$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa File: 326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa (raw, json) Hash identifier: +2fJLKBQjI9Q6jBQqhYhqk83bTNb57xmop6eIeq8VjM= Subject key identifier: AE:86:00:60:F7:FE:34:57:82:94:93:9E:C4:A9:2A:94:32:2A:5B:9A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 6FA00AA2551B31C7E25CBD248534EC952C083D0B Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa Signing time: Wed 29 May 2024 16:06:10 +0000 ROA not before: Wed 29 May 2024 16:01:10 +0000 ROA not after: Wed 28 May 2025 16:06:10 +0000 asID: 53356 IP address blocks: 2a14:7581:103::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:a0:0a:a2:55:1b:31:c7:e2:5c:bd:24:85:34:ec:95:2c:08:3d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: May 29 16:01:10 2024 GMT Not After : May 28 16:06:10 2025 GMT Subject: CN=AE860060F7FE34578294939EC4A92A94322A5B9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:68:1e:53:de:ba:79:ef:24:55:b1:84:5d:5f: 78:8c:58:14:81:97:b6:e4:be:d0:22:4e:6b:59:bb: 9e:d5:01:06:05:97:d1:de:62:f4:51:d5:54:51:df: dc:4e:ca:45:e9:3d:fd:a1:fc:4e:3e:62:63:41:d3: 9f:a5:53:7c:0b:2e:6a:1d:e2:f0:7c:b1:7a:48:43: 47:d1:e7:b7:e1:50:eb:79:e1:57:4d:5b:91:a1:51: d1:96:7b:21:18:a1:89:a1:0e:5a:41:c2:d9:15:e7: e1:ed:e5:ff:3b:f4:dc:6d:46:1b:5a:0c:ae:2d:6b: fa:80:90:c7:86:60:72:51:ed:0e:8e:a6:42:cd:d9: 4b:28:3c:d3:8b:95:e0:e3:a4:03:f5:e5:fc:9d:4a: 0c:be:68:ff:f8:0f:15:17:20:da:19:09:62:12:bc: 3f:60:11:2e:ed:2a:cf:d4:25:cf:3d:03:f4:38:3b: 84:ae:ed:52:ef:78:da:f3:fd:23:0a:f3:6e:fe:30: ff:ee:95:c9:91:3f:74:23:23:83:bf:40:b5:60:2f: e2:6c:d0:9c:6b:90:c0:0b:fb:ec:08:74:2b:69:89: 67:8f:c2:df:30:21:25:6e:42:55:e3:59:7a:8b:9d: aa:17:ea:90:80:8f:8b:85:5f:37:6d:0a:64:4e:e4: 9c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:86:00:60:F7:FE:34:57:82:94:93:9E:C4:A9:2A:94:32:2A:5B:9A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130333a3a2f34382d3438203d3e203533333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:103::/48 Signature Algorithm: sha256WithRSAEncryption 0a:40:34:0f:91:2e:c1:82:3a:e9:87:32:f7:7c:d9:50:27:4e: ac:9f:5a:be:b8:e6:98:6a:e7:80:4c:20:8a:a7:02:54:81:70: 06:ee:d1:bf:09:35:2a:23:20:48:b1:d4:27:51:0f:4e:a9:67: cd:71:f1:14:99:17:69:3b:27:47:40:98:4a:3e:5a:b2:e8:af: a0:90:2c:35:e4:06:8d:53:76:57:95:d6:ce:90:39:6f:80:9b: 31:0a:cb:39:2a:88:88:42:4d:3e:ab:17:e1:45:ff:c6:d5:94: 1a:cc:5a:88:d5:58:8b:c4:35:19:5f:e4:8a:dd:c7:71:61:69: 38:b0:f0:4f:f8:20:de:b1:16:33:88:a7:d4:75:df:7c:3c:5f: 90:f6:87:bb:3b:23:88:eb:ba:f8:bd:33:e1:b9:93:68:67:e0: 08:76:38:e5:1d:3d:c6:1d:03:50:67:82:59:be:2d:7c:b6:27: cd:19:6f:a3:b0:94:56:be:bb:bc:1a:55:83:10:3b:4a:17:02: 3b:0b:05:0e:18:0a:1b:10:17:32:ce:64:1a:5e:7c:3f:65:02: 26:d8:29:f9:7e:60:43:98:b9:c2:62:bb:a0:0d:11:3e:37:13: c9:10:d7:76:75:4b:0f:95:19:94:40:69:d8:0c:61:03:1c:3e: 6d:34:6a:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUb6AKolUbMcfiXL0khTTslSwIPQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA1MjkxNjAxMTBaFw0yNTA1MjgxNjA2MTBaMDMxMTAvBgNV BAMTKEFFODYwMDYwRjdGRTM0NTc4Mjk0OTM5RUM0QTkyQTk0MzIyQTVCOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSaB5T3rp57yRVsYRdX3iMWBSB l7bkvtAiTmtZu57VAQYFl9HeYvRR1VRR39xOykXpPf2h/E4+YmNB05+lU3wLLmod 4vB8sXpIQ0fR57fhUOt54VdNW5GhUdGWeyEYoYmhDlpBwtkV5+Ht5f879NxtRhta DK4ta/qAkMeGYHJR7Q6OpkLN2UsoPNOLleDjpAP15fydSgy+aP/4DxUXINoZCWIS vD9gES7tKs/UJc89A/Q4O4Su7VLveNrz/SMK827+MP/ulcmRP3QjI4O/QLVgL+Js 0JxrkMAL++wIdCtpiWePwt8wISVuQlXjWXqLnaoX6pCAj4uFXzdtCmRO5JwrAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUroYAYPf+NFeClJOexKkqlDIqW5owHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzMz MzM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWBAQMwDQYJKoZIhvcNAQELBQADggEBAApANA+R LsGCOumHMvd82VAnTqyfWr645phq54BMIIqnAlSBcAbu0b8JNSojIEix1CdRD06p Z81x8RSZF2k7J0dAmEo+WrLor6CQLDXkBo1TdleV1s6QOW+AmzEKyzkqiIhCTT6r F+FF/8bVlBrMWojVWIvENRlf5Irdx3FhaTiw8E/4IN6xFjOIp9R133w8X5D2h7s7 I4jruvi9M+G5k2hn4Ah2OOUdPcYdA1Bnglm+LXy2J80Zb6OwlFa+u7waVYMQO0oX AjsLBQ4YChsQFzLOZBpefD9lAibYKfl+YEOYucJiu6ANET43E8kQ13Z1Sw+VGZRA adgMYQMcPm00agg= -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org