$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa File: 326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa (raw, json) Hash identifier: BGeHDWm05HWVeKaxLHungxowK9eoSCfVxdHyeZST9ms= Subject key identifier: 14:88:1D:00:E8:A5:B2:B9:68:94:CB:5D:A1:96:B3:65:67:5F:23:83 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 4D65FBDCCCDB055543E4AD1AF64AE4A35A11024E Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa Signing time: Wed 03 Apr 2024 15:33:49 +0000 ROA not before: Wed 03 Apr 2024 15:28:49 +0000 ROA not after: Wed 02 Apr 2025 15:33:49 +0000 asID: 215364 IP address blocks: 2a14:7581:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:65:fb:dc:cc:db:05:55:43:e4:ad:1a:f6:4a:e4:a3:5a:11:02:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 3 15:28:49 2024 GMT Not After : Apr 2 15:33:49 2025 GMT Subject: CN=14881D00E8A5B2B96894CB5DA196B365675F2383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1e:56:24:a3:81:51:3f:e0:cf:8d:c3:95:c5: 24:f9:0e:10:de:98:54:8d:38:af:d1:6a:29:cd:f5: 09:62:48:fd:c7:d9:9e:70:72:af:04:0f:24:f1:c8: 74:d4:f7:21:cc:40:a8:be:81:ad:31:db:b3:d7:a4: 15:e0:e3:7d:11:1c:c4:6a:b6:ee:4a:d1:9d:84:79: 3c:5e:7b:c9:86:d2:bf:26:fd:5d:68:a2:f8:35:aa: a4:c2:0a:77:23:88:a4:2a:d5:b6:50:35:8d:d5:fe: 8a:2b:7d:b6:47:0d:3c:d2:d5:78:af:06:21:d2:bb: 49:66:4c:b9:70:2c:ab:b7:47:97:f8:90:c2:3e:56: 26:d9:8b:31:cb:1e:e1:b2:df:8b:6b:55:48:9e:7d: d9:70:10:c9:3f:a8:2d:19:dc:95:c3:b4:6f:dd:ef: 81:5e:de:72:c7:a7:3a:83:68:79:c4:3b:31:df:7b: 5a:d9:f7:18:4f:31:88:0f:3c:e9:b2:4d:88:cf:17: ca:07:33:8a:58:4d:03:c5:c2:1c:f0:58:39:6d:83: ba:bb:69:c6:e4:b4:9f:f9:82:e8:7c:4d:f1:83:63: e9:6e:2d:1d:35:59:2d:62:8e:9d:3b:21:7f:93:8e: 2f:72:55:b8:53:1b:e2:51:4a:49:52:fe:8c:70:42: 30:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:88:1D:00:E8:A5:B2:B9:68:94:CB:5D:A1:96:B3:65:67:5F:23:83 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030383a3a2f34382d3438203d3e20323135333634.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1008::/48 Signature Algorithm: sha256WithRSAEncryption 62:94:d7:67:00:b1:ac:94:7f:aa:c4:b1:8f:d5:28:b1:3a:2c: 44:3d:d6:61:fc:54:ad:cf:9e:51:0c:4c:5a:85:aa:ed:4e:8e: 72:8d:de:bc:bf:38:a8:21:e5:b8:e6:b9:9a:ff:da:0f:aa:a5: ad:46:80:d5:82:04:8c:8c:6c:a6:96:50:2f:79:4e:6c:bb:2f: b9:9a:f7:ee:76:82:1d:f9:cc:34:e4:d6:7f:28:49:b9:46:13: db:a4:91:6f:3f:bb:5d:93:56:96:e4:09:47:88:6c:a4:dd:17: 39:8b:b3:95:84:9b:ed:e6:01:8a:b7:2e:3a:2f:33:31:c4:fa: 9f:e9:0b:75:bf:39:31:b4:22:3d:90:e1:4c:70:c0:c1:ea:03: ac:29:5c:ed:f6:fe:31:9a:73:85:41:ba:1c:d9:bb:e7:d6:e8: 68:73:c4:6b:dd:41:a6:c2:7b:83:8c:e1:73:fe:c9:19:49:2c: 44:61:db:23:b6:9b:40:0c:37:ef:72:09:65:c6:05:22:ba:6f: fe:d3:b5:90:07:78:02:f4:87:b6:1f:0d:0e:6d:9a:3f:a3:e0: d4:f6:c2:8d:7c:92:84:bf:28:d2:3e:ae:c5:f4:c9:fa:13:9d: 3b:c1:e2:76:cf:67:36:27:3d:82:ac:2e:b9:04:56:a0:f2:14: f4:25:3f:41 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUTWX73MzbBVVD5K0a9krko1oRAk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDMxNTI4NDlaFw0yNTA0MDIxNTMzNDlaMDMxMTAvBgNV BAMTKDE0ODgxRDAwRThBNUIyQjk2ODk0Q0I1REExOTZCMzY1Njc1RjIzODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1HlYko4FRP+DPjcOVxST5DhDe mFSNOK/RainN9QliSP3H2Z5wcq8EDyTxyHTU9yHMQKi+ga0x27PXpBXg430RHMRq tu5K0Z2EeTxee8mG0r8m/V1oovg1qqTCCncjiKQq1bZQNY3V/oorfbZHDTzS1Xiv BiHSu0lmTLlwLKu3R5f4kMI+VibZizHLHuGy34trVUiefdlwEMk/qC0Z3JXDtG/d 74Fe3nLHpzqDaHnEOzHfe1rZ9xhPMYgPPOmyTYjPF8oHM4pYTQPFwhzwWDltg7q7 acbktJ/5guh8TfGDY+luLR01WS1ijp07IX+Tji9yVbhTG+JRSklS/oxwQjBxAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUFIgdAOilsrlolMtdoZazZWdfI4MwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM4M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzMzNjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAIMA0GCSqGSIb3DQEBCwUAA4IBAQBi lNdnALGslH+qxLGP1SixOixEPdZh/FStz55RDExahartTo5yjd68vzioIeW45rma /9oPqqWtRoDVggSMjGymllAveU5suy+5mvfudoId+cw05NZ/KEm5RhPbpJFvP7td k1aW5AlHiGyk3Rc5i7OVhJvt5gGKty46LzMxxPqf6Qt1vzkxtCI9kOFMcMDB6gOs KVzt9v4xmnOFQboc2bvn1uhoc8Rr3UGmwnuDjOFz/skZSSxEYdsjtptADDfvcgll xgUium/+07WQB3gC9Ie2Hw0ObZo/o+DU9sKNfJKEvyjSPq7F9Mn6E507weJ2z2c2 Jz2CrC65BFag8hT0JT9B -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org