$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa File: 326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa (raw, json) Hash identifier: IVWZKb/aHgPNFKI65R19Ha0509rvzlQ0QdiqtK57uWw= Subject key identifier: B9:69:84:B8:B6:BD:7D:74:DE:21:22:8F:C2:34:FE:10:58:BE:FC:EE Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 3ABE10A2C1FDD21D5CC044F64573981847D9E9DA Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa Signing time: Wed 29 May 2024 16:06:45 +0000 ROA not before: Wed 29 May 2024 16:01:45 +0000 ROA not after: Wed 28 May 2025 16:06:45 +0000 asID: 53356 IP address blocks: 2a14:7581:105::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 28 Sep 2024 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:be:10:a2:c1:fd:d2:1d:5c:c0:44:f6:45:73:98:18:47:d9:e9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: May 29 16:01:45 2024 GMT Not After : May 28 16:06:45 2025 GMT Subject: CN=B96984B8B6BD7D74DE21228FC234FE1058BEFCEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:47:45:c2:fb:4a:a3:47:1c:9b:e1:9a:40:23: 12:74:14:3c:a2:a6:a2:c4:20:8b:f9:7d:09:f3:ca: 60:63:57:33:62:1f:d4:8b:b4:5f:62:19:02:a4:4c: 8b:2f:c1:ae:0d:84:5d:35:11:88:39:00:50:33:36: bb:f8:e6:d4:5b:31:61:fc:29:0d:33:99:e9:ea:6c: e9:29:e0:10:28:10:c3:05:93:5b:3c:44:7b:4a:0d: 8b:9a:55:7c:6d:2e:3b:e4:c2:f7:b8:b2:f9:19:e3: 81:57:fc:ca:de:d1:00:d1:a0:09:b9:c0:65:62:68: b2:8d:46:36:58:4e:d8:00:9a:ab:10:85:0c:50:09: 03:1f:12:25:8b:fe:8a:c6:6b:e5:13:de:58:26:02: 9c:91:dc:60:be:e1:42:d7:7e:cb:18:29:93:9a:a3: 8c:8e:25:c4:40:f5:42:94:7c:7b:70:e6:03:2b:c6: 16:84:9b:dd:7e:db:62:d0:84:5c:6b:8c:d2:f2:88: 3a:f4:fc:2b:e7:cf:d4:90:e5:7a:5c:fc:c2:bb:00: c5:f2:dd:24:63:22:63:1c:61:b9:a2:0f:ac:a7:b5: 37:fc:e6:69:97:29:ba:33:19:70:a4:0a:83:0d:65: 8d:da:cc:69:e8:d6:d9:c6:a2:75:e2:fa:c3:dc:b7: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:69:84:B8:B6:BD:7D:74:DE:21:22:8F:C2:34:FE:10:58:BE:FC:EE X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3130353a3a2f34382d3438203d3e203533333536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:105::/48 Signature Algorithm: sha256WithRSAEncryption 2e:a8:5b:a3:4e:10:47:4f:9f:b1:fb:50:21:d6:92:1b:41:18: 8d:71:27:fd:03:3f:19:e1:77:d4:30:05:7c:bd:3b:e8:dc:28: 61:51:67:cf:1f:1e:5d:f6:f8:2c:7e:17:a1:84:0a:7e:ae:e6: d1:06:54:28:0f:5d:15:bd:0f:06:d7:b1:27:f9:28:c7:05:6b: 9a:41:7b:3f:48:74:68:34:28:b7:32:8d:ff:9c:3e:03:28:5c: cd:25:59:f0:6b:7e:2c:54:6a:eb:7a:73:2e:b6:81:2e:19:97: 53:62:4a:47:33:71:5e:33:49:ac:70:fa:ef:9e:a5:05:8a:4c: 2b:45:b8:6c:b0:fd:50:3c:f9:61:e4:83:f1:21:f7:f4:c0:be: f1:cf:0f:52:72:09:e5:fc:5e:cb:e0:9f:24:4b:c0:40:40:46: b0:bf:0d:6a:9a:ee:a3:b4:e3:78:e6:84:e0:4a:1b:a8:10:25: 6c:07:1e:33:77:d8:f7:df:69:9b:0b:e1:5a:4d:d9:2d:d5:34: 83:cc:be:4f:6b:a3:d1:a1:1d:6e:ce:78:e8:ca:ca:2c:9e:6f: 02:37:06:78:a2:0d:15:6c:56:02:37:33:ad:04:ac:f5:0e:80: b1:3c:85:85:52:c2:a7:d6:4a:94:b9:7a:14:b8:7f:bd:f7:f0: 9a:08:a4:7a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgIUOr4QosH90h1cwET2RXOYGEfZ6dowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA1MjkxNjAxNDVaFw0yNTA1MjgxNjA2NDVaMDMxMTAvBgNV BAMTKEI5Njk4NEI4QjZCRDdENzRERTIxMjI4RkMyMzRGRTEwNThCRUZDRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtR0XC+0qjRxyb4ZpAIxJ0FDyi pqLEIIv5fQnzymBjVzNiH9SLtF9iGQKkTIsvwa4NhF01EYg5AFAzNrv45tRbMWH8 KQ0zmenqbOkp4BAoEMMFk1s8RHtKDYuaVXxtLjvkwve4svkZ44FX/Mre0QDRoAm5 wGViaLKNRjZYTtgAmqsQhQxQCQMfEiWL/orGa+UT3lgmApyR3GC+4ULXfssYKZOa o4yOJcRA9UKUfHtw5gMrxhaEm91+22LQhFxrjNLyiDr0/Cvnz9SQ5Xpc/MK7AMXy 3SRjImMcYbmiD6yntTf85mmXKbozGXCkCoMNZY3azGno1tnGonXi+sPct4FBAgMB AAGjggKBMIICfTAdBgNVHQ4EFgQUuWmEuLa9fXTeISKPwjT+EFi+/O4wHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBswYIKwYBBQUHAQsEgaYwgaMwgaAGCCsGAQUF BzALhoGTcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzAzNTNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzMz MzM1MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB Af8EEzARMA8EAgACMAkDBwAqFHWBAQUwDQYJKoZIhvcNAQELBQADggEBAC6oW6NO EEdPn7H7UCHWkhtBGI1xJ/0DPxnhd9QwBXy9O+jcKGFRZ88fHl32+Cx+F6GECn6u 5tEGVCgPXRW9DwbXsSf5KMcFa5pBez9IdGg0KLcyjf+cPgMoXM0lWfBrfixUaut6 cy62gS4Zl1NiSkczcV4zSaxw+u+epQWKTCtFuGyw/VA8+WHkg/Eh9/TAvvHPD1Jy CeX8XsvgnyRLwEBARrC/DWqa7qO043jmhOBKG6gQJWwHHjN32PffaZsL4VpN2S3V NIPMvk9ro9GhHW7OeOjKyiyebwI3BniiDRVsVgI3M60ErPUOgLE8hYVSwqfWSpS5 ehS4f7338JoIpHo= -----END CERTIFICATE-----Generated at Fri Sep 27 22:26:19 2024 by rpki-client on console-fra.rpki-client.org