$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa File: 326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa (raw, json) Hash identifier: fjdGThdgUqy16dbv9T6spFnl+pgvmlWs7Lauaq70IC8= Subject key identifier: B0:D2:4A:7F:63:73:F9:B6:6C:5C:EC:84:FA:E7:AC:C7:89:26:F2:8A Certificate issuer: /CN=30EC341CC59263F48799F70A95490826E78E6E11 Certificate serial: 1150FE8E369F54B5CA098381BAE53575C7BB3398 Authority key identifier: 30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa Signing time: Sat 06 Apr 2024 15:23:43 +0000 ROA not before: Sat 06 Apr 2024 15:18:43 +0000 ROA not after: Sat 05 Apr 2025 15:23:43 +0000 asID: 215729 IP address blocks: 2a14:7581:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 27 Jun 2024 17:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:50:fe:8e:36:9f:54:b5:ca:09:83:81:ba:e5:35:75:c7:bb:33:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30EC341CC59263F48799F70A95490826E78E6E11 Validity Not Before: Apr 6 15:18:43 2024 GMT Not After : Apr 5 15:23:43 2025 GMT Subject: CN=B0D24A7F6373F9B66C5CEC84FAE7ACC78926F28A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:31:2c:8f:3b:d5:3e:d5:0e:8c:0e:b0:2c: 0c:4b:ec:29:e8:2a:52:2e:75:a3:65:a1:64:c5:29: 30:92:f1:20:2f:1a:46:54:a6:30:52:93:0a:1a:26: fb:e4:2b:7d:73:8f:d6:04:e7:3a:bf:08:11:d3:36: 6f:9e:00:ce:7f:ac:86:8b:38:fd:70:60:f7:40:1a: 43:3a:36:d6:45:d1:b3:2e:66:d0:36:d6:34:e9:9c: 0b:1f:02:8d:99:94:ca:18:5d:12:66:db:a6:1c:d9: 81:da:6b:76:0e:af:cf:4b:3e:f2:48:c0:e4:3b:85: 18:bd:6a:68:dc:ef:71:87:ca:3c:ca:9c:93:16:22: 78:31:b0:f9:fd:95:ba:2f:d2:f1:06:e0:b4:d6:7d: 6f:27:aa:41:15:41:5f:5e:31:a7:eb:fc:41:3d:c4: 48:55:38:85:e1:23:a7:47:cd:cd:72:04:35:5e:58: e4:5b:e2:99:a5:75:d7:f1:58:ff:02:77:5b:64:75: 3f:8b:61:37:a0:1f:20:13:f2:bd:dc:63:8f:97:64: c4:70:d2:76:5e:a8:cc:fd:4c:5b:34:54:a2:8a:eb: d1:f9:c8:ae:9b:12:87:eb:d1:2f:01:da:2f:11:90: 8b:3c:e3:74:64:79:fa:0b:de:8c:c8:74:e1:26:e7: da:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D2:4A:7F:63:73:F9:B6:6C:5C:EC:84:FA:E7:AC:C7:89:26:F2:8A X509v3 Authority Key Identifier: keyid:30:EC:34:1C:C5:92:63:F4:87:99:F7:0A:95:49:08:26:E7:8E:6E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/30EC341CC59263F48799F70A95490826E78E6E11.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/30EC341CC59263F48799F70A95490826E78E6E11.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/23d5f682-b51b-4812-b8b1-430e38683748/1/326131343a373538313a323030303a3a2f34382d3438203d3e20323135373239.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a14:7581:2000::/48 Signature Algorithm: sha256WithRSAEncryption 36:5b:84:a3:d4:91:b0:62:a3:2e:85:66:53:25:25:69:c6:16: 58:96:92:21:53:9c:c8:17:2a:17:87:56:5e:c3:43:80:fe:70: 63:49:bf:f9:28:6d:9c:32:4c:4f:a5:39:1f:f4:31:c9:06:fe: 98:90:39:fe:61:43:4e:92:9c:0a:b3:94:56:48:26:10:c7:9d: 6a:52:87:99:2a:64:ce:75:36:64:64:78:3b:b4:d6:fa:1b:d1: dd:62:ec:b1:a4:4c:81:9f:d6:a5:92:e8:c0:7b:33:9f:e3:27: 22:96:78:51:a9:a4:6e:a7:8d:43:34:81:48:22:a6:b8:de:be: 1f:86:93:f5:e8:eb:39:92:2c:26:cf:4c:29:a7:d3:70:fb:44: 7f:a3:14:66:ea:fe:b0:82:ee:15:cc:ed:4d:c4:21:8f:d9:fb: 7f:91:88:b9:af:5a:23:69:58:1c:fd:b3:ca:55:83:b4:8d:f9: c4:45:c0:50:18:db:c2:5e:30:8c:9f:c5:90:46:a3:8f:b4:6c: 42:de:16:7e:3d:76:86:be:c7:96:21:47:9d:b7:c1:9c:de:de: fa:78:5f:06:2a:58:88:db:dd:95:5f:c6:d2:7a:fc:10:23:b8: 72:78:07:0a:31:18:ee:e6:32:ff:ec:b0:e6:2b:0b:26:e5:01: bb:ff:9a:9c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgIUEVD+jjafVLXKCYOBuuU1dce7M5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZF NzhFNkUxMTAeFw0yNDA0MDYxNTE4NDNaFw0yNTA0MDUxNTIzNDNaMDMxMTAvBgNV BAMTKEIwRDI0QTdGNjM3M0Y5QjY2QzVDRUM4NEZBRTdBQ0M3ODkyNkYyOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOqjEsjzvVPtUOjA6wLAxL7Cno KlIudaNloWTFKTCS8SAvGkZUpjBSkwoaJvvkK31zj9YE5zq/CBHTNm+eAM5/rIaL OP1wYPdAGkM6NtZF0bMuZtA21jTpnAsfAo2ZlMoYXRJm26Yc2YHaa3YOr89LPvJI wOQ7hRi9amjc73GHyjzKnJMWIngxsPn9lbov0vEG4LTWfW8nqkEVQV9eMafr/EE9 xEhVOIXhI6dHzc1yBDVeWORb4pmlddfxWP8Cd1tkdT+LYTegHyAT8r3cY4+XZMRw 0nZeqMz9TFs0VKKK69H5yK6bEofr0S8B2i8RkIs843RkefoL3ozIdOEm59o1AgMB AAGjggKFMIICgTAdBgNVHQ4EFgQUsNJKf2Nz+bZsXOyE+uesx4km8oowHwYDVR0j BBgwFoAUMOw0HMWSY/SHmfcKlUkIJueObhEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMjNkNWY2ODItYjUxYi00ODEyLWI4YjEtNDMwZTM4Njgz NzQ4LzEvMzBFQzM0MUNDNTkyNjNGNDg3OTlGNzBBOTU0OTA4MjZFNzhFNkUxMS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC8zMEVDMzQxQ0M1OTI2M0Y0ODc5OUY3MEE5 NTQ5MDgyNkU3OEU2RTExLmNlcjCBtwYIKwYBBQUHAQsEgaowgacwgaQGCCsGAQUF BzALhoGXcnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS8yM2Q1ZjY4Mi1iNTFiLTQ4MTItYjhiMS00MzBlMzg2ODM3NDgvMS8zMjYxMzEz NDNhMzczNTM4MzEzYTMyMzAzMDMwM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIz MTM1MzczMjM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAKhR1gSAAMA0GCSqGSIb3DQEBCwUAA4IBAQA2 W4Sj1JGwYqMuhWZTJSVpxhZYlpIhU5zIFyoXh1Zew0OA/nBjSb/5KG2cMkxPpTkf 9DHJBv6YkDn+YUNOkpwKs5RWSCYQx51qUoeZKmTOdTZkZHg7tNb6G9HdYuyxpEyB n9alkujAezOf4ycilnhRqaRup41DNIFIIqa43r4fhpP16Os5kiwmz0wpp9Nw+0R/ oxRm6v6wgu4VzO1NxCGP2ft/kYi5r1ojaVgc/bPKVYO0jfnERcBQGNvCXjCMn8WQ RqOPtGxC3hZ+PXaGvseWIUedt8Gc3t76eF8GKliI292VX8bSevwQI7hyeAcKMRju 5jL/7LDmKwsm5QG7/5qc -----END CERTIFICATE-----Generated at Thu Jun 27 00:12:36 2024 by rpki-client on console-fra.rpki-client.org