$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130313a3a2f34382d3438203d3e203533333536.roa File: 326131343a373538313a3130313a3a2f34382d3438203d3e203533333536.roa (raw, json) Hash identifier: ZrAsdw4g08nH+GjcjF/jk/a8Q4EYbp8CeyK2wikR6N4= Subject key identifier: 3E:C0:B6:8F:6C:45:F5:AF:CA:1C:D7:B4:A0:F2:3C:F5:15:C7:59:2A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3DE3DB616D56A0BDD5847245D95F8BCB5079AE0D Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130313a3a2f34382d3438203d3e203533333536.roa Signing time: Wed 29 May 2024 16:05:31 +0000 ROA not before: Wed 29 May 2024 16:00:31 +0000 ROA not after: Wed 28 May 2025 16:05:31 +0000 asID: 53356 IP address blocks: 2a14:7581:101::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e3:db:61:6d:56:a0:bd:d5:84:72:45:d9:5f:8b:cb:50:79:ae:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: May 29 16:00:31 2024 GMT Not After : May 28 16:05:31 2025 GMT Subject: CN=3EC0B68F6C45F5AFCA1CD7B4A0F23CF515C7592A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4c:b8:46:75:68:e5:a7:a7:1c:7e:00:43:39: b8:fe:a8:3e:86:34:9c:e8:cc:c7:68:4f:28:b8:51: 5a:70:90:7f:85:ba:05:23:08:f2:97:a4:4a:21:b4: 56:78:dd:cd:74:bc:21:21:28:b6:66:51:d9:6b:5e: f6:76:18:61:4e:47:a3:3a:16:d9:d4:2c:b3:2f:e7: fc:a2:00:4d:f9:47:22:5c:a9:a0:6a:73:70:6c:b3: da:ef:42:f8:82:8b:0a:1c:ab:39:0f:a8:cc:53:fd: b8:69:38:cb:d8:0b:35:31:b3:12:dd:df:5d:7b:bf: d8:d3:af:f3:5d:a0:a9:fd:b9:93:15:03:19:33:5a: a7:4e:b9:d3:68:61:80:f8:6c:0e:a5:08:b9:49:4e: 3a:6e:4d:fd:0a:ae:19:7f:41:5e:d9:78:cd:a8:07: e2:a8:ed:29:d4:1d:78:2c:21:f3:c0:c4:91:f0:b6: 94:1d:5a:b1:a7:34:e9:60:aa:ee:69:4e:5a:3b:e0: b8:d1:43:bb:b4:b7:c7:4c:75:da:a8:60:80:d3:a0: 05:9b:e5:7c:d2:f8:1e:0a:dd:c0:ba:35:90:10:c4: 2c:0d:2a:79:9f:84:10:c2:0a:84:8e:d0:50:a8:e2: a0:db:5c:3f:be:4e:3c:e9:1b:ff:a6:50:cf:28:a7: c1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C0:B6:8F:6C:45:F5:AF:CA:1C:D7:B4:A0:F2:3C:F5:15:C7:59:2A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130313a3a2f34382d3438203d3e203533333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:101::/48 Signature Algorithm: sha256WithRSAEncryption 7e:78:10:89:e4:fd:63:d4:24:39:59:08:e5:53:d5:a4:f2:73: 55:c2:db:9b:d4:53:57:57:13:ea:fb:81:a5:4d:5b:35:4d:48: 54:16:74:1d:10:a1:7b:26:d8:5e:33:98:eb:d9:e2:46:17:d3: 1d:2e:8c:69:5b:52:d1:57:cf:a3:04:e8:e2:25:4f:1a:d8:cd: 49:6b:7b:43:9e:e7:4f:18:c7:55:e0:4d:8d:99:d9:d6:9c:13: 9f:25:2d:24:7d:23:02:e8:b5:75:02:c0:4d:2f:47:36:ba:57: 38:93:be:fa:6d:35:f1:25:d8:90:c7:5c:4d:11:c4:d2:81:06: 0a:a8:50:1a:84:d7:5d:6b:53:22:6a:82:42:46:bf:39:aa:80: 83:28:74:74:9f:20:4c:5e:96:82:aa:ce:7a:95:64:8b:05:80: cc:3e:f7:ba:d7:44:a9:07:2c:30:01:ee:59:c7:d9:44:9c:a1: f8:5b:f1:95:ee:d7:c4:62:a4:6a:92:0f:7e:89:7e:2d:29:96: f4:ab:a7:16:28:01:54:ef:e7:10:e8:60:7f:6a:cd:a0:63:5f: be:30:aa:cc:82:af:08:01:3e:97:43:bc:10:8b:3d:bb:4a:6d: ed:33:7c:c5:c6:86:48:f9:5f:a9:0b:31:06:ba:f5:be:e0:f8: f2:6f:12:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUPePbYW1WoL3VhHJF2V+Ly1B5rg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA1MjkxNjAwMzFaFw0yNTA1MjgxNjA1MzFaMDMxMTAvBgNV BAMTKDNFQzBCNjhGNkM0NUY1QUZDQTFDRDdCNEEwRjIzQ0Y1MTVDNzU5MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdTLhGdWjlp6ccfgBDObj+qD6G NJzozMdoTyi4UVpwkH+FugUjCPKXpEohtFZ43c10vCEhKLZmUdlrXvZ2GGFOR6M6 FtnULLMv5/yiAE35RyJcqaBqc3Bss9rvQviCiwocqzkPqMxT/bhpOMvYCzUxsxLd 3117v9jTr/NdoKn9uZMVAxkzWqdOudNoYYD4bA6lCLlJTjpuTf0Krhl/QV7ZeM2o B+Ko7SnUHXgsIfPAxJHwtpQdWrGnNOlgqu5pTlo74LjRQ7u0t8dMddqoYIDToAWb 5XzS+B4K3cC6NZAQxCwNKnmfhBDCCoSO0FCo4qDbXD++TjzpG/+mUM8op8FdAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUPsC2j2xF9a/KHNe0oPI89RXHWSowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzMz MzM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWBAQEwDQYJKoZIhvcNAQELBQADggEBAH54EInk /WPUJDlZCOVT1aTyc1XC25vUU1dXE+r7gaVNWzVNSFQWdB0QoXsm2F4zmOvZ4kYX 0x0ujGlbUtFXz6ME6OIlTxrYzUlre0Oe508Yx1XgTY2Z2dacE58lLSR9IwLotXUC wE0vRza6VziTvvptNfEl2JDHXE0RxNKBBgqoUBqE111rUyJqgkJGvzmqgIModHSf IExeloKqznqVZIsFgMw+97rXRKkHLDAB7lnH2UScofhb8ZXu18RipGqSD36Jfi0p lvSrpxYoAVTv5xDoYH9qzaBjX74wqsyCrwgBPpdDvBCLPbtKbe0zfMXGhkj5X6kL MQa69b7g+PJvEgA= -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org