:bc:1a:64:14:0c:9c:de:47:9a:fe: e7:ee:96:e5:7c:1a:8b:5b:2d:36:3a:5b:1d:66:b6: dd:81:a0:68:e3:a2:5c:16:26:ec:5f:4f:d1:92:ec: b2:43:02:ed:09:28:79:0b:39:4a:53:4e:f1:87:51: 3c:b1:18:2d:7a:11:83:ee:0a:d4:f6:64:f5:bd:06: 46:78:c1:c8:ce:5d:9f:60:29:a7:50:19:1d:10:39: f8:5a:86:e7:94:92:d6:10:43:cf:02:da:b4:80:32: 55:a5:a0:d0:86:f2:6a:46:99:37:31:3e:74:ff:80: dc:aa:2e:30:c0:c4:a5:9f:56:64:d5:fa:e3:12:f3: c5:10:c7:ae:a7:6f:1a:f4:cd:ef:20:1f:5e:01:96: 2f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6D:9A:E6:5B:F1:98:74:71:21:96:9A:1F:89:AA:5D:FB:0E:9F:7B X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030363a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1006::/48 Signature Algorithm: sha256WithRSAEncryption 75:96:d0:8c:8a:df:a3:d8:80:fb:a2:25:88:1d:bc:c8:d9:5a: 05:8b:88:0c:05:73:59:df:7f:a7:c2:cb:94:58:ef:1d:1b:de: 19:b6:b7:db:0e:aa:da:37:28:fe:22:57:6b:6c:85:ba:1e:03: 93:ff:83:29:1e:4b:9a:26:61:c7:cf:b9:c1:53:d8:3e:8c:82: 5c:7d:ce:c1:34:56:18:b6:97:69:bc:02:d9:07:a4:24:b3:8f: a9:71:49:1e:82:16:8a:38:b2:64:c4:7c:b8:63:ff:6b:70:86: e9:59:b3:13:04:3d:e1:e4:d3:86:17:f8:20:9c:3b:cc:80:d9: 27:dd:4c:61:49:cb:63:d9:c3:b7:f4:a1:26:f4:14:be:69:fe: f6:91:0e:a5:63:e6:2e:d6:4d:5d:65:40:90:7b:ff:99:3a:d3: c0:e9:24:f2:81:b0:30:a9:bb:58:38:e1:ec:38:11:d0:88:b9: b9:bf:a9:6a:97:28:df:cd:35:b1:7b:56:a8:66:ad:e7:5b:40: 2b:29:80:74:0d:de:b0:96:b0:4b:28:15:87:0c:3e:80:75:71: ee:e8:9c:f8:2f:2e:97:7f:c6:d8:4c:e7:97:35:24:ac:6a:2f: d2:89:28:1d:32:b7:37:b6:02:d0:aa:7e:7c:60:25:06:12:58: ad:b4:06:08 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUchJStd9SC1rz6SOK/K7sRfHfwsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI4MDZaFw0yNTA0MDIxNTMzMDZaMDMxMTAvBgNV BAMTKEIxNkQ5QUU2NUJGMTk4NzQ3MTIxOTY5QTFGODlBQTVERkIwRTlGN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDquWwFaPpt9PIxWBBahSTAukck MZrrdOHylEUk7feLbl7YDr7GaalLokJs4YqDBGz1aOVPprXsGAake33xiGbWcC8X A/hja1ruonGSXT4V2vlYS/BdOqLCwh3R8Vw3HkbSnTjFyZnojxcAxFkYvBpkFAyc 3kea/ufuluV8GotbLTY6Wx1mtt2BoGjjolwWJuxfT9GS7LJDAu0JKHkLOUpTTvGH UTyxGC16EYPuCtT2ZPW9BkZ4wcjOXZ9gKadQGR0QOfhahueUktYQQ88C2rSAMlWl oNCG8mpGmTcxPnT/gNyqLjDAxKWfVmTV+uMS88UQx66nbxr0ze8gH14Bli9zAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUsW2a5lvxmHRxIZaaH4mqXfsOn3swHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM2M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAGMA0GCSqGSIb3DQEBCwUAA4IBAQB1 ltCMit+j2ID7oiWIHbzI2VoFi4gMBXNZ33+nwsuUWO8dG94ZtrfbDqraNyj+Ildr bIW6HgOT/4MpHkuaJmHHz7nBU9g+jIJcfc7BNFYYtpdpvALZB6Qks4+pcUkeghaK OLJkxHy4Y/9rcIbpWbMTBD3h5NOGF/ggnDvMgNkn3UxhSctj2cO39KEm9BS+af72 kQ6lY+Yu1k1dZUCQe/+ZOtPA6STygbAwqbtYOOHsOBHQiLm5v6lqlyjfzTWxe1ao Zq3nW0ArKYB0Dd6wlrBLKBWHDD6AdXHu6Jz4Ly6Xf8bYTOeXNSSsai/SiSgdMrc3 tgLQqn58YCUGElittAYI -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org