$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa File: 326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa (raw, json) Hash identifier: rmsqFajYQmvvTsKXlUnd7mmEV53Ajuq2gpC0JxCOh9Q= Subject key identifier: E7:41:F6:3B:61:43:D8:48:E2:27:E9:51:DC:AB:40:5D:1E:F0:E7:45 Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 51A395EB688929F96B2337799B7179A2FF5DEE07 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa Signing time: Mon 23 Sep 2024 07:11:53 +0000 ROA not before: Mon 23 Sep 2024 07:06:53 +0000 ROA not after: Mon 22 Sep 2025 07:11:53 +0000 asID: 216324 IP address blocks: 2a14:7581:153::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:a3:95:eb:68:89:29:f9:6b:23:37:79:9b:71:79:a2:ff:5d:ee:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Sep 23 07:06:53 2024 GMT Not After : Sep 22 07:11:53 2025 GMT Subject: CN=E741F63B6143D848E227E951DCAB405D1EF0E745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:96:39:c6:36:cd:43:1a:19:f7:ee:07:d4:ed: 9e:46:c8:54:f0:e4:d1:fc:d1:84:27:06:5f:8e:d8: 8d:ed:f7:0e:e1:3b:c6:8e:c6:85:28:e5:70:45:b0: ef:66:50:d4:00:27:17:b6:8f:b6:db:85:e7:b8:93: 32:96:c5:7a:84:76:cd:6e:77:78:7a:da:65:1e:28: e4:6f:43:58:26:59:aa:c5:a9:ce:1e:1d:b8:c9:8d: e2:5d:ef:1c:3f:45:18:82:35:2b:8a:de:f9:45:a6: 21:32:25:91:1c:0d:dd:6a:02:8c:fe:10:ce:5f:ac: b5:88:38:3d:95:60:2f:4e:5d:36:b1:8e:c1:eb:d0: 4c:3a:88:fe:fe:a5:4b:e0:56:6b:fa:7f:d1:bc:7a: d9:53:bf:61:a6:ce:1e:a7:5e:42:37:d6:89:0d:3d: 32:b2:f4:48:46:1c:18:8c:af:42:aa:db:98:84:3e: 27:40:b8:15:41:c7:bf:d1:87:a0:6a:6d:1f:38:d0: f5:d3:37:d0:9b:49:90:a7:34:0a:b5:6c:48:e7:29: 29:32:83:5e:2d:5b:34:c5:ea:10:8d:c5:2f:44:a5: 18:ee:aa:97:54:bc:82:58:37:ab:b9:43:8d:30:7b: eb:6f:16:7a:4a:eb:8d:2a:9a:d7:85:72:7a:b5:6f: 11:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:41:F6:3B:61:43:D8:48:E2:27:E9:51:DC:AB:40:5D:1E:F0:E7:45 X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a3135333a3a2f34382d3438203d3e20323136333234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:153::/48 Signature Algorithm: sha256WithRSAEncryption 91:e2:5d:1c:2d:1a:34:44:84:e3:7d:56:63:91:12:d2:e9:29: 9d:59:56:62:3e:e2:ac:0e:7e:36:d3:f8:da:a9:fe:f3:d4:78: f2:f5:01:b5:3f:ee:84:bd:99:42:5d:ad:83:19:1a:45:a0:1e: 0d:8c:28:00:38:43:3a:36:b7:c0:72:cc:d0:40:90:9f:b7:c1: 6b:7d:5b:60:69:be:a2:49:0f:01:c2:5a:18:08:00:e2:f0:d3: 6c:08:34:e4:23:fc:69:db:f6:e9:e7:c6:0f:2b:64:be:fc:e6: 3e:e2:50:92:76:ff:d8:a4:f9:12:e7:6e:c2:7b:1e:5e:06:e5: 61:88:6c:63:2d:51:76:9d:06:cb:b4:5f:81:f1:74:12:1a:d7: 79:2f:2f:29:a5:5e:60:c0:bf:a0:5f:88:87:70:b9:5b:31:e0: 1e:4f:2f:8d:ee:8a:ca:e1:0f:d1:44:d4:a2:a0:99:ac:30:ce: 7b:a1:88:19:29:62:e6:b2:db:4c:3b:77:fa:6e:b7:7e:04:c8: 7e:4c:91:43:cb:92:a2:08:50:4c:1e:0b:d4:c4:c4:0a:64:8f: 05:28:9f:21:3d:a8:f9:15:b9:c1:44:46:30:11:de:5a:7f:07: 58:9d:22:7c:3f:17:23:f2:d2:2d:15:9e:a5:de:ee:b5:4e:e7: e2:2b:22:82 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgIUUaOV62iJKflrIzd5m3F5ov9d7gcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA5MjMwNzA2NTNaFw0yNTA5MjIwNzExNTNaMDMxMTAvBgNV BAMTKEU3NDFGNjNCNjE0M0Q4NDhFMjI3RTk1MURDQUI0MDVEMUVGMEU3NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/ljnGNs1DGhn37gfU7Z5GyFTw 5NH80YQnBl+O2I3t9w7hO8aOxoUo5XBFsO9mUNQAJxe2j7bbhee4kzKWxXqEds1u d3h62mUeKORvQ1gmWarFqc4eHbjJjeJd7xw/RRiCNSuK3vlFpiEyJZEcDd1qAoz+ EM5frLWIOD2VYC9OXTaxjsHr0Ew6iP7+pUvgVmv6f9G8etlTv2Gmzh6nXkI31okN PTKy9EhGHBiMr0Kq25iEPidAuBVBx7/Rh6BqbR840PXTN9CbSZCnNAq1bEjnKSky g14tWzTF6hCNxS9EpRjuqpdUvIJYN6u5Q40we+tvFnpK640qmteFcnq1bxERAgMB AAGjggKDMIICfzAdBgNVHQ4EFgQU50H2O2FD2EjiJ+lR3KtAXR7w50UwHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtQYIKwYBBQUHAQsEgagwgaUwgaIGCCsGAQUF BzALhoGVcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMxMzUzMzNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzEz NjMzMzIzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcB BwEB/wQTMBEwDwQCAAIwCQMHACoUdYEBUzANBgkqhkiG9w0BAQsFAAOCAQEAkeJd HC0aNESE431WY5ES0ukpnVlWYj7irA5+NtP42qn+89R48vUBtT/uhL2ZQl2tgxka RaAeDYwoADhDOja3wHLM0ECQn7fBa31bYGm+okkPAcJaGAgA4vDTbAg05CP8adv2 6efGDytkvvzmPuJQknb/2KT5EuduwnseXgblYYhsYy1Rdp0Gy7RfgfF0EhrXeS8v KaVeYMC/oF+Ih3C5WzHgHk8vje6KyuEP0UTUoqCZrDDOe6GIGSli5rLbTDt3+m63 fgTIfkyRQ8uSoghQTB4L1MTECmSPBSifIT2o+RW5wURGMBHeWn8HWJ0ifD8XI/LS LRWepd7utU7n4isigg== -----END CERTIFICATE-----Generated at Thu Nov 21 19:50:40 2024 by rpki-client on console-fra.rpki-client.org