$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135313438.roa File: 326131343a373538313a313030393a3a2f34382d3438203d3e20323135313438.roa (raw, json) Hash identifier: g4GuzhCF0rSGYORgVHBkxyvO9b6rUwsyLz7YYlcOMQo= Subject key identifier: 28:CE:CD:BF:32:A2:28:B1:0A:F1:04:84:63:18:91:84:5A:8F:66:45 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 406A1C033EF2B81E7F6CD9A3D71A6A36A64DDCA8 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135313438.roa Signing time: Thu 11 Apr 2024 03:40:07 +0000 ROA not before: Thu 11 Apr 2024 03:35:07 +0000 ROA not after: Thu 10 Apr 2025 03:40:07 +0000 asID: 215148 IP address blocks: 2a14:7581:1009::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6a:1c:03:3e:f2:b8:1e:7f:6c:d9:a3:d7:1a:6a:36:a6:4d:dc:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 11 03:35:07 2024 GMT Not After : Apr 10 03:40:07 2025 GMT Subject: CN=28CECDBF32A228B10AF10484631891845A8F6645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:80:2d:4a:ed:87:ab:29:72:93:bc:fb:1a:bb: 06:a2:19:64:c4:05:61:46:5d:a8:de:24:89:ab:37: 4a:25:d2:76:a2:aa:67:10:5d:95:53:af:d9:01:47: 17:2e:c0:77:14:95:b1:f2:03:b3:28:45:e7:6c:d9: be:d4:6f:25:20:f6:12:d2:0d:47:8f:d0:c8:3a:8a: 6c:e6:03:37:ec:18:17:4c:15:03:0d:4a:59:0c:36: 6b:fe:8e:7e:75:27:55:14:9b:c6:01:75:a7:ca:3f: ba:70:92:c2:ed:05:ff:cc:1a:b8:00:c1:58:55:65: 15:c4:bf:bd:13:54:3f:83:cb:44:2e:0e:fa:ac:b8: e4:d4:69:74:c0:a9:8e:34:92:5e:04:a0:32:46:50: 60:74:9d:85:81:9b:28:65:64:71:ad:d5:14:71:e0: 65:8d:59:d7:81:51:28:fe:d2:f8:71:d4:0d:84:59: b2:9e:41:35:63:78:57:0d:a3:81:97:54:e4:55:60: 67:4e:a5:73:7b:41:55:5d:94:77:9e:4f:ba:bc:60: c4:dd:6a:3f:4a:f8:f1:54:18:90:d3:56:e0:dc:ba: ee:b9:34:80:5d:2a:a7:09:79:dc:4b:2b:01:f2:8c: 83:66:f8:14:28:e1:81:13:1a:82:21:fd:98:84:b1: ff:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CE:CD:BF:32:A2:28:B1:0A:F1:04:84:63:18:91:84:5A:8F:66:45 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a313030393a3a2f34382d3438203d3e20323135313438.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:1009::/48 Signature Algorithm: sha256WithRSAEncryption 45:3d:0b:0b:eb:b8:95:91:bc:4a:47:2e:e5:18:ad:dc:23:42: 64:b7:99:5b:d0:2f:28:bc:c2:90:d9:f3:e4:23:50:ff:a0:62: ab:59:40:bb:31:b5:f1:44:cc:72:84:3c:cf:3a:7a:38:2e:65: 17:a1:1a:bc:1d:b8:35:43:97:a2:4b:0a:a7:52:24:d7:e4:ac: 33:6e:8d:e7:a4:95:a5:be:cc:dd:22:5e:44:79:a6:7a:fc:04: 1f:e2:91:65:19:05:a7:aa:c1:f5:ab:7f:f5:ae:8a:2c:90:61: 73:9a:34:0b:d2:ba:b8:07:84:c9:4f:f5:4d:58:63:46:81:cd: 33:fd:84:fd:db:ba:bb:16:a1:dc:ea:98:30:c6:0e:3c:1a:90: 96:5e:a0:99:20:d7:6c:f3:a7:2d:8b:d5:c6:3e:ea:ec:20:0e: d9:b0:a5:12:80:66:fd:73:c6:e8:aa:96:ed:c8:35:96:db:9d: c6:2e:07:09:4f:47:cd:d9:f1:51:d0:e3:13:24:f1:e2:2e:27: 3f:4e:48:bb:58:44:29:60:8e:28:23:23:d7:fd:91:6d:11:28: 45:60:2a:7c:00:5f:8b:9e:d2:3c:de:ff:c4:50:cf:dd:70:d7: f9:45:89:a1:e7:aa:68:35:c2:bd:e3:c3:06:f5:5f:b3:ce:6a: 75:08:d9:7a -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUQGocAz7yuB5/bNmj1xpqNqZN3KgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MTEwMzM1MDdaFw0yNTA0MTAwMzQwMDdaMDMxMTAvBgNV BAMTKDI4Q0VDREJGMzJBMjI4QjEwQUYxMDQ4NDYzMTg5MTg0NUE4RjY2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOgC1K7YerKXKTvPsauwaiGWTE BWFGXajeJImrN0ol0naiqmcQXZVTr9kBRxcuwHcUlbHyA7MoReds2b7UbyUg9hLS DUeP0Mg6imzmAzfsGBdMFQMNSlkMNmv+jn51J1UUm8YBdafKP7pwksLtBf/MGrgA wVhVZRXEv70TVD+Dy0QuDvqsuOTUaXTAqY40kl4EoDJGUGB0nYWBmyhlZHGt1RRx 4GWNWdeBUSj+0vhx1A2EWbKeQTVjeFcNo4GXVORVYGdOpXN7QVVdlHeeT7q8YMTd aj9K+PFUGJDTVuDcuu65NIBdKqcJedxLKwHyjINm+BQo4YETGoIh/ZiEsf9fAgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUKM7NvzKiKLEK8QSEYxiRhFqPZkUwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMDM5M2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzEzNDM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gRAJMA0GCSqGSIb3DQEBCwUAA4IBAQBF PQsL67iVkbxKRy7lGK3cI0Jkt5lb0C8ovMKQ2fPkI1D/oGKrWUC7MbXxRMxyhDzP Ono4LmUXoRq8Hbg1Q5eiSwqnUiTX5Kwzbo3npJWlvszdIl5EeaZ6/AQf4pFlGQWn qsH1q3/1rooskGFzmjQL0rq4B4TJT/VNWGNGgc0z/YT927q7FqHc6pgwxg48GpCW XqCZINds86cti9XGPursIA7ZsKUSgGb9c8boqpbtyDWW253GLgcJT0fN2fFR0OMT JPHiLic/Tki7WEQpYI4oIyPX/ZFtEShFYCp8AF+LntI83v/EUM/dcNf5RYmh56po NcK948MG9V+zzmp1CNl6 -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:16 2024 by rpki-client on console-ams.rpki-client.org