$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: wmruJ0be6xFvyvoTxu0Apbm0QLgc9Q85jrfVcX+JWxA= Subject key identifier: 60:8A:AA:15:38:F6:C6:35:2B:3E:DE:87:7C:58:9D:4A:10:89:97:6C Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 6603A02D5430933BC4F564606056E3AAA3B0A127 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:33:32 +0000 ROA not before: Wed 03 Apr 2024 15:28:32 +0000 ROA not after: Wed 02 Apr 2025 15:33:32 +0000 asID: 215364 IP address blocks: 2a14:7581:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:03:a0:2d:54:30:93:3b:c4:f5:64:60:60:56:e3:aa:a3:b0:a1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:28:32 2024 GMT Not After : Apr 2 15:33:32 2025 GMT Subject: CN=608AAA1538F6C6352B3EDE877C589D4A1089976C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:62:be:3b:18:1d:79:98:ae:d7:78:bf:77:06: 04:a2:29:b4:a1:37:05:3a:49:ea:ff:41:bf:2e:d6: 4c:62:bc:3b:80:dc:e5:8a:db:ff:b0:ac:f1:c5:18: 9e:1d:d5:31:fe:7a:89:f1:a3:75:9f:1d:68:62:92: 32:a8:b4:f7:32:08:f7:13:f0:80:5a:91:47:b9:2c: 68:35:92:2c:f9:2b:bd:a6:40:ea:e0:f4:fd:33:cd: 88:43:5e:03:cd:ce:6e:a2:f9:ad:e9:69:80:1b:a2: 60:1d:6d:90:84:f9:d5:d8:dc:78:01:79:a7:6e:fb: cc:c9:52:b6:7b:da:d5:72:77:ad:70:f7:cc:24:a8: f8:12:ff:38:2c:f2:e1:00:54:b8:31:0e:4e:33:62: 0d:4a:93:20:42:5f:56:01:89:58:e5:1f:73:92:54: 30:e2:86:cb:18:ec:9e:0d:d9:a2:54:64:b0:40:56: ea:c5:59:13:94:e5:b7:f0:20:01:58:dc:ea:ed:1c: 19:77:8b:01:32:5c:b4:d2:89:2c:84:61:c3:f8:4a: c4:ae:2f:59:e0:5b:06:2c:1e:e2:6d:83:4e:df:93: 2d:16:6c:82:9e:fc:1c:f1:e6:67:b2:17:fc:55:10: 16:97:a5:90:e2:90:1e:91:8c:af:1b:8b:9e:b4:3d: ac:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:8A:AA:15:38:F6:C6:35:2B:3E:DE:87:7C:58:9D:4A:10:89:97:6C X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030373a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1007::/48 Signature Algorithm: sha256WithRSAEncryption 8e:ca:c7:f0:94:2c:0e:aa:18:40:ad:70:e3:48:b3:50:fb:12: ae:e0:11:8b:6d:d3:39:5e:b4:1f:5d:3f:77:f0:50:00:55:5f: 72:82:7b:54:6a:b6:16:e9:7b:44:c4:10:e5:1d:28:17:53:eb: 62:87:93:c8:38:f9:d5:a7:84:cd:95:f4:eb:f0:ea:5c:59:e0: f8:39:0c:c5:d1:02:bb:58:8d:43:c5:f8:e7:6a:38:50:92:d1: 3a:45:78:30:db:f3:b2:e2:dd:5d:37:7c:8d:bd:16:af:10:0e: cf:f1:83:04:09:bd:9b:cd:ac:7a:47:a0:c6:d2:59:9a:25:b9: 22:b1:f1:b1:a6:76:f8:3b:2b:92:9e:60:cb:28:ed:03:a2:01: 1b:6d:4e:86:25:9f:24:75:81:61:2c:93:aa:28:9b:38:3c:1c: 00:37:4a:a6:bb:74:2d:57:1a:a5:7a:9c:d9:39:1d:15:af:2c: 31:be:6e:68:84:30:a6:17:1a:35:aa:e3:66:00:8a:2e:74:c7: b5:35:26:07:65:6f:50:bc:6c:f5:5d:51:f3:74:3c:a9:5d:4a: 56:04:5f:9e:d8:9b:86:7d:2a:de:7c:14:2d:ca:3f:be:f0:3f: f3:16:5b:17:7b:9c:ff:dd:f3:86:e4:04:cd:7c:01:cc:81:9e: 7c:a4:e2:58 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUZgOgLVQwkzvE9WRgYFbjqqOwoScwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI4MzJaFw0yNTA0MDIxNTMzMzJaMDMxMTAvBgNV BAMTKDYwOEFBQTE1MzhGNkM2MzUyQjNFREU4NzdDNTg5RDRBMTA4OTk3NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNYr47GB15mK7XeL93BgSiKbSh NwU6Ser/Qb8u1kxivDuA3OWK2/+wrPHFGJ4d1TH+eonxo3WfHWhikjKotPcyCPcT 8IBakUe5LGg1kiz5K72mQOrg9P0zzYhDXgPNzm6i+a3paYAbomAdbZCE+dXY3HgB eadu+8zJUrZ72tVyd61w98wkqPgS/zgs8uEAVLgxDk4zYg1KkyBCX1YBiVjlH3OS VDDihssY7J4N2aJUZLBAVurFWROU5bfwIAFY3OrtHBl3iwEyXLTSiSyEYcP4SsSu L1ngWwYsHuJtg07fky0WbIKe/Bzx5meyF/xVEBaXpZDikB6RjK8bi560PayJAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUYIqqFTj2xjUrPt6HfFidShCJl2wwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM3M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAHMA0GCSqGSIb3DQEBCwUAA4IBAQCO ysfwlCwOqhhArXDjSLNQ+xKu4BGLbdM5XrQfXT938FAAVV9ygntUarYW6XtExBDl HSgXU+tih5PIOPnVp4TNlfTr8OpcWeD4OQzF0QK7WI1DxfjnajhQktE6RXgw2/Oy 4t1dN3yNvRavEA7P8YMECb2bzax6R6DG0lmaJbkisfGxpnb4OyuSnmDLKO0DogEb bU6GJZ8kdYFhLJOqKJs4PBwAN0qmu3QtVxqlepzZOR0Vrywxvm5ohDCmFxo1quNm AIoudMe1NSYHZW9QvGz1XVHzdDypXUpWBF+e2JuGfSrefBQtyj++8D/zFlsXe5z/ 3fOG5ATNfAHMgZ58pOJY -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org